$ rpki-client -vvf rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/89283C80809211EB938F4016C4F9AE02.roa File: 89283C80809211EB938F4016C4F9AE02.roa (raw, json) Hash identifier: ZRBO6vyLH4/afxSN4vzunw8CIrHkOdrG6vCeUqNRiVo= Subject key identifier: 14:CB:92:AC:30:51:A0:F8:6F:58:5E:D5:9A:91:13:2D:9E:9E:DE:FD Certificate issuer: /CN=A91F89C1/serialNumber=CA32D511462AB42618A88DBA05869AFEBEA0E51A Certificate serial: 050D Authority key identifier: CA:32:D5:11:46:2A:B4:26:18:A8:8D:BA:05:86:9A:FE:BE:A0:E5:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/89283C80809211EB938F4016C4F9AE02.roa Signing time: Tue 18 Jul 2023 23:40:09 +0000 ROA not before: Tue 18 Jul 2023 23:40:09 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132321 IP address blocks: 150.191.0.0/16 maxlen: 16 150.191.0.0/17 maxlen: 17 150.191.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.crl rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 00:23:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1293 (0x50d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F89C1/serialNumber=CA32D511462AB42618A88DBA05869AFEBEA0E51A Validity Not Before: Jul 18 23:40:09 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b722d9-816e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:75:09:fb:53:b8:8e:4d:26:02:c0:ac:01:c5: 81:ff:eb:00:e8:db:43:9e:d4:9f:fb:c4:9e:fd:19: a4:42:cb:97:0b:42:7f:40:1b:86:95:4a:3e:66:eb: a5:6c:11:58:e1:78:51:87:12:5b:7a:2d:b0:9b:08: 57:b0:4b:84:f6:79:7d:6c:1b:73:61:e8:41:7e:08: b4:0d:44:5f:24:58:7a:6f:5d:33:78:60:fb:65:93: c1:56:ff:8c:8d:04:e2:62:a7:c5:6c:2f:34:60:bf: 82:e5:61:2e:03:fb:61:25:3e:ce:68:c1:90:6d:61: a1:51:20:96:ca:33:bf:0e:89:d3:fe:29:a5:77:60: 6f:4e:fa:2b:e5:c1:0c:33:5a:55:b1:d8:68:62:1a: 72:c4:6b:94:b7:7f:a3:80:e0:8c:f7:7e:c6:2f:ee: b5:00:5d:b1:45:e9:82:71:0e:10:85:d2:8d:55:5c: 2d:65:cd:0f:17:25:5d:2f:9e:da:bd:93:b2:76:2c: 0a:fe:60:aa:fe:3c:e4:f5:e6:b8:b7:96:88:0b:88: 5a:fa:84:9a:fa:0a:53:26:ff:a9:43:a6:33:3b:b4: 92:02:f7:5a:5d:90:5d:f2:11:8e:91:f9:2b:cc:16: 31:b8:75:03:d3:1b:12:1a:bb:02:8c:cb:d6:ac:80: 1a:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:CB:92:AC:30:51:A0:F8:6F:58:5E:D5:9A:91:13:2D:9E:9E:DE:FD X509v3 Authority Key Identifier: keyid:CA:32:D5:11:46:2A:B4:26:18:A8:8D:BA:05:86:9A:FE:BE:A0:E5:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/yjLVEUYqtCYYqI26BYaa_r6g5Ro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yjLVEUYqtCYYqI26BYaa_r6g5Ro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F89C1/13ED6802808611EBB4C6D116C4F9AE02/89283C80809211EB938F4016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 150.191.0.0/16 Signature Algorithm: sha256WithRSAEncryption 30:ed:f5:a2:d1:37:fd:f5:2c:ef:ad:7c:d1:cc:3a:24:38:0b: 62:b4:d8:f1:0c:6a:26:d7:a6:ea:6d:58:ac:3a:f6:c1:32:98: 37:f8:61:3e:76:3d:8b:4c:f7:73:2d:dd:c9:63:df:f7:c4:80: e0:1f:18:d9:d0:ce:ee:36:07:2a:8f:63:27:9f:42:6f:1c:5a: 95:33:e4:ea:81:b1:72:a8:ed:ac:96:bb:68:06:dd:47:59:6d: 33:b2:ed:2d:0c:fa:98:8f:be:67:2c:ff:37:56:cf:9c:55:bc: 6e:6f:c7:0e:e1:97:ac:3d:f6:51:a9:e8:35:3b:28:b9:73:17: 44:6a:7b:99:22:c0:0e:88:2b:51:6b:b5:58:e7:1f:ff:a9:b3: a4:0a:83:a5:cd:02:e0:cc:a1:a8:6f:24:2a:e6:79:6e:cd:82: 9b:89:26:0e:b3:65:73:ac:01:14:20:6e:3d:0f:58:d3:0b:13: 0e:e9:fd:e1:53:89:d6:da:ca:5b:ef:54:dd:99:22:8f:07:0f: 75:e2:25:4c:63:ca:85:3a:d2:3f:1e:8d:0e:19:a1:11:75:63: 23:b2:7c:9f:54:e1:d6:e7:b6:8a:36:20:3d:a4:2e:d9:af:30: 41:d5:34:58:95:96:74:aa:f8:22:94:9f:21:b4:31:43:7f:22: 60:a5:76:13 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBQ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Rjg5QzExMTAvBgNVBAUTKENBMzJENTExNDYyQUI0MjYxOEE4OERCQTA1ODY5QUZF QkVBMEU1MUEwHhcNMjMwNzE4MjM0MDA5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI3MjJkOS04MTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxHUJ+1O4jk0mAsCsAcWB/+sA6NtDntSf+8Se/RmkQsuXC0J/QBuGlUo+Zuul bBFY4XhRhxJbei2wmwhXsEuE9nl9bBtzYehBfgi0DURfJFh6b10zeGD7ZZPBVv+M jQTiYqfFbC80YL+C5WEuA/thJT7OaMGQbWGhUSCWyjO/DonT/imld2BvTvor5cEM M1pVsdhoYhpyxGuUt3+jgOCM937GL+61AF2xRemCcQ4QhdKNVVwtZc0PFyVdL57a vZOydiwK/mCq/jzk9ea4t5aIC4ha+oSa+gpTJv+pQ6YzO7SSAvdaXZBd8hGOkfkr zBYxuHUD0xsSGrsCjMvWrIAa6QIDAQABo4IClDCCApAwHQYDVR0OBBYEFBTLkqww UaD4b1he1ZqREy2ent79MB8GA1UdIwQYMBaAFMoy1RFGKrQmGKiNugWGmv6+oOUa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODlDMS8xM0VENjgwMjgw ODYxMUVCQjRDNkQxMTZDNEY5QUUwMi95akxWRVVZcXRDWVlxSTI2QllhYV9yNmc1 Um8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3lqTFZFVVlxdENZWXFJMjZCWWFhX3I2ZzVSby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Rjg5QzEvMTNFRDY4MDI4MDg2MTFFQkI0QzZEMTE2QzRGOUFFMDIvODkyODNDODA4 MDkyMTFFQjkzOEY0MDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCWvzANBgkqhkiG9w0BAQsFAAOCAQEAMO31otE3/fUs7618 0cw6JDgLYrTY8QxqJtem6m1YrDr2wTKYN/hhPnY9i0z3cy3dyWPf98SA4B8Y2dDO 7jYHKo9jJ59CbxxalTPk6oGxcqjtrJa7aAbdR1ltM7LtLQz6mI++Zyz/N1bPnFW8 bm/HDuGXrD32UanoNTsouXMXRGp7mSLADogrUWu1WOcf/6mzpAqDpc0C4MyhqG8k KuZ5bs2Cm4kmDrNlc6wBFCBuPQ9Y0wsTDun94VOJ1trKW+9U3ZkijwcPdeIlTGPK hTrSPx6NDhmhEXVjI7J8n1Th1ue2ijYgPaQu2a8wQdU0WJWWdKr4IpSfIbQxQ38i YKV2Ew== -----END CERTIFICATE-----Generated at Tue May 7 02:01:06 2024 by rpki-client on console-ams.rpki-client.org