$ rpki-client -vvf rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/35BBCFB005C111EEA3A8584CC4F9AE02.roa File: 35BBCFB005C111EEA3A8584CC4F9AE02.roa (raw, json) Hash identifier: Zj5KzXH90Eacni+/EF4/NifCxTnojynFkhBANYb65sQ= Subject key identifier: A0:AA:98:2D:F0:93:6B:74:B1:F2:8E:29:E1:80:BD:2D:E9:61:4F:F9 Certificate issuer: /CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Certificate serial: 2A Authority key identifier: 97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/35BBCFB005C111EEA3A8584CC4F9AE02.roa Signing time: Wed 23 Aug 2023 05:04:50 +0000 ROA not before: Wed 23 Aug 2023 05:04:50 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 18191 IP address blocks: 168.132.0.0/16 maxlen: 17 168.132.121.0/24 maxlen: 24 168.132.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:48:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FCABC/serialNumber=97CE568F6468256473F84B38B3CE03EA3549EB89 Validity Not Before: Aug 23 05:04:50 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e59371-3e5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:de:09:58:3d:62:fa:68:67:30:10:23:cc:47: b1:ab:27:70:5a:ca:3a:40:42:1f:ae:ac:17:cd:98: 98:cb:90:b3:96:95:cd:fd:e3:a9:52:d9:32:6f:80: ee:a9:ac:ee:5d:15:6a:e5:af:75:4f:4b:f7:c2:b9: a1:48:69:78:03:cd:1b:87:15:a4:d5:84:0e:94:eb: 1a:e7:66:f0:1e:19:09:21:4e:55:11:e5:d8:f6:0f: 9d:6c:92:2d:94:40:2f:f7:08:21:a9:47:82:54:8f: 6a:2b:f9:1f:de:30:a1:ef:6e:7e:0d:8e:c9:95:ec: 9b:17:3d:f3:75:aa:91:c1:19:2f:1d:4a:c5:dd:b6: c6:16:81:37:3a:c4:0d:65:ae:fb:54:5a:6f:8e:62: 30:d8:cd:67:60:9e:ad:ee:d6:40:b0:78:f4:82:3b: 05:b6:ae:cb:fb:b0:d2:f9:dc:99:77:ee:2d:d0:4d: e7:26:5e:f7:6e:66:52:5d:0e:e2:da:04:19:83:ba: 41:c8:fa:52:de:97:90:d7:4e:49:93:00:53:e4:87: 03:2e:b1:b5:47:4c:a5:ce:51:93:27:67:11:9e:55: cb:55:7b:36:9a:88:fb:c6:2f:12:b0:2e:7c:23:f0: 15:28:d8:bd:7b:93:3d:6d:60:96:9a:ac:53:83:56: 45:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:AA:98:2D:F0:93:6B:74:B1:F2:8E:29:E1:80:BD:2D:E9:61:4F:F9 X509v3 Authority Key Identifier: keyid:97:CE:56:8F:64:68:25:64:73:F8:4B:38:B3:CE:03:EA:35:49:EB:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/l85Wj2RoJWRz-Es4s84D6jVJ64k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/l85Wj2RoJWRz-Es4s84D6jVJ64k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FCABC/C551641205B911EEA9130B37C4F9AE02/35BBCFB005C111EEA3A8584CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 168.132.0.0/16 Signature Algorithm: sha256WithRSAEncryption 01:8d:8d:62:f9:27:89:be:ea:a3:7c:d3:6e:1c:e0:9b:0f:2f: 61:ad:6f:6a:8f:7f:67:df:6a:c3:23:ca:3d:ce:0c:b8:64:9c: 77:8d:47:b2:21:9d:ab:c2:ba:e6:6f:0e:1f:a9:ea:9a:a8:c4: 08:a0:67:06:56:a3:87:1f:fc:d7:2c:11:1a:04:c2:3f:28:5e: ed:e6:f2:bc:f6:35:25:8b:32:7e:47:62:a1:7e:00:bf:b6:e6: 1e:71:05:bb:d2:65:20:23:48:b4:25:36:35:d1:47:dd:a6:9f: 14:bd:c3:49:0f:4d:66:b6:d5:49:01:42:f8:03:af:02:f9:80: 4b:fc:4f:eb:10:c1:85:aa:dd:67:42:eb:c5:bc:70:0c:7a:43: f9:eb:56:0f:c9:83:fc:9d:47:79:f9:28:c3:77:3a:f5:1a:e8: e4:fc:a5:21:20:2e:cb:3a:c3:98:73:c5:d3:32:e6:a5:c4:10: 51:14:c1:73:d1:9e:c7:88:5a:cc:91:46:d8:11:28:df:bd:5a: d1:bf:b0:a4:8d:26:e1:c3:ba:61:e6:36:ff:02:3f:bc:80:c2: 47:da:16:db:65:7f:16:c7:5b:fc:06:81:11:a6:43:62:ba:dc: a5:a7:82:04:1a:3f:5c:0c:0b:16:6d:57:94:9c:b6:21:b7:27: 8e:00:43:8f -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG Q0FCQzExMC8GA1UEBRMoOTdDRTU2OEY2NDY4MjU2NDczRjg0QjM4QjNDRTAzRUEz NTQ5RUI4OTAeFw0yMzA4MjMwNTA0NTBaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZTU5MzcxLTNlNWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC83glYPWL6aGcwECPMR7GrJ3BayjpAQh+urBfNmJjLkLOWlc3946lS2TJvgO6p rO5dFWrlr3VPS/fCuaFIaXgDzRuHFaTVhA6U6xrnZvAeGQkhTlUR5dj2D51ski2U QC/3CCGpR4JUj2or+R/eMKHvbn4NjsmV7JsXPfN1qpHBGS8dSsXdtsYWgTc6xA1l rvtUWm+OYjDYzWdgnq3u1kCwePSCOwW2rsv7sNL53Jl37i3QTecmXvduZlJdDuLa BBmDukHI+lLel5DXTkmTAFPkhwMusbVHTKXOUZMnZxGeVctVezaaiPvGLxKwLnwj 8BUo2L17kz1tYJaarFODVkUPAgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUoKqYLfCT a3Sx8o4p4YC9LelhT/kwHwYDVR0jBBgwFoAUl85Wj2RoJWRz+Es4s84D6jVJ64kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZDQUJDL0M1NTE2NDEyMDVC OTExRUVBOTEzMEIzN0M0RjlBRTAyL2w4NVdqMlJvSldSei1FczRzODRENmpWSjY0 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvbDg1V2oyUm9KV1J6LUVzNHM4NEQ2alZKNjRrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG Q0FCQy9DNTUxNjQxMjA1QjkxMUVFQTkxMzBCMzdDNEY5QUUwMi8zNUJCQ0ZCMDA1 QzExMUVFQTNBODU4NENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAKiEMA0GCSqGSIb3DQEBCwUAA4IBAQABjY1i+SeJvuqjfNNu HOCbDy9hrW9qj39n32rDI8o9zgy4ZJx3jUeyIZ2rwrrmbw4fqeqaqMQIoGcGVqOH H/zXLBEaBMI/KF7t5vK89jUlizJ+R2KhfgC/tuYecQW70mUgI0i0JTY10Ufdpp8U vcNJD01mttVJAUL4A68C+YBL/E/rEMGFqt1nQuvFvHAMekP561YPyYP8nUd5+SjD dzr1Gujk/KUhIC7LOsOYc8XTMualxBBRFMFz0Z7HiFrMkUbYESjfvVrRv7CkjSbh w7ph5jb/Aj+8gMJH2hbbZX8Wx1v8BoERpkNiutylp4IEGj9cDAsWbVeUnLYhtyeO AEOP -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:37 2024 by rpki-client on console-ams.rpki-client.org