$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/A99BC9D64CAC11EDA3BF485AC4F9AE02.roa File: A99BC9D64CAC11EDA3BF485AC4F9AE02.roa (raw, json) Hash identifier: 3rJgdxfYw3z0Qha7Cf2nWFVdNS9QkKvrwb2nEAGi284= Subject key identifier: 17:80:54:B5:15:91:1A:43:42:5C:66:6D:F1:C6:79:62:21:AD:67:02 Certificate issuer: /CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Certificate serial: 0111 Authority key identifier: AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/A99BC9D64CAC11EDA3BF485AC4F9AE02.roa Signing time: Tue 05 Mar 2024 02:44:44 +0000 ROA not before: Tue 05 Mar 2024 02:44:44 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 149440 IP address blocks: 193.57.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDAD4/serialNumber=ADE859AD940D1A173FA64CD705867D487E673688 Validity Not Before: Mar 5 02:44:44 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e6871c-89fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:35:6e:a1:7e:e3:ee:df:15:21:ec:6f:76:07: 46:68:22:63:25:f8:55:b3:40:64:24:7c:f3:79:04: a4:21:3a:75:a9:b6:a1:6a:c1:7c:55:37:34:f8:5c: 9f:eb:8d:0f:a5:40:6c:f9:e8:bd:2e:18:a8:fb:f6: a8:6f:f4:4f:30:76:c9:e6:4e:1a:16:4b:87:8a:34: 2a:38:ce:3c:09:c2:0d:2c:23:0b:f7:fa:7d:f8:2d: c4:fc:bd:bc:18:46:87:90:04:e2:5a:40:65:c6:9a: b5:d4:40:03:db:6d:04:bc:e6:83:f4:a4:f5:a0:13: 68:57:97:95:7e:e7:d6:6c:29:76:a8:66:05:cc:07: 29:7a:5f:83:b5:30:31:c7:84:93:26:f6:dd:b1:b3: 97:a2:57:80:6b:f0:ec:7d:97:8e:b4:18:56:0a:a6: 74:56:f1:f8:76:02:7b:52:75:4d:62:0c:dd:85:69: e8:a3:3c:43:8d:65:76:37:64:50:26:0d:98:c1:57: 3b:a3:41:b9:4f:08:3d:2a:61:84:55:25:7b:50:5c: c9:ca:02:de:99:3c:6c:8e:6f:5c:7d:3c:38:18:32: f5:77:90:78:ff:00:a5:c9:22:d1:12:1a:01:6c:7b: b3:cd:8b:59:88:df:3d:91:5e:6d:d4:1e:42:50:1d: 51:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:80:54:B5:15:91:1A:43:42:5C:66:6D:F1:C6:79:62:21:AD:67:02 X509v3 Authority Key Identifier: keyid:AD:E8:59:AD:94:0D:1A:17:3F:A6:4C:D7:05:86:7D:48:7E:67:36:88 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/rehZrZQNGhc_pkzXBYZ9SH5nNog.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/rehZrZQNGhc_pkzXBYZ9SH5nNog.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDAD4/C85E837A439911ED839D720EC4F9AE02/A99BC9D64CAC11EDA3BF485AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 193.57.57.0/24 Signature Algorithm: sha256WithRSAEncryption 30:d5:8c:80:e1:18:b3:6c:0e:d3:c2:cc:cd:ab:ea:49:1b:d3: 1b:ae:a7:51:e8:6f:b6:8c:b6:54:95:7b:42:24:5e:69:a9:5e: 0f:ed:f7:e4:80:94:c0:2f:af:fa:01:35:fe:90:96:fe:a9:82: ce:11:b1:8b:85:de:5c:cf:0a:4e:19:4f:86:b8:b3:49:c8:46: 5f:8c:bb:75:f0:c8:4c:e4:1f:be:24:e1:b6:f6:54:6c:6f:c6: f7:52:cb:70:53:a0:f6:ed:51:30:a8:7c:8e:d6:02:47:1b:c3: 05:c9:df:1f:1a:e9:c1:30:60:d5:80:8b:f2:c5:52:f4:80:51: ae:bf:e7:a5:e1:46:4f:85:20:a4:39:bc:fe:91:71:73:82:1b: ca:8f:99:b8:42:3d:57:0a:43:c0:8b:6b:4d:ba:79:77:d7:a0: b1:8d:28:41:71:d5:50:8e:bb:e6:e3:df:a2:c9:5d:08:ec:36: bb:28:d2:3b:84:a6:15:23:f5:cd:f4:0b:9c:19:c5:a3:bb:dd: 6a:ab:d2:7d:2c:23:23:25:22:32:96:df:ef:eb:78:75:e4:39: 98:e5:f4:42:af:6c:ce:ba:b9:42:e4:3d:47:37:21:17:71:f8: 68:f0:86:19:bd:e2:1f:f6:14:3a:6c:b7:3c:3e:1d:8b:d5:23: d5:a4:a3:3e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBRDQxMTAvBgNVBAUTKEFERTg1OUFEOTQwRDFBMTczRkE2NENENzA1ODY3RDQ4 N0U2NzM2ODgwHhcNMjQwMzA1MDI0NDQ0WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2ODcxYy04OWZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3DVuoX7j7t8VIexvdgdGaCJjJfhVs0BkJHzzeQSkITp1qbahasF8VTc0+Fyf 640PpUBs+ei9Lhio+/aob/RPMHbJ5k4aFkuHijQqOM48CcINLCML9/p9+C3E/L28 GEaHkATiWkBlxpq11EAD220EvOaD9KT1oBNoV5eVfufWbCl2qGYFzAcpel+DtTAx x4STJvbdsbOXoleAa/DsfZeOtBhWCqZ0VvH4dgJ7UnVNYgzdhWnoozxDjWV2N2RQ Jg2YwVc7o0G5Twg9KmGEVSV7UFzJygLemTxsjm9cfTw4GDL1d5B4/wClySLREhoB bHuzzYtZiN89kV5t1B5CUB1RpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBeAVLUV kRpDQlxmbfHGeWIhrWcCMB8GA1UdIwQYMBaAFK3oWa2UDRoXP6ZM1wWGfUh+ZzaI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREFENC9DODVFODM3QTQz OTkxMUVEODM5RDcyMEVDNEY5QUUwMi9yZWhaclpRTkdoY19wa3pYQllaOVNINW5O b2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3JlaFpyWlFOR2hjX3BrelhCWVo5U0g1bk5vZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBRDQvQzg1RTgzN0E0Mzk5MTFFRDgzOUQ3MjBFQzRGOUFFMDIvQTk5QkM5RDY0 Q0FDMTFFREEzQkY0ODVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADBOTkwDQYJKoZIhvcNAQELBQADggEBADDVjIDhGLNsDtPC zM2r6kkb0xuup1Hob7aMtlSVe0IkXmmpXg/t9+SAlMAvr/oBNf6Qlv6pgs4RsYuF 3lzPCk4ZT4a4s0nIRl+Mu3XwyEzkH74k4bb2VGxvxvdSy3BToPbtUTCofI7WAkcb wwXJ3x8a6cEwYNWAi/LFUvSAUa6/56XhRk+FIKQ5vP6RcXOCG8qPmbhCPVcKQ8CL a026eXfXoLGNKEFx1VCOu+bj36LJXQjsNrso0juEphUj9c30C5wZxaO73Wqr0n0s IyMlIjKW3+/reHXkOZjl9EKvbM66uULkPUc3IRdx+Gjwhhm94h/2FDpstzw+HYvV I9Wkoz4= -----END CERTIFICATE-----Generated at Tue May 7 03:50:01 2024 by rpki-client on console-ams.rpki-client.org