$ rpki-client -vvf rpki.apnic.net/member_repository/A91FECDA/9BA971A26F9C11E9A5074B2FC4F9AE02/5BCA77886F9D11E99D2E7930C4F9AE02.roa File: 5BCA77886F9D11E99D2E7930C4F9AE02.roa (raw, json) Hash identifier: 3z4jFf2H8dfDXzTJviTES87G2aAZrK2+SrqCt0vte5Q= Subject key identifier: 3E:05:30:C3:29:B3:8D:C3:ED:83:DC:38:7F:95:57:26:9F:5E:DA:91 Certificate issuer: /CN=A91FECDA/serialNumber=CCCE54EEAFBF93213CD992BCA1E5267D5052B3C7 Certificate serial: 0E1B Authority key identifier: CC:CE:54:EE:AF:BF:93:21:3C:D9:92:BC:A1:E5:26:7D:50:52:B3:C7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/zM5U7q-_kyE82ZK8oeUmfVBSs8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FECDA/9BA971A26F9C11E9A5074B2FC4F9AE02/5BCA77886F9D11E99D2E7930C4F9AE02.roa Signing time: Fri 20 Oct 2023 18:06:37 +0000 ROA not before: Fri 20 Oct 2023 18:06:37 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132899 IP address blocks: 193.119.0.0/24 maxlen: 24 193.119.1.0/24 maxlen: 24 193.119.2.0/24 maxlen: 24 193.119.3.0/24 maxlen: 24 193.119.4.0/24 maxlen: 24 193.119.5.0/24 maxlen: 24 193.119.6.0/24 maxlen: 24 193.119.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FECDA/9BA971A26F9C11E9A5074B2FC4F9AE02/zM5U7q-_kyE82ZK8oeUmfVBSs8c.crl rsync://rpki.apnic.net/member_repository/A91FECDA/9BA971A26F9C11E9A5074B2FC4F9AE02/zM5U7q-_kyE82ZK8oeUmfVBSs8c.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/zM5U7q-_kyE82ZK8oeUmfVBSs8c.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 15:30:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3611 (0xe1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FECDA/serialNumber=CCCE54EEAFBF93213CD992BCA1E5267D5052B3C7 Validity Not Before: Oct 20 18:06:37 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6532c1ad-da38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:57:5f:0a:62:fe:e4:6c:37:5a:9a:10:2e:55: 56:34:f5:1c:a4:7e:d6:8f:66:e8:ee:08:43:ee:49: 2d:92:26:96:0f:a8:2b:a7:81:35:36:0d:c5:1b:a2: b2:9a:37:fe:e7:92:d8:f7:25:e5:e4:87:08:14:84: 1b:b2:d3:ee:7d:81:b1:51:c4:71:a7:21:c8:a9:ac: 45:5e:f1:bd:73:20:1b:77:29:25:57:c3:c4:33:da: 64:a3:09:b4:93:ad:63:ff:c1:52:d3:cd:ff:31:fa: 8a:83:22:ad:bc:79:1e:53:3b:f2:6d:83:aa:f9:f1: 1b:5b:21:a0:d8:5f:f0:e7:a0:a2:6e:7f:ed:b8:e0: bc:9b:b5:d8:7b:1f:0d:8d:9d:cf:f8:8b:f2:58:b4: 42:d3:a0:e9:25:35:8b:28:77:4f:04:a1:13:e2:6b: 42:cf:e0:8e:c3:ab:02:ee:b4:cb:00:3a:c2:38:a4: 75:b7:4b:d4:f3:6e:ee:d0:ca:c7:24:7c:fe:e0:3e: 52:0f:d0:c8:65:f7:a6:6b:bf:cf:83:2d:eb:06:da: 40:12:f4:a3:47:2d:34:21:d1:89:39:00:1a:b1:da: 23:de:0c:79:55:3f:59:bb:20:28:a9:a4:72:32:14: 75:f4:c2:71:54:b4:82:71:f0:77:10:07:40:0d:08: 5c:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:05:30:C3:29:B3:8D:C3:ED:83:DC:38:7F:95:57:26:9F:5E:DA:91 X509v3 Authority Key Identifier: keyid:CC:CE:54:EE:AF:BF:93:21:3C:D9:92:BC:A1:E5:26:7D:50:52:B3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FECDA/9BA971A26F9C11E9A5074B2FC4F9AE02/zM5U7q-_kyE82ZK8oeUmfVBSs8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/zM5U7q-_kyE82ZK8oeUmfVBSs8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FECDA/9BA971A26F9C11E9A5074B2FC4F9AE02/5BCA77886F9D11E99D2E7930C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 193.119.0.0/21 Signature Algorithm: sha256WithRSAEncryption 51:24:f0:87:83:87:6a:d4:95:e0:3a:6f:55:11:31:7c:57:b8: 51:ab:2d:83:ed:47:c1:68:e3:cf:9d:ac:50:8a:a1:1d:c2:43: d2:82:6d:49:78:77:54:17:6a:22:ed:ef:c7:19:bc:c6:51:5a: 5c:7b:36:11:02:45:75:40:19:d8:a8:b2:35:88:fc:93:95:f4: 04:bf:a8:af:eb:5e:d3:b2:92:a1:74:50:bf:f2:43:75:12:31: 05:44:ce:42:cf:54:f7:f1:26:bf:ec:4d:52:b6:4e:d8:3b:c7: ce:92:e4:67:84:a7:33:08:f2:b6:40:ad:a4:1a:53:b6:fe:45: b4:5b:36:1c:d6:7b:58:68:b5:05:d1:2d:de:46:eb:63:10:87: b9:e1:cf:28:6e:fc:a8:69:f4:58:c7:3e:48:0c:50:ce:e0:57: ec:86:79:5b:37:6b:95:e7:52:8b:7b:0e:cd:03:76:6c:e3:be: f9:b6:47:b8:9d:fc:86:ef:c1:1f:13:ba:38:ba:6d:eb:f8:fb: 80:a9:0a:a6:79:f8:89:92:2e:79:5b:66:8d:85:a4:49:ed:36: 0d:4c:92:f0:a1:a2:d6:aa:5a:d7:5d:75:e0:4b:29:8d:e2:14: 8f:99:e2:9d:10:e2:0c:e2:d0:49:52:2a:d7:46:86:09:9a:2e: 03:aa:18:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVDREExMTAvBgNVBAUTKENDQ0U1NEVFQUZCRjkzMjEzQ0Q5OTJCQ0ExRTUyNjdE NTA1MkIzQzcwHhcNMjMxMDIwMTgwNjM3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyYzFhZC1kYTM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt1dfCmL+5Gw3WpoQLlVWNPUcpH7Wj2bo7ghD7kktkiaWD6grp4E1Ng3FG6Ky mjf+55LY9yXl5IcIFIQbstPufYGxUcRxpyHIqaxFXvG9cyAbdyklV8PEM9pkowm0 k61j/8FS083/MfqKgyKtvHkeUzvybYOq+fEbWyGg2F/w56Cibn/tuOC8m7XYex8N jZ3P+IvyWLRC06DpJTWLKHdPBKET4mtCz+COw6sC7rTLADrCOKR1t0vU827u0MrH JHz+4D5SD9DIZfema7/Pgy3rBtpAEvSjRy00IdGJOQAasdoj3gx5VT9ZuyAoqaRy MhR19MJxVLSCcfB3EAdADQhczwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD4FMMMp s43D7YPcOH+VVyafXtqRMB8GA1UdIwQYMBaAFMzOVO6vv5MhPNmSvKHlJn1QUrPH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUNEQS85QkE5NzFBMjZG OUMxMUU5QTUwNzRCMkZDNEY5QUUwMi96TTVVN3EtX2t5RTgyWks4b2VVbWZWQlNz OGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3pNNVU3cS1fa3lFODJaSzhvZVVtZlZCU3M4Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVDREEvOUJBOTcxQTI2RjlDMTFFOUE1MDc0QjJGQzRGOUFFMDIvNUJDQTc3ODg2 RjlEMTFFOTlEMkU3OTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPBdwAwDQYJKoZIhvcNAQELBQADggEBAFEk8IeDh2rUleA6 b1URMXxXuFGrLYPtR8Fo48+drFCKoR3CQ9KCbUl4d1QXaiLt78cZvMZRWlx7NhEC RXVAGdiosjWI/JOV9AS/qK/rXtOykqF0UL/yQ3USMQVEzkLPVPfxJr/sTVK2Ttg7 x86S5GeEpzMI8rZAraQaU7b+RbRbNhzWe1hotQXRLd5G62MQh7nhzyhu/Khp9FjH PkgMUM7gV+yGeVs3a5XnUot7Ds0Ddmzjvvm2R7id/IbvwR8Tuji6bev4+4CpCqZ5 +ImSLnlbZo2FpEntNg1MkvChotaqWtdddeBLKY3iFI+Z4p0Q4gzi0ElSKtdGhgma LgOqGLA= -----END CERTIFICATE-----Generated at Wed Apr 24 20:29:55 2024 by rpki-client on console-fra.rpki-client.org