$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/B5AC177E3E0411ECABD9496CC4F9AE02.roa File: B5AC177E3E0411ECABD9496CC4F9AE02.roa (raw, json) Hash identifier: xSQuICqEftDO2jVAN6yCIdaEpdEAXBTf0APY5z9yvHA= Subject key identifier: BB:4F:9A:2F:B6:20:96:EB:F9:62:2F:AC:CF:BF:66:DE:77:68:BB:A8 Certificate issuer: /CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Certificate serial: 03B6 Authority key identifier: 77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/B5AC177E3E0411ECABD9496CC4F9AE02.roa Signing time: Wed 17 Jan 2024 02:03:52 +0000 ROA not before: Wed 17 Jan 2024 02:03:52 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9744 IP address blocks: 141.193.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:51:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 950 (0x3b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1/serialNumber=7740CE0E6CD054C432DE46D4C3EDA14F642FDA14 Validity Not Before: Jan 17 02:03:52 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a73587-5089 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ea:8f:b0:31:20:16:3b:c3:2a:dc:c5:6f:27: f9:31:2d:c3:3f:b4:c9:1d:e7:dd:78:2c:43:30:2e: da:f5:3c:b1:1b:84:63:c7:8f:64:aa:da:e8:ba:9d: 46:62:69:8c:1b:b0:83:c6:cf:e6:5c:b9:24:50:c4: 39:af:03:94:7d:a7:f7:fb:05:63:07:77:8a:ab:6e: cd:c0:0a:41:2c:00:58:6c:68:45:2c:71:2f:08:f1: 52:f5:5c:ef:69:96:7a:8d:84:2d:25:b2:af:bb:49: 6c:fd:cd:fd:99:73:04:58:20:1d:7b:3e:a0:fd:4b: 62:95:95:49:15:9d:6e:48:8c:04:c9:4e:7c:00:37: cf:f4:9b:c3:35:1c:f6:7b:c7:ab:2a:8e:1b:15:ea: a0:cb:d8:50:c2:5f:b1:62:55:d9:92:b6:95:3a:46: 89:7c:7e:96:ec:c1:20:5c:96:dd:56:d4:de:25:be: 40:2d:47:7a:66:1b:63:bf:59:5a:8a:5f:bb:80:22: 23:c8:12:0a:e9:40:70:40:68:93:34:ea:4e:a0:b7: 1d:25:dc:3e:37:c3:05:13:62:2c:1e:f1:71:a8:5a: de:95:d3:fd:e4:4f:db:47:c2:76:32:aa:0d:be:c4: c7:93:9d:be:a4:df:55:9f:cd:b6:58:6b:f2:26:71: ac:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:4F:9A:2F:B6:20:96:EB:F9:62:2F:AC:CF:BF:66:DE:77:68:BB:A8 X509v3 Authority Key Identifier: keyid:77:40:CE:0E:6C:D0:54:C4:32:DE:46:D4:C3:ED:A1:4F:64:2F:DA:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/d0DODmzQVMQy3kbUw-2hT2Qv2hQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/359065A6309711ECB285A64BC4F9AE02/B5AC177E3E0411ECABD9496CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.193.152.0/21 Signature Algorithm: sha256WithRSAEncryption 25:f1:56:68:b9:09:2b:25:6c:31:54:8c:a3:cb:d0:ae:6b:53: 71:dc:25:db:80:dd:af:df:9d:8e:1c:47:e0:9e:13:9a:9b:3b: 95:9a:6d:3a:79:f2:9b:51:c4:fb:bf:12:0d:64:ed:dc:9a:c0: 26:f5:14:5c:18:c1:71:1c:d8:3d:1a:47:76:69:15:00:92:60: 91:0e:ff:4f:b4:ae:a8:c8:36:dc:3f:e5:a2:a8:a7:c6:62:d0: f6:7f:5d:1d:3e:e6:d6:42:0c:44:4c:3a:06:54:bc:92:6e:ff: 36:35:4d:ac:6e:ad:5a:c3:a0:d0:fd:fd:81:15:0e:c6:8d:15: 9c:33:d2:41:fc:cc:99:b7:90:0b:59:65:47:4a:67:8f:1d:bb: 1b:43:a7:92:39:c0:7f:3c:c6:3e:9a:04:34:e6:6b:16:73:03: 0e:6a:de:35:84:4c:4b:df:97:0c:e2:c0:67:af:cc:6f:c5:4b: ec:61:b8:b5:9b:84:a2:40:3c:12:7c:66:7a:04:c0:7e:5a:be: b3:b2:10:ef:d9:ac:27:8c:69:b2:7e:64:d7:ba:48:cb:95:a5: 65:be:69:b4:8b:07:95:04:1e:ef:93:7c:e9:db:26:6d:0f:ed: a9:8e:82:06:51:19:25:9c:09:91:89:24:b5:af:ce:23:cd:0b: 52:17:12:9b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA7YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKDc3NDBDRTBFNkNEMDU0QzQzMkRFNDZENEMzRURBMTRG NjQyRkRBMTQwHhcNMjQwMTE3MDIwMzUyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3MzU4Ny01MDg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxOqPsDEgFjvDKtzFbyf5MS3DP7TJHefdeCxDMC7a9TyxG4Rjx49kqtroup1G YmmMG7CDxs/mXLkkUMQ5rwOUfaf3+wVjB3eKq27NwApBLABYbGhFLHEvCPFS9Vzv aZZ6jYQtJbKvu0ls/c39mXMEWCAdez6g/UtilZVJFZ1uSIwEyU58ADfP9JvDNRz2 e8erKo4bFeqgy9hQwl+xYlXZkraVOkaJfH6W7MEgXJbdVtTeJb5ALUd6Zhtjv1la il+7gCIjyBIK6UBwQGiTNOpOoLcdJdw+N8MFE2IsHvFxqFreldP95E/bR8J2MqoN vsTHk52+pN9Vn822WGvyJnGsPwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLtPmi+2 IJbr+WIvrM+/Zt53aLuoMB8GA1UdIwQYMBaAFHdAzg5s0FTEMt5G1MPtoU9kL9oU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zNTkwNjVBNjMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi9kMERPRG16UVZNUXkza2JVdy0yaFQyUXYy aFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2QwRE9EbXpRVk1ReTNrYlV3LTJoVDJRdjJoUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvMzU5MDY1QTYzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvQjVBQzE3N0Uz RTA0MTFFQ0FCRDk0OTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAONwZgwDQYJKoZIhvcNAQELBQADggEBACXxVmi5CSslbDFU jKPL0K5rU3HcJduA3a/fnY4cR+CeE5qbO5WabTp58ptRxPu/Eg1k7dyawCb1FFwY wXEc2D0aR3ZpFQCSYJEO/0+0rqjINtw/5aKop8Zi0PZ/XR0+5tZCDERMOgZUvJJu /zY1TaxurVrDoND9/YEVDsaNFZwz0kH8zJm3kAtZZUdKZ48duxtDp5I5wH88xj6a BDTmaxZzAw5q3jWETEvflwziwGevzG/FS+xhuLWbhKJAPBJ8ZnoEwH5avrOyEO/Z rCeMabJ+ZNe6SMuVpWW+abSLB5UEHu+TfOnbJm0P7amOggZRGSWcCZGJJLWvziPN C1IXEps= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:21 2024 by rpki-client on console-ams.rpki-client.org