$ rpki-client -vvf rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/99CFA3844DF511ED91A8AB4BC4F9AE02.roa File: 99CFA3844DF511ED91A8AB4BC4F9AE02.roa (raw, json) Hash identifier: TdaH8RrKPOQ5zjVbsJIwiOwQFx/TPruzytMdwKEiFzo= Subject key identifier: 18:28:C9:8E:DC:72:8D:D4:FD:11:A7:DF:6F:27:F4:8D:9D:99:7A:40 Certificate issuer: /CN=A9123F5D/serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Certificate serial: 0903 Authority key identifier: BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/99CFA3844DF511ED91A8AB4BC4F9AE02.roa Signing time: Wed 14 Jun 2023 21:22:30 +0000 ROA not before: Wed 14 Jun 2023 21:22:30 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 141731 IP address blocks: 123.253.96.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 20:52:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2307 (0x903) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123F5D/serialNumber=BF522D9925A5846280F60530AD39D766E4ABF093 Validity Not Before: Jun 14 21:22:30 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=648a2f96-1e6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:2d:5d:f5:09:bb:da:2d:75:2b:cb:df:a4:2a: 48:89:fa:80:ed:8c:f1:04:3d:e0:03:d1:9c:68:11: 81:79:36:b1:d1:3f:bb:7f:4c:e1:6d:9f:41:87:84: 67:1d:03:0a:d4:d2:22:0e:35:51:79:f1:3b:2c:c9: e4:b5:be:92:d8:4a:de:05:2e:f2:c0:94:61:d7:8d: 14:c9:7c:6c:af:5a:38:57:80:fb:70:5a:99:d5:df: 34:e1:82:ea:b4:2c:18:a6:57:16:3c:1d:76:f6:59: 43:8b:f9:0c:f1:09:30:8f:84:46:40:57:fe:d5:0e: 5b:71:13:05:8a:42:89:a9:e4:e4:22:05:eb:14:ec: 48:39:2b:5b:9a:4c:45:1d:45:6e:4a:cc:9a:7d:5a: fe:16:eb:e9:16:c3:a1:e2:ba:ec:e7:c2:3d:aa:f1: 0d:16:bd:a8:7f:42:06:b8:45:4a:e2:ca:2d:a6:87: ea:75:df:a8:e0:93:0a:e6:7d:3c:b3:9f:55:1f:5a: 1c:07:aa:63:d0:49:60:ed:15:fc:f6:2c:a3:a9:6c: de:28:c1:1e:7c:b1:12:91:15:3e:3a:1e:0f:cd:0f: e9:03:16:dd:6e:5d:d0:3e:07:e1:18:26:f3:bd:a9: 41:6f:55:1e:5e:12:f0:6f:ed:e2:61:3f:32:b2:99: c4:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:28:C9:8E:DC:72:8D:D4:FD:11:A7:DF:6F:27:F4:8D:9D:99:7A:40 X509v3 Authority Key Identifier: keyid:BF:52:2D:99:25:A5:84:62:80:F6:05:30:AD:39:D7:66:E4:AB:F0:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/v1ItmSWlhGKA9gUwrTnXZuSr8JM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1ItmSWlhGKA9gUwrTnXZuSr8JM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123F5D/75F875F2669011EA9683FB2FC4F9AE02/99CFA3844DF511ED91A8AB4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.253.96.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:f1:38:a6:d5:8d:8b:53:07:f3:72:11:c9:b6:93:56:e3:e9: e0:00:92:4f:26:74:63:a0:2d:ad:11:e7:ae:cd:d4:ab:5f:31: 14:f1:02:22:13:10:f0:e9:ac:f1:79:1c:37:db:1b:6a:52:87: a3:16:ae:3a:fd:e9:70:f9:96:f7:08:c5:e5:5a:30:67:42:b9: a7:75:47:ec:72:6b:bf:3b:17:59:13:9d:41:ed:84:b0:22:a4: a4:6d:c8:cc:53:5f:34:ff:ad:84:5d:28:c9:af:d9:80:6a:a6: 50:cb:27:8c:2c:ca:eb:e8:11:d8:75:6c:c8:5f:a5:0d:06:de: 68:91:e1:f8:ae:8b:12:e7:fb:c9:e0:b1:1c:ab:79:a7:f0:67: 01:fd:4f:14:6a:26:d3:cf:92:a7:7b:c6:ec:01:94:04:a4:10: 51:17:7e:a2:d0:17:63:8a:a9:2a:ae:97:60:f5:03:10:0a:42: bc:00:fe:75:85:c5:d6:8d:3b:a6:a9:c1:3f:de:0f:f9:85:b6: a1:2d:73:77:90:3b:59:08:34:b6:37:17:fb:08:48:8f:77:d2: a7:c5:1c:7a:96:8b:03:0d:ce:ed:0f:a8:da:40:05:0f:19:70: 36:96:21:4c:b3:b7:c9:26:3b:b7:c1:0c:c1:f9:fc:95:06:55: 87:ce:6a:86 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCQMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNGNUQxMTAvBgNVBAUTKEJGNTIyRDk5MjVBNTg0NjI4MEY2MDUzMEFEMzlENzY2 RTRBQkYwOTMwHhcNMjMwNjE0MjEyMjMwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhhMmY5Ni0xZTZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6C1d9Qm72i11K8vfpCpIifqA7YzxBD3gA9GcaBGBeTax0T+7f0zhbZ9Bh4Rn HQMK1NIiDjVRefE7LMnktb6S2EreBS7ywJRh140UyXxsr1o4V4D7cFqZ1d804YLq tCwYplcWPB129llDi/kM8Qkwj4RGQFf+1Q5bcRMFikKJqeTkIgXrFOxIOStbmkxF HUVuSsyafVr+FuvpFsOh4rrs58I9qvENFr2of0IGuEVK4sotpofqdd+o4JMK5n08 s59VH1ocB6pj0Elg7RX89iyjqWzeKMEefLESkRU+Oh4PzQ/pAxbdbl3QPgfhGCbz valBb1UeXhLwb+3iYT8yspnEowIDAQABo4IClTCCApEwHQYDVR0OBBYEFBgoyY7c co3U/RGn328n9I2dmXpAMB8GA1UdIwQYMBaAFL9SLZklpYRigPYFMK0512bkq/CT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0Y1RC83NUY4NzVGMjY2 OTAxMUVBOTY4M0ZCMkZDNEY5QUUwMi92MUl0bVNXbGhHS0E5Z1V3clRuWFp1U3I4 Sk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3YxSXRtU1dsaEdLQTlnVXdyVG5YWnVTcjhKTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNGNUQvNzVGODc1RjI2NjkwMTFFQTk2ODNGQjJGQzRGOUFFMDIvOTlDRkEzODQ0 REY1MTFFRDkxQThBQjRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7/WAwDQYJKoZIhvcNAQELBQADggEBAF7xOKbVjYtTB/Ny Ecm2k1bj6eAAkk8mdGOgLa0R567N1KtfMRTxAiITEPDprPF5HDfbG2pSh6MWrjr9 6XD5lvcIxeVaMGdCuad1R+xya787F1kTnUHthLAipKRtyMxTXzT/rYRdKMmv2YBq plDLJ4wsyuvoEdh1bMhfpQ0G3miR4fiuixLn+8ngsRyreafwZwH9TxRqJtPPkqd7 xuwBlASkEFEXfqLQF2OKqSqul2D1AxAKQrwA/nWFxdaNO6apwT/eD/mFtqEtc3eQ O1kINLY3F/sISI930qfFHHqWiwMNzu0PqNpABQ8ZcDaWIUyzt8kmO7fBDMH5/JUG VYfOaoY= -----END CERTIFICATE-----Generated at Thu Jun 6 21:52:40 2024 by rpki-client on console-fra.rpki-client.org