$ rpki-client -vvf rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3373DB98902C11EA898EFD7FC4F9AE02.roa File: 3373DB98902C11EA898EFD7FC4F9AE02.roa (raw, json) Hash identifier: GgHEneQW+UcNt9UHCZR2q5s6m1DGHJXeNPoPIeIFSMc= Subject key identifier: BE:8B:EE:25:6D:F8:74:C3:0D:96:BF:26:A4:EF:D8:B3:66:6C:86:41 Certificate issuer: /CN=A9125475/serialNumber=DE9D64016291EA2A16F3B7956A0F4035B709E547 Certificate serial: 244F Authority key identifier: DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3373DB98902C11EA898EFD7FC4F9AE02.roa Signing time: Sat 02 Dec 2023 14:40:14 +0000 ROA not before: Sat 02 Dec 2023 14:40:14 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 36492 IP address blocks: 159.192.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.crl rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 02:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9295 (0x244f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125475/serialNumber=DE9D64016291EA2A16F3B7956A0F4035B709E547 Validity Not Before: Dec 2 14:40:14 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b41ce-8225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:cf:a4:c0:67:76:3b:6b:54:f9:f3:14:97:b4: 77:24:ac:c6:ea:8e:92:f8:e9:0d:80:63:1a:97:2a: fc:a9:10:51:08:e2:66:c2:61:2b:14:5f:9b:b2:06: 3d:ca:dc:85:03:85:ee:f1:08:1d:f0:b2:e0:ad:6e: 0e:ae:58:9e:1f:b7:66:57:28:12:6f:46:43:21:bc: d1:1b:45:f4:56:0e:db:e6:50:83:41:90:90:70:c0: 72:54:a4:b3:4c:0c:92:37:8f:bd:e0:7a:a9:e7:0a: 69:42:a9:12:ae:ca:3e:9e:de:b3:d2:e2:a3:8d:c7: fd:7b:c2:c6:9c:b8:4b:b7:00:b8:6e:86:0c:81:bf: f6:bf:dd:8e:c6:77:88:d2:30:00:34:45:8c:ee:21: d6:40:3e:92:93:24:55:34:cb:4e:69:53:84:70:a6: f6:f2:a0:06:ff:af:4f:43:14:90:28:3b:d5:d0:c9: 4e:99:42:48:bf:d2:ad:18:cb:c3:eb:c6:44:e2:c7: 5a:fc:93:2f:04:8a:f4:ba:42:c7:70:8b:fc:a4:1c: a0:06:b5:8e:31:ab:11:fe:7e:57:3d:1d:f9:57:de: 7a:46:18:5a:2f:7a:b7:6e:4b:af:03:9f:da:1e:6f: ed:03:8e:2a:6f:8c:0d:ca:d1:af:78:e0:28:b5:e0: 86:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:8B:EE:25:6D:F8:74:C3:0D:96:BF:26:A4:EF:D8:B3:66:6C:86:41 X509v3 Authority Key Identifier: keyid:DE:9D:64:01:62:91:EA:2A:16:F3:B7:95:6A:0F:40:35:B7:09:E5:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3p1kAWKR6ioW87eVag9ANbcJ5Uc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3p1kAWKR6ioW87eVag9ANbcJ5Uc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125475/8D9471F6290611E593BFC626C4F9AE02/3373DB98902C11EA898EFD7FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 159.192.27.0/24 Signature Algorithm: sha256WithRSAEncryption 72:5c:ef:06:40:c1:27:7d:37:a6:30:a9:5e:9b:0e:f3:a9:38: bc:37:cd:14:77:cf:e9:d0:e8:30:6c:2c:a4:6b:d1:ab:8d:7b: 84:34:4f:d1:8f:32:98:b4:93:fa:13:a0:95:03:97:38:d1:fa: 26:82:b8:eb:7c:07:59:ef:22:99:45:1b:43:fe:c0:a7:98:08: a5:14:37:34:9b:47:16:c5:cf:d6:63:79:1e:60:04:78:8b:54: 60:a0:39:cf:f7:02:5d:ef:d9:6e:01:18:4d:fc:b3:c4:27:9b: 81:eb:a5:41:27:7f:bb:a4:cc:31:32:ca:9d:f4:d3:ab:65:0f: 53:f3:f2:cf:19:72:28:02:a2:06:87:75:40:0c:0a:ad:f2:6e: 1b:10:10:48:3f:e4:a0:07:67:2b:ad:5e:e9:f5:d6:db:57:98: 5c:4d:55:92:74:fd:65:7d:d3:59:4e:cf:b5:b5:84:db:da:64: 57:74:2e:19:2c:79:9f:ec:32:25:12:75:ca:04:8b:6e:7d:9f: 88:bd:36:73:8b:0a:b4:9c:5f:87:53:c3:17:31:3c:c5:bf:31: 7f:10:c0:23:2f:8e:64:52:16:6b:ec:1f:bf:8f:b1:ab:12:0d: 35:a0:d6:57:7f:88:00:d3:d0:8b:1d:95:2d:11:01:5d:57:20: 0d:f5:7f:f0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJE8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjU0NzUxMTAvBgNVBAUTKERFOUQ2NDAxNjI5MUVBMkExNkYzQjc5NTZBMEY0MDM1 QjcwOUU1NDcwHhcNMjMxMjAyMTQ0MDE0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiNDFjZS04MjI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4M+kwGd2O2tU+fMUl7R3JKzG6o6S+OkNgGMalyr8qRBRCOJmwmErFF+bsgY9 ytyFA4Xu8Qgd8LLgrW4OrlieH7dmVygSb0ZDIbzRG0X0Vg7b5lCDQZCQcMByVKSz TAySN4+94Hqp5wppQqkSrso+nt6z0uKjjcf9e8LGnLhLtwC4boYMgb/2v92OxneI 0jAANEWM7iHWQD6SkyRVNMtOaVOEcKb28qAG/69PQxSQKDvV0MlOmUJIv9KtGMvD 68ZE4sda/JMvBIr0ukLHcIv8pBygBrWOMasR/n5XPR35V956RhhaL3q3bkuvA5/a Hm/tA44qb4wNytGveOAoteCGJwIDAQABo4IClTCCApEwHQYDVR0OBBYEFL6L7iVt +HTDDZa/JqTv2LNmbIZBMB8GA1UdIwQYMBaAFN6dZAFikeoqFvO3lWoPQDW3CeVH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTQ3NS84RDk0NzFGNjI5 MDYxMUU1OTNCRkM2MjZDNEY5QUUwMi8zcDFrQVdLUjZpb1c4N2VWYWc5QU5iY0o1 VWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNwMWtBV0tSNmlvVzg3ZVZhZzlBTmJjSjVVYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjU0NzUvOEQ5NDcxRjYyOTA2MTFFNTkzQkZDNjI2QzRGOUFFMDIvMzM3M0RCOTg5 MDJDMTFFQTg5OEVGRDdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACfwBswDQYJKoZIhvcNAQELBQADggEBAHJc7wZAwSd9N6Yw qV6bDvOpOLw3zRR3z+nQ6DBsLKRr0auNe4Q0T9GPMpi0k/oToJUDlzjR+iaCuOt8 B1nvIplFG0P+wKeYCKUUNzSbRxbFz9ZjeR5gBHiLVGCgOc/3Al3v2W4BGE38s8Qn m4HrpUEnf7ukzDEyyp3006tlD1Pz8s8ZcigCogaHdUAMCq3ybhsQEEg/5KAHZyut Xun11ttXmFxNVZJ0/WV901lOz7W1hNvaZFd0LhkseZ/sMiUSdcoEi259n4i9NnOL CrScX4dTwxcxPMW/MX8QwCMvjmRSFmvsH7+PsasSDTWg1ld/iADT0IsdlS0RAV1X IA31f/A= -----END CERTIFICATE-----Generated at Fri May 31 15:08:08 2024 by rpki-client on console-fra.rpki-client.org