$ rpki-client -vvf rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/9D4131DE13D511EF883BC527C4F9AE02.roa File: 9D4131DE13D511EF883BC527C4F9AE02.roa (raw, json) Hash identifier: JQNpQ6gxCAzbnnH9Yf0p2LfKBc2ucCX716tqFsvKS60= Subject key identifier: 65:10:04:70:D9:7E:7E:E2:CE:D4:1B:70:A1:B6:86:2B:91:52:32:3C Certificate issuer: /CN=A912A3E1/serialNumber=F35268F976E8AE71FEFA66CA4516361C58AE1D91 Certificate serial: 0B9D Authority key identifier: F3:52:68:F9:76:E8:AE:71:FE:FA:66:CA:45:16:36:1C:58:AE:1D:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81Jo-XbornH--mbKRRY2HFiuHZE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/9D4131DE13D511EF883BC527C4F9AE02.roa Signing time: Thu 16 May 2024 22:42:46 +0000 ROA not before: Thu 16 May 2024 22:42:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 0 IP address blocks: 202.77.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/81Jo-XbornH--mbKRRY2HFiuHZE.crl rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/81Jo-XbornH--mbKRRY2HFiuHZE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81Jo-XbornH--mbKRRY2HFiuHZE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:02:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2973 (0xb9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A3E1/serialNumber=F35268F976E8AE71FEFA66CA4516361C58AE1D91 Validity Not Before: May 16 22:42:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66468be6-aee4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:95:c1:49:3a:2e:e5:ce:8d:e3:f2:b9:a5:ae: a2:90:82:80:3f:ba:28:19:63:ee:8d:f0:4c:62:c0: ba:39:af:0a:da:03:d6:2d:bf:43:b7:0a:f1:73:b4: 17:95:80:2d:b5:f5:c6:5f:a1:d4:34:41:31:cf:22: 5e:f5:8e:63:80:f9:17:a8:48:07:11:1d:98:98:2f: 14:5f:78:ab:ef:09:9b:61:bb:2a:78:82:b0:e6:e5: 71:38:43:d7:9b:90:d8:7d:ff:16:2d:82:49:1d:93: 78:36:bf:a5:e8:57:6b:8a:79:26:f9:a9:9c:7b:3b: 95:05:1f:e5:69:6e:97:7f:4f:3f:c0:9d:4d:9f:c3: 63:4e:54:13:22:82:ae:d4:8c:1b:42:1f:08:9b:67: 2e:90:fe:e1:e2:62:18:5e:8b:94:51:9d:23:85:19: 17:34:b2:04:67:33:a5:44:1a:c0:91:90:1d:03:3d: 8c:02:c0:24:ac:d7:49:27:84:b7:4d:0a:4f:a8:62: ea:b9:fd:e0:d3:6b:d8:39:b1:52:aa:a7:54:a5:e4: 15:11:a9:93:d4:33:f8:55:5a:0c:2a:7f:f7:a7:c6: 2d:a3:fd:43:3d:46:1d:0c:cd:f3:ff:7f:7d:fd:df: d9:c5:8c:11:01:c8:36:48:23:b9:03:81:27:4d:77: 31:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:10:04:70:D9:7E:7E:E2:CE:D4:1B:70:A1:B6:86:2B:91:52:32:3C X509v3 Authority Key Identifier: keyid:F3:52:68:F9:76:E8:AE:71:FE:FA:66:CA:45:16:36:1C:58:AE:1D:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/81Jo-XbornH--mbKRRY2HFiuHZE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/81Jo-XbornH--mbKRRY2HFiuHZE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A3E1/9FD58DA605B011EA92354B5AC4F9AE02/9D4131DE13D511EF883BC527C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.77.88.0/22 Signature Algorithm: sha256WithRSAEncryption 20:05:e9:97:0e:44:7a:9f:4c:a6:57:96:2d:28:2b:c4:66:c9: 26:f7:96:f2:96:5e:08:ed:7f:ae:a3:73:73:b0:8e:09:6b:35: a1:54:e5:72:16:c8:90:b7:81:02:f8:bf:df:a8:83:3b:8a:77: a2:cf:dc:92:be:85:f3:7c:07:98:68:c9:4b:a1:a5:fd:b3:31: 2a:1c:85:cf:e4:e5:34:5e:91:ba:c4:ee:c6:ac:b9:c1:4f:45: 75:af:34:da:29:2d:fd:f2:45:1c:49:88:ae:e1:8a:30:ef:5a: ef:91:49:68:86:d9:56:b1:8b:d7:86:27:a9:63:f7:df:0d:90: c2:2c:87:4a:18:2a:53:75:6a:a4:d8:fc:1d:46:0c:ca:4a:24: 89:86:e4:c2:fd:eb:ba:82:d7:57:bb:0d:49:78:59:16:c2:ed: 15:ac:67:1c:5a:20:c1:d1:d3:7c:03:5b:c1:d7:34:85:a9:a0: 8c:0c:c1:17:c4:2a:d9:57:e4:a0:68:6b:0c:67:fb:6c:64:15: 02:58:8b:10:52:4a:66:71:88:75:d7:64:33:88:64:5f:f4:0a: f4:72:ca:fa:ea:63:ad:ce:6b:8a:a6:b5:34:7c:2f:7f:86:64: 0d:a2:76:d0:b5:e6:e4:65:75:97:83:e0:79:c2:40:30:2f:78: 7a:3c:80:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC50wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEzRTExMTAvBgNVBAUTKEYzNTI2OEY5NzZFOEFFNzFGRUZBNjZDQTQ1MTYzNjFD NThBRTFEOTEwHhcNMjQwNTE2MjI0MjQ2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2OGJlNi1hZWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0JXBSTou5c6N4/K5pa6ikIKAP7ooGWPujfBMYsC6Oa8K2gPWLb9Dtwrxc7QX lYAttfXGX6HUNEExzyJe9Y5jgPkXqEgHER2YmC8UX3ir7wmbYbsqeIKw5uVxOEPX m5DYff8WLYJJHZN4Nr+l6Fdrinkm+amcezuVBR/laW6Xf08/wJ1Nn8NjTlQTIoKu 1IwbQh8Im2cukP7h4mIYXouUUZ0jhRkXNLIEZzOlRBrAkZAdAz2MAsAkrNdJJ4S3 TQpPqGLquf3g02vYObFSqqdUpeQVEamT1DP4VVoMKn/3p8Yto/1DPUYdDM3z/399 /d/ZxYwRAcg2SCO5A4EnTXcxjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGUQBHDZ fn7iztQbcKG2hiuRUjI8MB8GA1UdIwQYMBaAFPNSaPl26K5x/vpmykUWNhxYrh2R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTNFMS85RkQ1OERBNjA1 QjAxMUVBOTIzNTRCNUFDNEY5QUUwMi84MUpvLVhib3JuSC0tbWJLUlJZMkhGaXVI WkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzgxSm8tWGJvcm5ILS1tYktSUlkySEZpdUhaRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEzRTEvOUZENThEQTYwNUIwMTFFQTkyMzU0QjVBQzRGOUFFMDIvOUQ0MTMxREUx M0Q1MTFFRjg4M0JDNTI3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKTVgwDQYJKoZIhvcNAQELBQADggEBACAF6ZcORHqfTKZX li0oK8RmySb3lvKWXgjtf66jc3OwjglrNaFU5XIWyJC3gQL4v9+ogzuKd6LP3JK+ hfN8B5hoyUuhpf2zMSochc/k5TRekbrE7sasucFPRXWvNNopLf3yRRxJiK7hijDv Wu+RSWiG2Vaxi9eGJ6lj998NkMIsh0oYKlN1aqTY/B1GDMpKJImG5ML967qC11e7 DUl4WRbC7RWsZxxaIMHR03wDW8HXNIWpoIwMwRfEKtlX5KBoawxn+2xkFQJYixBS SmZxiHXXZDOIZF/0CvRyyvrqY63Oa4qmtTR8L3+GZA2idtC15uRldZeD4HnCQDAv eHo8gM4= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:10 2024 by rpki-client on console-ams.rpki-client.org