$ rpki-client -vvf rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/90195128FAC411EEB1CDF882C4F9AE02.roa File: 90195128FAC411EEB1CDF882C4F9AE02.roa (raw, json) Hash identifier: h7M3jvYcD4TnzeijvBah0qUC81qHwLqusYkjmL9+ZWQ= Subject key identifier: 9B:BB:92:E4:9B:BB:3B:B0:67:81:19:74:7F:8E:EA:76:21:D1:D8:53 Certificate issuer: /CN=A9133A27/serialNumber=DCAD644705CF18C27D7FC2017385D23EE7203955 Certificate serial: 05 Authority key identifier: DC:AD:64:47:05:CF:18:C2:7D:7F:C2:01:73:85:D2:3E:E7:20:39:55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K1kRwXPGMJ9f8IBc4XSPucgOVU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/90195128FAC411EEB1CDF882C4F9AE02.roa Signing time: Mon 15 Apr 2024 01:07:43 +0000 ROA not before: Mon 15 Apr 2024 01:07:43 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 137199 IP address blocks: 203.32.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/3K1kRwXPGMJ9f8IBc4XSPucgOVU.crl rsync://rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/3K1kRwXPGMJ9f8IBc4XSPucgOVU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K1kRwXPGMJ9f8IBc4XSPucgOVU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5 (0x5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9133A27/serialNumber=DCAD644705CF18C27D7FC2017385D23EE7203955 Validity Not Before: Apr 15 01:07:43 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=661c7ddf-0dfb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f3:46:a9:73:ea:2a:2e:95:0c:f5:5d:da:1f: fa:e6:4d:4d:35:bb:c9:3e:a4:12:ff:f7:f6:dd:4e: 23:29:97:b5:5e:6a:0e:41:b7:b1:6e:00:c4:12:92: 48:bf:5c:0d:36:be:6b:11:dd:5d:07:27:c7:21:0c: 95:16:6e:e9:be:2d:e0:bd:d8:65:67:f1:4f:d5:78: 1e:32:8f:82:0f:03:2c:08:6d:ef:b2:cf:6e:4a:94: be:4f:64:b0:46:54:ec:a2:66:9e:56:34:13:99:02: a2:ff:bd:13:e3:b1:5e:10:50:f0:62:3b:ba:8d:30: 10:42:ee:b6:a3:d5:ba:5f:5f:d4:a3:46:a6:30:ab: 20:1a:48:d2:e3:8e:5d:ad:e4:09:48:f4:e8:c0:d6: 12:51:35:ad:a6:11:a5:31:d0:be:e6:b4:68:f7:79: bb:2d:0a:d7:56:c3:66:f5:bc:ca:3e:7d:fd:b5:97: 3a:4d:bf:6c:b0:55:2c:1a:0f:f2:2c:00:a6:ec:4f: cb:e4:b4:38:d0:77:d1:68:fa:5e:76:e4:bf:88:81: 69:93:b0:7e:02:04:7d:f4:d0:45:bf:72:77:de:f2: 8f:f2:b5:e2:b4:94:29:3f:fb:6e:b5:b5:7f:88:f5: 7c:ce:58:5a:b9:93:14:d8:c4:c5:fb:01:c0:f8:d3: 72:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BB:92:E4:9B:BB:3B:B0:67:81:19:74:7F:8E:EA:76:21:D1:D8:53 X509v3 Authority Key Identifier: keyid:DC:AD:64:47:05:CF:18:C2:7D:7F:C2:01:73:85:D2:3E:E7:20:39:55 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/3K1kRwXPGMJ9f8IBc4XSPucgOVU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K1kRwXPGMJ9f8IBc4XSPucgOVU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9133A27/E26646E4F70311EEA31F5D7AC4F9AE02/90195128FAC411EEB1CDF882C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.32.66.0/24 Signature Algorithm: sha256WithRSAEncryption c7:20:e7:f3:53:5b:bf:20:74:c8:b4:6d:e7:ec:34:ef:cd:ce: c0:97:7e:e6:f8:c3:5d:d4:00:63:47:e4:6e:44:be:d0:87:43: ef:15:00:fb:7a:3f:ed:9b:f6:57:6f:c9:6b:59:12:f1:30:15: 72:07:72:4c:0e:94:ad:3d:5b:c0:28:40:17:fb:39:49:fa:22: 9c:d1:1c:95:24:0c:02:dc:bc:3f:5e:fc:6b:25:7b:a8:12:bb: c7:d9:01:de:c6:fc:76:c9:64:be:6f:42:b6:e2:b8:13:21:03: 9d:d6:cd:e1:78:16:91:76:97:5c:e4:ad:b5:d7:77:15:cc:4f: b9:46:4c:89:ef:5a:bd:f3:90:5d:e6:d4:9d:a6:41:21:15:50: 77:78:08:d7:d5:b8:25:80:48:40:ba:8c:c5:bc:1d:f2:7e:18: 1f:9a:6a:57:00:c4:74:eb:34:fe:c1:e5:5e:a5:10:bf:6b:97: 3a:7e:74:67:48:5b:00:1e:2e:d6:3e:2a:ab:78:41:40:d8:29: 31:35:90:b6:64:45:d8:08:e5:e8:21:0b:65:97:75:bf:61:3f: 8d:0d:19:64:31:d6:0e:10:87:85:69:4d:7c:26:5d:e6:a3:52: 33:5b:8c:29:e0:cd:2a:cf:15:98:ef:98:7c:98:ee:95:41:99: e0:48:1f:b3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz M0EyNzExMC8GA1UEBRMoRENBRDY0NDcwNUNGMThDMjdEN0ZDMjAxNzM4NUQyM0VF NzIwMzk1NTAeFw0yNDA0MTUwMTA3NDNaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MWM3ZGRmLTBkZmIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDl80apc+oqLpUM9V3aH/rmTU01u8k+pBL/9/bdTiMpl7Veag5Bt7FuAMQSkki/ XA02vmsR3V0HJ8chDJUWbum+LeC92GVn8U/VeB4yj4IPAywIbe+yz25KlL5PZLBG VOyiZp5WNBOZAqL/vRPjsV4QUPBiO7qNMBBC7raj1bpfX9SjRqYwqyAaSNLjjl2t 5AlI9OjA1hJRNa2mEaUx0L7mtGj3ebstCtdWw2b1vMo+ff21lzpNv2ywVSwaD/Is AKbsT8vktDjQd9Fo+l525L+IgWmTsH4CBH300EW/cnfe8o/yteK0lCk/+261tX+I 9XzOWFq5kxTYxMX7AcD403ItAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUm7uS5Ju7 O7BngRl0f47qdiHR2FMwHwYDVR0jBBgwFoAU3K1kRwXPGMJ9f8IBc4XSPucgOVUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTMzQTI3L0UyNjY0NkU0Rjcw MzExRUVBMzFGNUQ3QUM0RjlBRTAyLzNLMWtSd1hQR01KOWY4SUJjNFhTUHVjZ09W VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM0sxa1J3WFBHTUo5ZjhJQmM0WFNQdWNnT1ZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz M0EyNy9FMjY2NDZFNEY3MDMxMUVFQTMxRjVEN0FDNEY5QUUwMi85MDE5NTEyOEZB QzQxMUVFQjFDREY4ODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsgQjANBgkqhkiG9w0BAQsFAAOCAQEAxyDn81NbvyB0yLRt 5+w0783OwJd+5vjDXdQAY0fkbkS+0IdD7xUA+3o/7Zv2V2/Ja1kS8TAVcgdyTA6U rT1bwChAF/s5SfoinNEclSQMAty8P178ayV7qBK7x9kB3sb8dslkvm9CtuK4EyED ndbN4XgWkXaXXOSttdd3FcxPuUZMie9avfOQXebUnaZBIRVQd3gI19W4JYBIQLqM xbwd8n4YH5pqVwDEdOs0/sHlXqUQv2uXOn50Z0hbAB4u1j4qq3hBQNgpMTWQtmRF 2Ajl6CELZZd1v2E/jQ0ZZDHWDhCHhWlNfCZd5qNSM1uMKeDNKs8VmO+YfJjulUGZ 4Egfsw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:27 2024 by rpki-client on console-fra.rpki-client.org