$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/96407462457711EEBBEB9C25C4F9AE02.roa File: 96407462457711EEBBEB9C25C4F9AE02.roa (raw, json) Hash identifier: bQSJvZpWYjceWlLmb1ls132YBEYjCEKGShII78H1rfI= Subject key identifier: CA:5A:A3:70:8B:67:B0:33:02:74:7C:0E:D0:CA:8B:32:C4:C4:A9:22 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 04B0 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/96407462457711EEBBEB9C25C4F9AE02.roa Signing time: Tue 05 Sep 2023 00:51:27 +0000 ROA not before: Tue 05 Sep 2023 00:51:27 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 135951 IP address blocks: 43.254.166.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 02:39:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1200 (0x4b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 5 00:51:27 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f67b8f-e3fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1c:03:cd:d1:8d:7f:ad:e2:41:da:f8:b9:e3: 07:ee:92:8b:27:be:07:f1:2e:1c:8b:ba:cd:59:b0: ee:d1:a4:69:e7:2c:ba:d9:31:73:81:bf:57:f7:8d: 28:25:5a:6a:1b:d6:47:4e:ee:25:4e:ae:24:67:f4: a8:9c:7e:db:4a:67:d7:21:2f:7f:22:fc:fe:86:f3: 87:d5:9e:a7:ab:4b:14:d5:12:aa:c1:bd:1e:02:b2: d5:75:d9:d5:fe:c5:7d:9f:db:cc:27:d7:9c:c3:5f: 4a:57:5a:fc:03:46:6f:92:ff:1b:11:03:da:d2:ec: 1b:4e:f1:d8:c9:e4:0e:63:62:f2:e8:fb:aa:86:73: 11:dc:b4:b9:d6:d4:e4:78:c6:d9:53:61:e1:c2:98: 1a:ed:d7:4c:3d:2c:37:b9:03:0c:64:d3:9a:7b:58: fb:3c:92:e5:07:18:c2:19:ae:0e:d7:43:5a:58:f5: 30:29:4d:a5:39:6f:f4:41:7e:00:76:b1:18:37:33: 47:27:33:68:aa:1d:14:51:85:d7:66:00:1d:b8:2f: 58:ab:06:d4:3d:70:4f:a2:82:66:b9:2f:f4:37:ff: 5a:31:e0:4a:34:b2:d9:76:60:d9:f6:2f:69:e4:e9: 6e:02:b0:73:b6:71:05:43:c8:ec:12:52:a6:8e:78: 77:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5A:A3:70:8B:67:B0:33:02:74:7C:0E:D0:CA:8B:32:C4:C4:A9:22 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/96407462457711EEBBEB9C25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.166.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:83:e8:14:d4:d6:55:e4:e4:15:ca:6a:6c:0c:ae:14:b2:34: 67:46:c6:dc:8e:69:5a:58:62:92:b3:ab:b1:a9:95:c9:c2:00: 06:16:6e:bd:a5:da:26:d2:6d:3f:f2:9f:d3:2b:38:2c:4d:5c: d2:66:c7:7d:c9:bc:4e:20:be:e8:4a:cc:2f:b9:7f:56:d9:d2: c2:f0:8d:88:f2:4a:81:68:5d:80:86:9d:a8:54:f5:75:3a:2f: e2:b0:9e:44:57:8e:ac:1f:a1:a7:2c:5b:31:5f:20:20:3e:ff: f8:26:0b:7c:2e:fa:c5:fc:9f:21:1f:1e:30:b9:e2:34:70:90: a6:db:f8:ff:17:dd:3f:fc:e8:b8:21:f4:ec:1a:8e:27:10:f4: 55:dd:e3:8d:a7:bd:6a:b2:36:2b:f3:c4:88:5b:77:44:b6:5e: ce:73:84:4e:60:ef:8c:d6:5e:54:79:65:25:7f:d1:1f:76:70: 0f:80:a0:33:fa:d1:d6:63:b2:81:67:03:bc:ec:6d:4d:3e:75: 12:c8:62:8f:d4:c5:bc:37:c3:82:0a:c9:7d:8e:3d:40:4c:dd: f1:8e:10:3f:3b:d9:53:32:77:63:d1:51:42:eb:b1:bc:e2:56: 25:ce:c2:23:db:1a:f3:dd:3a:29:f5:91:32:44:61:72:9a:f8: 0a:96:f3:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjMwOTA1MDA1MTI3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2N2I4Zi1lM2ZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnBwDzdGNf63iQdr4ueMH7pKLJ74H8S4ci7rNWbDu0aRp5yy62TFzgb9X940o JVpqG9ZHTu4lTq4kZ/SonH7bSmfXIS9/Ivz+hvOH1Z6nq0sU1RKqwb0eArLVddnV /sV9n9vMJ9ecw19KV1r8A0Zvkv8bEQPa0uwbTvHYyeQOY2Ly6PuqhnMR3LS51tTk eMbZU2Hhwpga7ddMPSw3uQMMZNOae1j7PJLlBxjCGa4O10NaWPUwKU2lOW/0QX4A drEYNzNHJzNoqh0UUYXXZgAduC9YqwbUPXBPooJmuS/0N/9aMeBKNLLZdmDZ9i9p 5OluArBztnEFQ8jsElKmjnh3kwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMpao3CL Z7AzAnR8DtDKizLExKkiMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvOTY0MDc0NjI0 NTc3MTFFRUJCRUI5QzI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr/qYwDQYJKoZIhvcNAQELBQADggEBAD2D6BTU1lXk5BXK amwMrhSyNGdGxtyOaVpYYpKzq7GplcnCAAYWbr2l2ibSbT/yn9MrOCxNXNJmx33J vE4gvuhKzC+5f1bZ0sLwjYjySoFoXYCGnahU9XU6L+KwnkRXjqwfoacsWzFfICA+ //gmC3wu+sX8nyEfHjC54jRwkKbb+P8X3T/86Lgh9OwajicQ9FXd442nvWqyNivz xIhbd0S2Xs5zhE5g74zWXlR5ZSV/0R92cA+AoDP60dZjsoFnA7zsbU0+dRLIYo/U xbw3w4IKyX2OPUBM3fGOED872VMyd2PRUULrsbziViXOwiPbGvPdOin1kTJEYXKa +AqW854= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:23 2024 by rpki-client on console-ams.rpki-client.org