$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/486F81CE4B4B11E79F2FF37BC4F9AE02.roa File: 486F81CE4B4B11E79F2FF37BC4F9AE02.roa (raw, json) Hash identifier: OjugscuwSxg6O+LjQabc766gtjQFnuR3xjR9F05JFcM= Subject key identifier: 42:59:BA:3F:4C:91:E3:90:B2:4B:DD:4D:6A:C5:B9:C1:9E:1E:7C:C3 Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1ACC Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/486F81CE4B4B11E79F2FF37BC4F9AE02.roa Signing time: Thu 31 Aug 2023 16:43:20 +0000 ROA not before: Thu 31 Aug 2023 16:43:20 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 134808 IP address blocks: 203.33.22.0/24 maxlen: 24 2001:df3:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6860 (0x1acc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Validity Not Before: Aug 31 16:43:20 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0c328-a4c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:bc:a2:66:c6:fd:b2:2b:28:08:08:08:29:14: a2:64:d5:6d:eb:99:c7:ef:38:f7:b6:ed:79:e1:e6: 14:84:b7:9c:1d:e9:d3:ed:ed:5b:ea:83:6e:20:11: fd:7e:41:b0:8a:96:0c:6c:bb:d1:3e:4f:a8:ea:8f: 65:11:76:3c:78:30:01:70:29:2c:18:90:23:4b:68: 29:51:0c:c5:91:59:fa:a7:35:29:60:d6:1e:bb:2b: d4:b7:88:e2:8d:c8:77:54:1f:fb:bd:82:1b:e7:e9: a4:f0:76:fc:81:b0:6b:72:b9:c7:43:04:0b:75:48: 3d:55:d0:94:04:d1:2a:bc:f4:4d:50:8a:70:8d:ed: 15:b1:fe:1c:5d:c9:be:f4:8b:80:fb:3b:21:8f:26: 08:73:25:c5:50:b5:db:f0:f5:bc:63:ba:2c:42:ba: 5b:f9:13:12:d1:8c:a2:e7:9d:a6:9a:67:84:ae:4d: bc:01:79:dc:69:07:9a:d6:5a:16:35:86:cd:8f:31: 53:2c:d0:cc:cb:04:22:ee:aa:a5:8b:17:7a:66:80: eb:b5:ff:79:b2:35:bb:3e:b4:74:96:d6:56:ea:83: 28:93:d1:ad:69:ef:e2:16:67:94:99:be:a5:c2:80: c4:be:10:97:d2:37:02:b2:7d:9f:59:3a:76:25:28: c8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:59:BA:3F:4C:91:E3:90:B2:4B:DD:4D:6A:C5:B9:C1:9E:1E:7C:C3 X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/486F81CE4B4B11E79F2FF37BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.22.0/24 IPv6: 2001:df3:ba00::/48 Signature Algorithm: sha256WithRSAEncryption 58:19:b6:a4:48:32:52:f9:3e:54:c1:3a:5b:fa:f1:99:95:a4: 80:3d:cd:2e:51:84:ed:e3:a7:1d:fa:ed:ed:bf:3a:3b:ed:83: 3a:2e:0b:a1:4e:c6:c6:c3:13:54:eb:50:2e:87:78:70:2f:b4: 7f:8e:c5:f3:0a:e5:89:86:f9:89:31:bf:85:69:15:fa:63:57: 79:97:77:78:b4:b0:d4:c3:e5:5d:5e:87:a5:1e:0c:e0:d1:55: 13:cd:c9:b5:07:5d:bd:b6:c0:2c:6e:92:91:d9:28:f4:54:08: 13:62:d7:29:bc:6c:e9:32:df:68:f7:02:e9:00:42:c8:28:b5: 8e:08:5e:c4:f6:77:ae:5f:28:cb:f4:4e:54:65:e5:be:d4:41: a2:89:51:3f:84:54:44:48:bb:0d:90:39:36:a6:df:3e:c7:10: b6:1e:11:e5:4e:63:1c:54:dc:c3:d5:63:99:92:89:2b:e9:76: 83:83:74:a5:91:83:e2:fa:7e:b2:75:e4:54:1a:27:ad:5d:17: e6:39:0e:bf:49:36:25:0a:88:3e:ab:2d:e6:75:b8:da:83:4f: 17:10:df:3d:81:8f:8b:2f:1b:38:6a:d4:a9:c8:4f:42:62:e6: 16:de:39:2d:be:d0:18:6c:fe:3b:46:32:bc:77:63:c5:26:1a: 9c:b4:e6:df -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICGswwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjMwODMxMTY0MzIwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwYzMyOC1hNGM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAubyiZsb9sisoCAgIKRSiZNVt65nH7zj3tu154eYUhLecHenT7e1b6oNuIBH9 fkGwipYMbLvRPk+o6o9lEXY8eDABcCksGJAjS2gpUQzFkVn6pzUpYNYeuyvUt4ji jch3VB/7vYIb5+mk8Hb8gbBrcrnHQwQLdUg9VdCUBNEqvPRNUIpwje0Vsf4cXcm+ 9IuA+zshjyYIcyXFULXb8PW8Y7osQrpb+RMS0Yyi552mmmeErk28AXncaQea1loW NYbNjzFTLNDMywQi7qqlixd6ZoDrtf95sjW7PrR0ltZW6oMok9Gtae/iFmeUmb6l woDEvhCX0jcCsn2fWTp2JSjI5wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEJZuj9M keOQskvdTWrFucGeHnzDMB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBRTkvMDhEQTYwQzZGMUIyMTFFNjhFNzRBMjZDQzRGOUFFMDIvNDg2RjgxQ0U0 QjRCMTFFNzlGMkZGMzdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLIRYwDwQCAAIwCQMHACABDfO6ADANBgkqhkiG9w0BAQsF AAOCAQEAWBm2pEgyUvk+VME6W/rxmZWkgD3NLlGE7eOnHfrt7b86O+2DOi4LoU7G xsMTVOtQLod4cC+0f47F8wrliYb5iTG/hWkV+mNXeZd3eLSw1MPlXV6HpR4M4NFV E83JtQddvbbALG6Skdko9FQIE2LXKbxs6TLfaPcC6QBCyCi1jghexPZ3rl8oy/RO VGXlvtRBoolRP4RUREi7DZA5NqbfPscQth4R5U5jHFTcw9VjmZKJK+l2g4N0pZGD 4vp+snXkVBonrV0X5jkOv0k2JQqIPqst5nW42oNPFxDfPYGPiy8bOGrUqchPQmLm Ft45Lb7QGGz+O0YyvHdjxSYanLTm3w== -----END CERTIFICATE-----Generated at Fri May 31 20:34:01 2024 by rpki-client on console-ams.rpki-client.org