$ rpki-client -vvf rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/67B0ACBC8E5011EE95DFC141C4F9AE02.roa File: 67B0ACBC8E5011EE95DFC141C4F9AE02.roa (raw, json) Hash identifier: YD6E7yUp0RctZyobhCENLD5OcG1G8cz+ZRAqAjlbtG0= Subject key identifier: 80:BD:86:31:69:59:8D:2B:F4:23:0A:23:2E:47:0E:4E:98:8F:8F:3B Certificate issuer: /CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Certificate serial: 12 Authority key identifier: FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/67B0ACBC8E5011EE95DFC141C4F9AE02.roa Signing time: Wed 29 Nov 2023 00:44:08 +0000 ROA not before: Wed 29 Nov 2023 00:44:08 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 17705 IP address blocks: 192.138.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146A72/serialNumber=FB5B96953CCDB11E92683B3EB5B7A457494B25F0 Validity Not Before: Nov 29 00:44:08 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65668958-055b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:cb:4c:1c:5b:7f:18:f0:df:5e:92:cd:2c:57: 7d:4d:35:34:7a:aa:1e:6e:46:cb:73:bb:11:59:70: 67:9f:86:d0:0d:d8:03:a6:1b:cd:ed:07:33:ed:e0: 28:82:23:88:4a:97:96:45:e2:17:36:33:ba:20:fe: 20:db:20:a5:5d:e1:62:17:4e:f7:9f:c9:32:ee:18: ef:e1:5f:b4:5f:72:cd:1b:5b:96:b8:9b:2c:21:a2: 5c:91:78:4d:07:40:12:17:fc:01:81:fe:97:23:4f: 37:0f:e1:df:ae:e7:16:43:36:59:06:6f:a4:bf:ae: 47:44:96:0f:5d:a8:10:95:f5:47:4f:49:ee:58:79: 0a:f8:74:58:77:fd:23:c5:94:31:5b:62:fd:06:8a: 97:56:03:65:2e:9a:4c:09:64:c0:7b:ca:3b:58:e6: e7:db:15:5c:ef:36:41:b6:7f:74:b8:8f:c3:de:90: 06:cd:3b:ff:66:31:d4:ef:a5:a4:8e:52:e9:f0:be: 18:36:7c:f0:01:65:41:ba:64:8d:ed:47:85:76:dd: 40:5c:d2:82:4a:e0:91:ea:fe:87:2d:4e:ff:32:5c: c2:b8:0f:1e:a4:ae:4f:91:41:26:f2:20:8a:4e:74: 47:42:02:9b:86:86:e3:01:3f:3a:cf:55:1d:26:41: f9:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:BD:86:31:69:59:8D:2B:F4:23:0A:23:2E:47:0E:4E:98:8F:8F:3B X509v3 Authority Key Identifier: keyid:FB:5B:96:95:3C:CD:B1:1E:92:68:3B:3E:B5:B7:A4:57:49:4B:25:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/-1uWlTzNsR6SaDs-tbekV0lLJfA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/-1uWlTzNsR6SaDs-tbekV0lLJfA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146A72/4F56C01C779D11EEBB49E269C4F9AE02/67B0ACBC8E5011EE95DFC141C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.138.251.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:61:6b:dd:75:d4:37:bf:06:98:76:3b:f3:12:93:2e:32:7b: 18:39:af:87:e4:da:58:06:d7:92:48:95:fe:f0:58:a4:41:70: f9:c5:f8:84:48:f5:54:f2:51:36:5a:76:c2:ee:85:9d:bb:53: c5:55:f2:71:2a:89:58:55:15:21:01:6e:d6:63:33:e9:b7:d3: d2:b5:ea:38:5f:a7:64:18:7b:62:35:78:4a:0f:44:9e:5c:23: f7:54:e7:7c:80:d3:fa:d0:43:97:51:e3:ea:73:78:85:13:4f: 77:ed:3a:b5:d3:43:a0:7d:ba:2a:13:6d:c7:1b:ea:59:61:62: 8d:0b:4e:d5:67:16:ec:0b:b4:e8:81:27:2b:7a:f5:41:84:6a: 0c:93:07:95:cb:ca:64:cf:51:e3:1d:64:db:eb:04:ee:a1:41: 23:f0:2e:3e:0b:dd:21:15:e3:0b:ce:1a:42:63:c7:27:f0:e4: 72:c1:aa:66:1a:f7:ea:ea:d4:dc:86:e5:47:b3:61:bc:cc:73: a8:e0:45:37:44:e6:36:cf:46:71:4e:23:01:10:3a:94:4e:24: 08:b1:82:eb:1e:fb:05:07:c1:c4:97:56:f9:16:9a:ef:9a:d8: cc:db:08:3f:91:f4:d0:9c:69:93:12:3a:e3:40:29:96:a9:98: fe:e0:f5:e4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NkE3MjExMC8GA1UEBRMoRkI1Qjk2OTUzQ0NEQjExRTkyNjgzQjNFQjVCN0E0NTc0 OTRCMjVGMDAeFw0yMzExMjkwMDQ0MDhaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NjY4OTU4LTA1NWIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDzy0wcW38Y8N9eks0sV31NNTR6qh5uRstzuxFZcGefhtAN2AOmG83tBzPt4CiC I4hKl5ZF4hc2M7og/iDbIKVd4WIXTvefyTLuGO/hX7Rfcs0bW5a4mywholyReE0H QBIX/AGB/pcjTzcP4d+u5xZDNlkGb6S/rkdElg9dqBCV9UdPSe5YeQr4dFh3/SPF lDFbYv0GipdWA2UumkwJZMB7yjtY5ufbFVzvNkG2f3S4j8PekAbNO/9mMdTvpaSO Uunwvhg2fPABZUG6ZI3tR4V23UBc0oJK4JHq/octTv8yXMK4Dx6krk+RQSbyIIpO dEdCApuGhuMBPzrPVR0mQflrAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgL2GMWlZ jSv0IwojLkcOTpiPjzswHwYDVR0jBBgwFoAU+1uWlTzNsR6SaDs+tbekV0lLJfAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2QTcyLzRGNTZDMDFDNzc5 RDExRUVCQjQ5RTI2OUM0RjlBRTAyLy0xdVdsVHpOc1I2U2FEcy10YmVrVjBsTEpm QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvLTF1V2xUek5zUjZTYURzLXRiZWtWMGxMSmZBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkE3Mi80RjU2QzAxQzc3OUQxMUVFQkI0OUUyNjlDNEY5QUUwMi82N0IwQUNCQzhF NTAxMUVFOTVERkMxNDFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMCK+zANBgkqhkiG9w0BAQsFAAOCAQEAXGFr3XXUN78GmHY7 8xKTLjJ7GDmvh+TaWAbXkkiV/vBYpEFw+cX4hEj1VPJRNlp2wu6FnbtTxVXycSqJ WFUVIQFu1mMz6bfT0rXqOF+nZBh7YjV4Sg9Enlwj91TnfIDT+tBDl1Hj6nN4hRNP d+06tdNDoH26KhNtxxvqWWFijQtO1WcW7Au06IEnK3r1QYRqDJMHlcvKZM9R4x1k 2+sE7qFBI/AuPgvdIRXjC84aQmPHJ/DkcsGqZhr36urU3IblR7NhvMxzqOBFN0Tm Ns9GcU4jARA6lE4kCLGC6x77BQfBxJdW+Raa75rYzNsIP5H00JxpkxI640AplqmY /uD15A== -----END CERTIFICATE-----Generated at Fri May 31 16:40:55 2024 by rpki-client on console-ams.rpki-client.org