$ rpki-client -vvf rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/A6A6CE0A54EC11E791C3F825C4F9AE02.roa File: A6A6CE0A54EC11E791C3F825C4F9AE02.roa (raw, json) Hash identifier: 4QcgdmcvyPNdPhT87G+sQdUMVg68ImM1OW15fSmBLuk= Subject key identifier: 9B:35:3A:4E:2A:64:4C:C9:10:0A:D2:A8:3E:BF:23:7E:0D:9D:78:E8 Certificate issuer: /CN=A9146B28/serialNumber=471606785B32F4DF3EC943F2A787DBA212696E1F Certificate serial: 2467 Authority key identifier: 47:16:06:78:5B:32:F4:DF:3E:C9:43:F2:A7:87:DB:A2:12:69:6E:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/A6A6CE0A54EC11E791C3F825C4F9AE02.roa Signing time: Sat 16 Sep 2023 15:52:41 +0000 ROA not before: Sat 16 Sep 2023 15:52:41 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 7712 IP address blocks: 118.67.200.0/21 maxlen: 24 2405:aa00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.crl rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:11:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9319 (0x2467) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146B28/serialNumber=471606785B32F4DF3EC943F2A787DBA212696E1F Validity Not Before: Sep 16 15:52:41 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6505cf48-cb0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:18:c4:58:f2:b7:06:4c:2b:6a:c8:47:3e:48: 23:98:39:66:d0:c4:59:bb:ef:37:00:fc:5e:1f:13: c6:53:7e:a9:2e:8a:33:6f:03:66:d2:cb:75:f5:4d: f1:28:b1:8f:e3:32:6d:bf:85:50:20:c3:a2:1d:66: 0c:b5:aa:21:68:f8:65:b0:71:bb:69:98:63:84:56: f2:92:27:c7:be:55:06:42:e8:79:b3:3c:c3:58:2c: 96:73:c0:19:bc:bf:2c:39:13:1f:2e:3f:44:2b:fb: 84:2e:7c:b6:f6:b3:af:d7:40:42:9a:f7:9a:6a:52: da:f3:82:7a:d6:af:23:f3:6a:ad:16:29:ad:6b:10: 63:dd:1f:be:97:bd:22:52:28:0f:22:54:4d:df:c2: 45:29:0c:db:48:40:da:a4:c4:51:ba:ed:b6:f8:4b: 8c:28:2b:57:38:ac:71:be:d5:84:a0:c7:2e:c7:c3: 6d:f3:cf:0b:f9:28:6a:14:4f:62:15:f6:43:6b:72: 89:0f:bb:01:22:2b:3e:33:f0:33:72:c2:fc:d2:4b: c6:56:98:73:e4:2c:f5:58:ad:2f:1f:1c:25:b7:55: fd:ac:39:b4:9b:a4:8f:fd:b4:12:a6:9a:64:c9:2e: 0c:76:8d:56:9d:f9:eb:db:15:af:6f:9a:d6:26:b9: a4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:35:3A:4E:2A:64:4C:C9:10:0A:D2:A8:3E:BF:23:7E:0D:9D:78:E8 X509v3 Authority Key Identifier: keyid:47:16:06:78:5B:32:F4:DF:3E:C9:43:F2:A7:87:DB:A2:12:69:6E:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/RxYGeFsy9N8-yUPyp4fbohJpbh8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RxYGeFsy9N8-yUPyp4fbohJpbh8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146B28/FAEF8CBE134311E596F5401EC4F9AE02/A6A6CE0A54EC11E791C3F825C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.67.200.0/21 IPv6: 2405:aa00::/32 Signature Algorithm: sha256WithRSAEncryption 98:c3:bc:16:15:87:f5:86:b8:39:14:9f:cb:0a:c5:11:f2:b1: 68:47:e1:80:3b:bd:c5:17:ea:4d:15:c6:47:1b:c9:83:22:46: 28:39:5c:4c:91:84:6a:d4:0d:6b:44:78:f6:30:6e:3d:ba:18: 5d:d1:a1:22:05:4e:44:62:46:72:96:ff:4e:e4:77:ed:d1:0f: 5e:7d:a0:ff:b1:c9:ee:a8:72:39:e4:16:08:ec:8f:dc:8d:b7: 35:dc:9f:5a:c2:bb:c8:73:e6:fc:49:9b:e9:f6:ce:68:a2:bf: 53:37:8a:c6:92:84:91:e3:b4:e1:f2:fe:0f:32:21:cd:14:54: 57:33:33:e2:ca:a0:bd:1e:19:c7:1c:3d:60:ec:b0:6c:f2:fb: 34:b0:4f:54:ba:5e:21:4b:4f:26:e1:da:97:6e:5f:e5:8a:4b: 2c:c2:86:d5:ea:cd:e8:fc:b4:86:bc:47:93:f1:b4:6f:23:36: 63:13:c6:46:0b:d5:f7:f2:82:71:5f:1d:f0:39:58:51:2c:7c: a3:91:62:9c:42:20:fe:06:e9:df:10:86:22:5c:10:bd:23:b6: 88:32:4e:28:48:1b:9d:f5:c2:97:e5:ce:ec:54:e9:a4:65:15: 71:c0:a4:eb:46:c0:23:69:09:fa:78:a6:5e:f5:d6:2d:b4:fe: 0b:33:1d:05 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICJGcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZCMjgxMTAvBgNVBAUTKDQ3MTYwNjc4NUIzMkY0REYzRUM5NDNGMkE3ODdEQkEy MTI2OTZFMUYwHhcNMjMwOTE2MTU1MjQxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA1Y2Y0OC1jYjBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyhjEWPK3BkwrashHPkgjmDlm0MRZu+83APxeHxPGU36pLoozbwNm0st19U3x KLGP4zJtv4VQIMOiHWYMtaohaPhlsHG7aZhjhFbykifHvlUGQuh5szzDWCyWc8AZ vL8sORMfLj9EK/uELny29rOv10BCmveaalLa84J61q8j82qtFimtaxBj3R++l70i UigPIlRN38JFKQzbSEDapMRRuu22+EuMKCtXOKxxvtWEoMcux8Nt888L+ShqFE9i FfZDa3KJD7sBIis+M/AzcsL80kvGVphz5Cz1WK0vHxwlt1X9rDm0m6SP/bQSpppk yS4Mdo1Wnfnr2xWvb5rWJrmkrQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFJs1Ok4q ZEzJEArSqD6/I34NnXjoMB8GA1UdIwQYMBaAFEcWBnhbMvTfPslD8qeH26ISaW4f MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkIyOC9GQUVGOENCRTEz NDMxMUU1OTZGNTQwMUVDNEY5QUUwMi9SeFlHZUZzeTlOOC15VVB5cDRmYm9oSnBi aDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J4WUdlRnN5OU44LXlVUHlwNGZib2hKcGJoOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZCMjgvRkFFRjhDQkUxMzQzMTFFNTk2RjU0MDFFQzRGOUFFMDIvQTZBNkNFMEE1 NEVDMTFFNzkxQzNGODI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAN2Q8gwDQQCAAIwBwMFACQFqgAwDQYJKoZIhvcNAQELBQAD ggEBAJjDvBYVh/WGuDkUn8sKxRHysWhH4YA7vcUX6k0VxkcbyYMiRig5XEyRhGrU DWtEePYwbj26GF3RoSIFTkRiRnKW/07kd+3RD159oP+xye6ocjnkFgjsj9yNtzXc n1rCu8hz5vxJm+n2zmiiv1M3isaShJHjtOHy/g8yIc0UVFczM+LKoL0eGcccPWDs sGzy+zSwT1S6XiFLTybh2pduX+WKSyzChtXqzej8tIa8R5PxtG8jNmMTxkYL1ffy gnFfHfA5WFEsfKORYpxCIP4G6d8QhiJcEL0jtogyTihIG531wpflzuxU6aRlFXHA pOtGwCNpCfp4pl711i20/gszHQU= -----END CERTIFICATE-----Generated at Fri May 31 17:44:23 2024 by rpki-client on console-fra.rpki-client.org