$ rpki-client -vvf rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/E3AB124AB5C811EE8795EB6FC4F9AE02.roa File: E3AB124AB5C811EE8795EB6FC4F9AE02.roa (raw, json) Hash identifier: ExCmATibx10XsjNVYFRzqOLQtC3WU3C6cM5a5cjLZq4= Subject key identifier: 25:E4:E0:F5:E0:54:9F:90:DF:86:BB:0F:74:47:73:52:08:53:2A:F8 Certificate issuer: /CN=A9146D7A/serialNumber=0E9ACD807114B58F718A9C2B85952625E6DB2BD1 Certificate serial: 0A Authority key identifier: 0E:9A:CD:80:71:14:B5:8F:71:8A:9C:2B:85:95:26:25:E6:DB:2B:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/E3AB124AB5C811EE8795EB6FC4F9AE02.roa Signing time: Fri 26 Jan 2024 06:24:58 +0000 ROA not before: Fri 26 Jan 2024 06:24:58 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 198651 IP address blocks: 202.47.180.0/23 maxlen: 23 2001:df3:67c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.crl rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 08:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146D7A/serialNumber=0E9ACD807114B58F718A9C2B85952625E6DB2BD1 Validity Not Before: Jan 26 06:24:58 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65b3503a-1e3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:37:6f:bd:12:51:2d:ba:b1:78:01:54:6a:f2: 75:8f:23:2a:14:a6:62:61:fa:ca:14:ad:9c:af:b3: 9a:b9:93:04:1d:c3:e2:96:11:12:45:80:ea:45:c0: 96:3e:c9:87:23:9f:12:4a:3e:77:57:fa:43:91:bc: 0c:cf:cf:c6:7c:ca:47:3d:15:2e:36:7c:81:63:7c: fa:5e:47:6c:66:2a:e4:fa:75:9a:34:58:2b:45:48: 34:4c:18:ce:ca:17:31:b5:3e:02:77:5e:17:18:9a: b9:1d:78:a7:c7:dd:4c:39:da:40:9b:96:40:10:8e: 83:98:ed:df:23:0c:9a:36:32:4f:2c:dc:c1:66:59: 74:57:de:de:2b:47:fd:fc:7e:38:ed:b9:32:8f:41: 52:c4:3b:ad:10:db:34:4c:bd:18:73:46:3b:f8:a0: 56:2c:d2:b3:0c:99:80:8d:81:7b:17:1f:cf:66:77: 17:c5:6d:5c:4b:bc:b1:7b:5e:70:ff:ee:6c:a8:88: 28:84:16:ec:ea:7d:39:1e:40:e7:0f:b7:82:99:b5: d6:a8:5d:a9:65:96:72:4c:5d:d0:67:70:73:cf:eb: 14:e7:85:98:d6:b9:30:95:b8:78:f3:47:d4:9c:ee: 27:fc:84:26:06:fd:86:c5:62:eb:e1:46:c2:64:9b: fe:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:E4:E0:F5:E0:54:9F:90:DF:86:BB:0F:74:47:73:52:08:53:2A:F8 X509v3 Authority Key Identifier: keyid:0E:9A:CD:80:71:14:B5:8F:71:8A:9C:2B:85:95:26:25:E6:DB:2B:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/DprNgHEUtY9xipwrhZUmJebbK9E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DprNgHEUtY9xipwrhZUmJebbK9E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146D7A/93D24F4AB5C811EEB4A24A6FC4F9AE02/E3AB124AB5C811EE8795EB6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.47.180.0/23 IPv6: 2001:df3:67c0::/48 Signature Algorithm: sha256WithRSAEncryption 8c:2c:09:52:1d:4b:da:80:40:a7:39:71:74:f1:19:ab:36:2e: 2d:fa:23:71:fa:d9:37:c9:23:70:98:f7:ea:6a:68:c1:22:91: 55:3d:8b:72:35:56:36:3c:e6:d9:34:19:d7:43:38:96:07:b4: 98:e0:89:80:07:67:69:8c:79:80:59:d8:6e:a9:1d:c5:c4:57: bc:9f:b7:7a:a7:26:17:3e:cf:f3:3e:93:3a:53:72:86:6a:1a: 2e:47:af:10:62:6a:e8:f4:b3:62:3d:4d:3f:1f:79:6d:1f:36: 8c:b7:ad:7b:c3:a3:41:10:68:fe:83:31:af:44:7e:8a:51:de: 60:17:d7:ff:28:53:58:45:25:62:73:7a:79:59:c9:b3:8e:7c: bf:ed:9d:c6:af:f0:c4:d9:a4:9a:97:2f:04:9c:44:19:68:f7: 86:e2:03:9f:54:8d:3b:e8:1d:1c:12:16:84:95:13:db:c3:78: 0d:07:8e:0d:ea:ff:85:59:5a:d0:76:44:8d:14:bd:bd:2d:87: b8:83:93:b8:25:4e:fb:bd:cf:16:e7:ae:1d:3f:2f:f0:a6:34: 35:bc:56:55:45:1e:b3:53:85:ae:ae:ea:ae:df:e8:67:11:8e: 6e:32:b8:97:f5:4a:15:69:ed:e6:02:ae:4d:e1:e1:be:9f:86: d7:51:b3:97 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 NkQ3QTExMC8GA1UEBRMoMEU5QUNEODA3MTE0QjU4RjcxOEE5QzJCODU5NTI2MjVF NkRCMkJEMTAeFw0yNDAxMjYwNjI0NThaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjM1MDNhLTFlM2UwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQClN2+9ElEturF4AVRq8nWPIyoUpmJh+soUrZyvs5q5kwQdw+KWERJFgOpFwJY+ yYcjnxJKPndX+kORvAzPz8Z8ykc9FS42fIFjfPpeR2xmKuT6dZo0WCtFSDRMGM7K FzG1PgJ3XhcYmrkdeKfH3Uw52kCblkAQjoOY7d8jDJo2Mk8s3MFmWXRX3t4rR/38 fjjtuTKPQVLEO60Q2zRMvRhzRjv4oFYs0rMMmYCNgXsXH89mdxfFbVxLvLF7XnD/ 7myoiCiEFuzqfTkeQOcPt4KZtdaoXalllnJMXdBncHPP6xTnhZjWuTCVuHjzR9Sc 7if8hCYG/YbFYuvhRsJkm/4bAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUJeTg9eBU n5DfhrsPdEdzUghTKvgwHwYDVR0jBBgwFoAUDprNgHEUtY9xipwrhZUmJebbK9Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTQ2RDdBLzkzRDI0RjRBQjVD ODExRUVCNEEyNEE2RkM0RjlBRTAyL0Rwck5nSEVVdFk5eGlwd3JoWlVtSmViYks5 RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRHByTmdIRVV0WTl4aXB3cmhaVW1KZWJiSzlFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 NkQ3QS85M0QyNEY0QUI1QzgxMUVFQjRBMjRBNkZDNEY5QUUwMi9FM0FCMTI0QUI1 QzgxMUVFODc5NUVCNkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAcovtDAPBAIAAjAJAwcAIAEN82fAMA0GCSqGSIb3DQEBCwUA A4IBAQCMLAlSHUvagECnOXF08RmrNi4t+iNx+tk3ySNwmPfqamjBIpFVPYtyNVY2 PObZNBnXQziWB7SY4ImAB2dpjHmAWdhuqR3FxFe8n7d6pyYXPs/zPpM6U3KGahou R68QYmro9LNiPU0/H3ltHzaMt617w6NBEGj+gzGvRH6KUd5gF9f/KFNYRSVic3p5 Wcmzjny/7Z3Gr/DE2aSaly8EnEQZaPeG4gOfVI076B0cEhaElRPbw3gNB44N6v+F WVrQdkSNFL29LYe4g5O4JU77vc8W564dPy/wpjQ1vFZVRR6zU4Wuruqu3+hnEY5u MriX9UoVae3mAq5N4eG+n4bXUbOX -----END CERTIFICATE-----Generated at Sun Apr 28 15:50:32 2024 by rpki-client on console-fra.rpki-client.org