$ rpki-client -vvf rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/0198539E94F311EA9429BF86C4F9AE02.roa File: 0198539E94F311EA9429BF86C4F9AE02.roa (raw, json) Hash identifier: VFfqyxdTSmRGDAsrReEN4XSTEsTAqCMGdU7ARvjjS+0= Subject key identifier: BE:A9:F3:A9:2E:70:88:1E:4C:46:46:C3:15:C7:54:FB:C6:B3:D9:7C Certificate issuer: /CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Certificate serial: 0C38 Authority key identifier: 68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/0198539E94F311EA9429BF86C4F9AE02.roa Signing time: Sat 02 Mar 2024 18:57:05 +0000 ROA not before: Sat 02 Mar 2024 18:57:05 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 133111 IP address blocks: 2400:a980::/29 maxlen: 29 2400:a980:a000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 19:26:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3128 (0xc38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148D52/serialNumber=68874254547B34B3AF89DDB5B48D02023F57AE17 Validity Not Before: Mar 2 18:57:05 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e37681-cdeb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5d:db:53:21:8f:9a:ce:a8:65:8a:d8:61:ef: 76:d6:6b:8b:d0:85:ed:9d:96:3a:00:d6:ae:8f:42: 97:a7:77:1b:06:51:38:f6:16:5e:c8:1d:67:c5:04: fd:bd:6f:14:5a:90:a5:76:06:83:18:70:41:19:6b: bf:9a:b7:8f:50:bd:c8:b7:f8:48:57:24:e5:f9:1c: 00:f8:26:14:bd:6d:58:89:6c:1c:93:83:43:57:94: ca:d0:7e:52:a7:a7:1a:0b:d2:49:d3:0c:16:19:b1: b3:b7:a2:1b:d2:fa:ea:aa:e5:34:80:15:31:cb:59: 70:e6:80:5b:2e:6b:b8:19:21:20:bd:15:f5:ac:08: 87:c4:be:54:6f:8b:50:e9:43:b4:73:87:52:37:04: d9:0c:29:7c:b0:04:e1:ee:7b:e8:0a:28:28:8f:c4: d4:6c:8c:5a:08:62:6b:24:9f:4e:14:96:d7:d6:70: 4a:2a:9c:19:a9:5e:32:20:29:b2:1d:01:8d:ff:d5: 86:19:9b:aa:f5:61:60:b1:31:0f:33:4e:ad:9e:65: a1:8d:6e:3e:12:d5:62:2c:a1:82:ec:1d:68:a7:17: 48:b9:6f:33:d3:b0:57:00:16:8d:bf:65:cd:0a:5f: f6:3b:53:91:90:dd:fb:e0:39:c5:ce:e5:36:12:46: f6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A9:F3:A9:2E:70:88:1E:4C:46:46:C3:15:C7:54:FB:C6:B3:D9:7C X509v3 Authority Key Identifier: keyid:68:87:42:54:54:7B:34:B3:AF:89:DD:B5:B4:8D:02:02:3F:57:AE:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/aIdCVFR7NLOvid21tI0CAj9Xrhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aIdCVFR7NLOvid21tI0CAj9Xrhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148D52/1D4B44EEDB6B11E992987F41C4F9AE02/0198539E94F311EA9429BF86C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2400:a980::/29 Signature Algorithm: sha256WithRSAEncryption 6b:b7:fa:a5:14:c0:c2:e8:58:86:7c:31:31:b8:fc:b2:a6:e4: 10:7e:c5:cb:86:72:db:50:69:8c:c5:e1:75:78:0f:9d:ed:27: ce:fb:64:5d:05:13:ce:b6:7a:7e:bf:5c:63:5f:d2:95:b2:bf: e7:94:06:54:88:d4:9c:07:5d:6d:7c:7c:f6:76:9e:49:de:fb: 20:9d:7d:45:30:ec:50:58:76:eb:d8:98:d6:4a:c7:53:60:73: bb:0c:2c:fa:9f:4e:32:d1:cd:e7:88:cd:f3:66:7f:be:5c:29: 94:95:8d:4c:36:ba:01:89:eb:f9:e3:25:8e:72:e5:ae:fa:91: ff:03:a7:21:cd:29:79:9f:bb:92:f6:c0:2a:3d:ef:c9:f2:d8: 4b:93:14:ab:08:67:7e:22:98:5c:2f:c8:c5:e8:1e:7c:d0:d0: 34:b2:7e:14:cc:16:85:e6:0e:e2:af:06:90:11:d8:13:82:65: e7:08:18:d1:f5:f5:d7:8f:38:6c:69:8e:ee:99:5d:19:83:ac: 77:1e:0b:7e:9b:9f:9a:fb:1c:26:98:3c:b8:4e:12:0d:9e:fd: 53:43:51:97:c7:ad:45:3c:3a:82:c7:10:0b:3e:4d:ce:f6:d3: f8:c1:a5:1e:0c:ed:81:0e:2f:78:e5:4d:cd:ea:66:30:c6:5b: 73:bf:ba:c6 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgICDDgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhENTIxMTAvBgNVBAUTKDY4ODc0MjU0NTQ3QjM0QjNBRjg5RERCNUI0OEQwMjAy M0Y1N0FFMTcwHhcNMjQwMzAyMTg1NzA1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNzY4MS1jZGViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5F3bUyGPms6oZYrYYe921muL0IXtnZY6ANauj0KXp3cbBlE49hZeyB1nxQT9 vW8UWpCldgaDGHBBGWu/mrePUL3It/hIVyTl+RwA+CYUvW1YiWwck4NDV5TK0H5S p6caC9JJ0wwWGbGzt6Ib0vrqquU0gBUxy1lw5oBbLmu4GSEgvRX1rAiHxL5Ub4tQ 6UO0c4dSNwTZDCl8sATh7nvoCigoj8TUbIxaCGJrJJ9OFJbX1nBKKpwZqV4yICmy HQGN/9WGGZuq9WFgsTEPM06tnmWhjW4+EtViLKGC7B1opxdIuW8z07BXABaNv2XN Cl/2O1ORkN374DnFzuU2Ekb2TQIDAQABo4ICljCCApIwHQYDVR0OBBYEFL6p86ku cIgeTEZGwxXHVPvGs9l8MB8GA1UdIwQYMBaAFGiHQlRUezSzr4ndtbSNAgI/V64X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEQ1Mi8xRDRCNDRFRURC NkIxMUU5OTI5ODdGNDFDNEY5QUUwMi9hSWRDVkZSN05MT3ZpZDIxdEkwQ0FqOVhy aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FJZENWRlI3TkxPdmlkMjF0STBDQWo5WHJoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhENTIvMUQ0QjQ0RUVEQjZCMTFFOTkyOTg3RjQxQzRGOUFFMDIvMDE5ODUzOUU5 NEYzMTFFQTk0MjlCRjg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8E ETAPMA0EAgACMAcDBQMkAKmAMA0GCSqGSIb3DQEBCwUAA4IBAQBrt/qlFMDC6FiG fDExuPyypuQQfsXLhnLbUGmMxeF1eA+d7SfO+2RdBRPOtnp+v1xjX9KVsr/nlAZU iNScB11tfHz2dp5J3vsgnX1FMOxQWHbr2JjWSsdTYHO7DCz6n04y0c3niM3zZn++ XCmUlY1MNroBiev54yWOcuWu+pH/A6chzSl5n7uS9sAqPe/J8thLkxSrCGd+Iphc L8jF6B580NA0sn4UzBaF5g7irwaQEdgTgmXnCBjR9fXXjzhsaY7umV0Zg6x3Hgt+ m5+a+xwmmDy4ThINnv1TQ1GXx61FPDqCxxALPk3O9tP4waUeDO2BDi945U3N6mYw xltzv7rG -----END CERTIFICATE-----Generated at Fri May 31 20:34:02 2024 by rpki-client on console-ams.rpki-client.org