$ rpki-client -vvf rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/220BB95647A811EAB74E6635C4F9AE02.roa File: 220BB95647A811EAB74E6635C4F9AE02.roa (raw, json) Hash identifier: xzTGNm+bjyicQUIZ4sTnQPbZ0kR33wMzQnPtwHu4444= Subject key identifier: E9:C0:7D:13:3F:C9:1A:E9:AB:AD:85:FB:07:EA:16:0D:22:37:50:25 Certificate issuer: /CN=A9152F52/serialNumber=81428A01C51691E7A8C5D843ECB6B1D3D9AE424E Certificate serial: 0ACD Authority key identifier: 81:42:8A:01:C5:16:91:E7:A8:C5:D8:43:EC:B6:B1:D3:D9:AE:42:4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUKKAcUWkeeoxdhD7Lax09muQk4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/220BB95647A811EAB74E6635C4F9AE02.roa Signing time: Mon 31 Jul 2023 19:57:29 +0000 ROA not before: Mon 31 Jul 2023 19:57:29 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45214 IP address blocks: 114.31.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/gUKKAcUWkeeoxdhD7Lax09muQk4.crl rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/gUKKAcUWkeeoxdhD7Lax09muQk4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUKKAcUWkeeoxdhD7Lax09muQk4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 19:01:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2765 (0xacd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9152F52/serialNumber=81428A01C51691E7A8C5D843ECB6B1D3D9AE424E Validity Not Before: Jul 31 19:57:29 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c81228-c108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:07:72:9f:66:4d:93:7c:97:4a:03:01:67:92: c8:6b:27:f9:fe:c7:52:20:52:aa:1f:de:8f:0d:36: bb:3c:4b:c6:51:be:35:12:23:99:38:90:ee:05:08: b6:ae:f4:94:f3:ca:d6:47:2a:e7:14:75:ec:7a:71: ca:d5:7f:4b:2c:09:f4:cc:6f:d7:77:28:af:73:e4: 63:d7:02:b0:4c:fd:62:7c:f0:ea:f1:b8:07:29:ed: a2:14:88:85:0b:aa:74:35:c8:4b:84:36:e5:68:60: 33:dd:5e:ee:b9:5d:84:fb:5c:ec:13:21:f8:47:32: 8a:8e:d7:35:55:f4:32:60:33:51:0e:eb:2f:86:89: 71:e6:fe:ba:7f:04:84:57:e9:59:12:7a:b8:23:13: a5:c5:10:d0:26:c1:1e:c4:06:18:c6:55:d5:da:d2: 43:82:02:31:b8:c4:8f:23:44:e0:3f:73:ef:e5:df: 86:91:2c:9c:60:d7:ab:59:dc:bf:4d:d5:22:b5:a3: 1e:38:43:9f:1d:2f:e3:28:16:76:5e:f9:cd:8f:2a: 73:fc:9d:a3:53:ac:71:b2:e0:f1:b9:af:1e:2f:f7: a1:1d:4b:a4:3d:4d:d7:6f:94:81:d6:65:50:8a:a0: 64:23:4e:8d:2a:80:c6:8a:d2:7c:66:04:63:dc:3f: cc:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:C0:7D:13:3F:C9:1A:E9:AB:AD:85:FB:07:EA:16:0D:22:37:50:25 X509v3 Authority Key Identifier: keyid:81:42:8A:01:C5:16:91:E7:A8:C5:D8:43:EC:B6:B1:D3:D9:AE:42:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/gUKKAcUWkeeoxdhD7Lax09muQk4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gUKKAcUWkeeoxdhD7Lax09muQk4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9152F52/88EBCFDC1D4911EAAE775B34C4F9AE02/220BB95647A811EAB74E6635C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.31.72.0/21 Signature Algorithm: sha256WithRSAEncryption 37:9e:50:f6:77:87:ea:e9:da:15:c0:6b:56:a8:02:86:91:0c: ca:bf:6f:18:e1:99:b5:6f:1c:2d:a1:ee:bc:35:cd:c8:e9:0f: fd:31:9e:52:9a:a0:86:7d:83:63:19:51:34:f6:42:cf:49:bf: e0:4d:52:ed:6a:ab:4c:9b:28:4e:a6:41:70:f3:17:b4:cc:4b: db:5b:51:06:bd:88:3e:a8:87:4a:1c:74:35:ae:84:ed:75:4d: b7:0c:92:da:bd:cc:fc:a9:20:c0:ce:4b:c4:fb:c2:96:ad:d8: 2c:48:ae:30:bf:78:a3:bc:27:a7:b8:17:c2:76:37:ae:7e:1b: e8:90:5f:c1:a1:64:c0:37:f7:57:a6:3e:53:bd:09:b3:72:9a: 36:d8:a7:cf:60:8d:7d:c4:10:46:f6:5c:54:a0:79:dc:66:bc: ae:3d:f0:eb:c6:b9:f2:4d:26:46:f2:5b:14:07:76:da:4c:9b: a3:ea:12:42:bd:c7:a6:3c:46:a3:e4:37:69:60:b1:2b:c4:d7: 9c:3a:d8:49:1b:c4:a2:b8:d8:2a:f3:88:d1:be:b8:44:c3:70: fb:7d:3d:9c:30:ba:20:45:bd:9b:6d:28:1b:36:09:d8:36:b3: b8:7a:15:d0:93:d4:b8:4a:ac:6f:31:18:de:81:ed:d6:fb:28: cc:ef:41:67 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTJGNTIxMTAvBgNVBAUTKDgxNDI4QTAxQzUxNjkxRTdBOEM1RDg0M0VDQjZCMUQz RDlBRTQyNEUwHhcNMjMwNzMxMTk1NzI5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4MTIyOC1jMTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3wdyn2ZNk3yXSgMBZ5LIayf5/sdSIFKqH96PDTa7PEvGUb41EiOZOJDuBQi2 rvSU88rWRyrnFHXsenHK1X9LLAn0zG/Xdyivc+Rj1wKwTP1ifPDq8bgHKe2iFIiF C6p0NchLhDblaGAz3V7uuV2E+1zsEyH4RzKKjtc1VfQyYDNRDusvholx5v66fwSE V+lZEnq4IxOlxRDQJsEexAYYxlXV2tJDggIxuMSPI0TgP3Pv5d+GkSycYNerWdy/ TdUitaMeOEOfHS/jKBZ2XvnNjypz/J2jU6xxsuDxua8eL/ehHUukPU3Xb5SB1mVQ iqBkI06NKoDGitJ8ZgRj3D/MNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOnAfRM/ yRrpq62F+wfqFg0iN1AlMB8GA1UdIwQYMBaAFIFCigHFFpHnqMXYQ+y2sdPZrkJO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MkY1Mi84OEVCQ0ZEQzFE NDkxMUVBQUU3NzVCMzRDNEY5QUUwMi9nVUtLQWNVV2tlZW94ZGhEN0xheDA5bXVR azQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dVS0tBY1VXa2Vlb3hkaEQ3TGF4MDltdVFrNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTJGNTIvODhFQkNGREMxRDQ5MTFFQUFFNzc1QjM0QzRGOUFFMDIvMjIwQkI5NTY0 N0E4MTFFQUI3NEU2NjM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBANyH0gwDQYJKoZIhvcNAQELBQADggEBADeeUPZ3h+rp2hXA a1aoAoaRDMq/bxjhmbVvHC2h7rw1zcjpD/0xnlKaoIZ9g2MZUTT2Qs9Jv+BNUu1q q0ybKE6mQXDzF7TMS9tbUQa9iD6oh0ocdDWuhO11TbcMktq9zPypIMDOS8T7wpat 2CxIrjC/eKO8J6e4F8J2N65+G+iQX8GhZMA391emPlO9CbNymjbYp89gjX3EEEb2 XFSgedxmvK498OvGufJNJkbyWxQHdtpMm6PqEkK9x6Y8RqPkN2lgsSvE15w62Ekb xKK42CrziNG+uETDcPt9PZwwuiBFvZttKBs2Cdg2s7h6FdCT1LhKrG8xGN6B7db7 KMzvQWc= -----END CERTIFICATE-----Generated at Mon May 20 20:44:20 2024 by rpki-client on console-fra.rpki-client.org