$ rpki-client -vvf rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/F9B8A0AEB04911EE98449A2BC4F9AE02.roa File: F9B8A0AEB04911EE98449A2BC4F9AE02.roa (raw, json) Hash identifier: uv95cs01At/PuOV4xL+9RS+LdOUsC64NaC6OR5bgD2A= Subject key identifier: C9:C0:D8:F3:97:85:DC:9C:95:F5:0E:EE:A7:65:C7:12:C7:F3:17:C9 Certificate issuer: /CN=A916002E/serialNumber=04A55F7AB3AE399D4F257D4FD289B105808E5C3C Certificate serial: 07 Authority key identifier: 04:A5:5F:7A:B3:AE:39:9D:4F:25:7D:4F:D2:89:B1:05:80:8E:5C:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKVferOuOZ1PJX1P0omxBYCOXDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/F9B8A0AEB04911EE98449A2BC4F9AE02.roa Signing time: Thu 11 Jan 2024 07:02:16 +0000 ROA not before: Thu 11 Jan 2024 07:02:16 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 17456 IP address blocks: 103.212.24.0/22 maxlen: 22 139.5.136.0/22 maxlen: 22 203.95.8.0/21 maxlen: 21 2402:6200::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/BKVferOuOZ1PJX1P0omxBYCOXDw.crl rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/BKVferOuOZ1PJX1P0omxBYCOXDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKVferOuOZ1PJX1P0omxBYCOXDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916002E/serialNumber=04A55F7AB3AE399D4F257D4FD289B105808E5C3C Validity Not Before: Jan 11 07:02:16 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=659f9278-7ea9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:51:12:46:63:cc:46:9d:f3:8c:f0:0f:df:05: eb:2b:16:4c:17:22:89:5b:fa:0e:90:1b:00:49:8a: 0e:09:6e:d8:6f:7d:e6:06:97:69:e7:f3:fd:be:e4: e2:7b:bc:4b:c7:4f:6a:56:66:95:46:b1:60:26:98: cb:21:0e:72:70:69:0d:60:b2:c1:15:57:d5:b5:56: 1b:41:c1:24:b4:6e:c3:d4:27:6a:8b:55:ad:e4:1e: ed:1d:44:04:5b:72:58:42:e6:c3:0e:b7:24:03:3f: 50:02:14:b1:08:30:d6:a7:01:25:89:a4:c2:82:48: af:78:d0:b7:d0:73:f4:00:8d:75:10:9f:20:88:8e: 1f:ba:76:78:ba:f8:34:c3:18:83:73:0a:ac:33:8b: 00:82:4f:05:70:3a:18:af:97:cd:83:47:cc:88:37: f6:e3:46:64:00:11:32:02:f0:a3:2b:a7:88:71:84: d3:86:a1:d7:f6:2f:8b:e3:ea:6c:38:79:ef:b0:4f: ad:4f:c2:ba:59:83:ab:17:7f:54:a3:0e:7b:c2:c6: 6b:e9:63:35:66:64:bf:10:30:1c:81:a9:46:20:0b: f9:e6:ef:b6:b5:f2:b7:c7:6d:27:98:cf:85:9c:04: d8:f8:a7:44:d7:8d:91:55:f2:fe:11:de:96:84:ed: d0:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:C0:D8:F3:97:85:DC:9C:95:F5:0E:EE:A7:65:C7:12:C7:F3:17:C9 X509v3 Authority Key Identifier: keyid:04:A5:5F:7A:B3:AE:39:9D:4F:25:7D:4F:D2:89:B1:05:80:8E:5C:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/BKVferOuOZ1PJX1P0omxBYCOXDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BKVferOuOZ1PJX1P0omxBYCOXDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916002E/F287D30AB01111EEBC586964C4F9AE02/F9B8A0AEB04911EE98449A2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.212.24.0/22 139.5.136.0/22 203.95.8.0/21 IPv6: 2402:6200::/32 Signature Algorithm: sha256WithRSAEncryption 42:8d:71:6e:d2:fc:9d:01:b9:0f:82:bf:6e:ed:6f:07:a4:2e: 43:f1:bc:78:dd:4b:d6:fc:da:a7:05:ea:a1:7b:d1:f2:33:8e: e1:18:0f:cc:f0:b7:47:1e:e2:7d:da:a2:cb:c9:45:28:cc:57: da:cc:46:7f:1b:a9:d7:25:1a:db:48:cf:cb:d5:2b:93:79:72: b0:04:4b:17:3a:57:21:c8:1d:3d:73:2a:d8:56:91:70:14:5c: 5c:d7:cb:37:55:49:bd:54:b4:02:be:76:1b:09:cc:d9:c7:eb: 05:fa:a0:31:ae:b0:e5:f5:52:db:4c:2a:1f:d8:02:8a:f9:83: e8:ef:d3:7c:54:66:3b:10:61:69:be:e0:cd:f4:da:c4:bb:32: db:ce:7e:b8:b6:08:4d:6f:44:e8:9d:1d:7f:19:59:87:10:65: 4d:67:ad:64:ee:78:46:d3:47:aa:8c:8b:9c:f4:41:13:2a:a1: 13:31:65:18:c6:ca:b4:7e:41:48:94:cd:a1:dc:92:2e:87:c6: ea:eb:13:1d:a6:47:80:63:22:fa:c3:0f:f8:60:2c:6f:22:d4: 80:59:04:3c:4a:35:4a:91:d2:69:c9:40:ae:de:f6:32:00:4d: db:a0:32:7c:19:78:22:7c:2b:5e:2d:72:55:34:da:05:74:9c: 04:32:2c:13 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 MDAyRTExMC8GA1UEBRMoMDRBNTVGN0FCM0FFMzk5RDRGMjU3RDRGRDI4OUIxMDU4 MDhFNUMzQzAeFw0yNDAxMTEwNzAyMTZaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OWY5Mjc4LTdlYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+URJGY8xGnfOM8A/fBesrFkwXIolb+g6QGwBJig4JbthvfeYGl2nn8/2+5OJ7 vEvHT2pWZpVGsWAmmMshDnJwaQ1gssEVV9W1VhtBwSS0bsPUJ2qLVa3kHu0dRARb clhC5sMOtyQDP1ACFLEIMNanASWJpMKCSK940LfQc/QAjXUQnyCIjh+6dni6+DTD GINzCqwziwCCTwVwOhivl82DR8yIN/bjRmQAETIC8KMrp4hxhNOGodf2L4vj6mw4 ee+wT61PwrpZg6sXf1SjDnvCxmvpYzVmZL8QMByBqUYgC/nm77a18rfHbSeYz4Wc BNj4p0TXjZFV8v4R3paE7dDvAgMBAAGjggKwMIICrDAdBgNVHQ4EFgQUycDY85eF 3JyV9Q7up2XHEsfzF8kwHwYDVR0jBBgwFoAUBKVferOuOZ1PJX1P0omxBYCOXDww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTYwMDJFL0YyODdEMzBBQjAx MTExRUVCQzU4Njk2NEM0RjlBRTAyL0JLVmZlck91T1oxUEpYMVAwb214QllDT1hE dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQktWZmVyT3VPWjFQSlgxUDBvbXhCWUNPWER3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 MDAyRS9GMjg3RDMwQUIwMTExMUVFQkM1ODY5NjRDNEY5QUUwMi9GOUI4QTBBRUIw NDkxMUVFOTg0NDlBMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA6BggrBgEFBQcBBwEB/wQr MCkwGAQCAAEwEgMEAmfUGAMEAosFiAMEA8tfCDANBAIAAjAHAwUAJAJiADANBgkq hkiG9w0BAQsFAAOCAQEAQo1xbtL8nQG5D4K/bu1vB6QuQ/G8eN1L1vzapwXqoXvR 8jOO4RgPzPC3Rx7ifdqiy8lFKMxX2sxGfxup1yUa20jPy9Urk3lysARLFzpXIcgd PXMq2FaRcBRcXNfLN1VJvVS0Ar52GwnM2cfrBfqgMa6w5fVS20wqH9gCivmD6O/T fFRmOxBhab7gzfTaxLsy285+uLYITW9E6J0dfxlZhxBlTWetZO54RtNHqoyLnPRB EyqhEzFlGMbKtH5BSJTNodySLofG6usTHaZHgGMi+sMP+GAsbyLUgFkEPEo1SpHS aclArt72MgBN26AyfBl4InwrXi1yVTTaBXScBDIsEw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:28 2024 by rpki-client on console-fra.rpki-client.org