$ rpki-client -vvf rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/3A9AD3CEDAD411EBB35DA50AC4F9AE02.roa File: 3A9AD3CEDAD411EBB35DA50AC4F9AE02.roa (raw, json) Hash identifier: eI3aP7gs3lNpmRZa2OZTVxuNqlUXUI1pFH4qfvpr40k= Subject key identifier: 20:51:5F:82:E8:50:C6:7A:BE:7C:6A:84:AA:C7:2C:02:B4:6D:9C:D6 Certificate issuer: /CN=A9164860/serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E Certificate serial: 1147 Authority key identifier: BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/3A9AD3CEDAD411EBB35DA50AC4F9AE02.roa Signing time: Sat 30 Dec 2023 17:54:56 +0000 ROA not before: Sat 30 Dec 2023 17:54:56 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141013 IP address blocks: 116.89.245.0/24 maxlen: 24 2401:fdc0:10::/44 maxlen: 44 2401:fdc0:20::/44 maxlen: 44 2401:fdc0:30::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.crl rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:10:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4423 (0x1147) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9164860/serialNumber=BC536C00F85F59041D9C4C2961F72242BF60D51E Validity Not Before: Dec 30 17:54:56 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65905970-2816 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6f:e5:6c:34:f9:04:65:d7:10:9a:9b:82:d6: 84:91:27:3e:f9:ce:9e:48:7f:2d:a6:28:1e:fb:63: 68:1b:ff:fb:be:ad:eb:f6:76:2f:0e:1c:a2:6c:9c: 2b:7d:f4:63:83:fb:c0:23:0b:56:48:8d:58:ec:80: 21:22:2a:2b:74:bb:1a:00:d7:46:55:ac:91:ac:1f: 6c:d1:87:be:98:dd:a3:6d:d4:9a:d8:e2:4f:e4:6b: 85:b1:0f:7f:74:b9:30:9f:ab:77:c7:ef:6c:70:74: 3f:f4:82:bf:ac:c8:b4:c9:18:f5:13:7b:da:ae:1e: 28:2d:06:b9:4b:7f:7e:b6:36:bd:f7:ef:a2:11:8f: 73:05:9a:68:9e:84:3c:90:0b:d1:e9:75:b7:15:4b: cc:5b:56:04:af:79:c7:24:69:b6:bc:9c:24:5c:5c: 09:95:ac:13:b3:45:a5:c9:c9:79:18:83:e0:68:f6: ec:48:4a:ac:59:af:08:e3:8c:1c:d2:b1:f4:8a:98: b7:8e:60:8a:eb:63:b1:ee:c9:ec:a9:6b:f6:78:c9: ef:b9:5a:0d:c9:22:52:0d:fc:35:09:f3:37:a3:ce: 77:3b:83:a4:63:c5:d6:a7:f9:51:76:50:66:b2:1b: 4d:57:98:b7:4e:c5:e2:30:6a:6d:60:1c:81:ba:e6: 0e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:51:5F:82:E8:50:C6:7A:BE:7C:6A:84:AA:C7:2C:02:B4:6D:9C:D6 X509v3 Authority Key Identifier: keyid:BC:53:6C:00:F8:5F:59:04:1D:9C:4C:29:61:F7:22:42:BF:60:D5:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/vFNsAPhfWQQdnEwpYfciQr9g1R4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vFNsAPhfWQQdnEwpYfciQr9g1R4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9164860/B401C982E97011E8B0359359C4F9AE02/3A9AD3CEDAD411EBB35DA50AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.89.245.0/24 IPv6: 2401:fdc0:10::-2401:fdc0:3f:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 0f:b2:bc:75:31:f2:0f:a3:c3:13:72:7f:eb:be:03:6b:dc:b8: 2a:d1:7a:78:b2:78:a3:0b:3c:f0:1f:c4:d0:c2:5f:fd:4b:0c: 99:5d:aa:3d:33:8a:34:0a:1a:39:58:a2:84:f4:b3:a6:43:6d: c4:c8:a0:03:21:cf:71:cc:b6:95:34:1c:bb:84:15:99:e7:22: 9c:1e:38:a7:f8:ec:0d:1e:a7:69:47:7c:09:46:dc:30:8f:51: 5d:51:d4:d5:1f:2f:d4:39:6b:49:62:38:bc:f9:85:20:d3:69: 28:83:f1:2a:4d:0a:5d:4c:4e:4b:f9:dc:a7:39:88:4a:9f:a1: c0:f6:d9:9b:7c:e3:26:82:61:d4:f8:13:cb:58:2a:c2:91:28: a1:20:17:e5:1a:3f:d3:ab:09:ac:23:8c:bd:33:26:34:f4:bc: 18:ff:46:9d:5f:59:83:31:8f:22:64:08:c8:e9:45:14:d7:9f: de:f8:5c:6a:73:46:17:1b:b6:07:94:b9:b7:22:9d:d0:39:65: f1:74:f8:07:2a:2a:f9:de:b2:4a:e4:0b:97:1b:95:ec:77:af: 9c:67:74:5b:fc:fb:b0:1d:7a:51:95:3b:6f:52:60:29:d5:88: ff:19:c9:69:7e:d9:91:7b:11:82:73:df:f8:60:23:0c:2b:4c: 3b:c3:93:cd -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICEUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjQ4NjAxMTAvBgNVBAUTKEJDNTM2QzAwRjg1RjU5MDQxRDlDNEMyOTYxRjcyMjQy QkY2MEQ1MUUwHhcNMjMxMjMwMTc1NDU2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkwNTk3MC0yODE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt2/lbDT5BGXXEJqbgtaEkSc++c6eSH8tpige+2NoG//7vq3r9nYvDhyibJwr ffRjg/vAIwtWSI1Y7IAhIiordLsaANdGVayRrB9s0Ye+mN2jbdSa2OJP5GuFsQ9/ dLkwn6t3x+9scHQ/9IK/rMi0yRj1E3varh4oLQa5S39+tja99++iEY9zBZponoQ8 kAvR6XW3FUvMW1YEr3nHJGm2vJwkXFwJlawTs0Wlycl5GIPgaPbsSEqsWa8I44wc 0rH0ipi3jmCK62Ox7snsqWv2eMnvuVoNySJSDfw1CfM3o853O4OkY8XWp/lRdlBm shtNV5i3TsXiMGptYByBuuYOXQIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFCBRX4Lo UMZ6vnxqhKrHLAK0bZzWMB8GA1UdIwQYMBaAFLxTbAD4X1kEHZxMKWH3IkK/YNUe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NDg2MC9CNDAxQzk4MkU5 NzAxMUU4QjAzNTkzNTlDNEY5QUUwMi92Rk5zQVBoZldRUWRuRXdwWWZjaVFyOWcx UjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZGTnNBUGhmV1FRZG5Fd3BZZmNpUXI5ZzFSNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjQ4NjAvQjQwMUM5ODJFOTcwMTFFOEIwMzU5MzU5QzRGOUFFMDIvM0E5QUQzQ0VE QUQ0MTFFQkIzNURBNTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAB0WfUwGgQCAAIwFDASAwcEJAH9wAAQAwcGJAH9wAAAMA0G CSqGSIb3DQEBCwUAA4IBAQAPsrx1MfIPo8MTcn/rvgNr3Lgq0Xp4snijCzzwH8TQ wl/9SwyZXao9M4o0Cho5WKKE9LOmQ23EyKADIc9xzLaVNBy7hBWZ5yKcHjin+OwN HqdpR3wJRtwwj1FdUdTVHy/UOWtJYji8+YUg02kog/EqTQpdTE5L+dynOYhKn6HA 9tmbfOMmgmHU+BPLWCrCkSihIBflGj/TqwmsI4y9MyY09LwY/0adX1mDMY8iZAjI 6UUU15/e+Fxqc0YXG7YHlLm3Ip3QOWXxdPgHKir53rJK5AuXG5Xsd6+cZ3Rb/Puw HXpRlTtvUmAp1Yj/GclpftmRexGCc9/4YCMMK0w7w5PN -----END CERTIFICATE-----Generated at Fri May 31 19:47:49 2024 by rpki-client on console-fra.rpki-client.org