$ rpki-client -vvf rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/6AF5A9FAC6C811ECA5A9AB33C4F9AE02.roa File: 6AF5A9FAC6C811ECA5A9AB33C4F9AE02.roa (raw, json) Hash identifier: wMOZvvUdhpLnHFRtGb9ZgJxGMkQuxJPR5+ohVmHOlM4= Subject key identifier: CC:F0:59:7D:E0:F2:D7:DF:C5:02:7E:F2:42:F3:DB:10:8D:ED:0F:1D Certificate issuer: /CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Certificate serial: 01E5 Authority key identifier: 33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/6AF5A9FAC6C811ECA5A9AB33C4F9AE02.roa Signing time: Sat 19 Aug 2023 02:43:56 +0000 ROA not before: Sat 19 Aug 2023 02:43:56 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132742 IP address blocks: 45.122.136.0/22 maxlen: 24 103.63.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 485 (0x1e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191E08/serialNumber=33B6953295801038F017FA65D470781A5CC772C0 Validity Not Before: Aug 19 02:43:56 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e02c6b-34f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:39:83:cd:9b:63:b4:58:62:12:59:a9:e5:60: 48:04:ee:e4:6f:58:e3:99:ff:e9:ac:bd:e1:5d:2e: 90:c5:8e:0f:4c:c2:67:db:33:ec:5a:8d:34:3d:69: ab:10:31:75:44:82:17:2b:6b:00:58:07:5e:59:09: 32:58:fb:13:a5:d2:6f:22:ca:71:fb:f1:de:16:f9: 89:a5:e5:a2:d8:a4:62:f1:c5:ab:3d:6c:12:a9:aa: a3:6d:58:c1:f4:a7:b6:83:50:1c:bb:e5:13:23:ae: a2:aa:14:25:a6:45:a8:06:ae:8a:74:9a:9a:3c:52: f5:75:63:04:6b:26:60:b9:50:4f:f3:6b:d7:4d:56: 78:6c:94:71:fc:59:3c:37:0a:c7:87:d4:08:7b:17: 66:05:2e:67:1b:2a:46:2f:d8:f9:a2:53:0c:ff:03: 28:63:45:3f:8e:60:58:e6:5e:fc:5d:fc:f1:27:40: fd:c8:92:7a:1d:cb:41:e5:d3:68:df:71:8b:81:b6: 7b:19:b4:08:99:09:b2:15:81:db:95:72:a0:20:9e: 9d:7f:c9:d2:9a:14:a0:9a:11:ba:27:7c:2e:17:61: 81:57:03:e0:f6:69:0a:12:62:81:2a:d8:7d:cf:f0: c5:50:6b:f3:1c:78:8d:9a:1d:32:56:d2:a3:e9:82: 2f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F0:59:7D:E0:F2:D7:DF:C5:02:7E:F2:42:F3:DB:10:8D:ED:0F:1D X509v3 Authority Key Identifier: keyid:33:B6:95:32:95:80:10:38:F0:17:FA:65:D4:70:78:1A:5C:C7:72:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/M7aVMpWAEDjwF_pl1HB4GlzHcsA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/M7aVMpWAEDjwF_pl1HB4GlzHcsA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191E08/9EC631ECC60911ECB460EC57C4F9AE02/6AF5A9FAC6C811ECA5A9AB33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.122.136.0/22 103.63.4.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:3c:37:7e:73:53:a1:92:5e:55:3b:0b:43:29:65:c2:7f:ed: 7c:8a:ce:1a:94:c0:68:65:2e:6c:ac:d9:f0:eb:db:b2:9b:cf: 3f:cc:17:43:40:5b:fb:6f:cc:16:12:e4:65:e6:18:e5:30:e4: 56:11:ef:65:99:07:9f:b0:70:f8:1b:b0:03:4d:f0:bc:42:66: cc:c7:76:cb:92:57:fb:d4:43:2f:6a:2f:06:76:b4:f2:1b:9e: 64:61:3e:31:24:02:79:26:f3:73:79:35:b2:be:aa:b2:be:44: fc:63:71:0c:b4:e5:f6:86:71:f1:ae:ed:91:68:c8:82:1d:c4: fe:dc:cf:b0:41:f2:72:ef:60:b5:e9:7b:b3:b7:ac:e2:f6:1d: c0:41:80:16:fc:f1:16:1d:77:a5:b4:73:76:47:db:6d:f8:9b: e7:6e:1a:1a:5c:3c:76:22:e2:2f:ac:d5:c4:f1:77:d2:03:8f: 36:b7:6b:5f:7a:a8:97:65:63:e7:ef:b7:10:de:df:19:a7:6d: 23:80:30:9a:4c:79:33:88:77:55:2d:b6:a2:93:78:61:03:fb: 07:cc:92:58:4c:30:d2:3b:a6:21:34:5d:ee:ed:e0:f4:0c:10: 3f:b2:c5:03:d0:86:d4:2b:73:bd:5d:3c:df:84:cf:8f:94:e3: c7:f7:ad:7a -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAeUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFFMDgxMTAvBgNVBAUTKDMzQjY5NTMyOTU4MDEwMzhGMDE3RkE2NUQ0NzA3ODFB NUNDNzcyQzAwHhcNMjMwODE5MDI0MzU2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGUwMmM2Yi0zNGYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7zmDzZtjtFhiElmp5WBIBO7kb1jjmf/prL3hXS6QxY4PTMJn2zPsWo00PWmr EDF1RIIXK2sAWAdeWQkyWPsTpdJvIspx+/HeFvmJpeWi2KRi8cWrPWwSqaqjbVjB 9Ke2g1Acu+UTI66iqhQlpkWoBq6KdJqaPFL1dWMEayZguVBP82vXTVZ4bJRx/Fk8 NwrHh9QIexdmBS5nGypGL9j5olMM/wMoY0U/jmBY5l78XfzxJ0D9yJJ6HctB5dNo 33GLgbZ7GbQImQmyFYHblXKgIJ6df8nSmhSgmhG6J3wuF2GBVwPg9mkKEmKBKth9 z/DFUGvzHHiNmh0yVtKj6YIv6QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMzwWX3g 8tffxQJ+8kLz2xCN7Q8dMB8GA1UdIwQYMBaAFDO2lTKVgBA48Bf6ZdRweBpcx3LA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUUwOC85RUM2MzFFQ0M2 MDkxMUVDQjQ2MEVDNTdDNEY5QUUwMi9NN2FWTXBXQUVEandGX3BsMUhCNEdsekhj c0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL003YVZNcFdBRURqd0ZfcGwxSEI0R2x6SGNzQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFFMDgvOUVDNjMxRUNDNjA5MTFFQ0I0NjBFQzU3QzRGOUFFMDIvNkFGNUE5RkFD NkM4MTFFQ0E1QTlBQjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteogDBAJnPwQwDQYJKoZIhvcNAQELBQADggEBAD88N35z U6GSXlU7C0MpZcJ/7XyKzhqUwGhlLmys2fDr27Kbzz/MF0NAW/tvzBYS5GXmGOUw 5FYR72WZB5+wcPgbsANN8LxCZszHdsuSV/vUQy9qLwZ2tPIbnmRhPjEkAnkm83N5 NbK+qrK+RPxjcQy05faGcfGu7ZFoyIIdxP7cz7BB8nLvYLXpe7O3rOL2HcBBgBb8 8RYdd6W0c3ZH2234m+duGhpcPHYi4i+s1cTxd9IDjza3a196qJdlY+fvtxDe3xmn bSOAMJpMeTOId1UttqKTeGED+wfMklhMMNI7piE0Xe7t4PQMED+yxQPQhtQrc71d PN+Ez4+U48f3rXo= -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:43 2024 by rpki-client on console-fra.rpki-client.org