$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/7A63013E3A4F11EEA10D3A7AC4F9AE02.roa File: 7A63013E3A4F11EEA10D3A7AC4F9AE02.roa (raw, json) Hash identifier: lFLb5NpPAwbZnhrazOQk8+Bk3DLcKzcmqfwSS/XE9cE= Subject key identifier: 80:8A:58:25:A1:07:6A:DD:2E:F5:81:5A:B5:2A:09:C0:51:CE:86:89 Certificate issuer: /CN=A9195BA9/serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Certificate serial: 52 Authority key identifier: F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/7A63013E3A4F11EEA10D3A7AC4F9AE02.roa Signing time: Tue 02 Jan 2024 21:18:53 +0000 ROA not before: Tue 02 Jan 2024 21:18:53 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 18106 IP address blocks: 195.133.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9/serialNumber=F65CFD1CF3B1C5A8EA60871FA3C34061DB4CF383 Validity Not Before: Jan 2 21:18:53 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65947dbd-067d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ee:14:73:6e:61:aa:aa:73:9e:20:87:c5:cb: 3d:4a:71:19:0c:9b:13:4b:06:41:e8:49:15:d2:98: 5f:7d:2e:58:88:65:79:64:2d:af:2f:35:1a:ea:97: fd:70:48:33:58:ed:67:36:b5:de:af:59:e0:c7:6b: e5:f0:23:15:3a:23:56:b8:3f:a3:3c:ab:61:57:a3: 18:05:74:90:f7:95:04:c5:29:ec:cc:4a:ab:af:61: 99:4d:58:a3:6e:e4:46:59:8a:9e:85:f7:59:59:8e: dd:e8:2c:a6:df:63:d3:5c:c4:37:e2:a6:80:7b:28: 90:88:8b:21:c7:41:eb:d2:5f:99:28:48:19:33:a9: 29:ef:8d:7b:d6:fe:a3:55:a5:f0:f7:6b:2e:ed:9e: 0b:6f:f8:4b:54:c6:40:42:2f:49:b6:28:2c:32:6c: 88:25:a4:c0:32:4f:6c:0b:cf:a4:94:be:eb:6f:d3: 2d:ab:39:a2:ce:56:d9:d3:11:3c:bb:0c:d4:6b:97: 9e:b9:ab:72:2b:e1:d5:51:2e:c0:d2:c2:f0:15:69: 23:01:39:39:d9:71:47:a6:42:2a:75:00:69:39:eb: 12:a3:ec:9a:c9:c7:45:21:f0:0b:ae:cb:bd:be:9f: fe:0e:21:ae:e5:69:f2:7f:17:45:c6:87:86:ef:da: 2c:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8A:58:25:A1:07:6A:DD:2E:F5:81:5A:B5:2A:09:C0:51:CE:86:89 X509v3 Authority Key Identifier: keyid:F6:5C:FD:1C:F3:B1:C5:A8:EA:60:87:1F:A3:C3:40:61:DB:4C:F3:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/9lz9HPOxxajqYIcfo8NAYdtM84M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/9lz9HPOxxajqYIcfo8NAYdtM84M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/CEE6882237BE11EEA640AB55C4F9AE02/7A63013E3A4F11EEA10D3A7AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 195.133.128.0/20 Signature Algorithm: sha256WithRSAEncryption 71:4c:7e:ec:53:55:5f:f2:ca:f7:80:ab:58:be:5a:d2:38:04: a7:6b:69:d0:44:0f:7b:c2:ff:24:f2:32:9a:d3:52:f9:22:cc: 58:f7:1f:0f:3e:71:b7:fa:eb:17:07:8f:de:ea:d4:3d:6f:6d: cf:07:ea:7b:35:10:4f:ae:20:27:f9:9e:ce:7e:53:71:56:8f: fa:03:ec:d6:fd:8e:c2:25:4f:3c:54:9a:d8:61:ef:ce:cc:ef: 7a:31:6c:6c:d3:da:43:a0:5d:8a:cb:8c:7d:c9:8c:0f:ec:ec: de:38:72:3e:54:66:bb:8c:e0:62:0f:0c:db:4a:25:99:b3:d8: 09:0b:1c:1f:86:ab:78:05:96:9e:4c:90:f6:c3:7f:09:9b:43: 54:ed:94:78:6a:76:37:53:a6:72:9f:b9:d0:a9:f9:d2:6c:b8: f6:85:d2:88:f9:cb:8f:bc:e1:ba:2d:65:34:ea:85:ae:0b:a4: 85:0f:c9:0c:67:af:3f:d2:30:34:b5:68:9d:2f:80:2e:55:7c: ff:7f:d7:22:5d:af:12:0b:41:05:f0:7a:e5:42:3c:1b:46:1e: 4f:3a:b4:21:08:01:4a:97:0a:86:c3:11:27:2e:a1:1e:32:d3: e7:63:67:28:c4:39:e0:35:24:7a:a1:40:b3:64:04:dc:50:c4: 0d:1d:3b:c2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NUJBOTExMC8GA1UEBRMoRjY1Q0ZEMUNGM0IxQzVBOEVBNjA4NzFGQTNDMzQwNjFE QjRDRjM4MzAeFw0yNDAxMDIyMTE4NTNaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTQ3ZGJkLTA2N2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDF7hRzbmGqqnOeIIfFyz1KcRkMmxNLBkHoSRXSmF99LliIZXlkLa8vNRrql/1w SDNY7Wc2td6vWeDHa+XwIxU6I1a4P6M8q2FXoxgFdJD3lQTFKezMSquvYZlNWKNu 5EZZip6F91lZjt3oLKbfY9NcxDfipoB7KJCIiyHHQevSX5koSBkzqSnvjXvW/qNV pfD3ay7tngtv+EtUxkBCL0m2KCwybIglpMAyT2wLz6SUvutv0y2rOaLOVtnTETy7 DNRrl565q3Ir4dVRLsDSwvAVaSMBOTnZcUemQip1AGk56xKj7JrJx0Uh8Auuy72+ n/4OIa7lafJ/F0XGh4bv2ixXAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUgIpYJaEH at0u9YFatSoJwFHOhokwHwYDVR0jBBgwFoAU9lz9HPOxxajqYIcfo8NAYdtM84Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk1QkE5L0NFRTY4ODIyMzdC RTExRUVBNjQwQUI1NUM0RjlBRTAyLzlsejlIUE94eGFqcVlJY2ZvOE5BWWR0TTg0 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvOWx6OUhQT3h4YWpxWUljZm84TkFZZHRNODRNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NUJBOS9DRUU2ODgyMjM3QkUxMUVFQTY0MEFCNTVDNEY5QUUwMi83QTYzMDEzRTNB NEYxMUVFQTEwRDNBN0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBMOFgDANBgkqhkiG9w0BAQsFAAOCAQEAcUx+7FNVX/LK94Cr WL5a0jgEp2tp0EQPe8L/JPIymtNS+SLMWPcfDz5xt/rrFweP3urUPW9tzwfqezUQ T64gJ/mezn5TcVaP+gPs1v2OwiVPPFSa2GHvzszvejFsbNPaQ6BdisuMfcmMD+zs 3jhyPlRmu4zgYg8M20olmbPYCQscH4areAWWnkyQ9sN/CZtDVO2UeGp2N1Omcp+5 0Kn50my49oXSiPnLj7zhui1lNOqFrgukhQ/JDGevP9IwNLVonS+ALlV8/3/XIl2v EgtBBfB65UI8G0YeTzq0IQgBSpcKhsMRJy6hHjLT52NnKMQ54DUkeqFAs2QE3FDE DR07wg== -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:23 2024 by rpki-client on console-ams.rpki-client.org