$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/9F0BF8AE48C711ECAA1A222EC4F9AE02.roa File: 9F0BF8AE48C711ECAA1A222EC4F9AE02.roa (raw, json) Hash identifier: OAoghG2E90lsAd2tlCnMlUB+5KpV9VdtREKSeaWiSfM= Subject key identifier: 90:5D:2B:20:FD:53:75:EF:A2:C4:03:96:2E:C2:AC:68:CE:AB:26:1F Certificate issuer: /CN=A91B9B37/serialNumber=47388826B81CEBCB5D58EBA41039160D247BC17F Certificate serial: 0338 Authority key identifier: 47:38:88:26:B8:1C:EB:CB:5D:58:EB:A4:10:39:16:0D:24:7B:C1:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RziIJrgc68tdWOukEDkWDSR7wX8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/9F0BF8AE48C711ECAA1A222EC4F9AE02.roa Signing time: Fri 29 Sep 2023 01:43:29 +0000 ROA not before: Fri 29 Sep 2023 01:43:29 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45768 IP address blocks: 202.129.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/RziIJrgc68tdWOukEDkWDSR7wX8.crl rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/RziIJrgc68tdWOukEDkWDSR7wX8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RziIJrgc68tdWOukEDkWDSR7wX8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 22:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 824 (0x338) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9B37/serialNumber=47388826B81CEBCB5D58EBA41039160D247BC17F Validity Not Before: Sep 29 01:43:29 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65162bc1-1043 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bd:02:46:fc:21:2f:a6:01:bf:17:c3:f5:80: bf:27:e5:5b:f5:7f:15:2b:bb:d7:92:fe:ad:be:9d: 43:48:39:13:f9:bc:08:a7:8c:a4:9f:e9:4d:3f:38: 06:3c:2b:01:2e:44:1e:d1:80:5f:bc:f4:ba:f1:07: ce:27:77:77:aa:93:4d:9a:a9:3b:5a:d6:8c:01:f2: e5:48:68:79:54:f3:5a:7e:56:92:f6:34:aa:78:fb: 40:a3:f4:a8:bb:9c:99:ab:6f:0b:ad:7d:d1:16:35: 27:8b:b9:85:24:ee:d1:c9:96:5b:33:7f:cf:25:78: 38:a3:ab:3f:62:81:51:99:d9:98:e6:60:cd:f7:85: eb:88:05:ef:02:80:0e:49:4c:30:b0:05:46:02:b3: fe:ee:78:79:35:d5:dc:6f:fa:14:de:c6:fd:0f:d8: 9d:09:b9:92:10:06:23:6c:c9:79:7f:85:4c:87:3d: 20:47:44:8f:1f:2e:41:4b:88:0a:5d:e1:67:4e:b2: 18:1c:b1:23:57:d2:dc:3a:39:63:ea:cb:22:07:e9: 75:32:76:e3:ec:fc:3d:e7:f2:bc:9c:b0:1f:e7:22: c7:14:e7:8e:ea:01:4d:52:7a:67:7b:76:cd:7a:e4: f5:f1:e3:ae:9d:90:fc:04:9d:19:b5:77:c2:3c:a5: 0a:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:5D:2B:20:FD:53:75:EF:A2:C4:03:96:2E:C2:AC:68:CE:AB:26:1F X509v3 Authority Key Identifier: keyid:47:38:88:26:B8:1C:EB:CB:5D:58:EB:A4:10:39:16:0D:24:7B:C1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/RziIJrgc68tdWOukEDkWDSR7wX8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RziIJrgc68tdWOukEDkWDSR7wX8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9B37/9C39BE1648C411EC94E12D85C4F9AE02/9F0BF8AE48C711ECAA1A222EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.129.252.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:8b:42:9a:d3:98:e5:bd:5f:86:b2:72:18:05:a7:62:cc:77: d0:c6:8f:5f:60:33:0f:a2:36:e3:27:8c:7f:49:4a:b2:4d:f0: 7b:54:46:0e:9a:de:88:6d:93:b3:10:d5:a2:0b:02:6c:11:d0: 0d:cc:25:e8:4e:61:7e:96:d3:80:c5:e7:66:d7:f4:44:d8:11: aa:3f:82:0d:6a:a7:db:6f:f0:94:ee:3c:31:05:9d:0a:5f:12: 41:df:f4:59:0a:63:23:3b:7e:ca:2a:8b:f9:a5:c7:66:41:73: 1f:90:7e:76:90:e6:17:1b:d4:d2:50:0c:dd:fa:d1:ea:a5:96: b2:56:65:9f:c0:2b:d2:08:ad:ff:d0:ac:6f:74:51:83:56:7e: 62:d4:50:72:31:5d:66:14:b9:33:d9:a7:ed:07:11:28:1d:43: 7d:6f:20:cd:74:bd:08:a9:56:3e:90:ed:16:e1:b1:74:2c:fa: 75:8c:eb:95:4e:4c:c2:e6:45:d0:66:c3:bc:6f:2a:a4:2d:14: d0:8c:d6:4a:cd:87:aa:6c:6d:09:7c:89:ef:36:9d:ca:9a:e7: ad:c9:2f:88:91:d8:b0:72:e4:42:31:0b:b2:0b:ce:b7:28:ce: 70:94:8b:2d:0c:1e:99:33:60:aa:64:94:32:2a:04:e8:65:2b: 3c:6d:1e:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAzgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjlCMzcxMTAvBgNVBAUTKDQ3Mzg4ODI2QjgxQ0VCQ0I1RDU4RUJBNDEwMzkxNjBE MjQ3QkMxN0YwHhcNMjMwOTI5MDE0MzI5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE2MmJjMS0xMDQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmL0CRvwhL6YBvxfD9YC/J+Vb9X8VK7vXkv6tvp1DSDkT+bwIp4ykn+lNPzgG PCsBLkQe0YBfvPS68QfOJ3d3qpNNmqk7WtaMAfLlSGh5VPNaflaS9jSqePtAo/So u5yZq28LrX3RFjUni7mFJO7RyZZbM3/PJXg4o6s/YoFRmdmY5mDN94XriAXvAoAO SUwwsAVGArP+7nh5NdXcb/oU3sb9D9idCbmSEAYjbMl5f4VMhz0gR0SPHy5BS4gK XeFnTrIYHLEjV9LcOjlj6ssiB+l1Mnbj7Pw95/K8nLAf5yLHFOeO6gFNUnpne3bN euT18eOunZD8BJ0ZtXfCPKUKZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJBdKyD9 U3XvosQDli7CrGjOqyYfMB8GA1UdIwQYMBaAFEc4iCa4HOvLXVjrpBA5Fg0ke8F/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOUIzNy85QzM5QkUxNjQ4 QzQxMUVDOTRFMTJEODVDNEY5QUUwMi9SemlJSnJnYzY4dGRXT3VrRURrV0RTUjd3 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1J6aUlKcmdjNjh0ZFdPdWtFRGtXRFNSN3dYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjlCMzcvOUMzOUJFMTY0OEM0MTFFQzk0RTEyRDg1QzRGOUFFMDIvOUYwQkY4QUU0 OEM3MTFFQ0FBMUEyMjJFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKgfwwDQYJKoZIhvcNAQELBQADggEBAFuLQprTmOW9X4ay chgFp2LMd9DGj19gMw+iNuMnjH9JSrJN8HtURg6a3ohtk7MQ1aILAmwR0A3MJehO YX6W04DF52bX9ETYEao/gg1qp9tv8JTuPDEFnQpfEkHf9FkKYyM7fsoqi/mlx2ZB cx+QfnaQ5hcb1NJQDN360eqllrJWZZ/AK9IIrf/QrG90UYNWfmLUUHIxXWYUuTPZ p+0HESgdQ31vIM10vQipVj6Q7RbhsXQs+nWM65VOTMLmRdBmw7xvKqQtFNCM1krN h6psbQl8ie82ncqa563JL4iR2LBy5EIxC7ILzrcoznCUiy0MHpkzYKpklDIqBOhl KzxtHqA= -----END CERTIFICATE-----Generated at Thu Jun 13 02:52:04 2024 by rpki-client on console-fra.rpki-client.org