$ rpki-client -vvf rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/9F5180204DE611ED852CCB87C4F9AE02.roa File: 9F5180204DE611ED852CCB87C4F9AE02.roa (raw, json) Hash identifier: BDwlLXCCxXNubl7PvDq3vGEW66NkJbB5aPbiSJEXr28= Subject key identifier: 3F:FB:60:94:61:ED:44:2B:18:2C:C8:D8:05:CD:9B:A1:9B:6B:BD:1B Certificate issuer: /CN=A9111318/serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Certificate serial: 3439 Authority key identifier: 80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/9F5180204DE611ED852CCB87C4F9AE02.roa Signing time: Sun 24 Dec 2023 08:14:12 +0000 ROA not before: Sun 24 Dec 2023 08:14:12 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 45131 IP address blocks: 163.7.130.0/23 maxlen: 23 163.7.130.0/24 maxlen: 24 163.7.131.0/24 maxlen: 24 163.7.132.0/24 maxlen: 24 163.7.133.0/24 maxlen: 24 2404:138:130::/47 maxlen: 47 2404:138:130::/48 maxlen: 48 2404:138:131::/48 maxlen: 48 2404:138:132::/48 maxlen: 48 2404:138:133::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 14:49:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13369 (0x3439) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9111318/serialNumber=806ABFF463594CAA30DE70A311AE2F849189BC64 Validity Not Before: Dec 24 08:14:12 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6587e854-f967 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:9a:f7:c9:4f:b2:f2:99:f3:68:23:e0:b7:a1: 1b:14:56:7f:c4:c9:13:f0:4c:62:87:ee:ab:f1:61: 9c:fa:7a:c0:ff:8f:26:c0:69:dc:45:cf:f9:73:07: df:62:1e:4a:3f:5a:bd:b8:fc:d4:20:b9:ed:2a:b4: bf:14:0c:24:12:be:2f:fd:50:0b:3d:d0:c2:7c:0f: f7:27:fc:ab:9e:10:3e:c0:78:11:c6:c8:c4:03:96: c3:f7:1b:98:94:08:bd:d5:1e:f9:a1:05:a5:c7:7c: 90:7f:6d:37:02:77:16:94:c7:00:fc:f3:b5:6f:3c: da:5a:cb:04:6b:e6:5a:e3:91:4c:ed:f0:cd:89:93: 7c:cd:00:b3:cd:74:a2:b8:87:4d:d5:82:dd:f0:f2: a1:6e:6f:76:72:bc:64:15:24:84:9d:c9:a4:1a:f7: c0:f6:93:17:8e:4b:63:8f:c8:c1:83:03:51:ef:14: 21:61:5d:dc:c1:e6:16:ba:97:02:af:86:3e:4b:5f: ce:79:34:99:b0:fd:60:ba:26:2c:00:41:7f:0d:e5: 50:03:6b:59:09:91:ca:2b:7b:85:8a:e9:ee:0f:0d: 14:38:3d:df:42:4f:2d:85:0e:d1:e5:73:be:1f:90: 5c:65:c6:23:37:f1:98:62:7d:d0:ec:1f:10:d3:d4: 27:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FB:60:94:61:ED:44:2B:18:2C:C8:D8:05:CD:9B:A1:9B:6B:BD:1B X509v3 Authority Key Identifier: keyid:80:6A:BF:F4:63:59:4C:AA:30:DE:70:A3:11:AE:2F:84:91:89:BC:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gGq_9GNZTKow3nCjEa4vhJGJvGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9111318/DC7451F21D9111E298E746F408B02CD2/9F5180204DE611ED852CCB87C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 163.7.130.0-163.7.133.255 IPv6: 2404:138:130::/46 Signature Algorithm: sha256WithRSAEncryption a2:ff:02:1e:35:4d:6d:58:e4:d9:b0:17:ce:67:50:c8:ad:fd: 12:e6:0c:ca:b8:9f:cf:23:3f:bb:d3:83:f6:5b:c4:73:9a:3f: ad:cb:41:ef:d7:a3:b9:61:e0:a2:07:e2:29:50:92:68:de:32: 1d:f5:5f:8c:02:4b:2f:df:16:0e:b7:d1:4b:3b:54:9a:71:83: 8d:40:20:b4:bb:99:48:b3:0d:43:e7:0e:43:e5:d6:59:83:64: c2:3d:67:3a:7e:65:b9:93:64:9e:1a:1a:d6:4b:83:77:1d:ce: 48:0f:05:91:c5:24:3a:e3:a4:8f:81:f4:e7:e7:98:c6:5d:00: c3:bd:f9:09:e9:9b:26:2e:10:b9:d6:1b:61:f1:d7:4d:bf:1e: 11:dc:0a:06:b7:9c:b2:8a:17:cf:fe:46:33:17:39:9b:a0:0c: 9a:e9:e7:8e:5b:71:98:c8:d8:a1:84:d3:0f:ed:97:ff:6c:68: 15:8f:37:3b:b6:23:58:ef:63:ad:75:fb:98:e9:d1:b8:69:d4: 61:1d:dd:19:d7:c2:c6:ce:43:4e:c9:03:73:3c:92:1c:88:42: 98:b4:d7:9c:f1:2e:1d:6c:9a:c0:79:cf:cc:61:1c:1f:4d:7a: b1:e7:80:dc:5e:b5:64:21:86:da:79:bc:c7:e5:75:6a:e9:2c: 4a:3c:8f:5d -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgICNDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEzMTgxMTAvBgNVBAUTKDgwNkFCRkY0NjM1OTRDQUEzMERFNzBBMzExQUUyRjg0 OTE4OUJDNjQwHhcNMjMxMjI0MDgxNDEyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg3ZTg1NC1mOTY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA05r3yU+y8pnzaCPgt6EbFFZ/xMkT8Exih+6r8WGc+nrA/48mwGncRc/5cwff Yh5KP1q9uPzUILntKrS/FAwkEr4v/VALPdDCfA/3J/yrnhA+wHgRxsjEA5bD9xuY lAi91R75oQWlx3yQf203AncWlMcA/PO1bzzaWssEa+Za45FM7fDNiZN8zQCzzXSi uIdN1YLd8PKhbm92crxkFSSEncmkGvfA9pMXjktjj8jBgwNR7xQhYV3cweYWupcC r4Y+S1/OeTSZsP1guiYsAEF/DeVQA2tZCZHKK3uFiunuDw0UOD3fQk8thQ7R5XO+ H5BcZcYjN/GYYn3Q7B8Q09QnPwIDAQABo4ICrjCCAqowHQYDVR0OBBYEFD/7YJRh 7UQrGCzI2AXNm6Gba70bMB8GA1UdIwQYMBaAFIBqv/RjWUyqMN5woxGuL4SRibxk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTMxOC9EQzc0NTFGMjFE OTExMUUyOThFNzQ2RjQwOEIwMkNEMi9nR3FfOUdOWlRLb3czbkNqRWE0dmhKR0p2 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dHcV85R05aVEtvdzNuQ2pFYTR2aEpHSnZHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEzMTgvREM3NDUxRjIxRDkxMTFFMjk4RTc0NkY0MDhCMDJDRDIvOUY1MTgwMjA0 REU2MTFFRDg1MkNDQjg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOAYIKwYBBQUHAQcBAf8E KTAnMBQEAgABMA4wDAMEAaMHggMEAaMHhDAPBAIAAjAJAwcCJAQBOAEwMA0GCSqG SIb3DQEBCwUAA4IBAQCi/wIeNU1tWOTZsBfOZ1DIrf0S5gzKuJ/PIz+704P2W8Rz mj+ty0Hv16O5YeCiB+IpUJJo3jId9V+MAksv3xYOt9FLO1SacYONQCC0u5lIsw1D 5w5D5dZZg2TCPWc6fmW5k2SeGhrWS4N3Hc5IDwWRxSQ646SPgfTn55jGXQDDvfkJ 6ZsmLhC51hth8ddNvx4R3AoGt5yyihfP/kYzFzmboAya6eeOW3GYyNihhNMP7Zf/ bGgVjzc7tiNY72OtdfuY6dG4adRhHd0Z18LGzkNOyQNzPJIciEKYtNec8S4dbJrA ec/MYRwfTXqx54DcXrVkIYbaebzH5XVq6SxKPI9d -----END CERTIFICATE-----Generated at Mon May 20 17:22:03 2024 by rpki-client on console-fra.rpki-client.org