$ rpki-client -vvf rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/859871F2215D11EE963E9A52C4F9AE02.roa File: 859871F2215D11EE963E9A52C4F9AE02.roa (raw, json) Hash identifier: AcktJiYcY8RYWRnABWd41Q4tnQHfbCZURcsBwSR+FBE= Subject key identifier: AA:0D:FE:8C:AB:D2:06:DB:85:98:C2:B4:86:F1:E0:9B:E1:C6:11:14 Certificate issuer: /CN=A9113217/serialNumber=BB30078CF687787D3A5B3E534C089716A86B13BB Certificate serial: 04 Authority key identifier: BB:30:07:8C:F6:87:78:7D:3A:5B:3E:53:4C:08:97:16:A8:6B:13:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/859871F2215D11EE963E9A52C4F9AE02.roa Signing time: Thu 13 Jul 2023 09:18:28 +0000 ROA not before: Thu 13 Jul 2023 09:18:28 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45906 IP address blocks: 180.131.148.0/22 maxlen: 22 2402:8c80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9113217/serialNumber=BB30078CF687787D3A5B3E534C089716A86B13BB Validity Not Before: Jul 13 09:18:28 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64afc164-def9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:94:85:b8:11:95:91:da:82:fb:d8:5e:1a:ef: 55:8d:73:ea:29:0e:3a:45:b8:be:bf:9d:96:96:b5: 2b:84:d9:58:aa:03:7b:69:42:a8:1b:57:d6:c3:c4: e3:5b:2d:37:de:94:ff:26:00:56:eb:42:ae:cc:88: 08:3a:78:62:98:45:82:fa:7e:08:f4:1f:42:89:7c: 62:8c:01:28:4d:78:00:b2:db:c9:38:40:02:4e:59: b4:6d:1a:b5:a5:cd:db:6c:00:49:f8:95:46:e2:23: df:4a:81:da:d0:d1:95:eb:20:d4:00:cc:33:19:83: 1a:1f:e3:47:53:08:d0:5c:e4:7b:41:88:20:ed:6f: bd:04:5b:e2:34:72:8a:be:bc:d8:f6:92:f3:a7:6b: 01:4e:9e:45:50:a0:03:6c:70:8f:d1:42:b1:49:e6: e9:c7:4e:e7:de:1e:95:ea:65:6f:16:62:68:98:62: e4:78:7d:ea:20:c1:fe:c0:06:7d:77:8b:28:cf:59: 1d:aa:1b:e5:c3:65:ff:36:ec:a3:8e:b9:66:60:04: 24:e4:9e:16:f1:29:45:8f:36:23:21:f6:8b:ee:2c: 74:ae:f3:1e:0f:1e:1c:93:22:c3:32:ff:f8:64:90: 42:31:68:c5:38:67:dc:28:ba:da:b5:90:64:06:73: d1:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:0D:FE:8C:AB:D2:06:DB:85:98:C2:B4:86:F1:E0:9B:E1:C6:11:14 X509v3 Authority Key Identifier: keyid:BB:30:07:8C:F6:87:78:7D:3A:5B:3E:53:4C:08:97:16:A8:6B:13:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/uzAHjPaHeH06Wz5TTAiXFqhrE7s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uzAHjPaHeH06Wz5TTAiXFqhrE7s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9113217/D72196D0215C11EEBCB5B24EC4F9AE02/859871F2215D11EE963E9A52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.131.148.0/22 IPv6: 2402:8c80::/32 Signature Algorithm: sha256WithRSAEncryption 09:9a:b1:d2:77:97:3a:a6:6b:61:50:35:22:11:b4:fe:05:77: f8:ce:0c:63:f6:b5:8c:38:b7:44:c8:6f:65:26:f0:4d:cb:51: 77:ec:8b:d6:74:37:ac:44:de:4f:38:09:d8:77:ac:49:cf:d8: b9:d1:93:ef:04:9e:4a:8d:cb:d4:13:c2:68:76:9d:05:3a:cc: 40:dd:f7:64:03:32:fb:e6:7b:ae:25:70:64:bc:87:26:ae:e9: b1:89:33:b6:d2:fa:74:2f:a5:7a:1f:3f:4c:41:3e:a4:97:38: 20:f3:e5:bc:1c:f7:b9:00:6b:cb:08:9e:74:06:a0:ab:b8:9f: 7a:e6:8f:38:5d:55:75:9e:9c:4b:1c:dd:98:c5:2f:0c:88:d3: f5:3c:4d:bf:ab:52:c9:b5:7d:fc:c3:5e:9e:63:96:0a:d9:57: aa:4a:61:58:50:8c:ea:d0:33:cb:4b:07:cd:cb:f3:ef:c0:21: 46:fc:de:dc:32:79:d1:ad:62:49:a6:f0:e1:a4:fc:e7:e4:8e: 42:83:1e:bb:db:5c:5d:ab:d4:0a:cd:d4:1a:ec:c6:b9:d3:9b: 6c:ad:ae:c2:76:f0:fa:a1:b2:49:5f:f7:cc:57:a7:61:73:9b: 30:d0:03:b4:e7:bb:53:09:88:ca:42:a7:a1:80:9b:bf:36:83: a0:51:2b:c1 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx MzIxNzExMC8GA1UEBRMoQkIzMDA3OENGNjg3Nzg3RDNBNUIzRTUzNEMwODk3MTZB ODZCMTNCQjAeFw0yMzA3MTMwOTE4MjhaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YWZjMTY0LWRlZjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDSlIW4EZWR2oL72F4a71WNc+opDjpFuL6/nZaWtSuE2ViqA3tpQqgbV9bDxONb LTfelP8mAFbrQq7MiAg6eGKYRYL6fgj0H0KJfGKMAShNeACy28k4QAJOWbRtGrWl zdtsAEn4lUbiI99KgdrQ0ZXrINQAzDMZgxof40dTCNBc5HtBiCDtb70EW+I0coq+ vNj2kvOnawFOnkVQoANscI/RQrFJ5unHTufeHpXqZW8WYmiYYuR4feogwf7ABn13 iyjPWR2qG+XDZf827KOOuWZgBCTknhbxKUWPNiMh9ovuLHSu8x4PHhyTIsMy//hk kEIxaMU4Z9woutq1kGQGc9HPAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUqg3+jKvS BtuFmMK0hvHgm+HGERQwHwYDVR0jBBgwFoAUuzAHjPaHeH06Wz5TTAiXFqhrE7sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTEzMjE3L0Q3MjE5NkQwMjE1 QzExRUVCQ0I1QjI0RUM0RjlBRTAyL3V6QUhqUGFIZUgwNld6NVRUQWlYRnFockU3 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdXpBSGpQYUhlSDA2V3o1VFRBaVhGcWhyRTdzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx MzIxNy9ENzIxOTZEMDIxNUMxMUVFQkNCNUIyNEVDNEY5QUUwMi84NTk4NzFGMjIx NUQxMUVFOTYzRTlBNTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEArSDlDANBAIAAjAHAwUAJAKMgDANBgkqhkiG9w0BAQsFAAOC AQEACZqx0neXOqZrYVA1IhG0/gV3+M4MY/a1jDi3RMhvZSbwTctRd+yL1nQ3rETe TzgJ2HesSc/YudGT7wSeSo3L1BPCaHadBTrMQN33ZAMy++Z7riVwZLyHJq7psYkz ttL6dC+leh8/TEE+pJc4IPPlvBz3uQBrywiedAagq7ifeuaPOF1VdZ6cSxzdmMUv DIjT9TxNv6tSybV9/MNenmOWCtlXqkphWFCM6tAzy0sHzcvz78AhRvze3DJ50a1i Sabw4aT85+SOQoMeu9tcXavUCs3UGuzGudObbK2uwnbw+qGySV/3zFenYXObMNAD tOe7UwmIykKnoYCbvzaDoFErwQ== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:28 2024 by rpki-client on console-fra.rpki-client.org