$ rpki-client -vvf rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/FFFC26F0A51C11EC8394365BC4F9AE02.roa File: FFFC26F0A51C11EC8394365BC4F9AE02.roa (raw, json) Hash identifier: kJm8d3VofUWXIWfNiZo1kT5zH3QjOUC6vapBgoKHOjg= Subject key identifier: 03:03:53:62:CC:E4:0B:85:06:95:95:7F:3B:67:EB:06:AA:34:86:CC Certificate issuer: /CN=A9114DDF/serialNumber=E8671750344F18C2AF747FFAF255850EBC79D01F Certificate serial: 0243 Authority key identifier: E8:67:17:50:34:4F:18:C2:AF:74:7F:FA:F2:55:85:0E:BC:79:D0:1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GcXUDRPGMKvdH_68lWFDrx50B8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/FFFC26F0A51C11EC8394365BC4F9AE02.roa Signing time: Tue 05 Sep 2023 02:33:27 +0000 ROA not before: Tue 05 Sep 2023 02:33:27 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 38182 IP address blocks: 45.126.88.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/6GcXUDRPGMKvdH_68lWFDrx50B8.crl rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/6GcXUDRPGMKvdH_68lWFDrx50B8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GcXUDRPGMKvdH_68lWFDrx50B8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 579 (0x243) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114DDF/serialNumber=E8671750344F18C2AF747FFAF255850EBC79D01F Validity Not Before: Sep 5 02:33:27 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f69377-6d2b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:43:3c:ac:b5:6b:82:dd:14:95:d4:ac:a0:14: 86:d1:9c:d3:1f:2b:7a:36:47:4f:68:5e:3f:e3:70: e8:84:07:71:93:10:41:df:57:69:9b:cd:76:11:71: 16:5e:b4:fc:1d:f2:40:1a:7b:7c:7a:9c:58:20:11: 8b:02:58:0d:29:23:bf:25:10:a3:b2:be:f3:a9:b4: 8a:0b:ed:c0:0d:ba:34:bc:6b:00:04:fb:ca:ec:04: be:5b:55:5e:34:a9:c5:c0:1d:2b:b3:75:a0:c4:72: 54:fd:34:1d:02:b4:94:1e:f4:18:31:36:fb:6e:3a: 4d:76:a4:df:a8:f3:e7:47:72:93:21:41:1b:3d:6b: 96:85:f4:77:9a:bf:5f:8b:4a:b0:57:51:0d:9a:60: d4:35:0b:da:79:da:3f:dc:b7:37:6a:f9:93:ae:d9: 8f:4e:54:8e:ef:b0:24:76:bd:59:e1:e6:e9:8c:5c: 57:6b:d1:cf:dd:da:5d:84:44:d1:e3:97:c2:36:12: 3a:13:39:3f:7d:0b:ec:a8:32:78:72:dc:ee:61:5c: 7c:ae:63:1e:a3:e7:ce:6b:aa:0a:a3:45:d4:40:ad: 2c:02:cd:11:d4:33:d8:62:30:75:1a:8b:55:9b:96: a0:6b:eb:16:30:b7:70:2b:b0:d6:86:43:a9:47:4d: b6:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:03:53:62:CC:E4:0B:85:06:95:95:7F:3B:67:EB:06:AA:34:86:CC X509v3 Authority Key Identifier: keyid:E8:67:17:50:34:4F:18:C2:AF:74:7F:FA:F2:55:85:0E:BC:79:D0:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/6GcXUDRPGMKvdH_68lWFDrx50B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6GcXUDRPGMKvdH_68lWFDrx50B8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114DDF/5B06FEF2A50A11ECB2778D5CC4F9AE02/FFFC26F0A51C11EC8394365BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.126.88.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:6a:7d:dd:96:b2:7d:36:6b:b0:aa:63:c2:2c:cf:11:f7:5f: 50:0c:52:3e:7d:45:13:17:54:f6:87:6e:2a:2c:a1:17:4d:06: d2:7e:65:f2:4c:46:dc:9a:97:0d:ea:10:dc:62:f1:83:dd:66: fb:f6:3d:74:ac:2b:90:5e:3a:0e:a4:82:ab:76:41:68:79:16: 1a:3f:d2:c7:cb:07:ac:36:be:6e:62:80:08:64:b5:e6:b8:ad: 1f:29:d1:b2:cf:16:89:84:23:da:2f:09:d5:b2:41:73:c2:d4: 95:b1:f2:59:d3:e9:31:16:91:14:aa:34:65:fc:00:c5:53:5d: 81:39:ed:1b:47:06:91:33:94:a1:a5:6a:bf:84:a2:25:68:97: 68:67:e6:2d:f2:e1:c5:11:d4:1b:5d:4d:56:05:af:43:a5:24: e0:9c:c3:51:a8:b7:8a:30:68:45:bf:25:71:d6:09:6f:0f:8b: 54:9e:9e:d9:6e:e0:7f:cb:74:4f:c9:64:34:6e:91:4b:28:d0: f9:54:40:3c:8c:2f:2a:07:91:7d:a9:4a:e1:89:b3:85:c7:0d: c0:7d:2f:ed:8a:fd:a8:09:93:9c:2d:03:3b:ab:97:e8:b0:01: 64:d2:d7:15:bf:4e:e3:16:eb:a8:4d:a9:24:f9:3d:04:0f:78: 73:25:9b:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTREREYxMTAvBgNVBAUTKEU4NjcxNzUwMzQ0RjE4QzJBRjc0N0ZGQUYyNTU4NTBF QkM3OUQwMUYwHhcNMjMwOTA1MDIzMzI3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2OTM3Ny02ZDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuUM8rLVrgt0UldSsoBSG0ZzTHyt6NkdPaF4/43DohAdxkxBB31dpm812EXEW XrT8HfJAGnt8epxYIBGLAlgNKSO/JRCjsr7zqbSKC+3ADbo0vGsABPvK7AS+W1Ve NKnFwB0rs3WgxHJU/TQdArSUHvQYMTb7bjpNdqTfqPPnR3KTIUEbPWuWhfR3mr9f i0qwV1ENmmDUNQvaedo/3Lc3avmTrtmPTlSO77Akdr1Z4ebpjFxXa9HP3dpdhETR 45fCNhI6Ezk/fQvsqDJ4ctzuYVx8rmMeo+fOa6oKo0XUQK0sAs0R1DPYYjB1GotV m5aga+sWMLdwK7DWhkOpR022vwIDAQABo4IClTCCApEwHQYDVR0OBBYEFAMDU2LM 5AuFBpWVfztn6waqNIbMMB8GA1UdIwQYMBaAFOhnF1A0TxjCr3R/+vJVhQ68edAf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNERERi81QjA2RkVGMkE1 MEExMUVDQjI3NzhENUNDNEY5QUUwMi82R2NYVURSUEdNS3ZkSF82OGxXRkRyeDUw QjguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZHY1hVRFJQR01LdmRIXzY4bFdGRHJ4NTBCOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTREREYvNUIwNkZFRjJBNTBBMTFFQ0IyNzc4RDVDQzRGOUFFMDIvRkZGQzI2RjBB NTFDMTFFQzgzOTQzNjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEtflgwDQYJKoZIhvcNAQELBQADggEBABpqfd2Wsn02a7Cq Y8IszxH3X1AMUj59RRMXVPaHbiosoRdNBtJ+ZfJMRtyalw3qENxi8YPdZvv2PXSs K5BeOg6kgqt2QWh5Fho/0sfLB6w2vm5igAhktea4rR8p0bLPFomEI9ovCdWyQXPC 1JWx8lnT6TEWkRSqNGX8AMVTXYE57RtHBpEzlKGlar+EoiVol2hn5i3y4cUR1Btd TVYFr0OlJOCcw1Got4owaEW/JXHWCW8Pi1Sentlu4H/LdE/JZDRukUso0PlUQDyM LyoHkX2pSuGJs4XHDcB9L+2K/agJk5wtAzurl+iwAWTS1xW/TuMW66hNqST5PQQP eHMlm4I= -----END CERTIFICATE-----Generated at Fri May 17 04:26:38 2024 by rpki-client on console-fra.rpki-client.org