$ rpki-client -vvf rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/0F38BBFCB9E011EBAD14BB7DC4F9AE02.roa File: 0F38BBFCB9E011EBAD14BB7DC4F9AE02.roa (raw, json) Hash identifier: GJqL66srOvN0hcIg7XUn9+XsENSZfJgtxJ+CLpIWsXE= Subject key identifier: 6F:BC:A9:87:2B:4C:B0:0F:DC:A1:00:0E:D8:E7:48:99:57:CD:49:BC Certificate issuer: /CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Certificate serial: 086B Authority key identifier: 73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/0F38BBFCB9E011EBAD14BB7DC4F9AE02.roa Signing time: Thu 22 Jun 2023 21:52:35 +0000 ROA not before: Thu 22 Jun 2023 21:52:35 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 9269 IP address blocks: 138.19.0.0/16 maxlen: 24 155.137.128.0/17 maxlen: 24 159.117.224.0/19 maxlen: 24 165.84.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2155 (0x86b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911647C/serialNumber=737E61DAA07BD83342B60C5EBAD4B1BB19BE4003 Validity Not Before: Jun 22 21:52:35 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6494c2a3-86a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:ce:d7:56:cf:3b:94:02:07:67:89:80:dd:84: 99:ae:0f:62:a6:e4:4f:a3:28:c7:68:a5:22:f9:8f: 54:b7:e3:cd:e0:72:db:b2:30:14:57:ae:b9:ae:0c: 6d:dc:0e:9c:20:60:11:64:2b:3d:c0:6c:77:f5:c6: c5:25:b3:65:c0:d1:cf:bd:a3:07:19:82:a5:de:1f: b4:d6:0b:26:cb:26:94:2b:9e:b3:e5:70:5e:9e:bc: d3:e0:db:52:56:db:1a:0c:a9:de:9a:13:5a:92:25: 31:f4:ab:76:3c:57:a3:13:a8:b4:55:d2:5d:93:e9: 27:65:8d:f8:7e:33:96:17:51:8a:e4:48:b8:b6:da: 25:36:a4:71:d9:b0:96:f2:18:e5:a2:59:96:12:9b: 8d:e0:14:58:b9:4c:44:46:f6:1b:8f:7b:57:a2:02: c5:89:0c:0e:d4:46:2d:e1:84:20:6b:78:ee:a4:8c: 1f:2d:59:cd:03:95:fc:5e:79:7a:cb:f1:1d:41:fb: 7f:12:07:d9:86:96:7d:c9:e4:9e:7d:d0:3a:5d:5d: ea:37:ef:78:e2:5e:c7:ab:a8:fa:4c:25:05:a6:74: 21:ae:5f:63:85:84:9f:05:a6:9c:e8:9e:de:67:ed: 4f:3c:63:3e:6f:4e:fb:42:44:85:76:86:de:8d:b6: 74:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:BC:A9:87:2B:4C:B0:0F:DC:A1:00:0E:D8:E7:48:99:57:CD:49:BC X509v3 Authority Key Identifier: keyid:73:7E:61:DA:A0:7B:D8:33:42:B6:0C:5E:BA:D4:B1:BB:19:BE:40:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/c35h2qB72DNCtgxeutSxuxm-QAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/c35h2qB72DNCtgxeutSxuxm-QAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911647C/3B1CDFBC851311EAAA0B0A7FC4F9AE02/0F38BBFCB9E011EBAD14BB7DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.19.0.0/16 155.137.128.0/17 159.117.224.0/19 165.84.128.0/18 Signature Algorithm: sha256WithRSAEncryption a8:e6:1b:65:82:7a:07:2f:50:e3:84:c2:d1:af:da:f0:66:6c: 1f:9b:87:28:a7:22:ad:46:54:14:6b:c6:31:6b:fd:36:26:2a: d6:5f:e9:4e:28:92:5f:b2:6c:96:d2:64:c1:e3:e8:4d:db:a5: d3:54:cb:b8:6f:7d:14:ee:ce:2e:e3:fd:8e:8d:2b:1e:7e:3a: 4c:ee:79:a1:05:3c:ea:59:02:27:07:f0:b0:4a:4a:d1:3b:99: 72:91:4d:45:80:6c:e8:4d:25:28:1d:85:10:da:f8:df:a9:85: 86:a8:65:4c:a6:17:50:10:8e:38:6b:04:a3:f8:6d:62:8d:93: bd:43:fc:66:b5:25:34:37:b8:11:ec:5f:ee:af:53:6a:a3:df: 4f:65:ce:d1:55:42:45:e5:84:9e:03:d3:19:a1:79:85:3e:c4: f3:86:9d:ce:4b:04:19:16:02:57:d3:11:93:66:0b:be:ff:74: ab:27:54:b9:3a:e6:c6:a5:82:71:81:19:ba:f9:f3:6f:76:f8: 93:66:ed:96:90:c7:45:27:66:c8:b7:fa:14:65:74:3e:e4:59: 40:77:be:67:96:32:ad:18:fd:89:5e:4d:eb:63:ee:c7:71:37: a8:42:4f:07:91:03:25:67:e5:a0:5c:75:1f:67:b0:58:2b:7c: 70:13:48:6c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCGswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0N0MxMTAvBgNVBAUTKDczN0U2MURBQTA3QkQ4MzM0MkI2MEM1RUJBRDRCMUJC MTlCRTQwMDMwHhcNMjMwNjIyMjE1MjM1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk0YzJhMy04NmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6c7XVs87lAIHZ4mA3YSZrg9ipuRPoyjHaKUi+Y9Ut+PN4HLbsjAUV665rgxt 3A6cIGARZCs9wGx39cbFJbNlwNHPvaMHGYKl3h+01gsmyyaUK56z5XBenrzT4NtS VtsaDKnemhNakiUx9Kt2PFejE6i0VdJdk+knZY34fjOWF1GK5Ei4ttolNqRx2bCW 8hjlolmWEpuN4BRYuUxERvYbj3tXogLFiQwO1EYt4YQga3jupIwfLVnNA5X8Xnl6 y/EdQft/EgfZhpZ9yeSefdA6XV3qN+944l7Hq6j6TCUFpnQhrl9jhYSfBaac6J7e Z+1PPGM+b077QkSFdobejbZ0TwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG+8qYcr TLAP3KEADtjnSJlXzUm8MB8GA1UdIwQYMBaAFHN+Ydqge9gzQrYMXrrUsbsZvkAD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjQ3Qy8zQjFDREZCQzg1 MTMxMUVBQUEwQjBBN0ZDNEY5QUUwMi9jMzVoMnFCNzJETkN0Z3hldXRTeHV4bS1R QU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2MzNWgycUI3MkROQ3RneGV1dFN4dXhtLVFBTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTY0N0MvM0IxQ0RGQkM4NTEzMTFFQUFBMEIwQTdGQzRGOUFFMDIvMEYzOEJCRkNC OUUwMTFFQkFEMTRCQjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMB0EAgABMBcDAwCKEwMEB5uJgAMEBZ914AMEBqVUgDANBgkqhkiG9w0BAQsF AAOCAQEAqOYbZYJ6By9Q44TC0a/a8GZsH5uHKKcirUZUFGvGMWv9NiYq1l/pTiiS X7JsltJkwePoTdul01TLuG99FO7OLuP9jo0rHn46TO55oQU86lkCJwfwsEpK0TuZ cpFNRYBs6E0lKB2FENr436mFhqhlTKYXUBCOOGsEo/htYo2TvUP8ZrUlNDe4Eexf 7q9TaqPfT2XO0VVCReWEngPTGaF5hT7E84adzksEGRYCV9MRk2YLvv90qydUuTrm xqWCcYEZuvnzb3b4k2btlpDHRSdmyLf6FGV0PuRZQHe+Z5YyrRj9iV5N62Pux3E3 qEJPB5EDJWfloFx1H2ewWCt8cBNIbA== -----END CERTIFICATE-----Generated at Sat May 18 22:14:02 2024 by rpki-client on console-fra.rpki-client.org