$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/8D23BDE287C611EB8C8DDB70C4F9AE02.roa File: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (raw, json) Hash identifier: Ll2R2qtdZvTHWKeQ0lGdmmY4Lx4LTWEpwY7q6SHN738= Subject key identifier: 75:AB:C6:D5:8D:5C:35:12:76:3E:39:71:70:0A:81:FB:35:2C:90:C6 Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 04EB Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/8D23BDE287C611EB8C8DDB70C4F9AE02.roa Signing time: Sat 03 Jun 2023 02:08:49 +0000 ROA not before: Sat 03 Jun 2023 02:08:49 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 58740 IP address blocks: 202.164.16.0/21 maxlen: 21 2402:9f00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:35:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1259 (0x4eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Jun 3 02:08:49 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647aa0b1-b093 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:a5:36:71:29:d2:cb:da:9f:5d:80:10:c0:aa: 8e:79:63:72:df:6e:ea:eb:c5:df:59:ad:49:3c:a7: f3:66:04:62:2c:e9:23:25:78:be:c8:5d:0d:e0:f1: c6:7d:fd:b4:75:d5:60:5f:30:2b:71:40:fa:15:5a: b3:d1:ca:96:b4:2b:0d:11:ea:ef:7d:2c:03:2f:bf: 11:be:18:44:e5:61:bd:16:a6:da:27:2f:74:cf:bb: 06:eb:67:4c:01:52:9d:8b:78:3e:38:78:09:e2:22: 3d:09:4d:2f:53:b8:b1:3f:3d:12:b2:53:24:fa:91: c3:41:a0:c8:81:73:7d:dd:ac:05:c1:e6:fd:de:db: e2:66:73:e1:3e:64:56:fd:88:12:58:c7:2b:de:c2: 6e:92:78:99:6c:a2:b9:48:ca:c7:c7:c4:c5:c8:d9: 22:44:0a:9a:1a:04:15:eb:b9:17:35:bf:d7:fc:b4: 3b:9c:ab:81:fa:7a:80:23:13:01:ed:8a:45:a6:ac: f5:f8:c1:8e:77:ee:cd:99:d0:26:c4:6c:f2:45:88: 0f:60:22:78:b6:c2:0a:ad:5e:16:52:f9:7c:39:3f: 54:c4:50:15:26:8b:f9:07:f9:97:e3:76:10:b1:39: 78:9d:c8:9d:a7:7b:05:36:4b:ff:63:38:c5:ff:88: 08:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:AB:C6:D5:8D:5C:35:12:76:3E:39:71:70:0A:81:FB:35:2C:90:C6 X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/8D23BDE287C611EB8C8DDB70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.164.16.0/21 IPv6: 2402:9f00::/32 Signature Algorithm: sha256WithRSAEncryption 65:e0:ed:09:88:44:8d:c8:7a:84:70:58:5f:5e:60:19:31:26: 37:8a:54:f8:99:d5:49:db:67:7a:f3:c9:4d:73:4a:44:4d:55: 34:92:ed:02:b0:8b:a5:71:1a:32:79:c7:9e:fb:f9:37:c3:65: ae:9a:a6:97:08:b5:88:a9:f2:32:4c:c5:bb:50:77:83:02:68: b9:c8:fd:11:1e:f2:51:45:fe:13:3e:1f:3a:25:d9:2c:a9:e3: 92:86:c8:59:f7:14:77:bd:84:58:67:2f:d0:be:0c:0b:4f:10: 80:81:07:ff:81:bc:97:dd:8f:32:f1:7b:c5:8a:4b:19:91:b6: f1:cf:1c:8f:93:7d:da:96:d8:d9:46:92:94:6a:ce:c3:19:f9: e8:98:0c:58:fe:aa:a7:52:c6:42:ee:53:7a:7e:89:95:f9:8e: 38:8f:8c:e8:71:63:8c:5a:c6:87:b4:27:36:f0:cb:b1:5d:ed: f4:e8:e2:52:11:0f:ba:cf:e9:82:d3:bf:52:b5:bd:bc:73:05: c4:a4:c8:f1:d3:f3:d4:81:ca:a4:1c:8b:de:dc:36:db:02:89: 6c:95:4c:20:c7:33:48:13:f9:47:15:47:28:a5:1e:46:9d:35: a3:1a:26:2c:53:8f:d5:8b:6e:ba:e9:1c:73:27:18:b4:95:9f: 04:fc:27:ef -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBOswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjMwNjAzMDIwODQ5WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhYTBiMS1iMDkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4aU2cSnSy9qfXYAQwKqOeWNy327q68XfWa1JPKfzZgRiLOkjJXi+yF0N4PHG ff20ddVgXzArcUD6FVqz0cqWtCsNEervfSwDL78RvhhE5WG9FqbaJy90z7sG62dM AVKdi3g+OHgJ4iI9CU0vU7ixPz0SslMk+pHDQaDIgXN93awFweb93tviZnPhPmRW /YgSWMcr3sJukniZbKK5SMrHx8TFyNkiRAqaGgQV67kXNb/X/LQ7nKuB+nqAIxMB 7YpFpqz1+MGOd+7NmdAmxGzyRYgPYCJ4tsIKrV4WUvl8OT9UxFAVJov5B/mX43YQ sTl4ncidp3sFNkv/YzjF/4gIuwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHWrxtWN XDUSdj45cXAKgfs1LJDGMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlBRTIvOEFCOEMxOEE4N0M0MTFFQkExRkREODZCQzRGOUFFMDIvOEQyM0JERTI4 N0M2MTFFQjhDOEREQjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAPKpBAwDQQCAAIwBwMFACQCnwAwDQYJKoZIhvcNAQELBQAD ggEBAGXg7QmIRI3IeoRwWF9eYBkxJjeKVPiZ1UnbZ3rzyU1zSkRNVTSS7QKwi6Vx GjJ5x577+TfDZa6appcItYip8jJMxbtQd4MCaLnI/REe8lFF/hM+Hzol2Syp45KG yFn3FHe9hFhnL9C+DAtPEICBB/+BvJfdjzLxe8WKSxmRtvHPHI+TfdqW2NlGkpRq zsMZ+eiYDFj+qqdSxkLuU3p+iZX5jjiPjOhxY4xaxoe0Jzbwy7Fd7fTo4lIRD7rP 6YLTv1K1vbxzBcSkyPHT89SByqQci97cNtsCiWyVTCDHM0gT+UcVRyilHkadNaMa JixTj9WLbrrpHHMnGLSVnwT8J+8= -----END CERTIFICATE-----Generated at Fri May 17 02:01:40 2024 by rpki-client on console-ams.rpki-client.org