$ rpki-client -vvf rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/CBAED530FE6A11ECAB640344C4F9AE02.roa File: CBAED530FE6A11ECAB640344C4F9AE02.roa (raw, json) Hash identifier: 1WgHu7gwVe3qgqJ+RVqyr2qFjsMKsHJgrsGEzkZiuNo= Subject key identifier: 05:21:10:DA:35:C5:36:D1:47:1A:3A:EA:03:B4:DE:89:9A:AF:AB:18 Certificate issuer: /CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Certificate serial: 0EE7 Authority key identifier: AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/CBAED530FE6A11ECAB640344C4F9AE02.roa Signing time: Wed 28 Jun 2023 18:07:06 +0000 ROA not before: Wed 28 Jun 2023 18:07:06 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139341 IP address blocks: 162.14.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3815 (0xee7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120974/serialNumber=AC8864263824EDE3655B99742DFB39E883BB9145 Validity Not Before: Jun 28 18:07:06 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=649c76c9-2490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:46:4e:35:69:32:3d:03:7f:00:d0:dd:5d:8e: 55:ff:8c:1b:d3:cc:24:ad:68:ca:f0:5f:98:63:58: 8a:76:42:24:5f:99:bc:d7:dd:15:13:60:ca:23:ba: bd:f9:e2:bd:f2:d4:18:cc:bd:1b:3b:9c:cd:1a:3d: a6:0b:1d:5f:c8:80:55:29:58:8f:a1:18:a1:43:8a: 8d:92:d6:df:31:76:e6:ae:24:f1:5a:3f:8b:7f:7f: 1b:bc:9c:5d:93:c7:af:8e:f5:fd:e9:50:73:43:1f: 4c:2f:57:74:1c:97:0b:f7:f7:19:3c:d0:e3:5e:04: ea:1c:47:c3:f2:72:9b:ee:f1:8f:dd:6f:dd:87:7f: db:5f:f3:30:ad:69:d2:b8:55:8a:da:7a:84:ae:7f: c5:8f:20:af:8a:c2:a3:82:48:10:8a:3c:69:ce:af: 7f:28:ff:9a:bd:58:4c:2f:c7:9b:4c:21:aa:96:95: b1:4b:9b:dc:0b:fc:b6:0f:b6:bc:85:3a:7e:84:bc: b9:7b:ee:b1:a4:8e:e6:a1:b6:f0:7e:e5:04:34:8e: 65:1b:02:08:43:4f:7b:5e:a6:99:6d:06:e9:42:14: 82:d3:4c:a4:66:8a:4d:3a:04:c9:55:6e:ff:ab:91: 1d:fd:1c:0d:61:2b:01:64:9c:6d:45:95:f0:b8:18: 27:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:21:10:DA:35:C5:36:D1:47:1A:3A:EA:03:B4:DE:89:9A:AF:AB:18 X509v3 Authority Key Identifier: keyid:AC:88:64:26:38:24:ED:E3:65:5B:99:74:2D:FB:39:E8:83:BB:91:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/rIhkJjgk7eNlW5l0Lfs56IO7kUU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rIhkJjgk7eNlW5l0Lfs56IO7kUU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120974/E105B3BA3A4911E9940F2D16C4F9AE02/CBAED530FE6A11ECAB640344C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 162.14.40.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:78:e9:29:fa:be:26:6e:2c:3e:6f:47:53:90:c3:3d:33:8f: e8:ef:13:3c:42:60:ab:57:39:68:61:df:d1:80:cc:22:2e:02: 4a:11:03:7d:7d:65:d0:6a:b0:17:43:ed:8c:e2:9e:80:c2:eb: 62:04:bb:50:eb:bf:a2:30:9d:47:9e:2e:4e:5b:3d:f3:ca:fc: 31:0e:4e:8e:5d:d8:a8:78:ec:9c:ca:9c:45:4d:df:d8:9e:25: 65:04:ad:3a:3f:ae:8d:7d:1a:cf:79:5d:3f:a2:79:22:d3:3b: 58:64:a5:30:ce:10:8c:5e:ae:6e:38:99:7d:67:ca:8a:b0:1f: a9:dd:fd:69:2f:d5:f3:d8:37:86:38:16:01:75:59:b5:f6:87: 3a:db:bd:84:88:1b:83:ac:64:f5:89:15:ce:44:6a:83:3a:c3: b6:b8:f8:b4:7a:16:39:9e:74:24:b6:fe:33:cf:6b:5c:7e:dc: 60:9c:93:70:c1:c9:2a:cc:da:6d:b6:4a:4c:9e:9f:05:18:78: 26:79:6f:90:b9:7f:30:c9:3c:6c:ea:22:cb:b4:95:d7:9c:2b: 56:16:c1:45:0e:52:61:59:9e:b2:0f:cc:81:a9:85:1a:c7:0f: b8:3a:10:3b:fb:25:18:b8:0a:44:6f:d6:b0:3b:b1:b0:a4:bb: 7d:a2:8e:9e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDucwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjA5NzQxMTAvBgNVBAUTKEFDODg2NDI2MzgyNEVERTM2NTVCOTk3NDJERkIzOUU4 ODNCQjkxNDUwHhcNMjMwNjI4MTgwNzA2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDljNzZjOS0yNDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEZONWkyPQN/ANDdXY5V/4wb08wkrWjK8F+YY1iKdkIkX5m8190VE2DKI7q9 +eK98tQYzL0bO5zNGj2mCx1fyIBVKViPoRihQ4qNktbfMXbmriTxWj+Lf38bvJxd k8evjvX96VBzQx9ML1d0HJcL9/cZPNDjXgTqHEfD8nKb7vGP3W/dh3/bX/MwrWnS uFWK2nqErn/FjyCvisKjgkgQijxpzq9/KP+avVhML8ebTCGqlpWxS5vcC/y2D7a8 hTp+hLy5e+6xpI7mobbwfuUENI5lGwIIQ097XqaZbQbpQhSC00ykZopNOgTJVW7/ q5Ed/RwNYSsBZJxtRZXwuBgnCQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAUhENo1 xTbRRxo66gO03omar6sYMB8GA1UdIwQYMBaAFKyIZCY4JO3jZVuZdC37OeiDu5FF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDk3NC9FMTA1QjNCQTNB NDkxMUU5OTQwRjJEMTZDNEY5QUUwMi9ySWhrSmpnazdlTmxXNWwwTGZzNTZJTzdr VVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3JJaGtKamdrN2VObFc1bDBMZnM1NklPN2tVVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjA5NzQvRTEwNUIzQkEzQTQ5MTFFOTk0MEYyRDE2QzRGOUFFMDIvQ0JBRUQ1MzBG RTZBMTFFQ0FCNjQwMzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAOiDigwDQYJKoZIhvcNAQELBQADggEBAE146Sn6viZuLD5v R1OQwz0zj+jvEzxCYKtXOWhh39GAzCIuAkoRA319ZdBqsBdD7YzinoDC62IEu1Dr v6IwnUeeLk5bPfPK/DEOTo5d2Kh47JzKnEVN39ieJWUErTo/ro19Gs95XT+ieSLT O1hkpTDOEIxerm44mX1nyoqwH6nd/Wkv1fPYN4Y4FgF1WbX2hzrbvYSIG4OsZPWJ Fc5EaoM6w7a4+LR6FjmedCS2/jPPa1x+3GCck3DBySrM2m22SkyenwUYeCZ5b5C5 fzDJPGzqIsu0ldecK1YWwUUOUmFZnrIPzIGphRrHD7g6EDv7JRi4CkRv1rA7sbCk u32ijp4= -----END CERTIFICATE-----Generated at Thu May 16 19:10:54 2024 by rpki-client on console-fra.rpki-client.org