$ rpki-client -vvf rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/3A2A80AE3C8311ECA86D031EC4F9AE02.roa File: 3A2A80AE3C8311ECA86D031EC4F9AE02.roa (raw, json) Hash identifier: ajpvJcJk2hIGJtK47b/oFETGJ6AH8R2N0nzWfcugHow= Subject key identifier: 91:9A:75:51:4F:AD:B3:5B:C0:4A:CC:99:9A:D1:52:30:BF:A5:82:07 Certificate issuer: /CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Certificate serial: 03B9 Authority key identifier: E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/3A2A80AE3C8311ECA86D031EC4F9AE02.roa Signing time: Wed 17 Jan 2024 02:03:53 +0000 ROA not before: Wed 17 Jan 2024 02:03:53 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 9744 IP address blocks: 69.72.80.0/21 maxlen: 24 148.66.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 953 (0x3b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120AC1/serialNumber=E43DD233316BF0E29BA06D20DEC25DB4CC116E08 Validity Not Before: Jan 17 02:03:53 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65a73589-75e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:b2:28:96:38:0c:21:51:92:59:6d:44:2b:a5: c1:7f:19:37:82:c4:af:4d:b9:cc:78:23:cd:84:b2: cb:02:36:17:8f:70:5c:e0:e8:88:1b:69:0f:37:de: 53:d5:38:8d:71:9e:0d:98:32:b8:4c:e6:d0:db:57: 70:85:9f:39:e3:de:ff:5f:57:f3:0b:60:5b:ba:33: f0:02:26:5e:a1:58:66:d7:64:9e:e9:b0:c1:c3:5c: 30:a6:12:86:bd:6a:02:ad:59:0e:40:d9:82:4c:e3: 44:2f:09:99:49:c8:00:3d:77:4e:fd:39:1b:b7:fe: 9d:1c:e8:4c:18:8b:78:f4:56:46:a4:9a:76:a1:f6: 86:27:87:e9:a8:8e:c5:63:7e:62:b4:13:21:5e:ee: e6:ca:a1:3d:ca:00:ae:dc:61:54:64:53:ec:26:49: dc:aa:76:6a:ed:9c:a8:87:ce:11:ec:c9:2b:ae:b6: a6:a9:21:12:93:bc:87:9a:52:e2:f4:27:2d:84:32: 0f:0a:10:bc:a2:6d:35:88:cf:1e:23:7e:71:c6:2a: 9b:72:f9:a2:56:b1:7d:d0:2f:a6:98:35:0a:9d:5b: 88:14:56:4c:c8:52:21:a4:f1:10:45:de:30:60:a7: f6:a3:a4:70:c3:d4:74:59:ef:2e:32:46:bd:6b:c9: c7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9A:75:51:4F:AD:B3:5B:C0:4A:CC:99:9A:D1:52:30:BF:A5:82:07 X509v3 Authority Key Identifier: keyid:E4:3D:D2:33:31:6B:F0:E2:9B:A0:6D:20:DE:C2:5D:B4:CC:11:6E:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/5D3SMzFr8OKboG0g3sJdtMwRbgg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/5D3SMzFr8OKboG0g3sJdtMwRbgg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120AC1/3E9A4AE0309711ECB285A64BC4F9AE02/3A2A80AE3C8311ECA86D031EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 69.72.80.0/21 148.66.48.0/20 Signature Algorithm: sha256WithRSAEncryption 49:52:26:85:2e:08:d3:3b:36:7d:13:95:35:78:d6:ca:ab:65: b5:42:cf:87:76:39:7e:2e:75:12:e7:26:30:f0:57:f6:36:d3: 64:07:73:22:23:db:69:95:47:09:67:8a:86:43:56:cb:f8:5d: 19:87:28:02:c3:7a:e5:ed:2c:86:bc:40:c9:77:7a:43:ab:34: 41:53:61:72:f2:b5:b1:4d:4e:18:fd:50:72:33:8a:ec:a6:e0: 5e:e3:dc:79:81:9c:35:08:e7:ac:b6:ef:1c:26:3a:b1:88:db: 31:3c:54:cf:e6:eb:c9:5b:b4:a2:3f:7f:84:6d:1e:b6:bb:88: e6:6c:ae:11:3d:1a:11:b3:4d:23:dd:a6:a8:af:d6:eb:67:f0: 8f:cb:fb:14:62:88:b3:7a:b8:b3:7e:02:fa:51:cf:a0:72:21: 64:d2:85:cb:26:30:19:02:e6:20:5c:12:c4:57:bc:5c:aa:4e: 03:80:4d:e9:49:3f:f7:04:ac:04:3e:6c:3d:9b:ff:6b:23:d6: 64:0e:a5:c2:cb:80:15:e5:0c:ff:16:ef:c3:4c:e9:53:ab:e8: 76:fc:4d:ab:d5:05:3a:7f:e6:d2:85:57:6c:2f:77:e9:78:e2: d5:7f:4f:3e:b7:e7:b7:48:eb:3a:16:96:5f:0a:cb:a2:3f:00: 0d:71:a0:db -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBBQzExMTAvBgNVBAUTKEU0M0REMjMzMzE2QkYwRTI5QkEwNkQyMERFQzI1REI0 Q0MxMTZFMDgwHhcNMjQwMTE3MDIwMzUzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWE3MzU4OS03NWUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5rIoljgMIVGSWW1EK6XBfxk3gsSvTbnMeCPNhLLLAjYXj3Bc4OiIG2kPN95T 1TiNcZ4NmDK4TObQ21dwhZ85497/X1fzC2BbujPwAiZeoVhm12Se6bDBw1wwphKG vWoCrVkOQNmCTONELwmZScgAPXdO/Tkbt/6dHOhMGIt49FZGpJp2ofaGJ4fpqI7F Y35itBMhXu7myqE9ygCu3GFUZFPsJkncqnZq7Zyoh84R7MkrrramqSESk7yHmlLi 9CcthDIPChC8om01iM8eI35xxiqbcvmiVrF90C+mmDUKnVuIFFZMyFIhpPEQRd4w YKf2o6Rww9R0We8uMka9a8nHawIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJGadVFP rbNbwErMmZrRUjC/pYIHMB8GA1UdIwQYMBaAFOQ90jMxa/Dim6BtIN7CXbTMEW4I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEFDMS8zRTlBNEFFMDMw OTcxMUVDQjI4NUE2NEJDNEY5QUUwMi81RDNTTXpGcjhPS2JvRzBnM3NKZHRNd1Ji Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzVEM1NNekZyOE9LYm9HMGczc0pkdE13UmJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBBQzEvM0U5QTRBRTAzMDk3MTFFQ0IyODVBNjRCQzRGOUFFMDIvM0EyQTgwQUUz QzgzMTFFQ0E4NkQwMzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBANFSFADBASUQjAwDQYJKoZIhvcNAQELBQADggEBAElSJoUu CNM7Nn0TlTV41sqrZbVCz4d2OX4udRLnJjDwV/Y202QHcyIj22mVRwlnioZDVsv4 XRmHKALDeuXtLIa8QMl3ekOrNEFTYXLytbFNThj9UHIziuym4F7j3HmBnDUI56y2 7xwmOrGI2zE8VM/m68lbtKI/f4RtHra7iOZsrhE9GhGzTSPdpqiv1utn8I/L+xRi iLN6uLN+AvpRz6ByIWTShcsmMBkC5iBcEsRXvFyqTgOATelJP/cErAQ+bD2b/2sj 1mQOpcLLgBXlDP8W78NM6VOr6Hb8TavVBTp/5tKFV2wvd+l44tV/Tz6357dI6zoW ll8Ky6I/AA1xoNs= -----END CERTIFICATE-----Generated at Sun May 19 03:14:48 2024 by rpki-client on console-fra.rpki-client.org