$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/AF6AA9ECFF6011ED90C62C26C4F9AE02.roa File: AF6AA9ECFF6011ED90C62C26C4F9AE02.roa (raw, json) Hash identifier: BqDpK6DjE434vivt3a84iuEfOmpPaVUtSqtPi7pKaFM= Subject key identifier: 96:7C:08:14:FD:6B:E0:B6:5F:A9:D3:63:BD:E6:6C:5E:B7:14:E7:6A Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Certificate serial: 3310 Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/AF6AA9ECFF6011ED90C62C26C4F9AE02.roa Signing time: Wed 31 May 2023 03:10:24 +0000 ROA not before: Wed 31 May 2023 03:10:24 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 136897 IP address blocks: 202.181.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 14:11:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13072 (0x3310) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Validity Not Before: May 31 03:10:24 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6476baa0-69f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:ed:bc:18:c9:c0:6b:08:60:44:f3:fd:b4:36: 43:95:68:f0:a9:1b:64:17:40:0b:3b:e4:0f:fd:6b: 9a:70:0e:f2:b6:87:a8:b4:ad:61:2a:ce:ed:a0:30: de:5d:5e:06:9b:0f:4a:a0:40:fd:d2:a2:9d:ed:86: ef:df:64:93:2a:c4:0e:83:f2:fa:3c:43:6e:31:7b: 11:cb:6d:84:73:b5:2d:c8:e9:e0:b2:36:39:a9:b0: 8a:d7:0f:92:db:e0:6c:f5:e3:a1:61:07:69:70:64: e9:08:b8:f9:05:45:02:d7:89:10:b1:2d:0f:1c:e6: 66:34:87:a3:44:48:44:42:c4:2b:bd:86:3e:b2:9a: 71:f9:13:06:46:eb:c4:e4:c0:c1:12:e4:3f:8f:3b: 66:87:f4:0e:c9:bd:ad:f4:ea:ff:ea:7d:56:b1:08: 46:38:17:eb:d3:47:77:21:dc:93:81:1d:b2:cc:09: 78:de:06:87:50:b2:81:74:a1:90:1c:41:dd:15:d1: 58:cf:e4:7a:1f:f9:75:51:54:80:b7:6e:5e:9e:ca: a2:95:ea:b6:b9:b7:c6:2e:b9:a2:d9:bd:82:a7:32: 8b:df:98:3a:62:15:1f:ad:52:6a:03:05:4c:41:3a: 81:54:1e:b0:ec:99:61:b1:f1:58:4e:b3:b8:ae:c7: e5:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:7C:08:14:FD:6B:E0:B6:5F:A9:D3:63:BD:E6:6C:5E:B7:14:E7:6A X509v3 Authority Key Identifier: keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/AF6AA9ECFF6011ED90C62C26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.181.136.0/24 Signature Algorithm: sha256WithRSAEncryption 23:83:8c:69:85:ad:a6:69:2a:84:44:b0:23:e0:a4:e1:5e:85: 7e:52:4a:f0:b6:15:6f:9a:2a:56:b1:dc:43:72:7c:45:ab:9c: cd:1d:12:5d:f3:30:23:03:3b:6e:ef:31:b1:21:04:bc:1d:f2: 71:1a:8b:06:58:02:b9:4f:53:d6:be:55:65:c5:e0:f3:63:78: 67:6e:6f:60:b2:06:d0:75:48:8d:90:47:33:ce:29:a8:d9:d9: 0b:89:67:11:95:28:57:67:03:66:06:61:a4:20:96:2b:21:33: 62:a9:e5:7f:1e:d3:e2:79:d8:90:13:78:54:35:55:ee:4e:f7: c6:bf:0a:1b:4f:3e:b1:37:81:08:ad:93:67:13:12:16:da:6a: a1:22:d4:41:62:95:de:a7:d7:8b:f9:83:af:1a:ae:0e:84:5d: b1:d2:ee:25:42:0d:84:80:6f:7e:ae:ba:93:91:fd:55:1a:48: bb:a3:65:7a:9a:1c:33:03:a6:90:65:f9:ec:e0:6b:ff:4c:f4: aa:3a:55:75:1b:04:8c:91:17:a1:a6:42:cf:20:7f:b2:1d:96: 26:5d:f8:9c:ab:3a:e5:57:2d:33:ca:b6:a0:ab:2d:13:e8:b8: 44:8a:d8:89:50:d3:28:41:12:3b:58:4c:b2:58:ed:3d:27:8b: 17:06:e4:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICMxAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBCOTkxMTAvBgNVBAUTKDg2Qzc5NDY5NDZCMkE1N0IwNTZGMDJCMjc5MzQwRDMw QzJDRTQ5QjQwHhcNMjMwNTMxMDMxMDI0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc2YmFhMC02OWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtO28GMnAawhgRPP9tDZDlWjwqRtkF0ALO+QP/WuacA7ytoeotK1hKs7toDDe XV4Gmw9KoED90qKd7Ybv32STKsQOg/L6PENuMXsRy22Ec7UtyOngsjY5qbCK1w+S 2+Bs9eOhYQdpcGTpCLj5BUUC14kQsS0PHOZmNIejREhEQsQrvYY+sppx+RMGRuvE 5MDBEuQ/jztmh/QOyb2t9Or/6n1WsQhGOBfr00d3IdyTgR2yzAl43gaHULKBdKGQ HEHdFdFYz+R6H/l1UVSAt25ensqileq2ubfGLrmi2b2CpzKL35g6YhUfrVJqAwVM QTqBVB6w7JlhsfFYTrO4rsfl/QIDAQABo4IClTCCApEwHQYDVR0OBBYEFJZ8CBT9 a+C2X6nTY73mbF63FOdqMB8GA1UdIwQYMBaAFIbHlGlGsqV7BW8Csnk0DTDCzkm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEI5OS9EM0Y5MDUxQzFE ODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBYc0Zid0t5ZVRRTk1NTE9T YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzZVVhVWF5cFhzRmJ3S3llVFFOTU1MT1NiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBCOTkvRDNGOTA1MUMxRDgzMTFFMkI0RUQ1Q0Q5MDhCMDJDRDIvQUY2QUE5RUNG RjYwMTFFRDkwQzYyQzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKtYgwDQYJKoZIhvcNAQELBQADggEBACODjGmFraZpKoRE sCPgpOFehX5SSvC2FW+aKlax3ENyfEWrnM0dEl3zMCMDO27vMbEhBLwd8nEaiwZY ArlPU9a+VWXF4PNjeGdub2CyBtB1SI2QRzPOKajZ2QuJZxGVKFdnA2YGYaQglish M2Kp5X8e0+J52JATeFQ1Ve5O98a/ChtPPrE3gQitk2cTEhbaaqEi1EFild6n14v5 g68arg6EXbHS7iVCDYSAb36uupOR/VUaSLujZXqaHDMDppBl+ezga/9M9Ko6VXUb BIyRF6GmQs8gf7IdliZd+JyrOuVXLTPKtqCrLRPouESK2IlQ0yhBEjtYTLJY7T0n ixcG5C8= -----END CERTIFICATE-----Generated at Mon May 20 15:11:13 2024 by rpki-client on console-fra.rpki-client.org