$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa File: BAF4AD0418B211EB8C78F510C4F9AE02.roa (raw, json) Hash identifier: kIxVx0i7wXkfdqE44a/tjZw18hphN1UzhwWZlviMS2Y= Subject key identifier: D1:AA:A3:BF:BC:40:32:21:C4:5D:03:4B:BB:61:DA:53:F3:45:5F:57 Certificate issuer: /CN=A9121D26/serialNumber=E95EFFC29416584BF37C0C8F9EB73B920F9A41AD Certificate serial: 065E Authority key identifier: E9:5E:FF:C2:94:16:58:4B:F3:7C:0C:8F:9E:B7:3B:92:0F:9A:41:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa Signing time: Mon 16 Oct 2023 22:51:12 +0000 ROA not before: Mon 16 Oct 2023 22:51:12 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141197 IP address blocks: 202.0.159.0/24 maxlen: 24 2407:1240:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.crl rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:50:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1630 (0x65e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D26/serialNumber=E95EFFC29416584BF37C0C8F9EB73B920F9A41AD Validity Not Before: Oct 16 22:51:12 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652dbe5f-e1fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:46:01:7f:97:c2:a7:14:4d:ff:2a:86:88:5a: 0c:6c:92:0b:08:bd:9b:bc:5d:57:f2:22:bd:87:03: b8:f1:c0:18:4f:d8:72:b8:0a:5b:16:dd:02:02:ac: 44:3f:d7:82:1b:4e:4d:8e:ed:35:e3:8f:2c:68:28: 66:40:ff:9d:a1:63:a7:2a:bc:03:80:fb:ea:f4:f3: 58:fb:04:1d:27:91:a7:69:53:b1:d1:e7:e8:ac:f7: 17:f2:97:84:2f:9e:25:68:ca:bc:00:74:84:a4:38: fe:b8:90:9d:fa:69:3f:ca:8d:9f:a0:52:55:fd:75: 4b:b2:89:7f:01:b2:cf:4d:48:05:a5:a2:13:d9:19: 9c:25:7b:b8:b6:74:b8:fc:3c:fa:fe:b1:4d:98:ed: 0b:e2:b7:78:90:db:50:ee:cd:5f:b8:16:97:9c:1b: 02:81:8b:6b:f3:b3:9e:53:40:03:57:84:45:56:e4: 49:ed:97:7f:29:38:0c:54:2e:5e:2d:3f:38:50:ab: 07:e9:04:dc:14:25:85:ab:94:86:66:43:35:7f:97: dc:84:bc:5e:d0:4c:6c:16:39:51:bd:be:3b:49:b7: f0:84:1c:70:79:b3:0a:e5:80:50:66:71:43:f7:29: c3:31:b2:5f:23:76:7b:66:fc:cd:09:fb:c9:b7:2c: 82:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AA:A3:BF:BC:40:32:21:C4:5D:03:4B:BB:61:DA:53:F3:45:5F:57 X509v3 Authority Key Identifier: keyid:E9:5E:FF:C2:94:16:58:4B:F3:7C:0C:8F:9E:B7:3B:92:0F:9A:41:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.159.0/24 IPv6: 2407:1240:1::/48 Signature Algorithm: sha256WithRSAEncryption 6c:ca:58:7e:d3:a2:bd:50:0e:db:4d:57:b3:91:2e:f6:f3:d1: a0:8d:4f:b2:24:6e:77:a3:ef:5e:5b:ab:d4:fa:ff:61:a8:44: d1:70:c9:40:0b:48:43:d4:a4:2c:25:44:77:c9:4b:4e:6c:f3: 83:36:0a:66:95:e1:e6:f7:0f:2b:00:d4:65:69:69:ea:48:3a: ca:79:b3:39:37:48:5c:3a:d3:fe:0a:40:36:67:c8:33:e5:bb: d8:37:96:2f:f2:0b:fa:88:fe:ff:4e:f5:90:34:fc:d4:24:cd: f6:45:b9:e1:c9:71:5e:71:cf:26:c0:f2:10:18:4a:2c:c3:c4: 8c:46:8f:35:1b:fd:c1:ac:50:c7:97:01:95:22:16:bf:ff:2b: b0:1d:0a:a0:bc:b2:6a:fc:d8:39:97:f7:8d:54:a8:c3:13:6f: 65:03:8f:24:80:ab:bc:a1:d7:1b:19:9f:45:c5:9c:30:c0:1c: 40:5f:1c:93:f4:25:99:ea:c1:95:2c:41:92:3a:2c:58:05:37: 5c:7a:b9:c8:9a:c4:b5:db:2f:60:20:18:b1:b8:88:95:92:4a: 5e:a9:ed:35:f5:2b:69:f5:27:bf:c9:29:92:83:ca:46:54:a7: 06:d1:d3:38:9c:0a:45:3e:bc:a1:90:b6:dc:7d:18:c2:dd:5b: 29:67:09:f4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBl4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFEMjYxMTAvBgNVBAUTKEU5NUVGRkMyOTQxNjU4NEJGMzdDMEM4RjlFQjczQjky MEY5QTQxQUQwHhcNMjMxMDE2MjI1MTEyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkYmU1Zi1lMWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxUYBf5fCpxRN/yqGiFoMbJILCL2bvF1X8iK9hwO48cAYT9hyuApbFt0CAqxE P9eCG05Nju01448saChmQP+doWOnKrwDgPvq9PNY+wQdJ5GnaVOx0eforPcX8peE L54laMq8AHSEpDj+uJCd+mk/yo2foFJV/XVLsol/AbLPTUgFpaIT2RmcJXu4tnS4 /Dz6/rFNmO0L4rd4kNtQ7s1fuBaXnBsCgYtr87OeU0ADV4RFVuRJ7Zd/KTgMVC5e LT84UKsH6QTcFCWFq5SGZkM1f5fchLxe0ExsFjlRvb47SbfwhBxwebMK5YBQZnFD 9ynDMbJfI3Z7ZvzNCfvJtyyC4QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFNGqo7+8 QDIhxF0DS7th2lPzRV9XMB8GA1UdIwQYMBaAFOle/8KUFlhL83wMj563O5IPmkGt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQyNi8wN0YwODQ4MDE4 QUQxMUVCOUVFMzM0ODVDNEY5QUUwMi82Vjdfd3BRV1dFdnpmQXlQbnJjN2tnLWFR YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZWN193cFFXV0V2emZBeVBucmM3a2ctYVFhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjFEMjYvMDdGMDg0ODAxOEFEMTFFQjlFRTMzNDg1QzRGOUFFMDIvQkFGNEFEMDQx OEIyMTFFQjhDNzhGNTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKAJ8wDwQCAAIwCQMHACQHEkAAATANBgkqhkiG9w0BAQsF AAOCAQEAbMpYftOivVAO201Xs5Eu9vPRoI1PsiRud6PvXlur1Pr/YahE0XDJQAtI Q9SkLCVEd8lLTmzzgzYKZpXh5vcPKwDUZWlp6kg6ynmzOTdIXDrT/gpANmfIM+W7 2DeWL/IL+oj+/071kDT81CTN9kW54clxXnHPJsDyEBhKLMPEjEaPNRv9waxQx5cB lSIWv/8rsB0KoLyyavzYOZf3jVSowxNvZQOPJICrvKHXGxmfRcWcMMAcQF8ck/Ql merBlSxBkjosWAU3XHq5yJrEtdsvYCAYsbiIlZJKXqntNfUrafUnv8kpkoPKRlSn BtHTOJwKRT68oZC23H0Ywt1bKWcJ9A== -----END CERTIFICATE-----Generated at Wed May 22 23:39:35 2024 by rpki-client on console-fra.rpki-client.org