$ rpki-client -vvf rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DD9C07828D8B11EBB959991DC4F9AE02.roa File: DD9C07828D8B11EBB959991DC4F9AE02.roa (raw, json) Hash identifier: VPEb9AuhD4Gc7G1qgMFG21KF3zWXYPschojYmoWASrQ= Subject key identifier: E1:E7:0C:D1:69:EE:87:D2:75:1C:D4:02:7C:6D:FE:6F:17:1A:71:33 Certificate issuer: /CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Certificate serial: 1BCB Authority key identifier: 38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DD9C07828D8B11EBB959991DC4F9AE02.roa Signing time: Wed 14 Jun 2023 16:44:39 +0000 ROA not before: Wed 14 Jun 2023 16:44:39 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135104 IP address blocks: 203.28.58.0/23 maxlen: 29 203.28.58.152/29 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 16:38:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7115 (0x1bcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123AB4/serialNumber=386C5CB2D6E0EC6141AEB73F493521B0520A3CFA Validity Not Before: Jun 14 16:44:39 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6489ee77-f8c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:26:7e:9e:ba:20:d8:12:ab:5a:56:1a:d7:d0: 51:aa:93:6c:55:73:22:99:57:b2:44:38:3c:b3:ea: a1:5f:19:89:41:72:35:74:44:fd:04:05:fc:1e:a7: cc:6e:39:42:2b:75:fe:07:b7:97:d5:55:6b:12:79: 67:c5:0b:2c:fe:6b:89:d1:0e:89:58:b8:a6:0c:16: 1f:c3:57:51:02:55:2f:28:9d:23:73:48:51:17:db: 7a:09:42:e8:89:9f:26:76:a5:7a:0b:b7:2b:a3:68: d7:95:1f:57:1e:50:a0:a0:54:16:90:2d:16:7d:2c: 83:4e:7f:d6:35:5e:46:c1:5d:aa:66:8e:38:09:f4: 2a:eb:93:37:4f:d7:f4:4b:03:61:67:7b:3c:5a:69: d4:2d:21:c5:79:b7:06:d0:c5:77:f9:81:a6:e0:8f: b0:7f:2d:34:e7:93:58:c5:a5:2e:54:62:d2:37:ba: fb:b9:99:89:8a:dc:66:2b:d0:ec:b2:46:e3:84:c6: ac:cf:a6:c4:1e:13:f9:ca:14:53:21:dc:68:bf:a6: 42:3e:0d:ee:43:55:09:a5:2a:23:58:40:9b:b3:8d: 51:4d:b8:11:e5:71:bc:af:83:4c:0a:9b:fb:a0:69: ca:fb:4c:9e:f4:80:d5:02:a4:c7:bb:30:1c:2b:eb: 47:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:E7:0C:D1:69:EE:87:D2:75:1C:D4:02:7C:6D:FE:6F:17:1A:71:33 X509v3 Authority Key Identifier: keyid:38:6C:5C:B2:D6:E0:EC:61:41:AE:B7:3F:49:35:21:B0:52:0A:3C:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/OGxcstbg7GFBrrc_STUhsFIKPPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OGxcstbg7GFBrrc_STUhsFIKPPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123AB4/1FB040A0B17411E68EC88518C4F9AE02/DD9C07828D8B11EBB959991DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.28.58.0/23 Signature Algorithm: sha256WithRSAEncryption 46:6d:2c:37:35:d0:ae:fc:a9:56:b7:b7:46:8f:a7:d7:d5:67: 64:e2:b4:79:44:8d:cb:8e:7e:4d:34:cd:87:4b:6d:b7:e9:8b: 61:05:39:32:75:61:41:63:a7:f9:e5:dc:c1:eb:3f:3a:bb:d1: b0:da:a4:86:fd:97:2b:97:b6:f3:67:b9:c5:8c:3f:0e:94:ee: d8:31:87:10:3d:3e:9f:4d:0d:d0:91:c1:81:e1:14:f5:86:11: a7:6d:79:1a:2a:16:ca:3e:2a:91:2c:a1:08:87:0d:a8:1a:7d: 07:f5:e4:43:a5:12:33:33:a0:cb:9d:e3:a6:ed:4d:76:51:b0: a5:d9:1d:9c:88:10:98:af:19:c7:71:21:56:ea:c5:90:8e:e4: af:28:18:0b:59:58:87:e4:f0:0f:da:de:27:c1:84:a8:58:70: 4b:39:e1:30:a5:53:fe:f3:93:ce:27:7c:9f:fa:3a:c5:98:9e: 6f:15:0c:d8:31:23:c9:15:7c:8a:d9:d4:5d:0c:0d:b2:98:32: 4f:d0:55:56:54:c7:1e:94:d3:db:be:ef:19:2b:a9:c5:36:27: a6:9b:13:e6:74:10:5a:60:63:ac:35:8d:bf:82:d3:ea:f1:00: 89:ca:3e:a0:ad:c9:e1:e0:2f:66:05:f2:ee:c3:78:57:7e:00: bc:4c:ea:25 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICG8swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjNBQjQxMTAvBgNVBAUTKDM4NkM1Q0IyRDZFMEVDNjE0MUFFQjczRjQ5MzUyMUIw NTIwQTNDRkEwHhcNMjMwNjE0MTY0NDM5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg5ZWU3Ny1mOGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1yZ+nrog2BKrWlYa19BRqpNsVXMimVeyRDg8s+qhXxmJQXI1dET9BAX8HqfM bjlCK3X+B7eX1VVrEnlnxQss/muJ0Q6JWLimDBYfw1dRAlUvKJ0jc0hRF9t6CULo iZ8mdqV6C7cro2jXlR9XHlCgoFQWkC0WfSyDTn/WNV5GwV2qZo44CfQq65M3T9f0 SwNhZ3s8WmnULSHFebcG0MV3+YGm4I+wfy0055NYxaUuVGLSN7r7uZmJitxmK9Ds skbjhMasz6bEHhP5yhRTIdxov6ZCPg3uQ1UJpSojWECbs41RTbgR5XG8r4NMCpv7 oGnK+0ye9IDVAqTHuzAcK+tHnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOHnDNFp 7ofSdRzUAnxt/m8XGnEzMB8GA1UdIwQYMBaAFDhsXLLW4OxhQa63P0k1IbBSCjz6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyM0FCNC8xRkIwNDBBMEIx NzQxMUU2OEVDODg1MThDNEY5QUUwMi9PR3hjc3RiZzdHRkJycmNfU1RVaHNGSUtQ UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09HeGNzdGJnN0dGQnJyY19TVFVoc0ZJS1BQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjNBQjQvMUZCMDQwQTBCMTc0MTFFNjhFQzg4NTE4QzRGOUFFMDIvREQ5QzA3ODI4 RDhCMTFFQkI5NTk5OTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLHDowDQYJKoZIhvcNAQELBQADggEBAEZtLDc10K78qVa3 t0aPp9fVZ2TitHlEjcuOfk00zYdLbbfpi2EFOTJ1YUFjp/nl3MHrPzq70bDapIb9 lyuXtvNnucWMPw6U7tgxhxA9Pp9NDdCRwYHhFPWGEadteRoqFso+KpEsoQiHDaga fQf15EOlEjMzoMud46btTXZRsKXZHZyIEJivGcdxIVbqxZCO5K8oGAtZWIfk8A/a 3ifBhKhYcEs54TClU/7zk84nfJ/6OsWYnm8VDNgxI8kVfIrZ1F0MDbKYMk/QVVZU xx6U09u+7xkrqcU2J6abE+Z0EFpgY6w1jb+C0+rxAInKPqCtyeHgL2YF8u7DeFd+ ALxM6iU= -----END CERTIFICATE-----Generated at Tue May 14 19:55:08 2024 by rpki-client on console-fra.rpki-client.org