$ rpki-client -vvf rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/A17F07705FA311EAB1BB612CC4F9AE02.roa File: A17F07705FA311EAB1BB612CC4F9AE02.roa (raw, json) Hash identifier: 4/DRGItaisoBOYwcQyk5DVwDf1fvf1QmNj2xLG0/hYc= Subject key identifier: BF:16:0A:8D:B6:44:0E:C3:39:D5:3D:C9:09:6F:50:7D:7D:74:73:44 Certificate issuer: /CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Certificate serial: 1C19 Authority key identifier: 27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/A17F07705FA311EAB1BB612CC4F9AE02.roa Signing time: Wed 28 Jun 2023 16:34:12 +0000 ROA not before: Wed 28 Jun 2023 16:34:12 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 135407 IP address blocks: 45.249.8.0/22 maxlen: 24 103.217.176.0/22 maxlen: 24 2407:aa80::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7193 (0x1c19) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9125F95/serialNumber=27FC63D861F4694F7A2F951FB12847E07FAA9072 Validity Not Before: Jun 28 16:34:12 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649c6103-e2a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ba:16:00:ee:4f:42:f1:f6:d6:97:42:4f:bf: 6c:34:bc:cd:ac:1f:4f:d8:d3:10:8b:fa:4f:ba:9d: 97:43:d1:2c:67:76:27:8d:bd:4c:90:eb:d1:80:9c: 22:a0:35:7b:62:04:70:09:f5:d8:66:40:10:ce:33: f1:1b:75:64:01:1e:bb:1a:26:50:d0:4c:b0:2e:69: c8:60:80:a4:1a:3b:49:d1:ed:b5:c7:50:4f:ff:09: 32:69:c6:e9:8f:67:81:55:c6:bf:19:7d:81:6b:90: 21:3f:0c:d6:77:fb:f2:2f:12:fb:71:d1:25:87:9c: 71:e4:85:6d:b7:bd:50:7a:4a:85:9c:1b:90:69:ed: e0:e0:7e:49:c4:1d:86:ed:42:91:53:49:f2:7c:1b: e7:78:24:1d:d7:cf:e2:a8:e5:2a:f9:9e:1a:66:bb: a8:0e:54:25:64:84:43:8b:00:d8:8d:03:36:18:93: e8:80:ef:cb:32:e5:f3:4d:33:74:6f:37:eb:87:ac: c0:d3:bb:e0:38:27:09:aa:df:95:58:68:37:9e:58: d2:cf:1a:e4:63:fa:16:3c:7e:62:0c:36:68:58:03: 63:b1:8a:2a:e0:6e:a3:84:85:de:f1:91:66:95:c9: 8d:27:b5:af:37:8d:13:73:9a:0c:78:88:fa:7a:cc: c1:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:16:0A:8D:B6:44:0E:C3:39:D5:3D:C9:09:6F:50:7D:7D:74:73:44 X509v3 Authority Key Identifier: keyid:27:FC:63:D8:61:F4:69:4F:7A:2F:95:1F:B1:28:47:E0:7F:AA:90:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/J_xj2GH0aU96L5UfsShH4H-qkHI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J_xj2GH0aU96L5UfsShH4H-qkHI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9125F95/CE2AFC46A27511E69EB17774C4F9AE02/A17F07705FA311EAB1BB612CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.8.0/22 103.217.176.0/22 IPv6: 2407:aa80::/32 Signature Algorithm: sha256WithRSAEncryption 0a:3d:cf:95:6b:ee:9a:fe:6e:2b:dd:1b:1e:bf:88:b3:09:ed: 05:74:1c:4c:d0:13:d9:59:e3:fd:9a:e8:67:cc:5e:06:24:27: 10:ff:85:9c:c3:48:fb:1c:03:5d:4f:85:38:70:b8:d2:88:da: 0f:2e:b4:03:92:ca:9f:ba:cf:52:d0:50:3b:3a:8d:b2:47:9b: 2f:22:8e:6d:6d:3b:a5:71:c0:90:94:e5:d5:aa:a5:d0:2c:e9: a4:73:a7:7a:6f:37:ec:68:83:70:34:b2:41:77:ec:3f:a7:db: 95:7a:8c:1c:b6:db:f2:65:e0:22:77:12:70:03:04:7d:7d:18: 8d:bb:78:8f:87:9f:62:be:7b:cb:a7:28:3a:10:5d:21:99:59: d2:2c:35:16:12:37:1a:61:c5:b1:25:73:67:96:1d:78:ce:46: b4:0b:77:0e:96:02:d3:9c:12:e8:cd:95:28:a4:3c:b9:ed:45: b4:c4:14:2e:9e:e9:58:cd:39:ce:36:42:8e:9b:b5:be:c2:70: b7:9a:cf:80:88:ed:f3:98:f4:f4:11:4c:85:48:56:92:f7:e9: e4:28:c3:0c:d5:21:d4:7a:c5:b8:05:45:0a:0c:16:e1:70:8c: 8e:e6:f1:d5:88:b7:38:3f:87:2b:26:bd:3b:4f:0e:85:84:bb: 9c:25:15:4f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICHBkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjVGOTUxMTAvBgNVBAUTKDI3RkM2M0Q4NjFGNDY5NEY3QTJGOTUxRkIxMjg0N0Uw N0ZBQTkwNzIwHhcNMjMwNjI4MTYzNDEyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDljNjEwMy1lMmE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuboWAO5PQvH21pdCT79sNLzNrB9P2NMQi/pPup2XQ9EsZ3Ynjb1MkOvRgJwi oDV7YgRwCfXYZkAQzjPxG3VkAR67GiZQ0EywLmnIYICkGjtJ0e21x1BP/wkyacbp j2eBVca/GX2Ba5AhPwzWd/vyLxL7cdElh5xx5IVtt71QekqFnBuQae3g4H5JxB2G 7UKRU0nyfBvneCQd18/iqOUq+Z4aZruoDlQlZIRDiwDYjQM2GJPogO/LMuXzTTN0 bzfrh6zA07vgOCcJqt+VWGg3nljSzxrkY/oWPH5iDDZoWANjsYoq4G6jhIXe8ZFm lcmNJ7WvN40Tc5oMeIj6eszBqwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFL8WCo22 RA7DOdU9yQlvUH19dHNEMB8GA1UdIwQYMBaAFCf8Y9hh9GlPei+VH7EoR+B/qpBy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNUY5NS9DRTJBRkM0NkEy NzUxMUU2OUVCMTc3NzRDNEY5QUUwMi9KX3hqMkdIMGFVOTZMNVVmc1NoSDRILXFr SEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pfeGoyR0gwYVU5Nkw1VWZzU2hINEgtcWtISS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjVGOTUvQ0UyQUZDNDZBMjc1MTFFNjlFQjE3Nzc0QzRGOUFFMDIvQTE3RjA3NzA1 RkEzMTFFQUIxQkI2MTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIt+QgDBAJn2bAwDQQCAAIwBwMFACQHqoAwDQYJKoZIhvcN AQELBQADggEBAAo9z5Vr7pr+bivdGx6/iLMJ7QV0HEzQE9lZ4/2a6GfMXgYkJxD/ hZzDSPscA11PhThwuNKI2g8utAOSyp+6z1LQUDs6jbJHmy8ijm1tO6VxwJCU5dWq pdAs6aRzp3pvN+xog3A0skF37D+n25V6jBy22/Jl4CJ3EnADBH19GI27eI+Hn2K+ e8unKDoQXSGZWdIsNRYSNxphxbElc2eWHXjORrQLdw6WAtOcEujNlSikPLntRbTE FC6e6VjNOc42Qo6btb7CcLeaz4CI7fOY9PQRTIVIVpL36eQowwzVIdR6xbgFRQoM FuFwjI7m8dWItzg/hysmvTtPDoWEu5wlFU8= -----END CERTIFICATE-----Generated at Sat May 18 16:57:53 2024 by rpki-client on console-fra.rpki-client.org