$ rpki-client -vvf rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/FFE6CB36228111EFA702E016C4F9AE02.roa File: FFE6CB36228111EFA702E016C4F9AE02.roa (raw, json) Hash identifier: +BYuc5eNV9QVdOv8+l4kTKaLYQnJEvaUX1OVi3Uj8pM= Subject key identifier: F6:F9:98:65:D1:F0:4D:52:25:EE:3B:39:52:82:E0:A7:76:60:73:48 Certificate issuer: /CN=A9129023/serialNumber=4F146F5CC4F4BC873822FA1E33452A541A1EE546 Certificate serial: 02 Authority key identifier: 4F:14:6F:5C:C4:F4:BC:87:38:22:FA:1E:33:45:2A:54:1A:1E:E5:46 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxRvXMT0vIc4IvoeM0UqVBoe5UY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/FFE6CB36228111EFA702E016C4F9AE02.roa Signing time: Tue 04 Jun 2024 14:52:01 +0000 ROA not before: Tue 04 Jun 2024 14:52:01 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 147001 IP address blocks: 160.20.134.0/23 maxlen: 23 160.20.134.0/24 maxlen: 24 160.20.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/TxRvXMT0vIc4IvoeM0UqVBoe5UY.crl rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/TxRvXMT0vIc4IvoeM0UqVBoe5UY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxRvXMT0vIc4IvoeM0UqVBoe5UY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 05:50:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129023/serialNumber=4F146F5CC4F4BC873822FA1E33452A541A1EE546 Validity Not Before: Jun 4 14:52:01 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665f2a11-acb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:eb:52:62:5c:f5:56:2b:fe:7d:c5:53:b6:0c: 10:7d:97:96:75:c9:d5:f5:a8:a1:b7:7e:ca:c3:3f: 0e:5a:3c:50:63:46:43:35:f2:e7:2f:66:4f:c9:cc: 7e:12:b2:47:c0:5a:cf:1c:22:00:91:67:b6:9f:7d: 45:e4:f1:96:df:a0:6f:5f:51:a0:31:1f:96:4f:54: 90:7a:87:41:48:95:0a:b4:ab:80:18:3b:a8:a6:88: 57:d7:88:dc:9f:da:7d:24:9a:a1:63:02:5c:19:7a: fa:26:48:f0:d5:bf:25:af:08:b9:53:2e:66:1e:d6: d2:a7:6c:00:a7:36:73:32:67:96:87:55:40:bc:8d: 2a:31:60:77:3a:42:f0:6a:5a:f3:f8:b9:c3:6b:11: 8a:2a:43:e3:72:c8:90:f5:07:da:78:e6:9f:39:7d: 8f:08:c3:c2:67:4e:c2:dc:ed:36:ba:cb:0a:ff:06: c1:cd:37:d4:b1:25:29:ae:84:9d:5d:32:96:7b:37: eb:51:52:86:5b:04:54:da:da:8c:b3:76:e0:56:fd: fd:96:0e:c9:35:af:92:d7:75:18:16:b7:d3:6b:5e: 24:91:c9:2d:66:61:c1:82:21:74:d7:48:0c:63:c5: 77:c9:53:98:f7:d4:96:72:66:5c:cb:02:20:b6:78: e1:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:F9:98:65:D1:F0:4D:52:25:EE:3B:39:52:82:E0:A7:76:60:73:48 X509v3 Authority Key Identifier: keyid:4F:14:6F:5C:C4:F4:BC:87:38:22:FA:1E:33:45:2A:54:1A:1E:E5:46 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/TxRvXMT0vIc4IvoeM0UqVBoe5UY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/TxRvXMT0vIc4IvoeM0UqVBoe5UY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129023/F33BB4A6228011EFA7283C14C4F9AE02/FFE6CB36228111EFA702E016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.20.134.0/23 Signature Algorithm: sha256WithRSAEncryption 6e:7c:29:92:f3:b3:c5:53:7c:b6:a7:83:ea:8a:25:9c:0d:68: 88:5b:82:75:61:11:ef:6a:16:48:57:86:35:7b:bb:af:4f:25: b4:73:de:e4:d5:e1:7d:73:cb:f9:32:7d:7c:0c:0e:30:5a:87: 69:20:4b:68:03:0b:9b:23:89:d3:de:94:71:91:01:61:f0:9c: d5:80:4b:3b:83:a0:1c:8e:b5:2b:b7:d9:c7:dd:c5:e5:ee:65: 14:d6:2e:1f:a4:81:28:e2:b8:e0:75:49:3a:8a:be:c8:16:df: bd:30:96:26:6c:2c:7c:38:82:e9:ba:ce:db:08:12:71:18:69: f2:08:ec:de:f5:91:fe:68:c3:e8:9c:e9:ec:a2:06:f4:2d:af: 90:66:41:6b:81:ff:fd:cc:b5:10:45:de:bf:ef:4b:bd:75:1f: 14:65:e6:f5:eb:2b:79:a1:ec:5d:8d:6c:55:01:b8:b9:a0:65: 30:bb:66:3c:9c:c7:e5:ac:0f:65:eb:a8:9c:f1:f2:5d:a5:ef: 03:22:6d:3a:37:ea:7c:27:3b:05:25:22:6e:c9:29:46:30:31: 68:87:fd:b8:76:84:89:65:36:f3:1f:5f:f2:ac:08:0d:83:ec: a4:7d:73:55:56:9a:76:40:c8:82:b0:0f:ef:02:70:34:69:2d: 04:da:05:ff -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy OTAyMzExMC8GA1UEBRMoNEYxNDZGNUNDNEY0QkM4NzM4MjJGQTFFMzM0NTJBNTQx QTFFRTU0NjAeFw0yNDA2MDQxNDUyMDFaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NWYyYTExLWFjYjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCw61JiXPVWK/59xVO2DBB9l5Z1ydX1qKG3fsrDPw5aPFBjRkM18ucvZk/JzH4S skfAWs8cIgCRZ7affUXk8ZbfoG9fUaAxH5ZPVJB6h0FIlQq0q4AYO6imiFfXiNyf 2n0kmqFjAlwZevomSPDVvyWvCLlTLmYe1tKnbACnNnMyZ5aHVUC8jSoxYHc6QvBq WvP4ucNrEYoqQ+NyyJD1B9p45p85fY8Iw8JnTsLc7Ta6ywr/BsHNN9SxJSmuhJ1d MpZ7N+tRUoZbBFTa2oyzduBW/f2WDsk1r5LXdRgWt9NrXiSRyS1mYcGCIXTXSAxj xXfJU5j31JZyZlzLAiC2eOFZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9vmYZdHw TVIl7js5UoLgp3Zgc0gwHwYDVR0jBBgwFoAUTxRvXMT0vIc4IvoeM0UqVBoe5UYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI5MDIzL0YzM0JCNEE2MjI4 MDExRUZBNzI4M0MxNEM0RjlBRTAyL1R4UnZYTVQwdkljNEl2b2VNMFVxVkJvZTVV WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvVHhSdlhNVDB2SWM0SXZvZU0wVXFWQm9lNVVZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy OTAyMy9GMzNCQjRBNjIyODAxMUVGQTcyODNDMTRDNEY5QUUwMi9GRkU2Q0IzNjIy ODExMUVGQTcwMkUwMTZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAaAUhjANBgkqhkiG9w0BAQsFAAOCAQEAbnwpkvOzxVN8tqeD 6oolnA1oiFuCdWER72oWSFeGNXu7r08ltHPe5NXhfXPL+TJ9fAwOMFqHaSBLaAML myOJ096UcZEBYfCc1YBLO4OgHI61K7fZx93F5e5lFNYuH6SBKOK44HVJOoq+yBbf vTCWJmwsfDiC6brO2wgScRhp8gjs3vWR/mjD6Jzp7KIG9C2vkGZBa4H//cy1EEXe v+9LvXUfFGXm9esreaHsXY1sVQG4uaBlMLtmPJzH5awPZeuonPHyXaXvAyJtOjfq fCc7BSUibskpRjAxaIf9uHaEiWU28x9f8qwIDYPspH1zVVaadkDIgrAP7wJwNGkt BNoF/w== -----END CERTIFICATE-----Generated at Thu Sep 19 08:57:04 2024 by rpki-client on console-ams.rpki-client.org