$ rpki-client -vvf rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/80A9DE56614C11EC9175DE54C4F9AE02.roa File: 80A9DE56614C11EC9175DE54C4F9AE02.roa (raw, json) Hash identifier: GwOW8h2i4EDL83P7tP6XgtCLfPJIB+UmcBgvYuLEgxk= Subject key identifier: 5D:79:1C:8F:F9:BD:0D:94:AE:AA:29:98:88:AA:0A:0C:3C:51:58:49 Certificate issuer: /CN=A9129C87/serialNumber=E8F92D6B2A2930F0A5BEAF53044C85D8EADE1EBA Certificate serial: 0311 Authority key identifier: E8:F9:2D:6B:2A:29:30:F0:A5:BE:AF:53:04:4C:85:D8:EA:DE:1E:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6PktayopMPClvq9TBEyF2OreHro.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/80A9DE56614C11EC9175DE54C4F9AE02.roa Signing time: Fri 03 Nov 2023 02:35:20 +0000 ROA not before: Fri 03 Nov 2023 02:35:20 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 56120 IP address blocks: 1.20.0.0/24 maxlen: 24 1.20.1.0/24 maxlen: 24 1.20.2.0/24 maxlen: 24 1.20.3.0/24 maxlen: 24 1.20.4.0/22 maxlen: 22 1.20.8.0/21 maxlen: 21 1.20.16.0/20 maxlen: 20 1.20.32.0/20 maxlen: 20 1.20.48.0/21 maxlen: 21 1.20.56.0/22 maxlen: 22 1.20.60.0/24 maxlen: 24 1.20.61.0/24 maxlen: 24 1.20.62.0/24 maxlen: 24 1.20.63.0/24 maxlen: 24 1.20.64.0/24 maxlen: 24 1.20.65.0/24 maxlen: 24 1.20.66.0/24 maxlen: 24 1.20.117.0/24 maxlen: 24 1.20.119.0/24 maxlen: 24 1.20.120.0/24 maxlen: 24 1.20.121.0/24 maxlen: 24 1.20.122.0/24 maxlen: 24 1.20.123.0/24 maxlen: 24 1.20.125.0/24 maxlen: 24 1.20.126.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/6PktayopMPClvq9TBEyF2OreHro.crl rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/6PktayopMPClvq9TBEyF2OreHro.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6PktayopMPClvq9TBEyF2OreHro.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 785 (0x311) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9129C87/serialNumber=E8F92D6B2A2930F0A5BEAF53044C85D8EADE1EBA Validity Not Before: Nov 3 02:35:20 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65445c68-6d0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:28:0d:7b:df:60:e5:53:cd:c7:5f:38:19:cb: e2:97:69:20:c2:87:8d:49:41:ec:a2:9f:ae:49:72: 95:c2:8a:e4:49:9d:55:72:5f:eb:ad:25:51:c8:99: 7a:3b:2b:3b:dd:53:ea:4a:45:b5:dd:e8:98:78:58: c5:6b:45:5b:e1:66:d4:93:e9:33:6a:78:bd:bd:b5: c3:d3:41:41:0d:a4:ce:5e:fe:eb:ad:28:fc:5b:c3: 12:26:86:2b:f9:00:37:22:4b:d8:8b:25:8f:c4:a7: 5e:e5:20:bf:fa:70:d5:30:4f:85:19:83:5e:5d:4b: d2:e9:bd:f8:84:e7:71:27:18:97:c5:2e:e6:aa:84: c4:19:6b:ad:be:fe:44:34:6e:dc:f6:00:bc:04:34: bc:42:8a:68:b3:db:4b:5f:36:5e:7b:3d:c9:ab:08: e8:23:50:6f:f8:d2:d1:55:e4:9e:4e:6d:59:6b:ff: 49:4d:85:ea:ad:96:2c:a6:18:9a:4b:a2:38:68:7d: 19:d5:86:36:8f:29:b5:b2:33:d6:a4:af:ed:9e:db: 02:85:a3:47:57:52:fc:f6:d8:c4:ea:6c:03:ca:71: 92:6b:e2:90:ca:1e:13:60:b6:f1:b6:f0:c2:1d:25: a1:98:8f:ce:40:17:92:0e:8e:26:59:f5:3c:e5:b6: 19:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:79:1C:8F:F9:BD:0D:94:AE:AA:29:98:88:AA:0A:0C:3C:51:58:49 X509v3 Authority Key Identifier: keyid:E8:F9:2D:6B:2A:29:30:F0:A5:BE:AF:53:04:4C:85:D8:EA:DE:1E:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/6PktayopMPClvq9TBEyF2OreHro.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6PktayopMPClvq9TBEyF2OreHro.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129C87/FD083F585EED11EC9A496D59C4F9AE02/80A9DE56614C11EC9175DE54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 1.20.0.0-1.20.66.255 1.20.117.0/24 1.20.119.0-1.20.123.255 1.20.125.0-1.20.126.255 Signature Algorithm: sha256WithRSAEncryption 9d:b3:92:dc:a5:fb:b4:01:6d:35:50:d1:34:b9:d5:31:43:c1: 1d:01:44:2c:25:76:72:66:d8:c7:b9:35:d9:37:a7:02:00:73: 94:01:1e:f3:b9:43:da:97:45:7e:82:d4:1e:23:a8:22:12:8c: 67:ff:c9:c6:a3:da:52:52:47:45:1e:6a:74:6e:0c:9c:61:56: 69:40:2f:4c:f9:28:a5:25:51:6c:65:68:06:f1:6a:66:99:4b: 19:96:d1:31:eb:d0:02:e3:55:ba:32:5d:c7:c5:0b:de:70:f9: b6:c7:dd:df:21:62:37:aa:37:bf:f8:8d:a9:a7:c6:a1:b7:e0: bb:01:c0:2a:78:ec:8a:da:1e:ff:ce:85:61:55:3a:c9:1a:23: 5b:00:4a:ae:c9:c5:2c:dd:26:1a:5f:03:5f:b0:5b:f8:46:57: d9:4c:6e:9f:d0:b2:5b:66:4a:ec:bb:54:0b:de:9c:ef:c2:bb: 88:36:54:7d:ca:04:70:1e:90:a4:23:e2:79:0f:c4:ea:fb:1f: a7:bb:65:89:97:c3:8e:d4:34:4d:79:6a:96:c4:d1:18:94:b8: c3:74:83:0d:8c:60:b5:95:fb:4d:b9:6c:1f:cd:a3:52:fe:31: 61:44:64:85:26:9e:d0:da:51:8c:3c:6a:37:d3:13:c9:99:b4: 25:38:ce:d8 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICAxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjlDODcxMTAvBgNVBAUTKEU4RjkyRDZCMkEyOTMwRjBBNUJFQUY1MzA0NEM4NUQ4 RUFERTFFQkEwHhcNMjMxMTAzMDIzNTIwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0NWM2OC02ZDBjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArCgNe99g5VPNx184Gcvil2kgwoeNSUHsop+uSXKVworkSZ1Vcl/rrSVRyJl6 Oys73VPqSkW13eiYeFjFa0Vb4WbUk+kzani9vbXD00FBDaTOXv7rrSj8W8MSJoYr +QA3IkvYiyWPxKde5SC/+nDVME+FGYNeXUvS6b34hOdxJxiXxS7mqoTEGWutvv5E NG7c9gC8BDS8Qopos9tLXzZeez3JqwjoI1Bv+NLRVeSeTm1Za/9JTYXqrZYsphia S6I4aH0Z1YY2jym1sjPWpK/tntsChaNHV1L89tjE6mwDynGSa+KQyh4TYLbxtvDC HSWhmI/OQBeSDo4mWfU85bYZ3wIDAQABo4ICvjCCArowHQYDVR0OBBYEFF15HI/5 vQ2UrqopmIiqCgw8UVhJMB8GA1UdIwQYMBaAFOj5LWsqKTDwpb6vUwRMhdjq3h66 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOUM4Ny9GRDA4M0Y1ODVF RUQxMUVDOUE0OTZENTlDNEY5QUUwMi82UGt0YXlvcE1QQ2x2cTlUQkV5RjJPcmVI cm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZQa3RheW9wTVBDbHZxOVRCRXlGMk9yZUhyby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjlDODcvRkQwODNGNTg1RUVEMTFFQzlBNDk2RDU5QzRGOUFFMDIvODBBOURFNTY2 MTRDMTFFQzkxNzVERTU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MDUEAgABMC8wCwMDAgEUAwQAARRCAwQAARR1MAwDBAABFHcDBAIBFHgwDAME AAEUfQMEAAEUfjANBgkqhkiG9w0BAQsFAAOCAQEAnbOS3KX7tAFtNVDRNLnVMUPB HQFELCV2cmbYx7k12TenAgBzlAEe87lD2pdFfoLUHiOoIhKMZ//JxqPaUlJHRR5q dG4MnGFWaUAvTPkopSVRbGVoBvFqZplLGZbRMevQAuNVujJdx8UL3nD5tsfd3yFi N6o3v/iNqafGobfguwHAKnjsitoe/86FYVU6yRojWwBKrsnFLN0mGl8DX7Bb+EZX 2Uxun9CyW2ZK7LtUC96c78K7iDZUfcoEcB6QpCPieQ/E6vsfp7tliZfDjtQ0TXlq lsTRGJS4w3SDDYxgtZX7TblsH82jUv4xYURkhSae0NpRjDxqN9MTyZm0JTjO2A== -----END CERTIFICATE-----Generated at Fri May 17 03:50:05 2024 by rpki-client on console-fra.rpki-client.org