$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa File: D91E3ADC498E11EF908FD222C4F9AE02.roa (raw, json) Hash identifier: BCtiz+Xsbj/enu8rGESoHoFCbppwu+/N8w360i6xkrY= Subject key identifier: 56:8D:34:9D:0E:AC:25:10:DF:6D:47:B0:E5:BE:BB:37:64:EC:BC:51 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 3A Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa Signing time: Fri 01 Nov 2024 06:28:58 +0000 ROA not before: Fri 01 Nov 2024 06:28:58 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 1851 IP address blocks: 130.220.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58 (0x3a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Nov 1 06:28:58 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6724752a-6f37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:99:50:5b:02:d2:2b:42:c7:d2:f2:ef:5f:8f: 46:85:00:fd:43:c6:f9:f9:46:33:27:a0:b6:bc:19: f3:66:3b:02:35:38:9c:aa:16:ae:bc:f5:27:fa:c3: 89:83:18:fa:1e:25:9f:0b:69:ea:8e:21:3b:a6:8d: 75:16:94:6d:93:31:a6:2c:c3:5b:cf:9c:4f:fc:5f: b0:a7:a3:e3:41:7e:05:40:5f:6b:60:31:97:88:5a: b4:d1:3a:c8:fe:d0:e3:f5:6c:6a:4c:8e:bd:b9:17: f3:02:2d:b7:3e:c1:f6:34:f5:91:38:1e:04:b9:72: e6:49:ea:38:1a:d0:2a:3f:2c:73:8b:4d:a2:6f:3b: e2:e1:4c:08:a2:3b:b7:28:5e:ee:c4:f9:2d:2a:32: fd:c8:46:da:0a:a6:ac:2c:7a:d5:0b:4c:5e:70:35: ae:0f:ff:b3:d6:06:5c:af:b9:dd:22:d8:0b:bb:a0: a1:d2:75:b4:80:3c:8c:b6:41:b7:15:bf:82:e0:fe: 43:c3:bd:d0:b8:64:30:2c:9c:10:df:7b:e4:69:f4: 89:87:03:27:ca:f7:55:a0:3b:f9:44:71:d9:cc:73: ab:19:d9:6c:68:28:91:b5:06:bf:02:ac:a1:f2:96: 74:ad:64:6a:f0:4b:dc:0e:ab:01:a6:60:ee:d3:66: 9d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:8D:34:9D:0E:AC:25:10:DF:6D:47:B0:E5:BE:BB:37:64:EC:BC:51 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1d:ca:ea:49:e9:91:2e:6e:90:f0:aa:a9:51:11:76:16:58:f3: 65:1c:17:ab:1d:23:ae:a5:dd:45:19:82:b9:b8:05:39:1a:ae: 03:69:55:49:39:b3:90:bc:01:8c:45:01:a9:6b:04:79:3a:31: 43:23:b3:a7:b1:51:a7:8d:82:95:3a:73:bb:fe:78:68:7c:1d: 34:7c:3e:9b:85:b5:67:bc:d2:c2:1b:ff:5f:2f:cd:1d:59:b7: d4:e4:19:22:24:81:9e:cf:55:3a:bf:f9:70:da:10:e5:07:50: 07:b0:84:58:69:d5:0c:ac:e4:06:06:48:2d:1a:45:2e:b9:ca: 80:e5:60:3a:2a:44:9b:75:e1:c7:37:bd:4c:0e:e9:05:1d:df: ca:65:f2:f8:4c:9e:87:6d:38:04:78:18:92:6c:92:2f:13:81: a1:b8:26:77:21:b7:41:30:5c:52:a0:87:38:07:07:45:f8:ac: d9:94:02:90:a6:51:1b:7b:a1:d7:be:ea:61:94:c0:10:31:23: b6:a6:ea:bf:9d:4e:54:bc:01:fa:15:ed:98:bf:b6:c0:d9:6c: 2f:eb:4c:3f:ef:dd:e3:f6:a5:21:bf:ef:f3:0d:2c:02:35:93: 7b:ed:26:30:86:23:3e:2c:2b:5e:18:34:75:9d:bf:4a:21:82: d4:5a:a4:8f -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBOjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjNCNjExMC8GA1UEBRMoMkIxMzFBQTEwRDdFNkJGRUEzNjdFODFCNzNEN0ZEQjBB QzAxRDY3ODAeFw0yNDExMDEwNjI4NThaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjQ3NTJhLTZmMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGmVBbAtIrQsfS8u9fj0aFAP1Dxvn5RjMnoLa8GfNmOwI1OJyqFq689Sf6w4mD GPoeJZ8LaeqOITumjXUWlG2TMaYsw1vPnE/8X7Cno+NBfgVAX2tgMZeIWrTROsj+ 0OP1bGpMjr25F/MCLbc+wfY09ZE4HgS5cuZJ6jga0Co/LHOLTaJvO+LhTAiiO7co Xu7E+S0qMv3IRtoKpqwsetULTF5wNa4P/7PWBlyvud0i2Au7oKHSdbSAPIy2QbcV v4Lg/kPDvdC4ZDAsnBDfe+Rp9ImHAyfK91WgO/lEcdnMc6sZ2WxoKJG1Br8CrKHy lnStZGrwS9wOqwGmYO7TZp2HAgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUVo00nQ6s JRDfbUew5b67N2TsvFEwHwYDVR0jBBgwFoAUKxMaoQ1+a/6jZ+gbc9f9sKwB1ngw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGM0I2LzUwRjAxMUM4NDhC QTExRUZCRDQ1MTYzREM0RjlBRTAyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFu Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3hNYW9RMS1hXzZqWi1nYmM5ZjlzS3dCMW5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9EOTFFM0FEQzQ5 OEUxMUVGOTA4RkQyMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAILcMA0GCSqGSIb3DQEBCwUAA4IBAQAdyupJ6ZEubpDwqqlR EXYWWPNlHBerHSOupd1FGYK5uAU5Gq4DaVVJObOQvAGMRQGpawR5OjFDI7OnsVGn jYKVOnO7/nhofB00fD6bhbVnvNLCG/9fL80dWbfU5BkiJIGez1U6v/lw2hDlB1AH sIRYadUMrOQGBkgtGkUuucqA5WA6KkSbdeHHN71MDukFHd/KZfL4TJ6HbTgEeBiS bJIvE4GhuCZ3IbdBMFxSoIc4BwdF+KzZlAKQplEbe6HXvuphlMAQMSO2puq/nU5U vAH6Fe2Yv7bA2Wwv60w/793j9qUhv+/zDSwCNZN77SYwhiM+LCteGDR1nb9KIYLU WqSP -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:01 2024 by rpki-client on console-ams.rpki-client.org