$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa File: D91E3ADC498E11EF908FD222C4F9AE02.roa (raw, json) Hash identifier: Jx5g4trH+czPvG03Fg+vnQGNF2i3MZbGuk8d0qs2e3E= Subject key identifier: BC:2F:EF:68:DB:9E:E4:C4:36:56:9A:94:D6:42:97:DB:21:CE:02:C2 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 03 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa Signing time: Wed 24 Jul 2024 07:32:15 +0000 ROA not before: Wed 24 Jul 2024 07:32:15 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 1851 IP address blocks: 130.220.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Jul 24 07:32:15 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66a0adff-479e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1c:87:0e:d4:f0:e4:13:db:7a:25:87:b1:38: 45:8c:4e:b0:40:05:ce:f8:8e:2b:14:3f:26:bf:bf: 36:50:57:93:43:df:f6:db:fe:a9:6e:0d:22:27:27: 45:e4:a3:ce:6b:3c:a9:cc:3b:4f:88:2c:23:e3:fc: b4:50:d9:c8:d5:52:b6:5d:5f:85:ca:fb:4a:b3:95: c3:bc:bc:10:84:6b:b2:66:57:ae:dd:a7:81:f5:c3: 53:b7:97:b7:a7:26:e8:c1:66:a2:49:75:04:00:75: 6e:61:af:99:54:90:87:ae:3b:89:e2:2b:e2:5b:e0: 46:2d:4b:18:43:12:7c:d6:51:70:3a:53:2b:29:3e: ed:e2:bb:e3:a7:b3:4a:d6:9b:04:c0:aa:e9:86:d6: fd:82:66:6c:2d:f9:c1:44:50:14:85:03:70:55:a7: 5a:95:f7:62:99:45:16:1f:4d:1b:a1:74:43:52:ed: 29:83:96:df:5c:a4:52:1e:66:7d:85:1f:37:64:14: 44:a3:d0:9c:9d:e6:a6:03:e3:3e:b3:bf:71:10:a8: 88:f7:c0:79:d1:83:1a:56:c2:ea:ff:9f:64:e9:7f: 51:4c:db:cc:08:54:6e:6a:0d:d9:e7:96:22:d7:68: fa:2c:91:b5:a2:59:fa:44:99:7d:e3:f0:20:20:48: e4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:2F:EF:68:DB:9E:E4:C4:36:56:9A:94:D6:42:97:DB:21:CE:02:C2 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D91E3ADC498E11EF908FD222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2d:46:d0:78:be:0d:90:ec:0c:6b:fc:93:35:14:df:60:bd:ca: 4c:7e:e9:0c:d1:d2:b2:52:0e:26:f8:a7:c9:19:a1:ec:13:b5: 3f:e7:e5:a4:48:c7:d3:89:c4:1d:72:b9:62:3b:19:e9:f1:c8: a6:71:30:e8:37:d8:19:dd:2a:23:19:62:c6:f0:ef:f2:9e:e8: 98:7d:ca:b8:97:99:4a:d1:18:72:07:78:ef:0d:4d:c4:4f:46: 02:09:10:ce:dd:0d:62:9d:f2:33:98:56:31:b5:07:dc:64:16: 2a:e5:2c:57:20:75:c0:5d:b7:f2:bd:47:0e:72:c2:06:72:43: 4b:0e:e9:5c:4c:5f:33:62:70:64:68:79:0b:78:24:a3:ca:de: d9:49:e7:62:56:ac:1c:11:ae:3d:4e:7f:28:c9:1c:e9:44:08: 42:04:a2:12:c6:5f:3a:55:25:ff:1c:3c:8b:ce:97:f0:b3:30: c5:a8:2a:55:03:e1:eb:33:e8:93:8a:05:2b:75:21:e1:67:19: be:6a:85:6e:a4:99:a3:60:88:6d:57:05:9a:d6:ed:31:e6:9a: 6e:86:e4:5b:27:64:c0:c8:6e:b5:11:43:15:bb:de:e8:94:06: 6b:6e:47:a3:1d:3a:59:9c:61:b3:79:f4:e3:5f:c1:21:db:5b: 65:0f:d8:86 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjNCNjExMC8GA1UEBRMoMkIxMzFBQTEwRDdFNkJGRUEzNjdFODFCNzNEN0ZEQjBB QzAxRDY3ODAeFw0yNDA3MjQwNzMyMTVaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTBhZGZmLTQ3OWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKHIcO1PDkE9t6JYexOEWMTrBABc74jisUPya/vzZQV5ND3/bb/qluDSInJ0Xk o85rPKnMO0+ILCPj/LRQ2cjVUrZdX4XK+0qzlcO8vBCEa7JmV67dp4H1w1O3l7en JujBZqJJdQQAdW5hr5lUkIeuO4niK+Jb4EYtSxhDEnzWUXA6UyspPu3iu+Ons0rW mwTAqumG1v2CZmwt+cFEUBSFA3BVp1qV92KZRRYfTRuhdENS7SmDlt9cpFIeZn2F HzdkFESj0Jyd5qYD4z6zv3EQqIj3wHnRgxpWwur/n2Tpf1FM28wIVG5qDdnnliLX aPoskbWiWfpEmX3j8CAgSOQ3AgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUvC/vaNue 5MQ2VpqU1kKX2yHOAsIwHwYDVR0jBBgwFoAUKxMaoQ1+a/6jZ+gbc9f9sKwB1ngw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGM0I2LzUwRjAxMUM4NDhC QTExRUZCRDQ1MTYzREM0RjlBRTAyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFu Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3hNYW9RMS1hXzZqWi1nYmM5ZjlzS3dCMW5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9EOTFFM0FEQzQ5 OEUxMUVGOTA4RkQyMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAILcMA0GCSqGSIb3DQEBCwUAA4IBAQAtRtB4vg2Q7Axr/JM1 FN9gvcpMfukM0dKyUg4m+KfJGaHsE7U/5+WkSMfTicQdcrliOxnp8cimcTDoN9gZ 3SojGWLG8O/ynuiYfcq4l5lK0RhyB3jvDU3ET0YCCRDO3Q1infIzmFYxtQfcZBYq 5SxXIHXAXbfyvUcOcsIGckNLDulcTF8zYnBkaHkLeCSjyt7ZSediVqwcEa49Tn8o yRzpRAhCBKISxl86VSX/HDyLzpfwszDFqCpVA+HrM+iTigUrdSHhZxm+aoVupJmj YIhtVwWa1u0x5ppuhuRbJ2TAyG61EUMVu97olAZrbkejHTpZnGGzefTjX8Eh21tl D9iG -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:45 2024 by rpki-client on console-fra.rpki-client.org