$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa File: D9C5B55A498E11EF908FD222C4F9AE02.roa (raw, json) Hash identifier: 5bWzpxkVdBvFoS/IDZEAIIoO+h76dzg0UD9G2ZwWkiQ= Subject key identifier: ED:B2:82:E9:47:CA:57:87:58:8C:28:E9:CB:FE:E2:97:EB:78:A7:82 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 04 Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa Signing time: Wed 24 Jul 2024 07:32:16 +0000 ROA not before: Wed 24 Jul 2024 07:32:16 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 7575 IP address blocks: 130.220.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 06:09:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Jul 24 07:32:16 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66a0ae00-ed4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:73:59:9a:d3:0c:a8:2c:98:80:b7:30:85:07: b0:b6:ff:64:4e:b0:3f:d5:9f:a1:f8:32:d5:71:33: 10:60:8e:6c:37:c7:ef:9b:34:ff:22:a1:8f:d5:89: 03:4d:81:a0:6b:e3:80:53:10:49:30:a2:12:89:e5: cb:46:d8:1b:bf:6f:a1:f9:be:f7:14:86:b5:3f:c0: 22:f9:e3:33:b4:1b:b9:19:ae:02:93:31:d3:18:fc: f6:2a:f4:42:8d:6c:17:c7:f1:e3:be:cb:53:e7:06: 02:11:9f:38:9e:86:9f:ad:21:e9:0a:f1:21:f2:be: da:65:65:9a:ba:95:50:af:66:a4:2e:98:8a:a7:6a: 13:84:78:dc:1d:4a:3f:a3:d1:63:57:e9:d6:c4:a0: 00:93:f7:f4:ea:84:12:6c:96:53:23:e7:ff:f6:64: 8e:20:32:59:38:79:fe:40:56:93:0b:da:4a:38:49: 5c:93:00:16:71:1e:6d:94:48:bc:15:5a:93:40:b5: 3d:82:32:34:1f:90:17:d4:f4:5f:e3:57:a2:9b:84: ac:c3:65:a9:76:8e:70:69:4d:b0:e9:c7:89:00:e2: fd:77:f6:9c:2d:d5:18:ee:ac:ae:9a:d2:ae:fa:c5: 71:d8:c3:93:4a:a8:32:a1:11:43:5f:b0:dd:5d:7e: 46:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:B2:82:E9:47:CA:57:87:58:8C:28:E9:CB:FE:E2:97:EB:78:A7:82 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 73:2d:4e:d9:4d:86:ca:64:34:6d:7c:74:be:61:74:44:7d:9e: cd:3e:71:17:29:83:4b:7e:4a:c3:2b:7e:6d:2a:91:6c:cd:6d: 0e:67:4f:46:75:9b:9c:73:2d:df:c9:a9:24:41:97:f6:f8:a0: d1:71:ec:5a:14:9a:93:38:3e:71:12:d0:fe:90:ad:5e:3e:fe: 81:b8:14:48:a4:17:e8:83:86:77:2e:bb:1f:36:cf:59:0a:c4: b8:95:55:70:83:bc:0e:94:db:c7:5b:99:2b:20:8d:79:e1:26: b4:9b:f8:29:22:40:aa:22:93:21:ae:d9:6e:e1:1f:19:8f:0f: ac:9a:5e:5c:3c:a6:af:e8:f7:b6:29:f9:00:88:f9:a0:63:17: ad:7c:d2:88:7b:f2:bd:c4:77:05:f4:44:dd:94:de:2d:0e:a6: cf:5a:03:8f:ad:3b:f3:61:f9:6c:81:1d:8f:b0:50:a8:53:84: 6f:70:e2:c8:9c:1e:22:7d:b8:8f:6a:1b:a5:84:e0:6d:d3:1d: 8a:a6:ec:9f:5f:70:56:32:8a:e4:a2:8b:ac:05:ee:1e:82:88: e1:61:d1:26:0e:34:e4:8f:2b:38:f8:cc:2f:ea:c8:55:31:cf: bd:13:6b:f8:1f:7a:82:f3:bf:b3:70:89:07:f1:04:03:66:bd: 1b:58:61:35 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjNCNjExMC8GA1UEBRMoMkIxMzFBQTEwRDdFNkJGRUEzNjdFODFCNzNEN0ZEQjBB QzAxRDY3ODAeFw0yNDA3MjQwNzMyMTZaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTBhZTAwLWVkNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC1c1ma0wyoLJiAtzCFB7C2/2ROsD/Vn6H4MtVxMxBgjmw3x++bNP8ioY/ViQNN gaBr44BTEEkwohKJ5ctG2Bu/b6H5vvcUhrU/wCL54zO0G7kZrgKTMdMY/PYq9EKN bBfH8eO+y1PnBgIRnziehp+tIekK8SHyvtplZZq6lVCvZqQumIqnahOEeNwdSj+j 0WNX6dbEoACT9/TqhBJsllMj5//2ZI4gMlk4ef5AVpML2ko4SVyTABZxHm2USLwV WpNAtT2CMjQfkBfU9F/jV6KbhKzDZal2jnBpTbDpx4kA4v139pwt1RjurK6a0q76 xXHYw5NKqDKhEUNfsN1dfkY5AgMBAAGjggKUMIICkDAdBgNVHQ4EFgQU7bKC6UfK V4dYjCjpy/7il+t4p4IwHwYDVR0jBBgwFoAUKxMaoQ1+a/6jZ+gbc9f9sKwB1ngw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGM0I2LzUwRjAxMUM4NDhC QTExRUZCRDQ1MTYzREM0RjlBRTAyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFu Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3hNYW9RMS1hXzZqWi1nYmM5ZjlzS3dCMW5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9EOUM1QjU1QTQ5 OEUxMUVGOTA4RkQyMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAILcMA0GCSqGSIb3DQEBCwUAA4IBAQBzLU7ZTYbKZDRtfHS+ YXREfZ7NPnEXKYNLfkrDK35tKpFszW0OZ09GdZuccy3fyakkQZf2+KDRcexaFJqT OD5xEtD+kK1ePv6BuBRIpBfog4Z3LrsfNs9ZCsS4lVVwg7wOlNvHW5krII154Sa0 m/gpIkCqIpMhrtlu4R8Zjw+sml5cPKav6Pe2KfkAiPmgYxetfNKIe/K9xHcF9ETd lN4tDqbPWgOPrTvzYflsgR2PsFCoU4RvcOLInB4ifbiPahulhOBt0x2KpuyfX3BW MorkoousBe4egojhYdEmDjTkjys4+Mwv6shVMc+9E2v4H3qC87+zcIkH8QQDZr0b WGE1 -----END CERTIFICATE-----Generated at Thu Sep 19 07:13:45 2024 by rpki-client on console-fra.rpki-client.org