$ rpki-client -vvf rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa File: D9C5B55A498E11EF908FD222C4F9AE02.roa (raw, json) Hash identifier: IYR9mQ1VQUiO08kcI4RHdp/FLN6UHawsT13ESG27pvs= Subject key identifier: A8:0E:97:49:6B:78:FB:20:9B:D4:F0:93:FD:EB:4A:41:CA:A6:EB:62 Certificate issuer: /CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Certificate serial: 3B Authority key identifier: 2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa Signing time: Fri 01 Nov 2024 06:28:59 +0000 ROA not before: Fri 01 Nov 2024 06:28:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 7575 IP address blocks: 130.220.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59 (0x3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912F3B6/serialNumber=2B131AA10D7E6BFEA367E81B73D7FDB0AC01D678 Validity Not Before: Nov 1 06:28:59 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6724752b-9d1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3d:12:20:e1:35:5d:a7:44:3f:78:21:97:8b: 57:3c:3d:cf:7d:4e:25:58:7c:86:24:57:c6:95:95: 75:da:76:c2:90:b0:ca:9b:cd:7c:01:7b:a5:c3:31: c3:18:e8:42:80:c9:02:76:0d:20:27:a6:25:00:73: 0f:93:87:9f:f3:b8:c9:14:93:2d:6f:de:a6:5e:dd: 89:52:aa:52:08:bf:13:0f:b3:29:32:df:3d:a7:9a: 88:6c:ee:20:ba:93:93:cf:d5:f1:84:00:c5:75:c6: ae:36:27:74:6d:cc:49:f9:52:d8:de:98:09:2a:e1: 88:fd:20:e6:8a:1d:2a:73:4c:c2:dd:ce:98:85:18: 92:d9:c1:29:1d:ec:9e:ba:33:48:4d:10:ab:74:f1: 50:6c:ce:ad:aa:41:cc:19:35:c9:ad:82:c4:8b:c7: 8f:77:3b:2b:65:a1:76:d0:1f:36:fc:92:fa:6e:1b: 13:41:78:23:ce:3f:c8:9c:b0:68:4a:b5:f4:3e:dc: 09:d1:56:ad:f8:88:d4:4e:27:d9:01:93:23:23:14: 33:52:2c:00:21:3b:ae:3e:ab:20:12:f9:ba:65:5c: 38:e6:e0:a1:88:d1:38:14:db:6c:59:ca:93:64:cd: 51:1c:19:4b:98:4e:84:ba:1b:c3:cb:e6:f1:a6:d9: c0:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:0E:97:49:6B:78:FB:20:9B:D4:F0:93:FD:EB:4A:41:CA:A6:EB:62 X509v3 Authority Key Identifier: keyid:2B:13:1A:A1:0D:7E:6B:FE:A3:67:E8:1B:73:D7:FD:B0:AC:01:D6:78 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KxMaoQ1-a_6jZ-gbc9f9sKwB1ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/50F011C848BA11EFBD45163DC4F9AE02/D9C5B55A498E11EF908FD222C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1a:5e:84:62:ba:9a:14:63:87:ce:12:dc:2a:e4:19:86:c8:59: 71:04:72:5f:7c:b6:3a:4c:04:97:48:90:2a:45:cf:b3:57:78: d7:d2:00:0a:c1:ff:7d:1b:b8:34:c1:55:ee:90:30:df:22:d1: a9:d4:19:1c:d7:4c:ea:0f:53:1d:13:cc:4b:aa:c0:3f:4f:57: 05:a0:9d:1e:91:2d:4b:b4:6a:0f:55:00:49:13:7c:4a:ce:ac: 7a:69:d9:95:e5:12:50:33:e3:3c:ec:01:c6:9b:0b:3b:0e:57: e2:09:14:19:13:95:c7:58:58:77:b3:a3:6f:79:34:ac:b7:c1: 48:47:62:df:93:b0:27:05:d5:32:22:be:0d:5e:61:aa:14:ff: 52:47:e7:3b:b9:74:78:28:c5:74:8b:f8:dd:6c:eb:d1:44:1c: 80:2e:5b:71:fe:1e:dc:f7:19:91:c3:48:48:bc:a9:e4:b0:68: ae:b5:9c:fb:40:84:66:18:be:6e:78:cc:66:3f:d6:94:6e:ae: ae:32:ec:e0:9f:40:99:e3:70:42:84:bd:56:42:7b:9d:3b:09: d7:97:7e:21:ec:cf:3e:be:c6:48:fa:45:45:03:3b:b3:0f:db: 44:8f:aa:47:ec:fc:7d:e1:ac:1d:12:37:c6:ee:77:de:cb:7f: 1a:a4:ca:50 -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBOzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RjNCNjExMC8GA1UEBRMoMkIxMzFBQTEwRDdFNkJGRUEzNjdFODFCNzNEN0ZEQjBB QzAxRDY3ODAeFw0yNDExMDEwNjI4NTlaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MjQ3NTJiLTlkMWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtPRIg4TVdp0Q/eCGXi1c8Pc99TiVYfIYkV8aVlXXadsKQsMqbzXwBe6XDMcMY 6EKAyQJ2DSAnpiUAcw+Th5/zuMkUky1v3qZe3YlSqlIIvxMPsyky3z2nmohs7iC6 k5PP1fGEAMV1xq42J3RtzEn5UtjemAkq4Yj9IOaKHSpzTMLdzpiFGJLZwSkd7J66 M0hNEKt08VBszq2qQcwZNcmtgsSLx493OytloXbQHzb8kvpuGxNBeCPOP8icsGhK tfQ+3AnRVq34iNROJ9kBkyMjFDNSLAAhO64+qyAS+bplXDjm4KGI0TgU22xZypNk zVEcGUuYToS6G8PL5vGm2cB5AgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUqA6XSWt4 +yCb1PCT/etKQcqm62IwHwYDVR0jBBgwFoAUKxMaoQ1+a/6jZ+gbc9f9sKwB1ngw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJGM0I2LzUwRjAxMUM4NDhC QTExRUZCRDQ1MTYzREM0RjlBRTAyL0t4TWFvUTEtYV82alotZ2JjOWY5c0t3QjFu Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS3hNYW9RMS1hXzZqWi1nYmM5ZjlzS3dCMW5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RjNCNi81MEYwMTFDODQ4QkExMUVGQkQ0NTE2M0RDNEY5QUUwMi9EOUM1QjU1QTQ5 OEUxMUVGOTA4RkQyMjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAILcMA0GCSqGSIb3DQEBCwUAA4IBAQAaXoRiupoUY4fOEtwq 5BmGyFlxBHJffLY6TASXSJAqRc+zV3jX0gAKwf99G7g0wVXukDDfItGp1Bkc10zq D1MdE8xLqsA/T1cFoJ0ekS1LtGoPVQBJE3xKzqx6admV5RJQM+M87AHGmws7Dlfi CRQZE5XHWFh3s6NveTSst8FIR2Lfk7AnBdUyIr4NXmGqFP9SR+c7uXR4KMV0i/jd bOvRRByALltx/h7c9xmRw0hIvKnksGiutZz7QIRmGL5ueMxmP9aUbq6uMuzgn0CZ 43BChL1WQnudOwnXl34h7M8+vsZI+kVFAzuzD9tEj6pH7Px94awdEjfG7nfey38a pMpQ -----END CERTIFICATE-----Generated at Thu Nov 21 07:40:01 2024 by rpki-client on console-ams.rpki-client.org