$ rpki-client -vvf rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/73FCC4481CAD11EEA46B151DC4F9AE02.roa File: 73FCC4481CAD11EEA46B151DC4F9AE02.roa (raw, json) Hash identifier: DhrjDdn8kRjWDcKy/f/5l8fHWm/7M7jUj5RVFK5YZrU= Subject key identifier: 9F:66:FE:8D:8A:4E:CD:49:A3:FF:DF:48:8C:04:2D:18:0F:7D:B2:BA Certificate issuer: /CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Certificate serial: 02AD Authority key identifier: CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/73FCC4481CAD11EEA46B151DC4F9AE02.roa Signing time: Wed 01 Nov 2023 03:34:24 +0000 ROA not before: Wed 01 Nov 2023 03:34:24 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 10753 IP address blocks: 223.29.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 685 (0x2ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912FC73/serialNumber=CEE41601EEA9F51B3525DA55DD4AC95CEFAF5ABC Validity Not Before: Nov 1 03:34:24 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6541c740-c898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:29:33:55:b0:5b:4a:9e:a5:97:7a:26:ba:07: 4f:57:c0:ac:ce:78:99:37:9c:98:51:4a:1c:9e:7c: 3f:b2:f9:6b:fb:ec:46:a1:c8:e8:03:de:29:9d:ea: ef:30:71:4e:52:4e:a7:20:b9:e8:7a:f1:c5:7c:42: 09:20:08:99:30:82:73:cb:90:94:10:44:0c:37:91: f5:10:28:94:c7:55:6a:58:8c:86:97:71:38:36:a2: 18:4e:90:22:23:1f:ae:9f:f4:f8:2b:53:f8:2c:61: 70:18:dd:12:c5:89:db:d2:9a:d4:51:e6:20:65:3e: a4:1c:fe:00:83:50:1e:d0:90:68:c9:5a:67:e3:ff: 05:f1:fa:ec:18:fc:f0:01:2d:9b:5b:37:5f:88:e3: 6a:ed:14:35:7b:5f:32:a0:4d:40:95:b4:c7:db:2f: d2:e5:9f:6c:0b:e6:75:59:cf:15:6d:16:41:7b:12: d1:38:8b:75:c8:1e:75:92:1e:a9:3a:6b:d7:23:9c: 3d:78:a4:25:4b:f6:ea:d6:0a:eb:89:f0:62:fb:46: 67:31:99:23:a3:ad:d4:02:fb:be:59:ba:06:5f:62: 51:42:b1:75:57:e7:81:6c:3d:12:93:66:19:ef:c7: 7e:4c:21:87:cc:0f:3c:ea:18:64:df:ec:bd:5b:43: 0f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:66:FE:8D:8A:4E:CD:49:A3:FF:DF:48:8C:04:2D:18:0F:7D:B2:BA X509v3 Authority Key Identifier: keyid:CE:E4:16:01:EE:A9:F5:1B:35:25:DA:55:DD:4A:C9:5C:EF:AF:5A:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zuQWAe6p9Rs1JdpV3UrJXO-vWrw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912FC73/0144CDF89F3411EC9CEBC670C4F9AE02/73FCC4481CAD11EEA46B151DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.29.172.0/22 Signature Algorithm: sha256WithRSAEncryption 33:82:24:96:80:cf:6e:57:0e:6b:74:ef:1e:26:b0:ed:5f:44: 03:4f:d7:d9:cd:22:ae:a5:c2:1b:67:ea:ce:90:d9:33:de:78: 67:68:88:bb:02:c4:3a:87:af:e4:f4:ee:ca:99:98:59:a9:d1: f2:99:ba:30:20:97:65:da:e2:dd:74:08:74:eb:78:13:90:57: bc:f4:fd:f2:cd:0a:26:79:e6:36:f3:ce:28:12:d1:ed:c7:23: e7:15:9a:3c:ad:7c:16:79:e0:85:c9:ed:d2:35:7c:15:0c:86: ff:6e:98:7c:b6:93:77:b9:a6:ec:fa:69:03:00:2a:9a:17:7f: 5a:10:b0:38:69:81:8f:0e:4e:e7:2e:dd:78:2b:e0:1f:23:f8: 0b:a4:ef:17:0b:3e:ca:ad:7c:c6:0b:0e:d1:46:71:1d:96:a5: 08:68:50:c3:e9:f3:5b:ff:01:69:67:2f:12:28:81:b8:3b:8b: 6e:b8:c1:b0:6c:29:30:71:69:5d:f5:cf:a4:64:92:7e:90:a4: 3f:93:35:b7:0d:f1:36:a2:6b:46:d5:11:c0:42:c5:51:89:f2: 37:d6:3f:ef:3c:71:b1:1f:7e:b5:41:90:f1:03:39:99:23:96: 1a:64:67:0e:93:87:f1:c4:c1:30:e1:b0:6f:ce:33:c2:93:ae: 19:71:73:7e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkZDNzMxMTAvBgNVBAUTKENFRTQxNjAxRUVBOUY1MUIzNTI1REE1NURENEFDOTVD RUZBRjVBQkMwHhcNMjMxMTAxMDMzNDI0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxYzc0MC1jODk4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxikzVbBbSp6ll3omugdPV8CszniZN5yYUUocnnw/svlr++xGocjoA94pnerv MHFOUk6nILnoevHFfEIJIAiZMIJzy5CUEEQMN5H1ECiUx1VqWIyGl3E4NqIYTpAi Ix+un/T4K1P4LGFwGN0SxYnb0prUUeYgZT6kHP4Ag1Ae0JBoyVpn4/8F8frsGPzw AS2bWzdfiONq7RQ1e18yoE1AlbTH2y/S5Z9sC+Z1Wc8VbRZBexLROIt1yB51kh6p OmvXI5w9eKQlS/bq1grrifBi+0ZnMZkjo63UAvu+WboGX2JRQrF1V+eBbD0Sk2YZ 78d+TCGHzA886hhk3+y9W0MPmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ9m/o2K Ts1Jo//fSIwELRgPfbK6MB8GA1UdIwQYMBaAFM7kFgHuqfUbNSXaVd1KyVzvr1q8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRkM3My8wMTQ0Q0RGODlG MzQxMUVDOUNFQkM2NzBDNEY5QUUwMi96dVFXQWU2cDlSczFKZHBWM1VySlhPLXZX cncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3p1UVdBZTZwOVJzMUpkcFYzVXJKWE8tdldydy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkZDNzMvMDE0NENERjg5RjM0MTFFQzlDRUJDNjcwQzRGOUFFMDIvNzNGQ0M0NDgx Q0FEMTFFRUE0NkIxNTFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALfHawwDQYJKoZIhvcNAQELBQADggEBADOCJJaAz25XDmt0 7x4msO1fRANP19nNIq6lwhtn6s6Q2TPeeGdoiLsCxDqHr+T07sqZmFmp0fKZujAg l2Xa4t10CHTreBOQV7z0/fLNCiZ55jbzzigS0e3HI+cVmjytfBZ54IXJ7dI1fBUM hv9umHy2k3e5puz6aQMAKpoXf1oQsDhpgY8OTucu3Xgr4B8j+Auk7xcLPsqtfMYL DtFGcR2WpQhoUMPp81v/AWlnLxIogbg7i264wbBsKTBxaV31z6Rkkn6QpD+TNbcN 8Taia0bVEcBCxVGJ8jfWP+88cbEffrVBkPEDOZkjlhpkZw6Th/HEwTDhsG/OM8KT rhlxc34= -----END CERTIFICATE-----Generated at Wed May 1 04:49:20 2024 by rpki-client on console-ams.rpki-client.org