$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa File: 0827E4147F7911EC86DE4B56C4F9AE02.roa (raw, json) Hash identifier: Y0xFr2eRz2jguPa5IyJLDoG4mUsNXcKQt7SdilXerlw= Subject key identifier: 91:6E:5A:E6:D6:91:FA:FD:4E:73:35:43:49:7B:5B:78:BC:42:3A:A8 Certificate issuer: /CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Certificate serial: 0B1C Authority key identifier: 13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa Signing time: Wed 24 May 2023 20:20:10 +0000 ROA not before: Wed 24 May 2023 20:20:10 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 141731 IP address blocks: 202.83.125.0/24 maxlen: 24 2400:4fc0:3ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2844 (0xb1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Validity Not Before: May 24 20:20:10 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646e717a-9b1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:68:a6:ee:c7:01:1a:36:06:7e:c5:b2:b5:15: 45:93:3b:ed:2d:cf:85:26:de:1b:c2:72:47:17:d5: fc:83:cb:fc:49:43:b5:3b:ec:e7:72:e7:3d:2e:d8: e2:0d:61:cf:e0:ab:4e:4b:de:55:7a:51:4c:f4:b3: b4:84:a0:fa:9b:7e:38:bf:6b:81:ff:dd:fc:0b:4b: 26:6c:f1:97:e9:73:56:cf:e1:b0:a7:77:86:69:31: e9:7d:7b:e7:26:64:22:34:ae:07:0b:a7:ad:f2:70: 7f:c1:20:9f:ab:d0:a2:43:0c:ac:76:7d:4c:77:e5: ef:5a:0a:bd:0b:a4:11:be:86:99:d4:9e:65:ce:a5: da:04:86:c2:a4:ec:43:05:58:12:f9:6f:0c:05:3c: 60:8e:58:3e:e3:72:3c:7b:fd:10:67:7f:cf:1c:8d: d6:d7:80:a3:59:7d:43:10:46:6f:ec:e4:18:2f:d2: 49:34:1d:3c:60:f2:8f:8a:7d:a1:26:4a:a6:55:dd: dc:5e:a0:46:8c:21:10:67:73:ef:28:eb:84:7c:89: 9e:38:ba:c8:a4:9a:31:d9:b7:ee:b0:ed:41:91:e0: 9d:00:87:89:bb:c4:1e:ff:77:03:e4:ca:df:41:cf: 1b:92:ef:1f:5e:42:a9:ca:66:5d:6f:4f:55:18:35: cc:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:6E:5A:E6:D6:91:FA:FD:4E:73:35:43:49:7B:5B:78:BC:42:3A:A8 X509v3 Authority Key Identifier: keyid:13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.125.0/24 IPv6: 2400:4fc0:3ff::/48 Signature Algorithm: sha256WithRSAEncryption 89:64:8d:2d:77:b8:b3:e7:a2:7b:e8:e5:59:64:d3:6a:c4:77: fe:11:cb:ca:32:67:e2:2e:f4:1c:f7:35:4a:d1:9e:da:d9:4f: 45:41:08:d9:5b:2f:7a:99:07:f4:60:1b:4b:18:3f:f1:f2:3a: c8:ae:82:8d:78:93:0d:cd:36:06:77:37:37:b7:8e:ee:31:ec: e4:0e:85:7d:52:a1:c4:65:e8:53:c5:b7:22:9f:2a:86:ba:23: 61:e2:b1:f4:88:3b:43:15:49:29:d5:cc:c8:59:c7:13:eb:d5: 1b:95:71:90:71:6f:8b:5b:42:79:83:7e:c4:76:bc:db:2a:7a: 9a:95:be:26:31:8b:25:48:1a:49:61:4e:28:1e:64:44:d3:47: 4c:8a:2f:87:a9:6e:a6:0e:50:b1:8c:95:2f:2a:c3:ff:50:a9: 56:37:5a:6f:5b:77:c0:e7:24:db:c1:d3:d4:9f:97:7b:2f:eb: 28:99:13:7b:d3:62:65:00:cc:da:15:8c:ec:f8:2d:05:82:8d: 49:ed:ce:ce:0f:bf:ad:b2:8d:f7:76:5a:1e:24:34:97:9c:1f: ac:23:23:e2:74:a9:76:c3:6f:96:9f:ad:b4:19:a1:c1:d3:3e: da:6f:c6:b5:b7:b9:62:75:fe:a9:f7:8d:09:99:8e:b5:be:74: bf:d1:51:91 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGOUMxMTAvBgNVBAUTKDEzOENEMTBBNDc3OERFMEUzNTkxMUU5QzlDOTQ0RjRC MjFDNERCMDkwHhcNMjMwNTI0MjAyMDEwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZlNzE3YS05YjFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA42im7scBGjYGfsWytRVFkzvtLc+FJt4bwnJHF9X8g8v8SUO1O+zncuc9Ltji DWHP4KtOS95VelFM9LO0hKD6m344v2uB/938C0smbPGX6XNWz+Gwp3eGaTHpfXvn JmQiNK4HC6et8nB/wSCfq9CiQwysdn1Md+XvWgq9C6QRvoaZ1J5lzqXaBIbCpOxD BVgS+W8MBTxgjlg+43I8e/0QZ3/PHI3W14CjWX1DEEZv7OQYL9JJNB08YPKPin2h JkqmVd3cXqBGjCEQZ3PvKOuEfImeOLrIpJox2bfusO1BkeCdAIeJu8Qe/3cD5Mrf Qc8bku8fXkKpymZdb09VGDXMKwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJFuWubW kfr9TnM1Q0l7W3i8QjqoMB8GA1UdIwQYMBaAFBOM0QpHeN4ONZEenJyUT0shxNsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY5Qy8yOUNCMDIwRUZB MEIxMUU5OTc4QjBBMzJDNEY5QUUwMi9FNHpSQ2tkNDNnNDFrUjZjbkpSUFN5SEUy d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U0elJDa2Q0M2c0MWtSNmNuSlJQU3lIRTJ3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBGOUMvMjlDQjAyMEVGQTBCMTFFOTk3OEIwQTMyQzRGOUFFMDIvMDgyN0U0MTQ3 Rjc5MTFFQzg2REU0QjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKU30wDwQCAAIwCQMHACQAT8AD/zANBgkqhkiG9w0BAQsF AAOCAQEAiWSNLXe4s+eie+jlWWTTasR3/hHLyjJn4i70HPc1StGe2tlPRUEI2Vsv epkH9GAbSxg/8fI6yK6CjXiTDc02Bnc3N7eO7jHs5A6FfVKhxGXoU8W3Ip8qhroj YeKx9Ig7QxVJKdXMyFnHE+vVG5VxkHFvi1tCeYN+xHa82yp6mpW+JjGLJUgaSWFO KB5kRNNHTIovh6lupg5QsYyVLyrD/1CpVjdab1t3wOck28HT1J+Xey/rKJkTe9Ni ZQDM2hWM7PgtBYKNSe3Ozg+/rbKN93ZaHiQ0l5wfrCMj4nSpdsNvlp+ttBmhwdM+ 2m/Gtbe5YnX+qfeNCZmOtb50v9FRkQ== -----END CERTIFICATE-----Generated at Sat May 18 20:15:59 2024 by rpki-client on console-ams.rpki-client.org