$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa File: 111E53B6152811ECB2C0B70BC4F9AE02.roa (raw, json) Hash identifier: tP9bMN6R2kyhExEDnLcqXBcoLmgbQ94K8lLRNPV7ISU= Subject key identifier: AC:F8:96:E3:DF:D2:53:E0:C2:27:6D:38:C5:79:9F:D8:BE:35:31:2D Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0695 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa Signing time: Mon 28 Aug 2023 21:58:53 +0000 ROA not before: Mon 28 Aug 2023 21:58:53 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 7473 IP address blocks: 202.83.192.0/19 maxlen: 19 202.83.192.0/20 maxlen: 20 202.83.194.0/24 maxlen: 24 202.83.195.0/24 maxlen: 24 202.83.196.0/24 maxlen: 24 202.83.203.0/24 maxlen: 24 202.83.204.0/24 maxlen: 24 202.83.205.0/24 maxlen: 24 202.83.206.0/24 maxlen: 24 202.83.208.0/24 maxlen: 24 202.83.209.0/24 maxlen: 24 202.83.210.0/24 maxlen: 24 202.83.211.0/24 maxlen: 24 202.83.214.0/24 maxlen: 24 202.83.216.0/24 maxlen: 24 202.83.218.0/24 maxlen: 24 202.83.220.0/24 maxlen: 24 202.83.222.0/24 maxlen: 24 2400:f000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1685 (0x695) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Aug 28 21:58:53 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ed189d-eaba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:03:4b:b2:be:6b:5f:2f:b0:53:d9:17:c5:3d: 82:9c:d7:4a:ec:f7:41:f4:4b:10:f6:fd:e4:50:35: 17:71:b9:29:8d:90:33:41:c4:84:5a:8b:86:fa:f9: 3e:cd:8c:9e:25:a1:6c:2e:b6:1a:80:69:28:c5:61: 6f:fe:5b:16:ce:14:ef:d3:74:fa:4a:b1:6c:b9:2d: 9b:fa:83:58:10:15:ac:28:33:c6:e5:23:75:74:9d: 1b:97:62:45:94:e4:a1:f8:ab:1e:49:47:4e:57:68: ae:ab:a7:a0:04:26:49:a8:22:87:06:a8:3f:35:23: 5f:8e:11:bd:7b:d5:80:17:ba:99:8d:39:ea:7d:8a: 4a:38:c5:60:56:d6:6d:7d:6e:7e:11:1d:7e:e0:9e: 8f:97:92:8a:96:14:f1:24:dd:c0:97:68:71:6d:e7: b4:ca:51:c5:f9:62:2e:ba:8c:3f:5a:a8:69:1b:10: f6:61:51:82:1d:7d:72:83:54:4d:a6:14:63:76:a0: 8e:c4:c9:62:62:35:f2:55:04:39:7b:0b:e1:04:da: a4:58:f4:fb:d4:b6:14:43:8e:7d:bd:21:02:ae:77: 95:91:5b:6f:c7:c7:87:1e:cb:9b:dd:08:00:b0:94: 0d:48:c9:8c:5b:18:b0:92:fb:b7:f5:3b:b9:91:a3: 1f:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:F8:96:E3:DF:D2:53:E0:C2:27:6D:38:C5:79:9F:D8:BE:35:31:2D X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/111E53B6152811ECB2C0B70BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.192.0/19 IPv6: 2400:f000::/32 Signature Algorithm: sha256WithRSAEncryption 69:5a:08:ac:dd:97:a1:53:d1:0f:84:ad:e2:b5:f6:ee:2c:a7: 19:0a:79:8a:97:da:3e:97:a6:f8:c3:a3:00:cf:04:63:47:90: 9d:79:83:29:72:2f:ee:84:4e:54:0b:be:13:a4:1b:4e:2e:5e: 31:1f:1f:6c:d4:d0:47:36:cd:11:fc:d2:1a:2b:ee:6b:ac:45: 9a:3c:7d:af:18:f5:91:8e:b3:e2:9a:9a:75:a3:b1:cf:4c:9f: e7:14:87:31:e0:fa:d5:cc:21:2f:18:f5:c4:3d:84:97:71:92: de:0d:68:e7:87:8f:76:8f:dd:c5:02:b4:26:5c:3d:99:1b:a0: b9:d4:9e:8d:8f:b6:db:91:bb:d3:3e:b4:c1:bf:be:ae:b1:1f: 79:29:d3:a4:92:82:d3:2d:07:48:7e:68:ba:17:1b:bd:93:0d: 40:91:28:a5:ef:e1:a7:ac:a9:4a:fb:9b:65:66:a0:41:b9:83: 4d:76:11:a2:0a:ab:85:7e:23:83:61:3f:6a:6d:34:21:59:b3: 35:fa:d2:10:0f:8e:26:7f:d1:1f:30:3f:fc:37:f1:c5:34:10: bc:52:a2:48:c3:c8:45:4b:d5:c5:a3:76:e1:f2:4e:ab:65:71: de:4c:af:cf:dd:bd:8a:b8:a4:95:6b:13:5f:48:ce:77:a2:fa: 48:ca:3f:a2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjMwODI4MjE1ODUzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkMTg5ZC1lYWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsQNLsr5rXy+wU9kXxT2CnNdK7PdB9EsQ9v3kUDUXcbkpjZAzQcSEWouG+vk+ zYyeJaFsLrYagGkoxWFv/lsWzhTv03T6SrFsuS2b+oNYEBWsKDPG5SN1dJ0bl2JF lOSh+KseSUdOV2iuq6egBCZJqCKHBqg/NSNfjhG9e9WAF7qZjTnqfYpKOMVgVtZt fW5+ER1+4J6Pl5KKlhTxJN3Al2hxbee0ylHF+WIuuow/WqhpGxD2YVGCHX1yg1RN phRjdqCOxMliYjXyVQQ5ewvhBNqkWPT71LYUQ459vSECrneVkVtvx8eHHsub3QgA sJQNSMmMWxiwkvu39Tu5kaMfmwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKz4luPf 0lPgwidtOMV5n9i+NTEtMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBMkQvREE0NjYwOUFGN0MzMTFFQTlCMkVGNzg1QzRGOUFFMDIvMTExRTUzQjYx NTI4MTFFQ0IyQzBCNzBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXKU8AwDQQCAAIwBwMFACQA8AAwDQYJKoZIhvcNAQELBQAD ggEBAGlaCKzdl6FT0Q+EreK19u4spxkKeYqX2j6XpvjDowDPBGNHkJ15gylyL+6E TlQLvhOkG04uXjEfH2zU0Ec2zRH80hor7musRZo8fa8Y9ZGOs+KamnWjsc9Mn+cU hzHg+tXMIS8Y9cQ9hJdxkt4NaOeHj3aP3cUCtCZcPZkboLnUno2PttuRu9M+tMG/ vq6xH3kp06SSgtMtB0h+aLoXG72TDUCRKKXv4aesqUr7m2VmoEG5g012EaIKq4V+ I4NhP2ptNCFZszX60hAPjiZ/0R8wP/w38cU0ELxSokjDyEVL1cWjduHyTqtlcd5M r8/dvYq4pJVrE19Iznei+kjKP6I= -----END CERTIFICATE-----Generated at Sun May 19 00:30:13 2024 by rpki-client on console-ams.rpki-client.org