$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa File: 66EE9D94152511ECAD055780C4F9AE02.roa (raw, json) Hash identifier: tr8aJViu1PcA5mVxlwXOduo3fTXSlZD4RqOWLmfPc9k= Subject key identifier: E1:F0:E2:B0:38:5D:DD:D0:8F:B7:5C:FD:F9:D7:A2:A6:06:13:31:C7 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0694 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa Signing time: Mon 28 Aug 2023 21:58:52 +0000 ROA not before: Mon 28 Aug 2023 21:58:52 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 17888 IP address blocks: 202.83.192.0/19 maxlen: 19 202.83.192.0/20 maxlen: 20 202.83.192.0/24 maxlen: 24 202.83.194.0/24 maxlen: 24 202.83.195.0/24 maxlen: 24 202.83.196.0/24 maxlen: 24 202.83.203.0/24 maxlen: 24 202.83.204.0/24 maxlen: 24 202.83.205.0/24 maxlen: 24 202.83.206.0/24 maxlen: 24 202.83.208.0/24 maxlen: 24 202.83.209.0/24 maxlen: 24 202.83.210.0/24 maxlen: 24 202.83.211.0/24 maxlen: 24 202.83.214.0/24 maxlen: 24 202.83.216.0/24 maxlen: 24 202.83.220.0/24 maxlen: 24 202.83.222.0/24 maxlen: 24 2400:f000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1684 (0x694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Aug 28 21:58:52 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ed189c-3e31 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:dd:d5:75:3c:9b:2e:35:68:bb:f0:26:8c:c6: fd:c6:90:ac:b8:6d:7f:d0:95:da:cd:ec:06:cf:10: 95:e2:53:19:a5:32:35:8f:72:fc:e0:59:6a:52:eb: a0:d1:fe:78:dd:10:7e:4d:24:c9:cf:71:f5:ed:4d: 44:c1:4c:5c:93:2c:99:06:86:fc:29:da:98:c1:1e: 7a:38:40:3f:4f:3e:eb:33:c8:6a:9d:08:f5:b4:0e: 47:66:ec:fe:95:88:31:bb:18:05:77:a1:7c:be:b5: 3a:01:82:75:bc:20:c8:87:54:75:4e:60:3d:bc:02: 03:83:50:82:20:25:e3:65:15:4a:e1:e5:84:76:ac: 01:64:dc:de:dc:43:9a:53:e4:7a:97:fd:ee:e5:11: f5:f3:07:0e:e6:6f:ee:92:3e:14:17:02:ac:29:fa: 5c:57:f2:34:8b:23:b4:1f:67:f8:45:bb:cf:a5:16: dc:81:0b:a1:21:11:f2:7c:96:5f:71:a3:e2:2a:61: a5:64:30:a3:1c:2b:9b:83:c2:d4:cc:e6:2f:81:69: 1e:e9:ad:06:d3:29:17:c8:3a:72:48:73:6e:74:51: 40:6e:d9:4c:82:ad:d9:f5:f4:78:c4:6f:1e:13:bd: 6b:28:e9:04:0e:bc:ab:fe:71:d6:b5:de:57:84:46: 54:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F0:E2:B0:38:5D:DD:D0:8F:B7:5C:FD:F9:D7:A2:A6:06:13:31:C7 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.192.0/19 IPv6: 2400:f000::/32 Signature Algorithm: sha256WithRSAEncryption 02:e5:fa:99:50:34:2f:1f:79:8d:64:87:bb:48:fa:59:30:fd: 57:a1:a1:04:2a:48:9f:9a:7c:4b:22:eb:c6:25:c0:14:93:f3: 91:78:74:fc:39:24:86:7f:26:f3:df:ac:67:56:ea:4d:46:58: e4:54:49:f1:26:33:4a:12:b5:7d:9a:89:c4:c9:aa:ae:db:1e: 57:c7:58:38:32:8f:72:ae:61:80:52:82:a5:9c:c8:b8:43:e1: 3d:ee:0b:2c:25:47:65:aa:e2:f2:99:42:13:81:a5:f5:fb:45: a9:6f:14:4c:40:be:4c:7a:cb:a8:71:f3:7d:58:53:46:b8:87: 0f:b4:0e:fb:31:95:cc:ce:e7:2c:86:ef:a7:d4:3a:e8:5d:cd: 61:7d:f5:0b:e1:fa:8a:35:bc:1d:78:19:41:c5:0c:57:1f:90: 97:ac:db:d5:43:41:be:de:02:50:d0:21:5c:e4:d5:8d:dd:97: 9d:fb:84:0f:a8:d7:ea:62:ee:12:86:a2:2d:0f:ec:50:46:1f: b1:6c:27:29:be:eb:d0:27:bd:68:95:ef:71:3c:de:be:0a:e4: 95:3a:bc:d5:91:d2:26:31:8f:29:72:83:90:be:aa:95:e3:8b: 4a:c9:7a:00:94:3a:ca:94:09:b2:81:31:9f:81:c2:0d:f4:ef: 86:ac:4e:bd -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjMwODI4MjE1ODUyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkMTg5Yy0zZTMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnd3VdTybLjVou/AmjMb9xpCsuG1/0JXazewGzxCV4lMZpTI1j3L84FlqUuug 0f543RB+TSTJz3H17U1EwUxckyyZBob8KdqYwR56OEA/Tz7rM8hqnQj1tA5HZuz+ lYgxuxgFd6F8vrU6AYJ1vCDIh1R1TmA9vAIDg1CCICXjZRVK4eWEdqwBZNze3EOa U+R6l/3u5RH18wcO5m/ukj4UFwKsKfpcV/I0iyO0H2f4RbvPpRbcgQuhIRHyfJZf caPiKmGlZDCjHCubg8LUzOYvgWke6a0G0ykXyDpySHNudFFAbtlMgq3Z9fR4xG8e E71rKOkEDryr/nHWtd5XhEZUxQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOHw4rA4 Xd3Qj7dc/fnXoqYGEzHHMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBMkQvREE0NjYwOUFGN0MzMTFFQTlCMkVGNzg1QzRGOUFFMDIvNjZFRTlEOTQx NTI1MTFFQ0FEMDU1NzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXKU8AwDQQCAAIwBwMFACQA8AAwDQYJKoZIhvcNAQELBQAD ggEBAALl+plQNC8feY1kh7tI+lkw/VehoQQqSJ+afEsi68YlwBST85F4dPw5JIZ/ JvPfrGdW6k1GWORUSfEmM0oStX2aicTJqq7bHlfHWDgyj3KuYYBSgqWcyLhD4T3u CywlR2Wq4vKZQhOBpfX7RalvFExAvkx6y6hx831YU0a4hw+0DvsxlczO5yyG76fU OuhdzWF99Qvh+oo1vB14GUHFDFcfkJes29VDQb7eAlDQIVzk1Y3dl537hA+o1+pi 7hKGoi0P7FBGH7FsJym+69AnvWiV73E83r4K5JU6vNWR0iYxjylyg5C+qpXji0rJ egCUOsqUCbKBMZ+Bwg3074asTr0= -----END CERTIFICATE-----Generated at Thu May 16 23:48:40 2024 by rpki-client on console-fra.rpki-client.org