$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/ED4952AAEA5F11EE914FC26AC4F9AE02.roa File: ED4952AAEA5F11EE914FC26AC4F9AE02.roa (raw, json) Hash identifier: T2gNI0u0EvznPvimcR+6hbAa2ExSa9AHyBgR3RVnQrA= Subject key identifier: AB:A3:B4:20:DB:CF:E3:3E:32:6B:09:31:79:D4:CA:BE:4F:C5:FD:A0 Certificate issuer: /CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Certificate serial: 09A7 Authority key identifier: AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/ED4952AAEA5F11EE914FC26AC4F9AE02.roa Signing time: Mon 25 Mar 2024 04:27:02 +0000 ROA not before: Mon 25 Mar 2024 04:27:02 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 24462 IP address blocks: 101.78.204.0/22 maxlen: 24 116.92.130.0/24 maxlen: 24 203.174.32.0/24 maxlen: 24 220.232.228.0/24 maxlen: 24 220.232.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2471 (0x9a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Validity Not Before: Mar 25 04:27:02 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6600fd16-c511 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b3:a9:fb:0e:78:08:58:0e:a4:d8:ca:1c:d7: 7c:37:b0:18:6c:12:9c:10:66:d5:82:ef:82:7a:3f: d8:8c:50:44:eb:99:1e:8f:7f:72:bd:39:0c:bd:34: 81:17:87:c0:7d:f4:d7:ce:6f:a3:5b:c7:da:65:ca: e7:11:02:bf:35:94:c4:82:6d:64:db:c6:72:63:35: 97:df:46:74:d8:78:0c:4f:46:53:4e:ac:cb:06:d8: ad:f7:7b:85:da:4e:ef:b7:bc:a7:b2:9a:e5:80:ec: 7b:d3:b3:e9:0e:a8:21:b5:ae:c0:44:1f:26:82:fa: ba:82:48:55:48:90:d8:a7:ea:e6:11:3a:7c:91:d3: 44:c5:cd:8e:75:21:5b:af:81:00:e5:6b:d2:aa:06: 3c:68:5b:91:31:9f:0c:2c:02:92:30:b5:cc:60:6f: 86:19:cd:96:92:c0:b2:41:d1:2a:04:29:d7:50:da: 24:bc:62:34:7b:ca:3d:92:37:2f:f0:cd:ae:f8:02: 1b:d4:64:6c:87:3f:7f:56:4a:7b:38:a9:30:25:6e: 94:8b:7e:ad:21:15:0d:55:e0:42:58:eb:1b:16:34: d0:e2:20:5f:11:05:e1:bf:99:59:e9:06:73:93:a5: 3c:02:6c:a4:b1:7b:07:0f:97:72:d2:81:58:0e:e1: 74:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:A3:B4:20:DB:CF:E3:3E:32:6B:09:31:79:D4:CA:BE:4F:C5:FD:A0 X509v3 Authority Key Identifier: keyid:AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/ED4952AAEA5F11EE914FC26AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.78.204.0/22 116.92.130.0/24 203.174.32.0/24 220.232.228.0/23 Signature Algorithm: sha256WithRSAEncryption a2:1b:58:93:6a:f5:24:be:02:d5:0c:c8:01:7f:d4:64:48:44: 1e:ba:e9:77:ea:b9:69:99:f5:20:a3:a4:e4:46:e0:6a:f0:b3: 94:72:77:8e:45:48:12:cd:a1:4b:b8:29:15:09:bf:43:75:9d: 66:a1:cb:2c:54:a9:d5:de:4b:75:97:64:af:3e:d8:2b:0c:8f: 6e:28:30:ca:85:19:be:b6:37:ec:ef:74:e6:15:33:50:24:43: ed:61:ed:e6:e3:c0:3a:2d:d2:e7:f1:ab:fe:1e:d4:37:da:8b: 0b:0a:a7:57:aa:b9:31:f8:88:19:42:95:82:07:c9:a4:f2:05: f2:95:b6:9f:20:97:8f:46:8d:ff:0d:a4:ae:d3:59:d4:40:76: 73:28:fb:ba:b6:93:95:1b:b1:8e:65:7f:a4:94:cb:45:dc:de: 28:bf:9e:74:e3:48:d2:8b:05:ac:7a:29:eb:95:2b:30:6d:d0: c4:94:33:87:db:c9:bd:1f:86:9d:ac:a7:57:81:47:2e:be:26: 72:d9:b3:de:8c:28:69:d0:24:d0:62:d6:fb:78:d6:99:5b:8d: 78:32:e4:73:92:c5:17:d9:f8:ca:91:df:ed:9f:b9:00:d1:9e: 61:51:e8:57:1a:eb:c6:6c:b9:36:1f:79:93:16:91:ef:f9:f9: 75:f3:82:9f -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUUxMTAvBgNVBAUTKEFCRDQzNTQ4NjU5Q0JCMjc2RUY4RDM1QjgyMTJGODM4 RThDRUI3NUYwHhcNMjQwMzI1MDQyNzAyWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAwZmQxNi1jNTExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt7Op+w54CFgOpNjKHNd8N7AYbBKcEGbVgu+Cej/YjFBE65kej39yvTkMvTSB F4fAffTXzm+jW8faZcrnEQK/NZTEgm1k28ZyYzWX30Z02HgMT0ZTTqzLBtit93uF 2k7vt7ynsprlgOx707PpDqghta7ARB8mgvq6gkhVSJDYp+rmETp8kdNExc2OdSFb r4EA5WvSqgY8aFuRMZ8MLAKSMLXMYG+GGc2WksCyQdEqBCnXUNokvGI0e8o9kjcv 8M2u+AIb1GRshz9/Vkp7OKkwJW6Ui36tIRUNVeBCWOsbFjTQ4iBfEQXhv5lZ6QZz k6U8AmyksXsHD5dy0oFYDuF0ZwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFKujtCDb z+M+MmsJMXnUyr5Pxf2gMB8GA1UdIwQYMBaAFKvUNUhlnLsnbvjTW4IS+Djozrdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRS84OTM2Q0MwNDg4 MzIxMUVBODQ4NjFCNzBDNEY5QUUwMi9xOVExU0dXY3V5ZHUtTk5iZ2hMNE9Pak90 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E5UTFTR1djdXlkdS1OTmJnaEw0T09qT3QxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUUvODkzNkNDMDQ4ODMyMTFFQTg0ODYxQjcwQzRGOUFFMDIvRUQ0OTUyQUFF QTVGMTFFRTkxNEZDMjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJlTswDBAB0XIIDBADLriADBAHc6OQwDQYJKoZIhvcNAQEL BQADggEBAKIbWJNq9SS+AtUMyAF/1GRIRB666XfquWmZ9SCjpORG4Grws5Ryd45F SBLNoUu4KRUJv0N1nWahyyxUqdXeS3WXZK8+2CsMj24oMMqFGb62N+zvdOYVM1Ak Q+1h7ebjwDot0ufxq/4e1DfaiwsKp1equTH4iBlClYIHyaTyBfKVtp8gl49Gjf8N pK7TWdRAdnMo+7q2k5UbsY5lf6SUy0Xc3ii/nnTjSNKLBax6KeuVKzBt0MSUM4fb yb0fhp2sp1eBRy6+JnLZs96MKGnQJNBi1vt41plbjXgy5HOSxRfZ+MqR3+2fuQDR nmFR6Fca68ZsuTYfeZMWke/5+XXzgp8= -----END CERTIFICATE-----Generated at Fri May 10 23:04:04 2024 by rpki-client on console-ams.rpki-client.org