$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/7A90F2402C3C11EE81B24651C4F9AE02.roa File: 7A90F2402C3C11EE81B24651C4F9AE02.roa (raw, json) Hash identifier: RueahHW0YYQICZr1Iyrl4vDSbOuoH/cPEdDeupB9ebc= Subject key identifier: E5:84:51:9D:9D:34:77:05:91:43:D1:59:AF:7A:50:83:6E:DB:A9:9D Certificate issuer: /CN=A9137ABC/serialNumber=E87DC6C5C710439057D8ABED90C26D0C9C872B34 Certificate serial: 2898 Authority key identifier: E8:7D:C6:C5:C7:10:43:90:57:D8:AB:ED:90:C2:6D:0C:9C:87:2B:34 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/7A90F2402C3C11EE81B24651C4F9AE02.roa Signing time: Thu 27 Jul 2023 05:14:36 +0000 ROA not before: Thu 27 Jul 2023 05:14:36 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 7470 IP address blocks: 134.196.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.crl rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:21:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10392 (0x2898) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=E87DC6C5C710439057D8ABED90C26D0C9C872B34 Validity Not Before: Jul 27 05:14:36 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c1fd3c-953c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:72:cc:62:b0:82:76:d5:5f:80:30:a6:ef:d9: 19:53:b0:36:3f:30:4f:29:df:fa:ea:fb:97:ef:4d: 39:18:f3:f1:0b:06:af:6b:c4:f6:11:4e:62:70:a7: cf:05:8c:d4:8d:19:5c:76:8d:fb:f2:35:08:da:a1: 97:cc:e0:a7:70:7b:54:ae:52:3b:f6:a1:ea:cf:45: ad:80:db:11:ac:31:2c:05:1f:fc:eb:88:9f:ab:77: 0f:53:78:a7:2b:b8:a3:b7:ba:a6:69:75:be:58:69: e3:f5:a2:91:98:28:95:9b:ae:ed:34:cf:2f:1a:9b: 4e:d3:e9:34:c5:92:bd:6e:6c:fa:9a:4b:ab:e3:ef: 31:bd:4e:00:60:c4:e4:bc:39:5e:64:65:b5:aa:07: 05:6c:61:50:7c:94:38:45:36:20:c0:48:a5:43:43: f1:ed:3d:5a:ed:73:99:2a:90:ae:60:8f:23:5c:f2: cf:28:83:3f:5b:3b:2a:a6:17:95:56:21:0e:f1:cd: 91:c0:46:24:f5:03:75:65:5a:92:9a:e2:c6:ab:5a: e3:e7:87:f1:7e:b7:d5:9c:a0:3c:a3:64:41:45:2e: 1c:61:1f:cb:8c:90:1f:29:27:0e:cd:5f:66:56:60: 68:d1:5c:fd:fa:9e:5e:b2:da:57:60:fb:51:20:ec: 41:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:84:51:9D:9D:34:77:05:91:43:D1:59:AF:7A:50:83:6E:DB:A9:9D X509v3 Authority Key Identifier: keyid:E8:7D:C6:C5:C7:10:43:90:57:D8:AB:ED:90:C2:6D:0C:9C:87:2B:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6H3GxccQQ5BX2KvtkMJtDJyHKzQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/6B8B9D0E36FF11E49904AC66C4F9AE02/7A90F2402C3C11EE81B24651C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 134.196.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2a:66:ba:b9:d0:e8:88:39:ab:42:3c:15:03:03:be:90:2a:eb: c6:78:18:48:74:bb:b8:c6:eb:4e:4b:e6:0c:c7:b2:a3:6f:be: 1e:16:8f:05:5f:30:78:04:20:ac:bd:dd:17:03:1d:a1:78:0b: 11:1b:38:ec:9d:93:aa:13:8c:80:21:0d:5b:d8:cb:bb:3f:f6: 56:01:75:a6:cf:9e:d6:9c:13:cc:a1:04:c0:e2:7d:18:d8:f7: ee:3c:93:a8:32:52:ae:16:00:23:26:c9:aa:4d:c0:82:70:42: 89:93:17:e1:19:46:ca:54:11:99:f6:3a:32:36:b4:f8:04:d5: 56:52:92:1a:7f:f7:18:f0:50:9c:2a:f2:6f:bc:f0:b3:07:bf: 2d:25:d7:1d:da:a0:c9:c0:d4:bf:bf:3b:30:3b:91:c9:73:f1: 0f:0b:f4:ae:6f:ff:94:eb:b5:a2:47:ac:be:f3:ab:12:28:4c: 0c:83:84:a5:40:b0:9e:39:78:eb:95:74:3e:8d:12:c3:b3:ad: d5:fb:97:77:41:26:11:c6:8c:18:fe:22:1c:f1:4e:40:7a:85: e5:a7:48:79:57:38:a2:c2:35:34:2e:5e:06:7e:9d:12:5f:94: d2:e4:2c:7e:eb:2a:04:e2:46:3a:f2:63:57:76:08:15:10:dd: 73:de:2b:d5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICKJgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKEU4N0RDNkM1QzcxMDQzOTA1N0Q4QUJFRDkwQzI2RDBD OUM4NzJCMzQwHhcNMjMwNzI3MDUxNDM2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMxZmQzYy05NTNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx3LMYrCCdtVfgDCm79kZU7A2PzBPKd/66vuX7005GPPxCwava8T2EU5icKfP BYzUjRlcdo378jUI2qGXzOCncHtUrlI79qHqz0WtgNsRrDEsBR/864ifq3cPU3in K7ijt7qmaXW+WGnj9aKRmCiVm67tNM8vGptO0+k0xZK9bmz6mkur4+8xvU4AYMTk vDleZGW1qgcFbGFQfJQ4RTYgwEilQ0Px7T1a7XOZKpCuYI8jXPLPKIM/WzsqpheV ViEO8c2RwEYk9QN1ZVqSmuLGq1rj54fxfrfVnKA8o2RBRS4cYR/LjJAfKScOzV9m VmBo0Vz9+p5estpXYPtRIOxB6wIDAQABo4IClDCCApAwHQYDVR0OBBYEFOWEUZ2d NHcFkUPRWa96UINu26mdMB8GA1UdIwQYMBaAFOh9xsXHEEOQV9ir7ZDCbQychys0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy82QjhCOUQwRTM2 RkYxMUU0OTkwNEFDNjZDNEY5QUUwMi82SDNHeGNjUVE1QlgyS3Z0a01KdERKeUhL elEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzZIM0d4Y2NRUTVCWDJLdnRrTUp0REp5SEt6US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNkI4QjlEMEUzNkZGMTFFNDk5MDRBQzY2QzRGOUFFMDIvN0E5MEYyNDAy QzNDMTFFRTgxQjI0NjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCGxDANBgkqhkiG9w0BAQsFAAOCAQEAKma6udDoiDmrQjwV AwO+kCrrxngYSHS7uMbrTkvmDMeyo2++HhaPBV8weAQgrL3dFwMdoXgLERs47J2T qhOMgCENW9jLuz/2VgF1ps+e1pwTzKEEwOJ9GNj37jyTqDJSrhYAIybJqk3AgnBC iZMX4RlGylQRmfY6Mja0+ATVVlKSGn/3GPBQnCryb7zwswe/LSXXHdqgycDUv787 MDuRyXPxDwv0rm//lOu1okesvvOrEihMDIOEpUCwnjl465V0Po0Sw7Ot1fuXd0Em EcaMGP4iHPFOQHqF5adIeVc4osI1NC5eBn6dEl+U0uQsfusqBOJGOvJjV3YIFRDd c94r1Q== -----END CERTIFICATE-----Generated at Sat May 18 15:58:21 2024 by rpki-client on console-ams.rpki-client.org