$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/619B0B285AE611E781C33D7CC4F9AE02.roa File: 619B0B285AE611E781C33D7CC4F9AE02.roa (raw, json) Hash identifier: PJZWl9/W8fabcDKxs3z+LpX5XSTRZXZ8e4Srjm/kLTc= Subject key identifier: 79:18:A4:5A:08:12:3B:42:25:37:FF:8C:04:50:10:C4:DC:D2:49:E1 Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1ACD Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/619B0B285AE611E781C33D7CC4F9AE02.roa Signing time: Thu 31 Aug 2023 16:43:21 +0000 ROA not before: Thu 31 Aug 2023 16:43:21 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 20473 IP address blocks: 203.33.22.0/24 maxlen: 24 2001:df3:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 16:41:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6861 (0x1acd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Validity Not Before: Aug 31 16:43:21 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0c329-f868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:b3:a6:1e:85:a3:4a:34:ab:d8:5c:08:72:7d: ad:5f:64:95:99:6d:8d:ba:1a:ca:21:4a:13:4d:65: 5f:15:5b:69:95:f0:07:0b:7b:f4:24:7b:f0:c7:8b: a8:61:9d:2c:e0:f5:47:7d:9e:81:b4:45:a6:02:87: f0:22:ec:a7:fb:7f:7f:fe:3e:1a:6f:fe:57:ca:94: 80:27:17:ca:e4:d4:c7:fa:09:18:53:ab:7f:05:6f: 78:1e:38:ab:77:41:5c:11:10:ac:52:78:28:bc:27: 9f:70:60:10:5c:7b:60:35:53:ed:c2:5e:92:7d:24: 69:b8:62:f1:b3:7b:8b:5e:e4:d5:37:4c:58:1b:53: fa:6d:c0:7e:4d:4d:5c:89:3c:e0:94:ff:13:9e:f6: fa:6f:2e:84:f3:92:06:91:2b:d9:c8:23:78:70:c2: 0b:a2:52:75:eb:96:25:3b:e2:ae:d4:51:fa:2b:84: 8c:ea:8d:e6:f5:69:78:fd:14:ea:c6:b5:c7:ad:e2: 9b:75:43:2b:f5:06:6b:d5:70:0e:45:c8:7e:21:81: 22:dd:49:4e:79:18:02:5c:06:10:66:47:d3:09:41: 9c:11:5a:69:71:3b:4c:2f:73:e8:7a:20:40:c5:46: ed:1e:95:12:fd:9c:fb:68:88:a3:ae:e9:68:f2:67: 7b:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:18:A4:5A:08:12:3B:42:25:37:FF:8C:04:50:10:C4:DC:D2:49:E1 X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/619B0B285AE611E781C33D7CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.22.0/24 IPv6: 2001:df3:ba00::/48 Signature Algorithm: sha256WithRSAEncryption 61:5e:be:6a:19:ec:c9:de:64:ee:0c:89:fa:fd:ff:a8:aa:b7: 6b:26:bb:1e:25:b3:0a:37:d0:75:18:f0:5e:fb:26:93:e0:9d: f5:29:71:c4:53:78:ce:32:23:0c:85:55:b0:9d:43:94:33:46: 3a:96:32:d4:65:9d:f4:37:bd:b3:ed:35:82:71:a6:43:db:2d: 19:f3:b4:3d:6c:57:f5:99:72:95:17:80:cc:a6:c6:1e:8c:0d: dc:03:81:64:63:2f:1f:8f:cd:4e:d7:e3:17:a3:f7:74:c2:fa: eb:23:57:c9:b7:37:99:3e:f6:98:e5:6f:e0:30:50:1e:c4:b6: 0f:06:84:a9:00:9f:2f:e2:ce:3c:60:0a:24:40:70:08:67:ba: fe:96:11:c2:18:ae:30:68:e7:ac:43:67:f6:68:6f:19:22:2e: fe:82:cf:86:64:3b:c2:91:2f:b1:3e:9f:0c:ca:bc:7f:bf:9e: 50:51:1b:7f:d6:23:09:9d:25:cf:79:0d:fc:63:d2:6c:d2:2e: 53:fa:4e:cf:c4:0d:4a:d9:14:bf:21:2c:a8:e4:16:81:82:bc: bc:fa:8c:ac:68:df:ba:74:a4:c2:f8:15:f8:05:91:fd:b3:e5: c9:4b:17:29:62:76:a3:60:42:84:e4:4e:cc:ee:62:3a:6e:d8: 44:31:15:c6 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICGs0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjMwODMxMTY0MzIxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwYzMyOS1mODY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvrOmHoWjSjSr2FwIcn2tX2SVmW2NuhrKIUoTTWVfFVtplfAHC3v0JHvwx4uo YZ0s4PVHfZ6BtEWmAofwIuyn+39//j4ab/5XypSAJxfK5NTH+gkYU6t/BW94Hjir d0FcERCsUngovCefcGAQXHtgNVPtwl6SfSRpuGLxs3uLXuTVN0xYG1P6bcB+TU1c iTzglP8Tnvb6by6E85IGkSvZyCN4cMILolJ165YlO+Ku1FH6K4SM6o3m9Wl4/RTq xrXHreKbdUMr9QZr1XAORch+IYEi3UlOeRgCXAYQZkfTCUGcEVppcTtML3PoeiBA xUbtHpUS/Zz7aIijrulo8md7KQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHkYpFoI EjtCJTf/jARQEMTc0knhMB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBRTkvMDhEQTYwQzZGMUIyMTFFNjhFNzRBMjZDQzRGOUFFMDIvNjE5QjBCMjg1 QUU2MTFFNzgxQzMzRDdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLIRYwDwQCAAIwCQMHACABDfO6ADANBgkqhkiG9w0BAQsF AAOCAQEAYV6+ahnsyd5k7gyJ+v3/qKq3aya7HiWzCjfQdRjwXvsmk+Cd9SlxxFN4 zjIjDIVVsJ1DlDNGOpYy1GWd9De9s+01gnGmQ9stGfO0PWxX9ZlylReAzKbGHowN 3AOBZGMvH4/NTtfjF6P3dML66yNXybc3mT72mOVv4DBQHsS2DwaEqQCfL+LOPGAK JEBwCGe6/pYRwhiuMGjnrENn9mhvGSIu/oLPhmQ7wpEvsT6fDMq8f7+eUFEbf9Yj CZ0lz3kN/GPSbNIuU/pOz8QNStkUvyEsqOQWgYK8vPqMrGjfunSkwvgV+AWR/bPl yUsXKWJ2o2BChOROzO5iOm7YRDEVxg== -----END CERTIFICATE-----Generated at Thu Apr 18 18:16:03 2024 by rpki-client on console-fra.rpki-client.org