$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9933B21049D411E7AA790315C4F9AE02.roa File: 9933B21049D411E7AA790315C4F9AE02.roa (raw, json) Hash identifier: nBhLFz/G2rXndPzhgzBD31wJh18WPJGfGQXA7I+GCSc= Subject key identifier: 33:53:CF:2A:B8:12:1D:80:CE:B5:C6:AE:48:64:B3:FA:3F:07:9D:28 Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1ACE Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9933B21049D411E7AA790315C4F9AE02.roa Signing time: Thu 31 Aug 2023 16:43:22 +0000 ROA not before: Thu 31 Aug 2023 16:43:22 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 45671 IP address blocks: 203.33.22.0/24 maxlen: 24 2001:df3:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 16:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6862 (0x1ace) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Validity Not Before: Aug 31 16:43:22 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0c32a-578f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a1:a7:59:17:24:25:c0:74:a6:e9:e2:e8:8d: f9:60:5d:8f:a9:16:ed:f9:4f:7e:50:95:62:49:1d: 74:2e:4f:28:27:94:59:f6:3a:75:c2:9f:93:21:63: 77:47:b4:30:8a:87:4d:1e:76:da:95:5d:94:a4:21: c7:bd:be:88:9b:f4:2f:29:21:ec:a8:52:66:99:df: 94:17:8c:fb:20:a1:f8:2c:08:c4:cb:61:be:b5:aa: f9:14:e3:77:16:f0:92:0c:05:28:fc:ca:35:00:b4: a4:70:4a:2d:18:a7:15:99:0d:d2:ba:a4:23:5b:47: e6:b8:af:68:24:c8:06:b5:19:bf:5b:6c:74:f0:a3: 64:01:89:58:af:fc:56:75:70:49:c0:3c:f4:6b:f4: 7f:0f:a1:4b:8b:65:30:44:e9:b1:18:e8:76:be:f4: 7a:fd:81:32:39:6d:ae:7c:0b:2d:6c:0d:91:5a:57: cd:a9:36:5b:22:42:d4:29:4e:20:4f:fd:00:92:3f: 73:50:8f:e3:37:be:e1:cf:4c:ac:8f:7c:04:b8:0c: 22:6b:ba:5d:b3:eb:81:1e:cd:9b:d0:98:08:b4:68: 9a:93:ef:e1:a0:c3:50:ac:5c:ef:8e:e8:18:1e:b0: 73:3a:cc:b5:0e:58:5e:ba:1d:f5:3e:b2:6f:4d:f4: f7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:53:CF:2A:B8:12:1D:80:CE:B5:C6:AE:48:64:B3:FA:3F:07:9D:28 X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9933B21049D411E7AA790315C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.22.0/24 IPv6: 2001:df3:ba00::/48 Signature Algorithm: sha256WithRSAEncryption 47:47:61:7a:d4:66:91:76:68:bb:1f:8f:4f:27:f1:47:99:00: c7:d6:0c:ab:c4:6a:8f:26:7a:3d:ce:46:81:87:21:73:18:b8: 8a:1d:17:99:4f:14:12:b0:af:88:49:94:bf:dd:65:78:db:9d: 56:15:64:cb:e3:c8:84:a3:6f:52:b6:12:47:0c:37:2e:fb:86: a7:10:2f:a4:fb:5a:d0:b9:0d:85:4c:7e:e1:de:8c:93:16:8b: 48:5d:b6:29:10:4a:ad:75:d7:c7:94:e5:36:04:5b:56:b1:9f: 9b:50:f8:a2:bd:43:87:41:b8:73:f7:b1:af:4f:3a:16:f9:43: 3a:78:8b:a7:ca:de:09:76:bf:80:e8:53:31:96:67:66:1a:ba: 2b:54:c9:da:ec:90:98:35:d1:67:17:a8:98:71:be:bb:e3:37: d6:df:0e:a6:f6:7a:34:59:64:dc:fa:91:a3:96:a8:39:7a:6b: 4a:72:61:88:d1:a8:09:5e:84:17:fc:ff:b2:43:94:0b:7e:2e: e8:07:98:f0:23:dd:f8:bd:dc:5b:68:14:e2:36:bd:75:7f:55: 09:43:b1:b1:14:d1:fa:e6:2c:7b:ff:ba:d4:92:22:23:04:1c: 25:58:0b:0c:1d:0a:84:3e:17:0f:5f:ac:74:6f:3c:c8:06:f5: 27:dd:cd:0a -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICGs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjMwODMxMTY0MzIyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwYzMyYS01NzhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aGnWRckJcB0puni6I35YF2PqRbt+U9+UJViSR10Lk8oJ5RZ9jp1wp+TIWN3 R7QwiodNHnbalV2UpCHHvb6Im/QvKSHsqFJmmd+UF4z7IKH4LAjEy2G+tar5FON3 FvCSDAUo/Mo1ALSkcEotGKcVmQ3SuqQjW0fmuK9oJMgGtRm/W2x08KNkAYlYr/xW dXBJwDz0a/R/D6FLi2UwROmxGOh2vvR6/YEyOW2ufAstbA2RWlfNqTZbIkLUKU4g T/0Akj9zUI/jN77hz0ysj3wEuAwia7pds+uBHs2b0JgItGiak+/hoMNQrFzvjugY HrBzOsy1Dlheuh31PrJvTfT3pQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDNTzyq4 Eh2AzrXGrkhks/o/B50oMB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBRTkvMDhEQTYwQzZGMUIyMTFFNjhFNzRBMjZDQzRGOUFFMDIvOTkzM0IyMTA0 OUQ0MTFFN0FBNzkwMzE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLIRYwDwQCAAIwCQMHACABDfO6ADANBgkqhkiG9w0BAQsF AAOCAQEAR0dhetRmkXZoux+PTyfxR5kAx9YMq8RqjyZ6Pc5GgYchcxi4ih0XmU8U ErCviEmUv91leNudVhVky+PIhKNvUrYSRww3LvuGpxAvpPta0LkNhUx+4d6MkxaL SF22KRBKrXXXx5TlNgRbVrGfm1D4or1Dh0G4c/exr086FvlDOniLp8reCXa/gOhT MZZnZhq6K1TJ2uyQmDXRZxeomHG+u+M31t8OpvZ6NFlk3PqRo5aoOXprSnJhiNGo CV6EF/z/skOUC34u6AeY8CPd+L3cW2gU4ja9dX9VCUOxsRTR+uYse/+61JIiIwQc JVgLDB0KhD4XD1+sdG88yAb1J93NCg== -----END CERTIFICATE-----Generated at Wed Apr 24 18:35:52 2024 by rpki-client on console-ams.rpki-client.org