$ rpki-client -vvf rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9B315A5E46A011E7B9BAF254C4F9AE02.roa File: 9B315A5E46A011E7B9BAF254C4F9AE02.roa (raw, json) Hash identifier: DbkBrE3yf6eTRjLQ1Tf5NcGY0sop7MmBR+m/dNqdI6I= Subject key identifier: CE:0B:E5:EC:A1:B6:F1:68:36:AE:C9:57:D6:F8:CA:B7:90:60:82:45 Certificate issuer: /CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Certificate serial: 1ACF Authority key identifier: 1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9B315A5E46A011E7B9BAF254C4F9AE02.roa Signing time: Thu 31 Aug 2023 16:43:23 +0000 ROA not before: Thu 31 Aug 2023 16:43:23 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 54825 IP address blocks: 203.33.22.0/24 maxlen: 24 2001:df3:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 16:40:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6863 (0x1acf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CAE9/serialNumber=1D56FE4DA42B8866FE96A297F772EE80B518A40A Validity Not Before: Aug 31 16:43:23 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f0c32a-130e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0c:4e:8d:57:20:66:f4:11:c6:4d:8c:0a:8a: 82:93:5d:40:df:3f:ca:a2:1a:6c:ca:d5:e0:6e:8b: 53:e0:7a:4e:ba:19:16:7b:f4:2e:a7:42:8d:61:39: ce:83:64:f7:3b:aa:3b:2d:7f:aa:8b:db:d1:7e:ea: 82:2d:33:1f:75:3b:aa:21:81:23:7c:4e:c9:05:ac: 36:2c:0b:e2:5f:12:78:73:e1:08:5a:3e:ff:3c:d0: 00:d4:fb:fd:9b:09:f3:c5:92:29:77:70:2e:b2:41: 76:29:2c:51:27:a5:79:05:8b:8e:98:09:d2:7b:76: 6d:6d:e9:cb:a7:9e:75:a8:48:71:bc:72:74:fb:74: 5a:1f:5c:32:43:20:0a:60:12:2b:d7:8f:45:c3:8c: 93:e2:a5:c3:e2:9d:d4:48:ae:a3:1d:99:fd:08:e2: 09:4a:7e:21:7e:67:ef:32:1d:50:ac:9a:35:39:cf: bd:38:5a:1a:0a:19:59:64:71:cd:10:e8:ce:93:34: cb:0e:22:3d:6b:95:72:86:64:90:fd:92:a8:70:c5: 8c:5c:f4:7b:bd:40:e1:e4:57:4c:aa:1d:4d:de:a9: 02:bf:ea:2a:d4:1d:9a:cc:ea:14:74:c9:19:a6:1b: 09:cf:7a:b9:43:b8:7a:bc:28:2d:13:b6:48:11:ba: c2:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:0B:E5:EC:A1:B6:F1:68:36:AE:C9:57:D6:F8:CA:B7:90:60:82:45 X509v3 Authority Key Identifier: keyid:1D:56:FE:4D:A4:2B:88:66:FE:96:A2:97:F7:72:EE:80:B5:18:A4:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/HVb-TaQriGb-lqKX93LugLUYpAo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HVb-TaQriGb-lqKX93LugLUYpAo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CAE9/08DA60C6F1B211E68E74A26CC4F9AE02/9B315A5E46A011E7B9BAF254C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.33.22.0/24 IPv6: 2001:df3:ba00::/48 Signature Algorithm: sha256WithRSAEncryption 87:0b:6d:6c:21:52:14:21:09:1c:60:65:5b:2a:7c:32:3a:38: f1:70:76:22:fe:c2:6b:21:68:96:81:32:59:8f:35:d5:b3:11: de:59:a3:6f:ae:c9:fd:8e:d7:18:ce:20:bc:de:6b:d7:59:86: 0d:8f:13:1f:c4:c3:a5:20:a8:a6:22:7e:76:78:4e:f8:af:5d: 99:f5:a6:3f:cd:00:1c:a2:18:f4:60:1c:9a:9d:c2:73:fd:3b: 27:dd:73:f7:a4:34:96:75:71:6a:d4:3a:ca:58:95:a1:3c:90: 00:2b:69:3d:3e:8b:93:31:8d:d5:41:b3:6d:50:a6:12:24:18: 0a:09:88:08:56:19:16:48:60:d1:e6:78:5a:07:35:69:28:fd: c1:9c:db:ba:35:7c:13:6d:2f:ab:46:5e:93:fb:4b:1c:8b:34: c7:07:8e:19:4b:2e:44:bb:fe:ba:03:3b:70:c3:13:e9:5f:b6: 7b:c1:7c:de:38:03:98:a1:a7:7d:41:53:6f:45:e2:25:28:1d: 11:68:13:f6:d2:9f:c2:19:c2:db:a4:c3:02:23:ab:44:5f:75: eb:bc:0d:6e:0b:d5:71:8d:71:82:6a:ea:8f:1c:2f:c1:75:d9: 1b:77:94:7d:b4:0e:a8:ed:ac:20:d6:99:c5:ad:d3:91:be:b0: fa:2c:15:dc -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICGs8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBRTkxMTAvBgNVBAUTKDFENTZGRTREQTQyQjg4NjZGRTk2QTI5N0Y3NzJFRTgw QjUxOEE0MEEwHhcNMjMwODMxMTY0MzIzWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwYzMyYS0xMzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxwxOjVcgZvQRxk2MCoqCk11A3z/KohpsytXgbotT4HpOuhkWe/Qup0KNYTnO g2T3O6o7LX+qi9vRfuqCLTMfdTuqIYEjfE7JBaw2LAviXxJ4c+EIWj7/PNAA1Pv9 mwnzxZIpd3AuskF2KSxRJ6V5BYuOmAnSe3ZtbenLp551qEhxvHJ0+3RaH1wyQyAK YBIr149Fw4yT4qXD4p3USK6jHZn9COIJSn4hfmfvMh1QrJo1Oc+9OFoaChlZZHHN EOjOkzTLDiI9a5VyhmSQ/ZKocMWMXPR7vUDh5FdMqh1N3qkCv+oq1B2azOoUdMkZ phsJz3q5Q7h6vCgtE7ZIEbrCVQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFM4L5eyh tvFoNq7JV9b4yreQYIJFMB8GA1UdIwQYMBaAFB1W/k2kK4hm/pail/dy7oC1GKQK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0FFOS8wOERBNjBDNkYx QjIxMUU2OEU3NEEyNkNDNEY5QUUwMi9IVmItVGFRcmlHYi1scUtYOTNMdWdMVVlw QW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hWYi1UYVFyaUdiLWxxS1g5M0x1Z0xVWXBBby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBRTkvMDhEQTYwQzZGMUIyMTFFNjhFNzRBMjZDQzRGOUFFMDIvOUIzMTVBNUU0 NkEwMTFFN0I5QkFGMjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADLIRYwDwQCAAIwCQMHACABDfO6ADANBgkqhkiG9w0BAQsF AAOCAQEAhwttbCFSFCEJHGBlWyp8Mjo48XB2Iv7CayFoloEyWY811bMR3lmjb67J /Y7XGM4gvN5r11mGDY8TH8TDpSCopiJ+dnhO+K9dmfWmP80AHKIY9GAcmp3Cc/07 J91z96Q0lnVxatQ6yliVoTyQACtpPT6LkzGN1UGzbVCmEiQYCgmICFYZFkhg0eZ4 Wgc1aSj9wZzbujV8E20vq0Zek/tLHIs0xweOGUsuRLv+ugM7cMMT6V+2e8F83jgD mKGnfUFTb0XiJSgdEWgT9tKfwhnC26TDAiOrRF9167wNbgvVcY1xgmrqjxwvwXXZ G3eUfbQOqO2sINaZxa3Tkb6w+iwV3A== -----END CERTIFICATE-----Generated at Tue May 28 17:50:52 2024 by rpki-client on console-fra.rpki-client.org