$ rpki-client -vvf rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/B287525CE81011EA926BE66FC4F9AE02.roa File: B287525CE81011EA926BE66FC4F9AE02.roa (raw, json) Hash identifier: 0yo4rpI4Jk+1akL7kBrCcFa30wmeKWrTV9fA7cVvIFA= Subject key identifier: 8F:21:70:0B:5C:3C:9D:E5:43:82:D7:19:F5:BE:B2:44:26:4C:37:A9 Certificate issuer: /CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Certificate serial: 071E Authority key identifier: 81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/B287525CE81011EA926BE66FC4F9AE02.roa Signing time: Sat 30 Mar 2024 22:31:32 +0000 ROA not before: Sat 30 Mar 2024 22:31:32 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 56132 IP address blocks: 130.194.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1822 (0x71e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913E5D6/serialNumber=81ECFF47F25B2142F10DF6D49AE0E219FED747F8 Validity Not Before: Mar 30 22:31:32 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=660892c4-97c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:03:8f:b0:b9:d0:84:28:12:c2:11:1c:18:2f: 45:14:51:4f:5c:8e:ac:68:18:d7:ff:f2:aa:20:f7: 30:c0:a8:20:34:0f:46:f2:6b:64:60:44:2b:1d:8b: 5c:e8:0c:4d:7b:97:28:30:a1:a8:b6:7c:97:64:0f: 68:c6:9e:17:cc:fb:62:2d:0d:ed:89:23:91:6f:69: 2d:85:ca:5b:f7:e4:f9:1b:21:dd:f3:f4:6d:47:bb: b0:17:be:47:ca:e1:04:9c:2b:92:06:83:04:4a:d2: 4b:dc:5d:d2:fd:0d:cb:4a:d9:72:66:da:95:cd:b0: e0:c5:d4:44:b9:7f:2f:5d:5a:6a:4d:c4:60:8c:95: 7e:be:9c:31:2a:26:9f:38:11:e6:1f:2f:1b:ee:11: c6:19:1f:74:3f:44:d6:98:b0:2e:2a:9e:3a:fc:b6: 44:6e:c0:d9:74:0d:5a:f5:2f:3e:9e:43:d3:13:13: 27:b6:de:4a:76:fe:e8:14:d2:79:66:05:0d:f1:93: 20:67:d7:da:bc:90:c1:c6:75:ca:38:5b:03:cb:60: dc:d3:6a:82:c1:35:15:ee:95:4a:a5:56:9c:09:77: b8:d5:ed:18:43:50:6a:2b:fa:a1:b2:e3:fe:76:c5: 18:2a:9b:ee:ad:0c:2f:a7:88:79:ae:f2:cd:16:2a: 60:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:21:70:0B:5C:3C:9D:E5:43:82:D7:19:F5:BE:B2:44:26:4C:37:A9 X509v3 Authority Key Identifier: keyid:81:EC:FF:47:F2:5B:21:42:F1:0D:F6:D4:9A:E0:E2:19:FE:D7:47:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/gez_R_JbIULxDfbUmuDiGf7XR_g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/gez_R_JbIULxDfbUmuDiGf7XR_g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913E5D6/5A52F912E75A11EAB96F9D60C4F9AE02/B287525CE81011EA926BE66FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.194.0.0/16 Signature Algorithm: sha256WithRSAEncryption 63:ad:58:fa:9f:da:cc:11:95:15:79:d7:37:35:05:56:34:91: 80:9d:9c:1d:5e:ae:07:2d:b0:ac:89:39:87:be:1c:0d:3c:91: c2:c1:94:df:3a:2b:f8:05:4f:d3:89:bc:d6:d6:f7:7c:84:fe: 73:cf:79:9f:81:a9:a6:61:d9:c4:67:71:7d:1b:4f:57:2b:03: 79:2c:03:20:e2:c1:ac:fc:58:0c:2a:ee:b0:c9:b8:c3:51:5e: 19:40:59:ce:3f:51:e8:10:0d:93:5e:2a:6a:e7:6f:08:dd:5d: dc:d2:97:6d:c6:f7:b9:68:90:d8:85:c5:d4:b3:5c:35:79:f2: f9:4f:f6:76:42:e0:f7:f9:6f:48:a8:d4:4e:ef:c4:5c:b2:40: 33:b0:e0:6b:d3:09:d7:6b:00:53:b9:18:5a:1a:9f:48:58:5d: d1:8b:10:dd:7a:73:66:ff:83:4e:5f:70:81:4c:2c:c7:5e:17: 16:8d:23:d4:2e:6e:b0:b1:fa:91:56:1c:3f:82:b6:72:e4:7d: c6:15:53:0c:d4:39:68:50:e6:52:92:02:08:ee:9a:c1:cd:c6: fd:91:e4:ca:ee:b5:93:4a:31:5d:ab:bc:e2:e4:19:bf:5c:e1: 12:82:44:6c:f8:52:69:6c:b6:e5:88:5b:51:ef:dd:b3:ce:77: 71:a2:07:3c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICBx4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0U1RDYxMTAvBgNVBAUTKDgxRUNGRjQ3RjI1QjIxNDJGMTBERjZENDlBRTBFMjE5 RkVENzQ3RjgwHhcNMjQwMzMwMjIzMTMyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4OTJjNC05N2MyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6AOPsLnQhCgSwhEcGC9FFFFPXI6saBjX//KqIPcwwKggNA9G8mtkYEQrHYtc 6AxNe5coMKGotnyXZA9oxp4XzPtiLQ3tiSORb2kthcpb9+T5GyHd8/RtR7uwF75H yuEEnCuSBoMEStJL3F3S/Q3LStlyZtqVzbDgxdREuX8vXVpqTcRgjJV+vpwxKiaf OBHmHy8b7hHGGR90P0TWmLAuKp46/LZEbsDZdA1a9S8+nkPTExMntt5Kdv7oFNJ5 ZgUN8ZMgZ9favJDBxnXKOFsDy2Dc02qCwTUV7pVKpVacCXe41e0YQ1BqK/qhsuP+ dsUYKpvurQwvp4h5rvLNFipgpwIDAQABo4IClDCCApAwHQYDVR0OBBYEFI8hcAtc PJ3lQ4LXGfW+skQmTDepMB8GA1UdIwQYMBaAFIHs/0fyWyFC8Q321Jrg4hn+10f4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRTVENi81QTUyRjkxMkU3 NUExMUVBQjk2RjlENjBDNEY5QUUwMi9nZXpfUl9KYklVTHhEZmJVbXVEaUdmN1hS X2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2dlel9SX0piSVVMeERmYlVtdURpR2Y3WFJfZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0U1RDYvNUE1MkY5MTJFNzVBMTFFQUI5NkY5RDYwQzRGOUFFMDIvQjI4NzUyNUNF ODEwMTFFQTkyNkJFNjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCCwjANBgkqhkiG9w0BAQsFAAOCAQEAY61Y+p/azBGVFXnX NzUFVjSRgJ2cHV6uBy2wrIk5h74cDTyRwsGU3zor+AVP04m81tb3fIT+c895n4Gp pmHZxGdxfRtPVysDeSwDIOLBrPxYDCrusMm4w1FeGUBZzj9R6BANk14qaudvCN1d 3NKXbcb3uWiQ2IXF1LNcNXny+U/2dkLg9/lvSKjUTu/EXLJAM7Dga9MJ12sAU7kY WhqfSFhd0YsQ3XpzZv+DTl9wgUwsx14XFo0j1C5usLH6kVYcP4K2cuR9xhVTDNQ5 aFDmUpICCO6awc3G/ZHkyu61k0oxXau84uQZv1zhEoJEbPhSaWy25YhbUe/ds853 caIHPA== -----END CERTIFICATE-----Generated at Sun May 19 00:16:13 2024 by rpki-client on console-fra.rpki-client.org