$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FAF6D732CD3811EDBD37B674C4F9AE02.roa File: FAF6D732CD3811EDBD37B674C4F9AE02.roa (raw, json) Hash identifier: 2lstfvkdbirtpx32Ne6yPfQ/bA8CgvJ4JDf+5oHKtEA= Subject key identifier: 05:8B:09:96:B7:40:89:F7:21:AE:29:E2:25:57:4A:0B:1C:B9:B4:70 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 34E2 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FAF6D732CD3811EDBD37B674C4F9AE02.roa Signing time: Tue 26 Sep 2023 14:30:26 +0000 ROA not before: Tue 26 Sep 2023 14:30:26 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 45996 IP address blocks: 110.172.112.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13538 (0x34e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Sep 26 14:30:26 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6512eb02-1cd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:42:fd:92:5f:dd:0f:cc:14:bc:be:af:3b:da: 5a:94:38:f3:48:d0:57:fa:3a:5d:d5:71:3f:77:f6: 76:ff:fe:d4:de:65:a8:fd:48:d8:36:da:4b:87:7e: 50:41:b4:69:d0:2c:5c:72:ab:35:a9:8d:92:c4:6f: a6:34:f7:99:26:59:7d:a2:60:f2:e2:87:1b:19:9d: 1f:e3:52:e0:81:b2:a8:1f:36:b4:74:59:6b:15:51: d1:48:41:97:d6:4d:a6:dc:34:38:16:25:7f:bd:8c: c6:bd:76:3f:a5:b5:a4:41:88:82:1a:48:61:19:5c: 92:30:c4:3b:54:9e:50:ca:f7:87:c2:26:73:38:d7: 2c:a4:e6:68:52:9c:49:6c:24:d9:6b:e8:5d:ac:b3: a0:11:1d:70:0f:05:27:e9:63:0b:8b:78:d2:8e:24: cc:49:42:88:da:af:f0:48:f9:e4:26:76:25:15:59: ea:74:96:ba:8c:2e:9d:7a:81:f5:97:13:64:48:b5: 52:01:25:0c:83:8d:af:6d:eb:0c:8a:1c:43:56:38: c3:25:53:53:7c:88:df:13:77:4f:21:53:32:db:51: a2:c7:31:45:f5:b8:47:e9:e9:35:10:2f:17:10:35: 97:b6:ff:9a:88:cc:07:25:c2:b0:32:7c:74:8a:9a: 94:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8B:09:96:B7:40:89:F7:21:AE:29:E2:25:57:4A:0B:1C:B9:B4:70 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/FAF6D732CD3811EDBD37B674C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 110.172.112.0/20 Signature Algorithm: sha256WithRSAEncryption dc:2d:b2:fc:af:be:ad:5d:74:6f:ab:15:24:f9:dc:7c:4a:04: e2:43:3a:bb:c5:16:f1:96:d6:0e:06:11:51:a2:05:ee:f2:32: 51:a5:85:61:6b:ca:db:9b:30:b5:98:fe:bc:c9:a5:eb:5e:e7: 62:d5:01:3b:0d:10:59:a8:da:b6:59:b7:98:6b:f8:2b:12:43: 4f:d4:2b:eb:db:bd:8a:78:d6:84:3e:5f:83:c5:fe:4c:5b:c4: c3:99:bc:18:cb:2e:4d:48:65:d5:e0:86:44:a7:ba:94:5e:c0: 58:bd:3f:d5:e3:b6:30:a5:ae:9d:79:90:19:91:96:f3:02:e1: 3a:cd:dd:01:97:1c:22:64:d6:78:6a:16:92:d6:62:34:28:e8: c3:d8:e8:3e:19:38:95:86:51:59:d1:eb:0d:1a:c7:8c:67:5a: 25:70:2f:cd:c8:14:a4:31:8d:91:05:61:1d:40:28:34:16:87: db:4d:69:f0:1d:1c:d3:aa:58:d8:a2:6d:7c:dc:e9:5b:62:55: 38:af:4b:4f:5a:5c:3c:89:01:9c:57:f4:59:3e:fb:77:d4:5a: 46:da:3c:00:fd:c6:27:8c:d1:33:52:1c:dd:bd:11:bc:be:ea: 90:c7:7c:34:09:58:92:b3:e7:cc:71:85:f6:03:10:ae:4e:b1: 78:62:c3:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjMwOTI2MTQzMDI2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEyZWIwMi0xY2Q3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA50L9kl/dD8wUvL6vO9palDjzSNBX+jpd1XE/d/Z2//7U3mWo/UjYNtpLh35Q QbRp0Cxccqs1qY2SxG+mNPeZJll9omDy4ocbGZ0f41LggbKoHza0dFlrFVHRSEGX 1k2m3DQ4FiV/vYzGvXY/pbWkQYiCGkhhGVySMMQ7VJ5QyveHwiZzONcspOZoUpxJ bCTZa+hdrLOgER1wDwUn6WMLi3jSjiTMSUKI2q/wSPnkJnYlFVnqdJa6jC6deoH1 lxNkSLVSASUMg42vbesMihxDVjjDJVNTfIjfE3dPIVMy21GixzFF9bhH6ek1EC8X EDWXtv+aiMwHJcKwMnx0ipqUoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAWLCZa3 QIn3Ia4p4iVXSgscubRwMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvRkFGNkQ3MzJD RDM4MTFFREJEMzdCNjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARurHAwDQYJKoZIhvcNAQELBQADggEBANwtsvyvvq1ddG+r FST53HxKBOJDOrvFFvGW1g4GEVGiBe7yMlGlhWFrytubMLWY/rzJpete52LVATsN EFmo2rZZt5hr+CsSQ0/UK+vbvYp41oQ+X4PF/kxbxMOZvBjLLk1IZdXghkSnupRe wFi9P9XjtjClrp15kBmRlvMC4TrN3QGXHCJk1nhqFpLWYjQo6MPY6D4ZOJWGUVnR 6w0ax4xnWiVwL83IFKQxjZEFYR1AKDQWh9tNafAdHNOqWNiibXzc6VtiVTivS09a XDyJAZxX9Fk++3fUWkbaPAD9xieM0TNSHN29Eby+6pDHfDQJWJKz58xxhfYDEK5O sXhiw44= -----END CERTIFICATE-----Generated at Sat May 18 15:58:22 2024 by rpki-client on console-ams.rpki-client.org