$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B228FE46257C11E79EE15E3CC4F9AE02.roa File: B228FE46257C11E79EE15E3CC4F9AE02.roa (raw, json) Hash identifier: hJ3PgbJyocs0HGOIZei3K7S7wLZx9c0zLL0YjeDipuw= Subject key identifier: 87:D9:DB:25:34:A2:00:95:94:5E:7A:8A:9E:97:99:54:BC:28:42:3B Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D29 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B228FE46257C11E79EE15E3CC4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:24 +0000 ROA not before: Tue 02 Jan 2024 16:54:24 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17896 IP address blocks: 123.172.0.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7465 (0x1d29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:24 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fc0-68a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7f:71:e1:0d:13:42:1a:e6:86:1b:6c:f1:ea: a3:65:28:ef:5a:57:44:40:8d:0c:ab:e9:02:7d:23: b1:dd:25:88:57:de:72:c5:bb:41:68:e2:c8:3a:42: 81:a4:92:88:72:20:28:18:a8:ec:f9:6a:a4:62:a2: 92:fc:26:b1:70:ea:fa:c2:0a:49:8c:1b:41:2e:ca: 29:52:22:0c:98:32:15:f7:8d:3d:49:d9:4c:c7:d3: 49:3d:8c:46:b6:20:c6:4f:1e:c3:4e:e7:1f:bb:3d: 1e:6a:e0:7f:b3:d7:a9:3e:08:2b:e1:45:82:64:2f: 70:11:26:9b:9a:86:5a:6d:74:99:d7:ad:d3:22:88: 6e:54:42:e0:ac:10:d5:6b:41:55:7e:03:2b:40:0a: 61:30:fb:18:8d:db:f1:ef:2c:ca:3b:fa:18:f2:f6: 27:24:37:d4:f6:c2:92:d5:3e:c7:75:af:c1:36:a2: b8:dc:07:f4:23:11:74:59:d2:cd:4c:89:31:3c:03: 91:4b:93:b9:e1:df:9f:ba:46:e0:3c:24:7c:01:48: 71:d6:33:9c:d6:26:73:b3:40:67:dd:2e:ec:60:b6: ed:ce:ac:0e:bf:c8:3d:4e:53:95:53:b9:f1:1f:13: 20:47:70:ac:2d:5e:a3:37:b1:81:02:a8:d5:3b:e1: 56:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:D9:DB:25:34:A2:00:95:94:5E:7A:8A:9E:97:99:54:BC:28:42:3B X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/B228FE46257C11E79EE15E3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.172.0.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:b7:a8:9a:1a:63:81:bc:af:33:f6:e2:d5:7f:70:de:49:32: d2:77:85:84:4c:23:a7:5f:86:99:5b:e7:05:35:91:c8:94:fe: a5:23:46:18:96:6e:48:73:e8:38:2f:e9:73:12:16:94:68:28: e3:83:25:bb:75:b5:a3:75:e2:8f:65:ec:a4:cd:e4:55:94:11: ea:c7:a6:97:ea:31:18:c1:77:01:c5:2f:e3:4d:51:cf:82:51: 0f:0d:b2:59:c5:b2:e2:f5:94:e8:25:e4:dd:06:11:d1:7a:e8: 49:64:d1:4e:5d:42:69:26:6b:01:4c:2c:c3:7c:6e:6d:f2:f3: d7:86:77:b5:97:b0:e0:b0:63:b7:4f:81:f3:c6:a6:40:3d:dc: b9:92:89:8b:20:de:7f:01:f1:37:1e:27:fd:12:c0:23:04:63: ae:61:5a:c7:15:ba:2a:54:d1:fe:e1:24:f1:c9:90:5e:24:71: 48:66:43:ab:17:8d:2e:9a:10:0e:71:b9:bd:f3:dd:1b:5d:56: ed:00:2a:7d:07:ae:d2:b2:0b:12:24:0b:d9:3c:ad:a1:df:4c: 87:bb:7a:98:fc:b8:85:78:6d:e7:6b:64:cc:81:03:18:38:00: 87:88:dd:44:d6:a4:88:f8:47:5e:16:07:04:eb:21:c5:31:2d: 8e:42:c1:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHSkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDI0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZjMC02OGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn39x4Q0TQhrmhhts8eqjZSjvWldEQI0Mq+kCfSOx3SWIV95yxbtBaOLIOkKB pJKIciAoGKjs+WqkYqKS/CaxcOr6wgpJjBtBLsopUiIMmDIV9409SdlMx9NJPYxG tiDGTx7DTucfuz0eauB/s9epPggr4UWCZC9wESabmoZabXSZ163TIohuVELgrBDV a0FVfgMrQAphMPsYjdvx7yzKO/oY8vYnJDfU9sKS1T7Hda/BNqK43Af0IxF0WdLN TIkxPAORS5O54d+fukbgPCR8AUhx1jOc1iZzs0Bn3S7sYLbtzqwOv8g9TlOVU7nx HxMgR3CsLV6jN7GBAqjVO+FWMQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIfZ2yU0 ogCVlF56ip6XmVS8KEI7MB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvQjIyOEZFNDYy NTdDMTFFNzlFRTE1RTNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAR7rAAwDQYJKoZIhvcNAQELBQADggEBAFu3qJoaY4G8rzP2 4tV/cN5JMtJ3hYRMI6dfhplb5wU1kciU/qUjRhiWbkhz6Dgv6XMSFpRoKOODJbt1 taN14o9l7KTN5FWUEerHppfqMRjBdwHFL+NNUc+CUQ8NslnFsuL1lOgl5N0GEdF6 6Elk0U5dQmkmawFMLMN8bm3y89eGd7WXsOCwY7dPgfPGpkA93LmSiYsg3n8B8Tce J/0SwCMEY65hWscVuipU0f7hJPHJkF4kcUhmQ6sXjS6aEA5xub3z3RtdVu0AKn0H rtKyCxIkC9k8raHfTIe7epj8uIV4bedrZMyBAxg4AIeI3UTWpIj4R14WBwTrIcUx LY5CwZE= -----END CERTIFICATE-----Generated at Sat May 18 18:21:36 2024 by rpki-client on console-ams.rpki-client.org