$ rpki-client -vvf rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/335B84084C9611E7B9D8512DC4F9AE02.roa File: 335B84084C9611E7B9D8512DC4F9AE02.roa (raw, json) Hash identifier: ccsih6dIuGpMmIzHTnKQ4PHzVF7wOjrx1SxnIsoMw9g= Subject key identifier: 36:B9:47:CF:E4:B7:81:11:65:0A:B1:E5:81:6F:CD:BF:DA:13:5E:57 Certificate issuer: /CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Certificate serial: 1BE5 Authority key identifier: FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/335B84084C9611E7B9D8512DC4F9AE02.roa Signing time: Sat 16 Dec 2023 16:43:47 +0000 ROA not before: Sat 16 Dec 2023 16:43:47 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 51964 IP address blocks: 202.167.0.0/17 maxlen: 32 202.167.128.0/18 maxlen: 32 202.167.192.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:43:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7141 (0x1be5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Validity Not Before: Dec 16 16:43:47 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657dd3c3-20ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:a9:50:2b:3c:ce:e8:6b:2d:41:e0:e8:32: 89:c1:09:eb:b2:3a:52:77:6c:ed:79:9c:67:86:64: af:5a:5f:1d:62:e8:f9:cc:a8:fd:91:59:f1:7e:5e: bb:f3:07:4b:09:d3:b8:dd:23:53:ad:0e:4e:a8:9e: d2:0a:65:e1:63:c3:ec:f3:9b:ac:8c:dc:25:64:c4: e9:0d:f1:e9:4b:5b:d0:49:ae:7e:8e:96:a8:66:c0: f4:9f:6b:42:f9:e6:49:73:78:2f:9d:ad:23:50:24: ed:83:8d:c4:13:f2:2d:c1:b4:ec:76:de:b5:2e:d7: 4f:d0:fc:f2:f1:0d:79:d0:13:91:c0:24:63:68:50: 75:65:f3:12:73:ed:c4:fb:c6:d4:28:88:be:7b:82: 0c:72:f1:07:be:bb:e7:f8:b0:2b:27:02:bf:11:0e: 56:36:d8:1a:2d:3b:3b:41:21:6f:58:fd:38:a7:26: 20:09:31:8e:9c:25:fb:4d:f6:d3:5c:00:3f:dd:bb: 2c:5e:5e:c8:43:1c:5d:af:ab:f4:6a:87:e9:1f:5b: 1e:35:71:c3:46:01:80:a5:e1:57:80:e7:60:60:e0: 00:da:44:1c:23:4f:da:70:62:6e:f4:a7:b7:10:8d: d9:13:d9:cf:fe:22:1d:0e:a3:d8:6a:e0:72:c5:0a: a6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:B9:47:CF:E4:B7:81:11:65:0A:B1:E5:81:6F:CD:BF:DA:13:5E:57 X509v3 Authority Key Identifier: keyid:FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/335B84084C9611E7B9D8512DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.167.0.0-202.167.207.255 Signature Algorithm: sha256WithRSAEncryption 60:f5:78:01:63:88:9e:76:17:fa:b6:99:7f:29:f6:a8:10:85: 53:53:ee:07:c9:25:d6:4c:29:15:fd:73:4c:d3:3b:c5:5f:b4: 68:24:f5:d6:40:c3:a2:90:c5:ce:f7:28:59:ca:73:06:d6:b5: 35:54:b4:17:08:d1:45:0d:65:fd:c8:be:01:3f:01:1f:6a:9f: 07:c6:c6:57:2c:0e:9b:bd:95:d4:f9:e1:12:79:8f:3c:d3:6c: e1:fd:90:1c:7c:24:8a:18:c5:0a:cb:bc:22:b6:d6:2d:ea:7a: 62:47:6c:49:80:d2:f1:e3:c2:41:15:6c:a3:cf:97:bc:eb:af: cb:95:2e:31:69:42:9f:b9:ae:f7:50:9f:02:d8:41:e8:cd:f0: b3:dd:9f:a0:a6:31:57:97:60:a8:bf:13:70:cf:8e:45:4a:7c: 6a:12:ee:1f:5c:c0:8a:a5:f9:f9:49:ab:27:ea:40:88:11:88: bc:1a:81:16:d9:93:63:9b:16:72:af:a5:e7:3b:90:af:a5:0f: ae:43:ab:5b:4b:de:01:0b:46:ce:01:81:25:7a:04:38:d6:01: e1:1a:22:27:59:6b:22:a2:94:5f:a8:a1:fe:bc:ff:44:e6:67: eb:8e:7f:e1:cd:90:f9:02:4f:14:53:9c:b0:84:5d:4a:b9:46: cd:37:d7:09 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICG+UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBEMjcxMTAvBgNVBAUTKEZGQ0QyMERDQTY4REU0MzJGMjE5MUI3QjYzMzI4NkJD OTg3RTQyRUMwHhcNMjMxMjE2MTY0MzQ3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdkZDNjMy0yMGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvpipUCs8zuhrLUHg6DKJwQnrsjpSd2zteZxnhmSvWl8dYuj5zKj9kVnxfl67 8wdLCdO43SNTrQ5OqJ7SCmXhY8Ps85usjNwlZMTpDfHpS1vQSa5+jpaoZsD0n2tC +eZJc3gvna0jUCTtg43EE/ItwbTsdt61LtdP0Pzy8Q150BORwCRjaFB1ZfMSc+3E +8bUKIi+e4IMcvEHvrvn+LArJwK/EQ5WNtgaLTs7QSFvWP04pyYgCTGOnCX7TfbT XAA/3bssXl7IQxxdr6v0aofpH1seNXHDRgGApeFXgOdgYOAA2kQcI0/acGJu9Ke3 EI3ZE9nP/iIdDqPYauByxQqmQQIDAQABo4ICnDCCApgwHQYDVR0OBBYEFDa5R8/k t4ERZQqx5YFvzb/aE15XMB8GA1UdIwQYMBaAFP/NINymjeQy8hkbe2MyhryYfkLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEQyNy8yQTYxQ0E4QUQz NTkxMUU2QjU1QUZBNzBDNEY5QUUwMi9fODBnM0thTjVETHlHUnQ3WXpLR3ZKaC1R dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL184MGczS2FONURMeUdSdDdZektHdkpoLVF1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBEMjcvMkE2MUNBOEFEMzU5MTFFNkI1NUFGQTcwQzRGOUFFMDIvMzM1Qjg0MDg0 Qzk2MTFFN0I5RDg1MTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMDAMqnAwQEyqfAMA0GCSqGSIb3DQEBCwUAA4IBAQBg9XgB Y4iedhf6tpl/KfaoEIVTU+4HySXWTCkV/XNM0zvFX7RoJPXWQMOikMXO9yhZynMG 1rU1VLQXCNFFDWX9yL4BPwEfap8HxsZXLA6bvZXU+eESeY8802zh/ZAcfCSKGMUK y7wittYt6npiR2xJgNLx48JBFWyjz5e866/LlS4xaUKfua73UJ8C2EHozfCz3Z+g pjFXl2CovxNwz45FSnxqEu4fXMCKpfn5Sasn6kCIEYi8GoEW2ZNjmxZyr6XnO5Cv pQ+uQ6tbS94BC0bOAYElegQ41gHhGiInWWsiopRfqKH+vP9E5mfrjn/hzZD5Ak8U U5ywhF1KuUbNN9cJ -----END CERTIFICATE-----Generated at Thu May 16 18:26:04 2024 by rpki-client on console-fra.rpki-client.org