$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/7A1D009C0EB611ECB5408277C4F9AE02.roa File: 7A1D009C0EB611ECB5408277C4F9AE02.roa (raw, json) Hash identifier: STN3pgVQud0+F36KkKDZbeRN9W6sMKUFG6huwdN4TWg= Subject key identifier: 65:03:81:A8:80:EF:CA:54:0D:7D:74:AD:C1:16:0A:04:0F:E3:B0:AD Certificate issuer: /CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Certificate serial: 191D Authority key identifier: AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/7A1D009C0EB611ECB5408277C4F9AE02.roa Signing time: Tue 30 May 2023 16:23:30 +0000 ROA not before: Tue 30 May 2023 16:23:30 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 9541 IP address blocks: 72.255.0.0/18 maxlen: 24 139.135.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 16:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6429 (0x191d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66/serialNumber=AA32562429F896C0A5CBDE564431480339BEBA97 Validity Not Before: May 30 16:23:30 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64762301-a29b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:8f:d4:21:bf:71:34:f3:93:99:16:7f:a0:35: 83:1f:df:29:b2:48:10:90:73:7a:28:77:ef:f5:fc: 17:a2:55:eb:0d:16:51:33:dd:7d:7f:a0:9c:c1:7d: 64:70:78:f1:d9:95:d0:ba:34:a5:34:63:65:19:aa: 15:5a:2a:1b:ec:6d:ae:93:a0:14:4d:8c:76:da:8d: 03:a3:89:15:4d:7c:77:1d:3f:d1:bd:e3:83:db:21: 12:75:9f:e5:67:db:aa:48:7d:51:05:f5:c2:af:50: c1:f3:a8:9a:13:92:0e:f5:4e:27:2e:70:bc:d1:d1: 8d:0b:8f:74:96:da:5d:db:34:7f:bf:f4:87:5f:4f: 3f:62:f8:19:d1:2a:6d:84:6a:71:a9:ae:12:82:85: fd:68:f5:0f:9d:b0:9f:ad:ff:c5:a2:7f:da:ba:08: 48:7c:e8:07:c8:c3:b4:71:47:7f:df:ae:5e:41:12: d2:d9:02:40:b6:2e:ae:0e:49:60:76:43:3a:2a:b3: a7:cc:1d:35:a5:dc:ef:53:f2:1c:0f:fc:70:fb:66: 54:82:1f:27:5b:62:fd:33:c7:7a:ce:d0:d2:4e:48: d0:06:88:d4:e0:f3:d8:eb:87:7e:6b:3a:8e:21:a4: 9e:9d:63:80:87:65:2b:48:fb:2f:2e:96:2c:53:88: d5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:03:81:A8:80:EF:CA:54:0D:7D:74:AD:C1:16:0A:04:0F:E3:B0:AD X509v3 Authority Key Identifier: keyid:AA:32:56:24:29:F8:96:C0:A5:CB:DE:56:44:31:48:03:39:BE:BA:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/qjJWJCn4lsCly95WRDFIAzm-upc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/qjJWJCn4lsCly95WRDFIAzm-upc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/3D981CCC3A1E11E79AA0D51CC4F9AE02/7A1D009C0EB611ECB5408277C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 72.255.0.0/18 139.135.32.0/19 Signature Algorithm: sha256WithRSAEncryption 33:b9:4e:ea:8e:04:56:d5:85:69:57:6d:a9:27:90:52:6f:12: d9:cf:5f:1e:8d:cc:2d:a9:57:cc:1f:a4:18:6d:ab:9d:1f:f5: 81:3f:a0:82:9d:14:8e:4a:d2:c5:a2:5a:e2:c6:b2:ca:09:cf: ca:46:85:08:76:67:41:a4:72:29:37:53:02:17:8b:87:d1:51: ff:90:a7:d3:d4:4b:fc:ec:6d:bf:2d:e4:db:ea:56:92:0b:59: b1:37:a9:34:f2:18:04:e9:93:d8:42:78:b1:84:48:1c:ad:f1: 25:02:96:26:90:4b:44:40:82:4a:73:0c:6b:f7:c3:39:6e:84: 03:b2:96:39:94:cc:b7:be:16:8a:8e:2b:f7:2d:24:2b:a7:f5: 2c:93:27:b1:d0:18:cf:39:56:0f:7e:54:4c:86:fc:2e:54:a8: d4:66:c3:1d:5c:4d:52:8d:2b:49:70:50:9b:dc:5a:2c:05:6b: 54:b1:0d:87:d3:5a:99:7d:6c:62:00:fc:3f:9d:48:79:ff:c2: 19:ed:9f:43:98:76:44:a5:3b:2b:ac:2d:13:f5:5b:67:31:c0: a8:39:51:69:e7:ff:d2:6c:27:a4:f6:64:3a:57:b8:af:bc:42: c4:2f:6a:dc:72:f4:5a:7f:79:22:86:04:94:03:e9:f6:6e:9b: 94:ef:7c:51 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGR0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKEFBMzI1NjI0MjlGODk2QzBBNUNCREU1NjQ0MzE0ODAz MzlCRUJBOTcwHhcNMjMwNTMwMTYyMzMwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc2MjMwMS1hMjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyo/UIb9xNPOTmRZ/oDWDH98pskgQkHN6KHfv9fwXolXrDRZRM919f6CcwX1k cHjx2ZXQujSlNGNlGaoVWiob7G2uk6AUTYx22o0Do4kVTXx3HT/RveOD2yESdZ/l Z9uqSH1RBfXCr1DB86iaE5IO9U4nLnC80dGNC490ltpd2zR/v/SHX08/YvgZ0Spt hGpxqa4SgoX9aPUPnbCfrf/Fon/aughIfOgHyMO0cUd/365eQRLS2QJAti6uDklg dkM6KrOnzB01pdzvU/IcD/xw+2ZUgh8nW2L9M8d6ztDSTkjQBojU4PPY64d+azqO IaSenWOAh2UrSPsvLpYsU4jVaQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGUDgaiA 78pUDX10rcEWCgQP47CtMB8GA1UdIwQYMBaAFKoyViQp+JbApcveVkQxSAM5vrqX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni8zRDk4MUNDQzNB MUUxMUU3OUFBMEQ1MUNDNEY5QUUwMi9xakpXSkNuNGxzQ2x5OTVXUkRGSUF6bS11 cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL3FqSldKQ240bHNDbHk5NVdSREZJQXptLXVwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvM0Q5ODFDQ0MzQTFFMTFFNzlBQTBENTFDQzRGOUFFMDIvN0ExRDAwOUMw RUI2MTFFQ0I1NDA4Mjc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAZI/wADBAWLhyAwDQYJKoZIhvcNAQELBQADggEBADO5TuqO BFbVhWlXbaknkFJvEtnPXx6NzC2pV8wfpBhtq50f9YE/oIKdFI5K0sWiWuLGssoJ z8pGhQh2Z0Gkcik3UwIXi4fRUf+Qp9PUS/zsbb8t5NvqVpILWbE3qTTyGATpk9hC eLGESByt8SUCliaQS0RAgkpzDGv3wzluhAOyljmUzLe+FoqOK/ctJCun9SyTJ7HQ GM85Vg9+VEyG/C5UqNRmwx1cTVKNK0lwUJvcWiwFa1SxDYfTWpl9bGIA/D+dSHn/ whntn0OYdkSlOyusLRP1W2cxwKg5UWnn/9JsJ6T2ZDpXuK+8QsQvatxy9Fp/eSKG BJQD6fZum5TvfFE= -----END CERTIFICATE-----Generated at Tue May 28 19:32:23 2024 by rpki-client on console-ams.rpki-client.org