$ rpki-client -vvf rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/9D181A24D78211EC944E227FC4F9AE02.roa File: 9D181A24D78211EC944E227FC4F9AE02.roa (raw, json) Hash identifier: ne99q5WbmXbxjRNaAmecrR9xJiEnNFoMmvnLNzg7UUg= Subject key identifier: 48:19:5E:EC:C6:D3:06:53:8D:E5:D9:7C:45:9A:92:25:DA:8C:AB:3F Certificate issuer: /CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Certificate serial: 0570 Authority key identifier: AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/9D181A24D78211EC944E227FC4F9AE02.roa Signing time: Sat 02 Sep 2023 23:10:48 +0000 ROA not before: Sat 02 Sep 2023 23:10:48 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 8576 IP address blocks: 202.89.20.0/23 maxlen: 23 202.89.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 23:58:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Validity Not Before: Sep 2 23:10:48 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f3c0f8-7a28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:4f:bf:33:bb:1c:87:45:c9:f3:66:d9:f6:43: 34:fa:9f:36:aa:c2:a8:1c:ab:22:21:ac:e4:b3:95: 6d:0a:67:b5:1d:fc:ff:90:eb:44:7d:9a:1e:60:ac: d7:db:a7:be:0e:7c:db:33:da:7a:d7:6b:4b:a1:22: d0:9d:a7:39:73:db:04:df:86:e5:43:cd:91:fa:7f: db:7c:a5:2c:9b:db:1a:3e:59:92:a2:6a:0b:74:b0: 42:6b:bc:ec:39:6e:90:31:16:ff:02:9b:5d:30:cf: 88:29:16:c0:c1:ae:3a:69:da:db:8f:c7:81:a7:18: 19:6a:3d:22:e2:ce:02:e5:93:e1:e8:1c:45:93:30: 37:7d:1a:61:21:33:17:16:63:55:cf:4f:56:cf:9b: 56:8d:fe:0b:a6:4a:27:61:a6:6b:2c:ae:56:83:0d: f1:85:99:2a:93:3d:48:b4:ec:dc:72:4b:f2:65:da: 8f:5a:d0:d4:3c:d2:3e:e9:13:d8:70:ce:b9:ba:b5: 88:4c:b6:d8:de:88:ca:24:c2:e1:e7:9d:70:82:5d: 0d:67:b9:08:ef:87:a2:39:f5:72:1e:36:a7:56:90: 4e:4b:09:52:f3:b5:41:af:5b:eb:ea:c0:c5:bb:7a: fe:a4:6e:7c:0d:c3:24:76:6f:21:06:0b:90:de:7a: 49:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:19:5E:EC:C6:D3:06:53:8D:E5:D9:7C:45:9A:92:25:DA:8C:AB:3F X509v3 Authority Key Identifier: keyid:AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/9D181A24D78211EC944E227FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.89.20.0/23 202.89.23.0/24 Signature Algorithm: sha256WithRSAEncryption 45:a6:97:8f:2a:38:c2:4e:f9:4e:22:b3:00:13:b8:51:94:78: de:0d:9e:77:24:c1:3d:5b:6e:8e:46:ce:0a:e8:98:84:a7:09: 73:2c:14:4c:c9:ad:10:2a:79:89:0f:18:52:64:d6:3e:0e:6e: 03:9c:79:ed:68:b6:25:5d:8c:86:23:02:71:af:58:5a:7e:7d: ec:97:57:19:84:ff:7a:0d:38:89:9a:8d:06:fe:95:68:e6:e0: a9:a6:7d:1b:76:81:7b:f7:aa:1b:a5:f6:0d:dc:2b:da:2f:90: 6f:92:81:73:41:b9:af:24:8f:76:8b:b5:f1:33:1d:61:18:69: 31:05:6b:e8:44:6a:62:4e:94:b1:64:7b:80:b7:e2:52:8f:fd: 14:e3:1d:b0:69:b1:dd:65:a6:3d:00:ef:07:65:d7:7c:40:b9: f2:50:cc:0b:46:5d:cd:12:08:bc:ad:a4:c2:b4:87:2d:4d:71: 97:f7:fb:8e:56:d4:ab:ba:90:df:a5:72:7f:c7:26:15:aa:a9: 38:8c:b4:d1:d5:0f:ee:3e:7c:aa:50:e1:56:89:63:3b:a9:a1: cb:7b:05:ca:77:d4:b0:93:ba:5f:db:40:35:1e:ad:19:b5:74: 12:ff:fb:36:3a:a5:e1:22:b5:12:dc:4d:d1:b2:d7:98:c9:9b: 25:a8:75:00 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMwN0QxMTAvBgNVBAUTKEFBREFBM0M0NDExNjYwREY1QzM0NDhBOTFDODRBRTU3 NTdBMjZFMTMwHhcNMjMwOTAyMjMxMDQ4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYzYzBmOC03YTI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApk+/M7sch0XJ82bZ9kM0+p82qsKoHKsiIazks5VtCme1Hfz/kOtEfZoeYKzX 26e+DnzbM9p612tLoSLQnac5c9sE34blQ82R+n/bfKUsm9saPlmSomoLdLBCa7zs OW6QMRb/AptdMM+IKRbAwa46adrbj8eBpxgZaj0i4s4C5ZPh6BxFkzA3fRphITMX FmNVz09Wz5tWjf4LpkonYaZrLK5Wgw3xhZkqkz1ItOzcckvyZdqPWtDUPNI+6RPY cM65urWITLbY3ojKJMLh551wgl0NZ7kI74eiOfVyHjanVpBOSwlS87VBr1vr6sDF u3r+pG58DcMkdm8hBguQ3npJYwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEgZXuzG 0wZTjeXZfEWakiXajKs/MB8GA1UdIwQYMBaAFKrao8RBFmDfXDRIqRyErldXom4T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzA3RC9BQjA4OUYzNjZC ODcxMUVCQkQ4MjY2MUNDNEY5QUUwMi9xdHFqeEVFV1lOOWNORWlwSElTdVYxZWli aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F0cWp4RUVXWU45Y05FaXBISVN1VjFlaWJoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMwN0QvQUIwODlGMzY2Qjg3MTFFQkJEODI2NjFDQzRGOUFFMDIvOUQxODFBMjRE NzgyMTFFQzk0NEUyMjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHKWRQDBADKWRcwDQYJKoZIhvcNAQELBQADggEBAEWml48q OMJO+U4iswATuFGUeN4NnnckwT1bbo5GzgromISnCXMsFEzJrRAqeYkPGFJk1j4O bgOcee1otiVdjIYjAnGvWFp+feyXVxmE/3oNOImajQb+lWjm4KmmfRt2gXv3qhul 9g3cK9ovkG+SgXNBua8kj3aLtfEzHWEYaTEFa+hEamJOlLFke4C34lKP/RTjHbBp sd1lpj0A7wdl13xAufJQzAtGXc0SCLytpMK0hy1NcZf3+45W1Ku6kN+lcn/HJhWq qTiMtNHVD+4+fKpQ4VaJYzupoct7Bcp31LCTul/bQDUerRm1dBL/+zY6peEitRLc TdGy15jJmyWodQA= -----END CERTIFICATE-----Generated at Thu May 23 02:40:19 2024 by rpki-client on console-ams.rpki-client.org