$ rpki-client -vvf rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/B9CCF2D4BD2711EE9958E946C4F9AE02.roa File: B9CCF2D4BD2711EE9958E946C4F9AE02.roa (raw, json) Hash identifier: J7JqSqFB0utzju3agkbPPIteMCf05VWU5tDxkvd5OXY= Subject key identifier: 1B:E4:9E:F5:64:8E:47:C7:B8:FA:A7:97:41:0D:01:E1:5D:59:31:A7 Certificate issuer: /CN=A915D0AC/serialNumber=F7AED5875112CCFB208E718247B1E49BAAFFB865 Certificate serial: 9D Authority key identifier: F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/B9CCF2D4BD2711EE9958E946C4F9AE02.roa Signing time: Wed 03 Apr 2024 07:08:46 +0000 ROA not before: Wed 03 Apr 2024 07:08:46 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 1221 IP address blocks: 203.4.130.0/24 maxlen: 24 203.4.131.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.crl rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 157 (0x9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915D0AC/serialNumber=F7AED5875112CCFB208E718247B1E49BAAFFB865 Validity Not Before: Apr 3 07:08:46 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660d007e-966d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d4:5a:d3:76:ed:1f:75:f5:36:a1:59:de:18: fa:24:f4:f2:94:fb:9e:78:46:f5:4e:b6:60:7d:5d: 3e:f9:ce:22:72:0b:f2:61:15:48:76:06:99:74:9a: f8:16:02:aa:5d:1d:a5:c3:90:80:d8:25:40:aa:39: 04:ee:23:f6:f9:49:ee:7f:33:7a:dc:c1:a7:e2:27: 23:26:e0:0c:b3:57:1d:99:47:78:9b:70:08:aa:56: 82:c6:c8:50:e7:91:17:d9:18:d0:00:29:ca:8d:40: 41:d5:af:4f:6a:29:59:e8:4f:6b:d0:54:91:99:35: 23:7e:ff:69:ac:cf:29:05:9a:94:b2:f9:73:15:51: ed:4f:c3:90:b8:8e:f3:f8:56:19:b7:cd:24:fe:4f: c5:58:f7:dd:7e:cf:06:75:96:d4:c0:4e:df:b2:bc: 4f:35:2d:4e:48:88:3f:66:ef:9b:59:53:22:55:3e: e9:11:10:bb:7f:ea:bf:15:85:d0:22:9b:15:db:eb: a7:ec:a8:5c:5d:89:7c:56:d1:2d:13:b2:c7:d9:71: de:88:a3:6a:ed:80:f0:08:12:a2:b2:6e:3e:13:45: 82:ca:c8:16:99:de:7a:e9:4f:82:8e:80:94:a4:54: e1:b2:a6:96:b0:b8:18:06:e7:fe:92:71:0b:a4:cc: 54:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:E4:9E:F5:64:8E:47:C7:B8:FA:A7:97:41:0D:01:E1:5D:59:31:A7 X509v3 Authority Key Identifier: keyid:F7:AE:D5:87:51:12:CC:FB:20:8E:71:82:47:B1:E4:9B:AA:FF:B8:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/967Vh1ESzPsgjnGCR7Hkm6r_uGU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/967Vh1ESzPsgjnGCR7Hkm6r_uGU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D0AC/A29AA2D8152411EE9D70C968C4F9AE02/B9CCF2D4BD2711EE9958E946C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.130.0/23 Signature Algorithm: sha256WithRSAEncryption c2:9b:c0:ab:8b:f5:b6:7a:20:92:61:64:0c:55:f9:22:6c:ee: 38:9e:77:5c:b5:23:b0:c7:0f:87:7a:4f:3c:72:c9:8e:0d:80: ff:52:0e:61:4d:19:3e:9c:d4:d3:b5:27:98:84:8b:35:48:c9: 10:1b:c0:07:9d:df:10:b9:c3:0c:54:14:1c:a5:08:37:e4:96: 1b:5c:69:18:29:cf:55:a2:3d:0c:ab:29:b1:c0:c0:11:6b:c7: 53:70:1f:5e:86:6f:a3:a3:40:3a:c8:29:c1:7b:42:91:1f:eb: 1b:d8:48:91:87:c0:f7:6b:5c:83:5b:e7:30:2a:03:91:bb:62: 7a:25:02:fa:1c:b1:63:e9:f9:9a:da:ea:fd:0a:d9:7c:66:91: 8c:c6:24:17:9a:56:07:63:1d:be:e9:95:f9:54:fa:23:1e:16: 44:b5:6b:3b:2d:47:93:6b:86:1d:78:5e:cb:8c:64:d7:2e:b1: f7:47:bc:0e:34:31:a3:bc:aa:3f:4f:62:5c:2a:53:2d:bf:a9: 7e:a4:2d:eb:23:c5:67:d0:a1:7c:bf:2f:25:5b:6a:29:ef:fc: e5:7e:76:ed:37:9d:a5:60:34:ff:cc:f0:e5:33:42:45:31:65: 68:b2:87:cf:a4:20:ff:8b:08:0a:9e:da:c2:a0:4e:ab:e2:2d: e1:19:a1:93 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJ0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUQwQUMxMTAvBgNVBAUTKEY3QUVENTg3NTExMkNDRkIyMDhFNzE4MjQ3QjFFNDlC QUFGRkI4NjUwHhcNMjQwNDAzMDcwODQ2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBkMDA3ZS05NjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA49Ra03btH3X1NqFZ3hj6JPTylPueeEb1TrZgfV0++c4icgvyYRVIdgaZdJr4 FgKqXR2lw5CA2CVAqjkE7iP2+UnufzN63MGn4icjJuAMs1cdmUd4m3AIqlaCxshQ 55EX2RjQACnKjUBB1a9PailZ6E9r0FSRmTUjfv9prM8pBZqUsvlzFVHtT8OQuI7z +FYZt80k/k/FWPfdfs8GdZbUwE7fsrxPNS1OSIg/Zu+bWVMiVT7pERC7f+q/FYXQ IpsV2+un7KhcXYl8VtEtE7LH2XHeiKNq7YDwCBKism4+E0WCysgWmd566U+CjoCU pFThsqaWsLgYBuf+knELpMxUlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBvknvVk jkfHuPqnl0ENAeFdWTGnMB8GA1UdIwQYMBaAFPeu1YdREsz7II5xgkex5Juq/7hl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1RDBBQy9BMjlBQTJEODE1 MjQxMUVFOUQ3MEM5NjhDNEY5QUUwMi85NjdWaDFFU3pQc2dqbkdDUjdIa202cl91 R1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzk2N1ZoMUVTelBzZ2puR0NSN0hrbTZyX3VHVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUQwQUMvQTI5QUEyRDgxNTI0MTFFRTlENzBDOTY4QzRGOUFFMDIvQjlDQ0YyRDRC RDI3MTFFRTk5NThFOTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHLBIIwDQYJKoZIhvcNAQELBQADggEBAMKbwKuL9bZ6IJJh ZAxV+SJs7jied1y1I7DHD4d6TzxyyY4NgP9SDmFNGT6c1NO1J5iEizVIyRAbwAed 3xC5wwxUFBylCDfklhtcaRgpz1WiPQyrKbHAwBFrx1NwH16Gb6OjQDrIKcF7QpEf 6xvYSJGHwPdrXINb5zAqA5G7YnolAvocsWPp+Zra6v0K2XxmkYzGJBeaVgdjHb7p lflU+iMeFkS1azstR5Nrhh14XsuMZNcusfdHvA40MaO8qj9PYlwqUy2/qX6kLesj xWfQoXy/LyVbainv/OV+du03naVgNP/M8OUzQkUxZWiyh8+kIP+LCAqe2sKgTqvi LeEZoZM= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:32 2024 by rpki-client on console-fra.rpki-client.org