$ rpki-client -vvf rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/7F2A4208E53E11EB9E429C44C4F9AE02.roa File: 7F2A4208E53E11EB9E429C44C4F9AE02.roa (raw, json) Hash identifier: NbNJ/Lp4AiIGIDLEh0a+m7Al7spoloRx3mAw221v37U= Subject key identifier: 2B:A7:37:35:1A:35:E9:F1:93:A3:E5:6B:AD:8D:8B:D3:D0:53:8D:D2 Certificate issuer: /CN=A9161613/serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C Certificate serial: 04D6 Authority key identifier: 09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/7F2A4208E53E11EB9E429C44C4F9AE02.roa Signing time: Sat 27 Jan 2024 01:03:33 +0000 ROA not before: Sat 27 Jan 2024 01:03:33 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 136955 IP address blocks: 49.157.14.0/24 maxlen: 24 49.157.15.0/24 maxlen: 24 61.28.172.0/23 maxlen: 23 61.28.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1238 (0x4d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9161613/serialNumber=09FC077F33E3AD67BF147755167A3AD4EACB1E7C Validity Not Before: Jan 27 01:03:33 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65b45665-a742 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d4:d3:da:d3:6c:ed:aa:9c:b1:8b:b9:0c:3d: 54:c5:a0:b1:10:7e:78:8e:37:a8:2f:d7:8a:a4:f3: 38:14:2e:7e:24:da:d2:0c:79:64:df:5f:b2:fd:37: 46:1e:a1:ee:27:42:c5:08:d8:9c:4b:87:a3:81:43: ba:41:97:0f:4e:bf:75:7a:b7:c4:6e:41:bd:8b:e3: 8f:14:5d:2a:6b:2e:f8:8e:e7:4b:18:0d:52:54:64: ee:ef:fc:c9:f3:d3:1a:0f:c4:06:ef:50:18:67:c6: 9f:bd:42:60:90:d0:ca:bf:31:9b:e7:46:f1:db:01: 84:e1:64:17:5c:5d:44:47:6c:c4:84:a5:ea:9c:4c: 84:c2:dc:76:f3:f6:a3:15:eb:da:fb:37:b2:36:65: ea:99:b3:9f:70:3f:8b:33:a4:29:28:d3:99:bf:15: c0:59:3a:63:fc:87:cf:96:2e:46:60:b8:f6:7c:63: 0d:7f:31:08:e8:c9:2b:6a:07:e1:25:cc:0d:2d:7b: e9:6c:7f:2c:05:60:31:0f:a0:b2:c4:a8:c0:84:ac: 90:f5:18:80:f7:94:30:9b:fc:bf:50:93:18:28:2d: 17:11:1f:09:e3:cc:dc:08:84:0f:44:73:ff:6c:bf: 9e:05:52:df:b7:95:80:c8:7b:ae:d2:e1:84:f1:9a: b2:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:A7:37:35:1A:35:E9:F1:93:A3:E5:6B:AD:8D:8B:D3:D0:53:8D:D2 X509v3 Authority Key Identifier: keyid:09:FC:07:7F:33:E3:AD:67:BF:14:77:55:16:7A:3A:D4:EA:CB:1E:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/CfwHfzPjrWe_FHdVFno61OrLHnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CfwHfzPjrWe_FHdVFno61OrLHnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9161613/30992668E53911EB8A5B9271C4F9AE02/7F2A4208E53E11EB9E429C44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.157.14.0/23 61.28.172.0/23 61.28.176.0/24 Signature Algorithm: sha256WithRSAEncryption a1:cd:a7:8a:ed:e8:6c:32:b6:77:56:83:b9:d2:d5:a3:56:4e: e2:2a:af:77:61:9d:9f:0b:15:aa:94:d4:37:93:2a:51:a7:cc: 1a:de:9f:62:2b:9c:e7:64:f9:0e:db:67:82:45:dc:5a:8b:59: 4f:69:91:1b:49:96:a2:63:6c:15:e1:aa:7d:c7:e6:54:55:94: 48:7f:f5:68:dd:71:20:4a:84:d1:a2:90:09:66:ec:02:c6:91: a0:19:cb:5e:19:fe:58:f6:bb:6d:41:cc:6e:9d:12:58:4f:41: fd:43:73:0c:26:91:72:57:24:d4:ad:64:9f:4e:d5:1c:34:c6: fa:5c:6a:d8:49:62:86:b8:bb:e6:91:79:9b:4d:4b:63:36:d1: 82:02:a5:88:96:0a:f0:8a:f2:fe:48:8f:8c:de:6c:88:57:18: ff:55:c5:b7:3a:cc:8a:6c:2a:49:dc:4d:80:29:74:bd:bf:52: 92:65:9b:e2:d8:4c:5d:37:df:c8:20:ab:b2:fa:44:61:bb:41: fd:a5:8c:ab:99:b5:b1:8d:10:e4:b5:28:af:50:06:7d:f2:6b: 92:7e:d7:63:58:f6:17:78:bb:c0:bd:bb:85:67:63:dc:3d:12: 78:1d:0a:bc:34:48:8d:f4:4e:97:d7:86:f0:33:b8:f3:39:24: 38:67:39:e4 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjE2MTMxMTAvBgNVBAUTKDA5RkMwNzdGMzNFM0FENjdCRjE0Nzc1NTE2N0EzQUQ0 RUFDQjFFN0MwHhcNMjQwMTI3MDEwMzMzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWI0NTY2NS1hNzQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0dTT2tNs7aqcsYu5DD1UxaCxEH54jjeoL9eKpPM4FC5+JNrSDHlk31+y/TdG HqHuJ0LFCNicS4ejgUO6QZcPTr91erfEbkG9i+OPFF0qay74judLGA1SVGTu7/zJ 89MaD8QG71AYZ8afvUJgkNDKvzGb50bx2wGE4WQXXF1ER2zEhKXqnEyEwtx28/aj Feva+zeyNmXqmbOfcD+LM6QpKNOZvxXAWTpj/IfPli5GYLj2fGMNfzEI6Mkragfh JcwNLXvpbH8sBWAxD6CyxKjAhKyQ9RiA95Qwm/y/UJMYKC0XER8J48zcCIQPRHP/ bL+eBVLft5WAyHuu0uGE8ZqybwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFCunNzUa Nenxk6Pla62Ni9PQU43SMB8GA1UdIwQYMBaAFAn8B38z461nvxR3VRZ6OtTqyx58 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MTYxMy8zMDk5MjY2OEU1 MzkxMUVCOEE1QjkyNzFDNEY5QUUwMi9DZndIZnpQanJXZV9GSGRWRm5vNjFPckxI bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Nmd0hmelBqcldlX0ZIZFZGbm82MU9yTEhudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjE2MTMvMzA5OTI2NjhFNTM5MTFFQjhBNUI5MjcxQzRGOUFFMDIvN0YyQTQyMDhF NTNFMTFFQjlFNDI5QzQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAExnQ4DBAE9HKwDBAA9HLAwDQYJKoZIhvcNAQELBQADggEB AKHNp4rt6GwytndWg7nS1aNWTuIqr3dhnZ8LFaqU1DeTKlGnzBren2IrnOdk+Q7b Z4JF3FqLWU9pkRtJlqJjbBXhqn3H5lRVlEh/9WjdcSBKhNGikAlm7ALGkaAZy14Z /lj2u21BzG6dElhPQf1DcwwmkXJXJNStZJ9O1Rw0xvpcathJYoa4u+aReZtNS2M2 0YICpYiWCvCK8v5Ij4zebIhXGP9Vxbc6zIpsKkncTYApdL2/UpJlm+LYTF0338gg q7L6RGG7Qf2ljKuZtbGNEOS1KK9QBn3ya5J+12NY9hd4u8C9u4VnY9w9EngdCrw0 SI30TpfXhvAzuPM5JDhnOeQ= -----END CERTIFICATE-----Generated at Fri May 17 02:38:39 2024 by rpki-client on console-fra.rpki-client.org