$ rpki-client -vvf rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/A3C1A64E020811EF900CC60CC4F9AE02.roa File: A3C1A64E020811EF900CC60CC4F9AE02.roa (raw, json) Hash identifier: p4VGJGNo8OqjO9e3iY6T8itNoXa552xGBOdZnfrySyg= Subject key identifier: 1C:3E:7C:F3:F9:A4:77:8D:AE:DE:8F:93:BC:43:2E:D2:C5:72:96:17 Certificate issuer: /CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Certificate serial: 01DA Authority key identifier: 74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/A3C1A64E020811EF900CC60CC4F9AE02.roa Signing time: Wed 24 Apr 2024 07:02:40 +0000 ROA not before: Wed 24 Apr 2024 07:02:40 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 198949 IP address blocks: 147.136.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 474 (0x1da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9163998/serialNumber=7425AAE16DDB464A3E2B479C7A40C99023836BA0 Validity Not Before: Apr 24 07:02:40 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6628ae90-3354 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f5:1b:3b:73:84:77:40:ad:9e:e9:e6:b3:57: f3:62:7f:e8:75:23:7c:ef:7e:44:f8:88:e9:a8:26: 31:1d:d5:4d:12:7d:8e:3c:a3:9d:97:50:71:0d:21: c8:cb:4b:7c:f1:77:b0:1b:09:7c:04:6c:63:8a:b1: fa:49:3c:f5:c5:86:db:5e:fb:64:0f:d6:25:bb:b7: 1b:67:cd:bc:23:bc:66:cd:61:b2:0d:59:28:cb:d9: 99:b4:9d:9e:e4:f9:5d:7a:d1:f6:c8:8b:55:56:86: fc:fb:d9:bc:9f:e7:c0:70:3a:0c:39:d7:54:8d:9a: 68:1d:4f:0c:8a:cc:c2:87:8f:bd:11:60:0b:bd:53: e4:2c:10:a8:1d:6b:24:50:b6:6b:7d:36:59:c2:3e: cc:11:58:a5:0a:85:fe:fb:c3:c3:af:82:48:6a:3f: d3:8f:39:0f:ec:f4:af:b8:1b:a1:4a:e2:83:87:1a: b9:0d:7f:db:ee:92:4e:be:94:c7:92:8c:75:b0:7b: 45:20:46:e4:9f:e0:b8:7d:06:0b:73:df:46:12:e9: a9:9b:89:ce:ae:38:2c:05:91:ef:ad:f1:48:1e:df: 82:a7:e7:68:39:3e:1c:d2:af:27:26:46:fc:7a:84: 4b:2f:d3:b3:c9:f4:57:d6:c7:fa:ca:c1:25:33:71: 7b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:3E:7C:F3:F9:A4:77:8D:AE:DE:8F:93:BC:43:2E:D2:C5:72:96:17 X509v3 Authority Key Identifier: keyid:74:25:AA:E1:6D:DB:46:4A:3E:2B:47:9C:7A:40:C9:90:23:83:6B:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/dCWq4W3bRko-K0ecekDJkCODa6A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dCWq4W3bRko-K0ecekDJkCODa6A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9163998/30CC084A08DC11EDBEDE612BC4F9AE02/A3C1A64E020811EF900CC60CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.136.133.0/24 Signature Algorithm: sha256WithRSAEncryption 31:01:88:ad:96:ed:aa:31:af:85:bc:c1:79:a5:bf:b2:ed:17: 6c:27:05:7c:5f:9c:c4:20:8a:d9:a8:42:52:34:ec:4b:66:6d: 10:64:65:db:2b:d6:b1:eb:3a:b8:79:47:8c:66:1e:5d:49:0f: ec:e5:c1:f4:55:2a:b2:b1:85:aa:d2:cd:be:fb:3c:2f:4f:02: 1f:f3:e9:b6:ad:80:fe:8a:51:37:7d:ca:f7:88:75:6a:59:3d: ef:2d:b3:1c:65:8b:cf:52:7b:86:95:20:38:45:73:06:0a:45: 55:1b:56:cc:6a:0e:2f:72:d0:55:74:66:d8:41:f5:bc:3b:ac: 38:06:bb:75:75:35:ae:af:e8:14:0f:a3:ab:f2:f9:04:ca:f8: 4e:16:48:65:73:e0:18:40:0c:bc:da:32:e7:88:f7:74:a9:2a: 80:74:71:af:c8:a7:8d:19:7c:a3:27:05:f9:78:b3:68:bd:f3: 03:89:be:7f:86:49:90:f4:09:84:20:fe:46:03:86:8a:24:1d: ba:10:69:50:7f:35:36:76:6f:df:80:4e:65:a1:ae:51:20:27: db:f1:f5:70:63:d6:c9:21:c4:1e:9e:f7:bf:1e:5a:6f:9c:a3: d2:2e:68:84:a4:1d:a4:ac:54:c6:d5:c5:b5:e9:03:38:96:20: 23:02:63:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAdowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjM5OTgxMTAvBgNVBAUTKDc0MjVBQUUxNkREQjQ2NEEzRTJCNDc5QzdBNDBDOTkw MjM4MzZCQTAwHhcNMjQwNDI0MDcwMjQwWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI4YWU5MC0zMzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/UbO3OEd0Ctnunms1fzYn/odSN8735E+IjpqCYxHdVNEn2OPKOdl1BxDSHI y0t88XewGwl8BGxjirH6STz1xYbbXvtkD9Ylu7cbZ828I7xmzWGyDVkoy9mZtJ2e 5PldetH2yItVVob8+9m8n+fAcDoMOddUjZpoHU8MiszCh4+9EWALvVPkLBCoHWsk ULZrfTZZwj7MEVilCoX++8PDr4JIaj/TjzkP7PSvuBuhSuKDhxq5DX/b7pJOvpTH kox1sHtFIEbkn+C4fQYLc99GEumpm4nOrjgsBZHvrfFIHt+Cp+doOT4c0q8nJkb8 eoRLL9OzyfRX1sf6ysElM3F7iwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBw+fPP5 pHeNrt6Pk7xDLtLFcpYXMB8GA1UdIwQYMBaAFHQlquFt20ZKPitHnHpAyZAjg2ug MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2Mzk5OC8zMENDMDg0QTA4 REMxMUVEQkVERTYxMkJDNEY5QUUwMi9kQ1dxNFczYlJrby1LMGVjZWtESmtDT0Rh NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL2RDV3E0VzNiUmtvLUswZWNla0RKa0NPRGE2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjM5OTgvMzBDQzA4NEEwOERDMTFFREJFREU2MTJCQzRGOUFFMDIvQTNDMUE2NEUw MjA4MTFFRjkwMENDNjBDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACTiIUwDQYJKoZIhvcNAQELBQADggEBADEBiK2W7aoxr4W8 wXmlv7LtF2wnBXxfnMQgitmoQlI07EtmbRBkZdsr1rHrOrh5R4xmHl1JD+zlwfRV KrKxharSzb77PC9PAh/z6batgP6KUTd9yveIdWpZPe8tsxxli89Se4aVIDhFcwYK RVUbVsxqDi9y0FV0ZthB9bw7rDgGu3V1Na6v6BQPo6vy+QTK+E4WSGVz4BhADLza MueI93SpKoB0ca/Ip40ZfKMnBfl4s2i98wOJvn+GSZD0CYQg/kYDhookHboQaVB/ NTZ2b9+ATmWhrlEgJ9vx9XBj1skhxB6e978eWm+co9IuaISkHaSsVMbVxbXpAziW ICMCY24= -----END CERTIFICATE-----Generated at Fri May 17 06:46:23 2024 by rpki-client on console-ams.rpki-client.org