$ rpki-client -vvf rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/E9E3F1A823C511E9920FD80FC4F9AE02.roa File: E9E3F1A823C511E9920FD80FC4F9AE02.roa (raw, json) Hash identifier: 82ds4gDxUhSuEM0F+mz4GI4QNnQGEZ9sfC/aw/oaNLg= Subject key identifier: 48:7D:C3:66:8F:6B:8F:52:B3:DD:1C:89:7E:1D:E6:F3:77:F7:36:D4 Certificate issuer: /CN=A9166261/serialNumber=207C8CA15BF31B06BDC6EC43FF7579D4BFBA4CF6 Certificate serial: 129C Authority key identifier: 20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/E9E3F1A823C511E9920FD80FC4F9AE02.roa Signing time: Fri 26 May 2023 16:22:32 +0000 ROA not before: Fri 26 May 2023 16:22:32 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 59325 IP address blocks: 192.82.52.0/22 maxlen: 22 192.82.52.0/24 maxlen: 24 192.82.53.0/24 maxlen: 24 192.82.54.0/24 maxlen: 24 192.82.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.crl rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 15:43:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4764 (0x129c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9166261/serialNumber=207C8CA15BF31B06BDC6EC43FF7579D4BFBA4CF6 Validity Not Before: May 26 16:22:32 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6470dcc8-e4d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1d:86:32:53:d3:3c:6b:11:14:cd:3d:1a:74: ca:e3:19:44:d3:8b:85:3f:81:5e:e1:7f:06:08:cb: 87:6c:16:30:af:ec:62:a2:24:85:40:b0:ce:48:fe: ab:35:3c:16:8c:93:65:19:51:f5:f5:cd:44:b8:21: cf:ec:31:e6:db:f0:aa:c1:f9:f2:fb:c6:a2:d7:b3: b9:69:67:eb:62:d8:2c:45:8f:d5:b2:ce:38:a6:05: aa:af:46:37:86:7d:f9:1d:ae:15:d9:79:bf:89:5b: 17:33:f8:38:2b:1c:b3:fc:b8:69:8f:2a:2e:39:a2: ee:e2:e9:91:9e:2d:7c:38:ba:33:a9:2e:35:0c:cc: 41:52:52:84:0f:58:04:20:12:8e:03:2d:8b:f4:57: 1d:b2:77:ce:cf:85:f6:40:cf:99:88:5b:9a:00:df: a6:84:46:ea:04:43:69:60:d0:49:dd:f2:f3:e7:16: a4:dd:06:75:00:99:56:35:ec:94:52:b6:cf:08:fd: ed:5a:69:1d:2c:ef:e8:85:19:eb:43:48:c3:a9:a7: c4:46:70:ed:3a:48:dd:10:1d:be:76:da:ec:6b:92: be:de:94:0e:70:d8:0c:35:4b:74:25:3b:69:a0:99: 36:01:78:d6:1a:93:3f:44:ba:55:9e:af:31:b3:26: ba:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7D:C3:66:8F:6B:8F:52:B3:DD:1C:89:7E:1D:E6:F3:77:F7:36:D4 X509v3 Authority Key Identifier: keyid:20:7C:8C:A1:5B:F3:1B:06:BD:C6:EC:43:FF:75:79:D4:BF:BA:4C:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/IHyMoVvzGwa9xuxD_3V51L-6TPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IHyMoVvzGwa9xuxD_3V51L-6TPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9166261/EBC273E47DDC11E8846D394DC4F9AE02/E9E3F1A823C511E9920FD80FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.82.52.0/22 Signature Algorithm: sha256WithRSAEncryption 48:d2:58:e2:01:71:af:1b:11:ae:3c:3b:04:62:aa:b5:1b:1d: 49:68:fd:6f:e0:9f:68:b8:11:8d:a3:df:11:ff:2e:e9:6e:96: c4:f0:72:4d:c7:e4:a7:75:99:02:d7:46:40:0d:1a:a8:ac:a6: 05:f3:e8:bc:24:ac:9c:4c:2c:70:18:91:ef:43:e8:af:1c:4d: 6e:79:8d:d9:04:8e:5d:af:48:cb:14:55:c5:f9:8c:7d:2f:93: a7:b9:be:05:2a:ef:35:1e:4a:72:65:3d:aa:a9:18:53:7d:7f: ce:5a:65:53:40:f0:f1:e9:75:a8:1c:c7:47:08:5f:c9:5d:14: 99:d1:37:95:cc:5b:e4:63:8e:9a:90:e1:72:89:fe:67:5f:58: 1e:e1:b7:b1:ef:fe:24:ae:96:77:39:de:78:65:36:27:be:78: 40:28:7c:e0:e0:4c:86:d2:6f:4f:48:7d:c9:89:e0:5f:9e:eb: 90:42:84:1f:66:d8:07:c8:03:75:20:f6:82:96:fe:91:af:a2: e4:c8:03:3f:75:65:ae:61:75:50:e2:28:e9:6f:d4:31:81:a9: 75:aa:f4:d3:04:67:d3:e5:0d:99:11:46:f9:fe:9a:f6:46:c9: 1e:ca:06:83:71:8b:4a:dd:96:d2:d1:30:b1:11:27:7c:fd:95: 0a:58:d8:71 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEpwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjYyNjExMTAvBgNVBAUTKDIwN0M4Q0ExNUJGMzFCMDZCREM2RUM0M0ZGNzU3OUQ0 QkZCQTRDRjYwHhcNMjMwNTI2MTYyMjMyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcwZGNjOC1lNGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoh2GMlPTPGsRFM09GnTK4xlE04uFP4Fe4X8GCMuHbBYwr+xioiSFQLDOSP6r NTwWjJNlGVH19c1EuCHP7DHm2/Cqwfny+8ai17O5aWfrYtgsRY/Vss44pgWqr0Y3 hn35Ha4V2Xm/iVsXM/g4Kxyz/LhpjyouOaLu4umRni18OLozqS41DMxBUlKED1gE IBKOAy2L9FcdsnfOz4X2QM+ZiFuaAN+mhEbqBENpYNBJ3fLz5xak3QZ1AJlWNeyU UrbPCP3tWmkdLO/ohRnrQ0jDqafERnDtOkjdEB2+dtrsa5K+3pQOcNgMNUt0JTtp oJk2AXjWGpM/RLpVnq8xsya6SwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEh9w2aP a49Ss90ciX4d5vN39zbUMB8GA1UdIwQYMBaAFCB8jKFb8xsGvcbsQ/91edS/ukz2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NjI2MS9FQkMyNzNFNDdE REMxMUU4ODQ2RDM5NERDNEY5QUUwMi9JSHlNb1Z2ekd3YTl4dXhEXzNWNTFMLTZU UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lIeU1vVnZ6R3dhOXh1eERfM1Y1MUwtNlRQWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjYyNjEvRUJDMjczRTQ3RERDMTFFODg0NkQzOTREQzRGOUFFMDIvRTlFM0YxQTgy M0M1MTFFOTkyMEZEODBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALAUjQwDQYJKoZIhvcNAQELBQADggEBAEjSWOIBca8bEa48 OwRiqrUbHUlo/W/gn2i4EY2j3xH/LululsTwck3H5Kd1mQLXRkANGqispgXz6Lwk rJxMLHAYke9D6K8cTW55jdkEjl2vSMsUVcX5jH0vk6e5vgUq7zUeSnJlPaqpGFN9 f85aZVNA8PHpdagcx0cIX8ldFJnRN5XMW+RjjpqQ4XKJ/mdfWB7ht7Hv/iSulnc5 3nhlNie+eEAofODgTIbSb09IfcmJ4F+e65BChB9m2AfIA3Ug9oKW/pGvouTIAz91 Za5hdVDiKOlv1DGBqXWq9NMEZ9PlDZkRRvn+mvZGyR7KBoNxi0rdltLRMLERJ3z9 lQpY2HE= -----END CERTIFICATE-----Generated at Wed Apr 24 16:35:46 2024 by rpki-client on console-fra.rpki-client.org