$ rpki-client -vvf rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/925D8646772A11EBAE8A8181C4F9AE02.roa File: 925D8646772A11EBAE8A8181C4F9AE02.roa (raw, json) Hash identifier: ou31H2fcyxzh7Lj/rpjswzuPaCyO16JeeWEDMSwueMU= Subject key identifier: 27:20:DE:B6:8F:25:11:6D:E7:47:DF:95:55:81:09:4D:43:C1:C8:F1 Certificate issuer: /CN=A9167B50/serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A Certificate serial: 33D0 Authority key identifier: 99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/925D8646772A11EBAE8A8181C4F9AE02.roa Signing time: Sat 28 Oct 2023 15:00:44 +0000 ROA not before: Sat 28 Oct 2023 15:00:44 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 198949 IP address blocks: 112.121.110.0/24 maxlen: 24 112.121.111.0/24 maxlen: 24 112.121.118.0/24 maxlen: 24 112.121.119.0/24 maxlen: 24 112.121.124.0/24 maxlen: 24 112.121.125.0/24 maxlen: 24 112.121.126.0/24 maxlen: 24 112.121.127.0/24 maxlen: 24 202.80.109.0/24 maxlen: 24 202.80.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.crl rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 14:46:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13264 (0x33d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9167B50/serialNumber=991B3F17084F76F12F9F0509D597F0FFECA04B4A Validity Not Before: Oct 28 15:00:44 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=653d221c-3a32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:f3:b5:fa:f3:56:0c:74:61:1d:80:fa:8e:45: 21:4a:dc:78:57:af:39:5e:22:4b:e8:76:d4:95:42: 11:e9:5a:fe:24:79:ff:07:ce:2a:59:93:27:15:bc: b0:3f:11:dc:87:fb:18:6c:d8:5a:9e:cf:69:d6:56: a3:fe:6a:e4:96:d4:ed:ec:98:16:61:11:af:86:24: 20:8e:d9:f0:cd:00:16:11:f2:f9:a0:18:47:22:2c: 60:4c:94:43:16:95:f3:8f:e0:8e:74:06:bf:37:6c: 64:8c:2c:93:34:7b:ff:80:af:35:42:c0:ee:40:53: 65:76:96:23:69:16:f7:7f:9b:bd:b6:65:92:2c:8e: e8:f0:18:e2:16:85:29:46:9a:aa:ab:f1:54:a1:27: 42:64:92:0f:56:ca:3e:45:8d:86:55:d4:67:3d:30: 5d:aa:6a:86:2a:02:ae:f8:25:5c:10:0d:94:be:84: fb:d3:27:85:80:1e:9a:b8:e8:f3:82:90:6a:bf:ec: b0:7d:bd:a0:ea:c4:9f:47:c4:d2:72:d0:16:c3:be: ea:8c:98:65:c4:11:5a:f7:61:10:06:ae:c5:b5:58: 9c:15:c7:57:f5:77:96:c4:7d:1b:15:8b:dc:b2:a1: 1d:82:dd:95:1e:46:78:25:a7:70:eb:91:a4:ff:dc: 83:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:20:DE:B6:8F:25:11:6D:E7:47:DF:95:55:81:09:4D:43:C1:C8:F1 X509v3 Authority Key Identifier: keyid:99:1B:3F:17:08:4F:76:F1:2F:9F:05:09:D5:97:F0:FF:EC:A0:4B:4A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mRs_FwhPdvEvnwUJ1Zfw_-ygS0o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9167B50/9D1305C81D8F11E2A02BCDEE08B02CD2/925D8646772A11EBAE8A8181C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.121.110.0/23 112.121.118.0/23 112.121.124.0/22 202.80.109.0-202.80.110.255 Signature Algorithm: sha256WithRSAEncryption 6c:6b:94:0e:ec:98:be:40:99:91:f4:bb:56:cf:c5:b8:eb:c1: 0f:71:6f:df:d2:71:65:9e:6a:6c:4d:93:6b:ec:eb:93:7f:62: f6:e1:2d:aa:fd:9a:df:63:85:b1:1b:6a:6a:1f:f0:83:f3:da: c3:54:2b:f7:c5:74:62:ba:e4:d6:4a:43:58:aa:22:09:ae:82: 8e:17:95:59:4f:ef:79:16:d8:ed:0d:73:58:f8:77:6c:de:e6: ac:2f:ee:56:6f:b3:40:f1:8c:14:e5:8c:1d:28:a0:1c:94:3c: 27:6b:1c:a9:e0:4b:c0:0b:d2:a4:3a:d2:17:66:e2:53:07:19: 06:f0:85:50:63:73:61:ca:90:6f:d5:9c:c8:7a:f8:b3:31:b9: f3:c8:8f:1c:65:9d:c8:d3:f0:37:d9:af:78:ee:3c:1a:a1:f1: 42:9d:0c:b4:4e:6b:da:01:fe:fc:e3:d0:9b:94:c1:fa:19:1e: e9:c2:93:6a:2a:b3:fb:24:0a:32:03:d3:0f:65:12:e5:6b:6a: fb:2a:58:ff:09:02:72:a3:a1:b0:e1:bf:67:e6:09:ac:07:b8: 9d:85:3c:67:34:c6:8e:7c:d7:85:6c:95:9a:3f:eb:4c:00:6e: 1d:1a:76:f3:17:93:18:20:45:d2:e1:0b:cd:57:f0:0f:86:2f: 1c:7f:a4:1c -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICM9AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjdCNTAxMTAvBgNVBAUTKDk5MUIzRjE3MDg0Rjc2RjEyRjlGMDUwOUQ1OTdGMEZG RUNBMDRCNEEwHhcNMjMxMDI4MTUwMDQ0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNkMjIxYy0zYTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvfO1+vNWDHRhHYD6jkUhStx4V685XiJL6HbUlUIR6Vr+JHn/B84qWZMnFbyw PxHch/sYbNhans9p1laj/mrkltTt7JgWYRGvhiQgjtnwzQAWEfL5oBhHIixgTJRD FpXzj+COdAa/N2xkjCyTNHv/gK81QsDuQFNldpYjaRb3f5u9tmWSLI7o8BjiFoUp Rpqqq/FUoSdCZJIPVso+RY2GVdRnPTBdqmqGKgKu+CVcEA2UvoT70yeFgB6auOjz gpBqv+ywfb2g6sSfR8TSctAWw77qjJhlxBFa92EQBq7FtVicFcdX9XeWxH0bFYvc sqEdgt2VHkZ4Jadw65Gk/9yDIQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFCcg3raP JRFt50fflVWBCU1DwcjxMB8GA1UdIwQYMBaAFJkbPxcIT3bxL58FCdWX8P/soEtK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2N0I1MC85RDEzMDVDODFE OEYxMUUyQTAyQkNERUUwOEIwMkNEMi9tUnNfRndoUGR2RXZud1VKMVpmd18teWdT MG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Sc19Gd2hQZHZFdm53VUoxWmZ3Xy15Z1Mwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjdCNTAvOUQxMzA1QzgxRDhGMTFFMkEwMkJDREVFMDhCMDJDRDIvOTI1RDg2NDY3 NzJBMTFFQkFFOEE4MTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAFweW4DBAFweXYDBAJweXwwDAMEAMpQbQMEAMpQbjANBgkq hkiG9w0BAQsFAAOCAQEAbGuUDuyYvkCZkfS7Vs/FuOvBD3Fv39JxZZ5qbE2Ta+zr k39i9uEtqv2a32OFsRtqah/wg/Paw1Qr98V0Yrrk1kpDWKoiCa6CjheVWU/veRbY 7Q1zWPh3bN7mrC/uVm+zQPGMFOWMHSigHJQ8J2scqeBLwAvSpDrSF2biUwcZBvCF UGNzYcqQb9WcyHr4szG588iPHGWdyNPwN9mveO48GqHxQp0MtE5r2gH+/OPQm5TB +hke6cKTaiqz+yQKMgPTD2US5Wtq+ypY/wkCcqOhsOG/Z+YJrAe4nYU8ZzTGjnzX hWyVmj/rTABuHRp28xeTGCBF0uELzVfwD4YvHH+kHA== -----END CERTIFICATE-----Generated at Thu Apr 18 16:10:53 2024 by rpki-client on console-fra.rpki-client.org