$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/4462F034F0EC11EB9D0B176AC4F9AE02.roa File: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (raw, json) Hash identifier: 47AwHzw//iGDXHwog/th17sS/E96PYYL+7g0P1sERHc= Subject key identifier: 02:CC:8F:0A:0C:36:1A:45:AF:D3:FC:87:78:73:9A:B7:2B:D3:69:FA Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2AA8 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/4462F034F0EC11EB9D0B176AC4F9AE02.roa Signing time: Fri 02 Jun 2023 16:13:00 +0000 ROA not before: Fri 02 Jun 2023 16:13:00 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 133878 IP address blocks: 120.136.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10920 (0x2aa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Jun 2 16:13:00 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a150b-2551 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:44:71:1f:f6:e5:78:8e:0a:24:0e:f7:ed:6b: e7:e5:0d:ef:12:40:1e:4e:a4:a4:26:4f:0e:7b:d7: ed:09:fb:a8:88:0a:57:10:e0:1f:83:4c:bd:3c:68: f3:aa:dc:25:2f:73:d2:37:8e:c4:b2:85:0d:20:8c: e8:fd:f0:26:c2:e9:e9:ca:c3:74:00:1b:f6:79:64: 55:38:7f:5f:6a:a5:0a:ce:79:50:95:93:a9:80:5d: 15:f3:80:4b:91:95:e6:81:bb:4f:bf:8f:11:27:b9: b0:4b:8e:18:61:ac:e2:60:27:19:db:8f:ea:5b:f2: 89:18:61:11:72:31:46:cd:c0:91:f5:11:9c:82:00: b0:2f:a1:fc:f3:49:33:fc:21:ab:d7:93:dc:7f:ed: 11:0b:60:1e:18:c2:69:28:0d:51:f7:e0:60:db:94: fb:c4:86:10:07:b7:d9:d4:f2:83:e3:16:a8:2c:82: f0:f1:52:57:f5:39:ec:ed:5a:95:13:fe:0f:7e:13: 32:8f:6f:45:1e:4a:ef:0f:14:a8:39:72:21:20:c5: da:3c:f6:e2:dc:f3:27:ef:8f:da:59:fc:cf:94:e0: 83:ab:19:34:11:ba:e9:83:92:8d:5a:45:4f:15:9f: 69:37:22:92:2a:ac:3e:cc:c1:cd:88:a1:9b:10:47: fa:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:CC:8F:0A:0C:36:1A:45:AF:D3:FC:87:78:73:9A:B7:2B:D3:69:FA X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/4462F034F0EC11EB9D0B176AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.136.6.0/24 Signature Algorithm: sha256WithRSAEncryption 22:01:b3:c3:16:1f:9b:c1:75:52:a1:33:6e:b9:15:43:de:5a: 77:4b:eb:1a:13:76:c5:09:11:8a:dc:40:2e:49:c9:e5:ea:2a: e4:7b:59:e8:b6:0f:61:cf:06:a3:38:ec:1e:43:0e:47:c9:4d: ea:53:39:3e:b8:f8:0d:08:f5:79:ee:70:80:8f:d0:26:cb:37: 19:6c:3c:dd:d4:ad:66:c7:2a:78:1a:a8:59:ac:ee:db:5e:aa: 45:6a:f7:c8:f6:48:6e:8e:2e:87:d9:24:c6:8e:0d:80:20:9d: 1e:e0:1f:1d:99:44:53:8e:bc:ee:31:62:d7:f4:8f:fd:33:ac: 31:c9:1d:25:cf:a1:a9:0f:03:05:00:60:21:0f:3c:3e:fd:3d: 97:d7:f0:1d:82:bf:04:9d:9a:c3:a9:fa:06:01:c3:44:59:1d: 25:57:21:9a:2e:54:bd:9a:88:cb:a9:ed:e1:5b:4f:8f:eb:55: c6:d0:26:57:34:8b:f2:30:8f:f3:45:29:cd:06:41:1a:ab:f1: 91:51:8a:30:a9:14:00:e9:55:05:ea:5d:d3:8d:36:7e:4e:65: a7:c6:31:65:71:a6:7c:e2:17:37:29:aa:a9:af:b4:eb:e3:1b: 54:40:a3:8f:f0:15:6d:1a:e4:fa:ed:f0:db:18:79:f6:1a:e1: 28:b1:0b:e4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjMwNjAyMTYxMzAwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhMTUwYi0yNTUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzERxH/bleI4KJA737Wvn5Q3vEkAeTqSkJk8Oe9ftCfuoiApXEOAfg0y9PGjz qtwlL3PSN47EsoUNIIzo/fAmwunpysN0ABv2eWRVOH9faqUKznlQlZOpgF0V84BL kZXmgbtPv48RJ7mwS44YYaziYCcZ24/qW/KJGGERcjFGzcCR9RGcggCwL6H880kz /CGr15Pcf+0RC2AeGMJpKA1R9+Bg25T7xIYQB7fZ1PKD4xaoLILw8VJX9Tns7VqV E/4PfhMyj29FHkrvDxSoOXIhIMXaPPbi3PMn74/aWfzPlOCDqxk0Ebrpg5KNWkVP FZ9pNyKSKqw+zMHNiKGbEEf6YwIDAQABo4IClTCCApEwHQYDVR0OBBYEFALMjwoM NhpFr9P8h3hzmrcr02n6MB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkMxMjgvNjY0QTlCQ0FGQTZEMTFFM0I2QUMyMzUwNTkxMUVBMzIvNDQ2MkYwMzRG MEVDMTFFQjlEMEIxNzZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB4iAYwDQYJKoZIhvcNAQELBQADggEBACIBs8MWH5vBdVKh M265FUPeWndL6xoTdsUJEYrcQC5JyeXqKuR7Wei2D2HPBqM47B5DDkfJTepTOT64 +A0I9XnucICP0CbLNxlsPN3UrWbHKngaqFms7tteqkVq98j2SG6OLofZJMaODYAg nR7gHx2ZRFOOvO4xYtf0j/0zrDHJHSXPoakPAwUAYCEPPD79PZfX8B2CvwSdmsOp +gYBw0RZHSVXIZouVL2aiMup7eFbT4/rVcbQJlc0i/Iwj/NFKc0GQRqr8ZFRijCp FADpVQXqXdONNn5OZafGMWVxpnziFzcpqqmvtOvjG1RAo4/wFW0a5Prt8NsYefYa 4SixC+Q= -----END CERTIFICATE-----Generated at Sat May 18 16:19:53 2024 by rpki-client on console-fra.rpki-client.org