$ rpki-client -vvf rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/887BE0D0405D11ECA642D813C4F9AE02.roa File: 887BE0D0405D11ECA642D813C4F9AE02.roa (raw, json) Hash identifier: F1QNCH1RoC6ZkUfmQLfZBiY5CIVlSxxGTrB6pens2Bw= Subject key identifier: E0:B8:C1:51:33:31:AE:B1:7E:B7:4E:71:A6:DB:1B:45:FC:2F:11:FE Certificate issuer: /CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Certificate serial: 03B0 Authority key identifier: AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 Authority info access: rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/887BE0D0405D11ECA642D813C4F9AE02.roa Signing time: Sat 23 Mar 2024 02:14:46 +0000 ROA not before: Sat 23 Mar 2024 02:14:46 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 55433 IP address blocks: 196.1.1.0/24 maxlen: 24 196.1.109.0/24 maxlen: 24 196.1.113.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.mft rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.crl rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/NI-bm5KnLM_Tbzxw81Z1czzI6iI.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/NI-bm5KnLM_Tbzxw81Z1czzI6iI.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:28:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 944 (0x3b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9172CE3/serialNumber=ABC6FBA4B784283879190DC717E34B4CD882DA08 Validity Not Before: Mar 23 02:14:46 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65fe3b16-8e48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:3e:3b:48:36:0a:1b:4f:71:7d:96:2f:32:c3: 0e:14:1e:60:a6:44:98:34:b1:f9:24:3d:00:16:2f: 2d:c3:ec:e9:e4:dc:6d:75:2d:36:66:40:e1:7b:85: d0:30:bf:e5:b5:e5:0f:da:70:30:a1:e2:0c:b7:89: 22:c0:75:80:ac:6e:7b:9b:bb:a4:02:99:b1:27:55: 72:b0:6b:13:e8:0b:a3:39:1f:53:0b:fc:00:43:ed: c0:dd:78:f0:7e:c7:1e:b4:98:a1:fb:b3:dc:c9:48: b1:53:07:f8:64:f4:b6:af:22:1e:bf:3f:c9:96:ad: e4:45:cc:1e:07:d8:1b:b6:0f:ac:7c:fc:be:08:2d: c4:ab:97:8e:cb:a1:08:70:d2:b4:65:d3:6d:50:7f: c9:3b:6f:5a:75:63:1f:7d:3b:8d:f0:1a:c5:42:36: 7c:72:ad:7b:63:47:90:e4:d2:95:79:42:7a:ed:97: 08:f0:aa:70:49:62:52:0b:0c:a4:53:48:83:1a:5b: 2b:7b:55:d7:72:da:89:fa:07:a5:cc:c6:e9:d3:8e: c1:57:c8:0b:0f:99:ed:ad:e7:fe:d2:0c:c7:f7:18: 91:80:6d:f3:06:b1:f3:55:d7:33:63:3d:9a:4c:2b: 5a:db:70:44:63:ec:28:78:d0:61:51:b9:64:15:de: ca:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B8:C1:51:33:31:AE:B1:7E:B7:4E:71:A6:DB:1B:45:FC:2F:11:FE X509v3 Authority Key Identifier: keyid:AB:C6:FB:A4:B7:84:28:38:79:19:0D:C7:17:E3:4B:4C:D8:82:DA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B41FE6101D6611E2A62F877C72FD1FF2/q8b7pLeEKDh5GQ3HF-NLTNiC2gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9172CE3/5D7899F4405911ECA0AFAA4DC4F9AE02/887BE0D0405D11ECA642D813C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 196.1.1.0/24 196.1.109.0/24 196.1.113.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:36:d1:18:a2:21:58:90:d4:16:b8:ae:15:a0:7e:e5:f1:f5: d5:75:57:2e:5c:f8:41:16:d6:0e:14:44:a7:15:cb:4e:29:0c: 88:9a:ad:ba:47:e2:0c:f2:18:b0:82:a2:a9:d2:cb:c7:ef:c8: 75:eb:88:fc:ea:7d:0c:8e:3f:e1:96:6b:cf:d3:a7:ba:eb:6d: 9b:9c:ce:4c:4e:34:c8:1a:75:33:e7:6d:40:01:6e:81:e5:70: c1:0d:22:ac:f6:9a:6c:df:1c:61:9a:ce:da:30:f4:b7:ac:38: b8:f9:cb:75:e6:03:bf:ba:a0:0f:bb:f9:6c:df:af:81:cd:1f: 09:98:32:a3:c1:51:b7:b5:5f:a3:dd:21:55:3e:8f:27:3d:ae: ad:f6:93:83:24:6a:4e:4b:0b:e1:82:ea:9c:a9:51:14:df:bc: 56:70:fb:27:6e:0d:a6:4e:c1:92:fe:9e:69:27:69:08:ab:ab: 37:6d:d9:01:08:e6:a3:8c:cb:34:ce:77:25:c7:36:eb:03:50: 54:97:b8:9c:f9:b7:c1:ac:ec:ae:9f:2a:8a:a3:de:0d:65:d7: 31:8c:4b:39:8f:78:6c:1e:d7:42:6c:7a:5d:89:45:c9:11:96: 97:16:70:e5:b8:65:80:03:5f:9c:49:3c:0b:b6:e2:81:b7:37: f3:97:32:c1 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzJDRTMxMTAvBgNVBAUTKEFCQzZGQkE0Qjc4NDI4Mzg3OTE5MERDNzE3RTM0QjRD RDg4MkRBMDgwHhcNMjQwMzIzMDIxNDQ2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWZlM2IxNi04ZTQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmz47SDYKG09xfZYvMsMOFB5gpkSYNLH5JD0AFi8tw+zp5NxtdS02ZkDhe4XQ ML/lteUP2nAwoeIMt4kiwHWArG57m7ukApmxJ1VysGsT6AujOR9TC/wAQ+3A3Xjw fscetJih+7PcyUixUwf4ZPS2ryIevz/Jlq3kRcweB9gbtg+sfPy+CC3Eq5eOy6EI cNK0ZdNtUH/JO29adWMffTuN8BrFQjZ8cq17Y0eQ5NKVeUJ67ZcI8KpwSWJSCwyk U0iDGlsre1XXctqJ+gelzMbp047BV8gLD5ntref+0gzH9xiRgG3zBrHzVdczYz2a TCta23BEY+woeNBhUblkFd7KUQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFOC4wVEz Ma6xfrdOcabbG0X8LxH+MB8GA1UdIwQYMBaAFKvG+6S3hCg4eRkNxxfjS0zYgtoI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MkNFMy81RDc4OTlGNDQw NTkxMUVDQTBBRkFBNERDNEY5QUUwMi9xOGI3cExlRUtEaDVHUTNIRi1OTFROaUMy Z2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I0MUZFNjEwMUQ2NjExRTJBNjJGODc3Qzcy RkQxRkYyL3E4YjdwTGVFS0RoNUdRM0hGLU5MVE5pQzJnZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzJDRTMvNUQ3ODk5RjQ0MDU5MTFFQ0EwQUZBQTREQzRGOUFFMDIvODg3QkUwRDA0 MDVEMTFFQ0E2NDJEODEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADEAQEDBADEAW0DBADEAXEwDQYJKoZIhvcNAQELBQADggEB AA820RiiIViQ1Ba4rhWgfuXx9dV1Vy5c+EEW1g4URKcVy04pDIiarbpH4gzyGLCC oqnSy8fvyHXriPzqfQyOP+GWa8/Tp7rrbZuczkxONMgadTPnbUABboHlcMENIqz2 mmzfHGGaztow9LesOLj5y3XmA7+6oA+7+Wzfr4HNHwmYMqPBUbe1X6PdIVU+jyc9 rq32k4Mkak5LC+GC6pypURTfvFZw+yduDaZOwZL+nmknaQirqzdt2QEI5qOMyzTO dyXHNusDUFSXuJz5t8Gs7K6fKoqj3g1l1zGMSzmPeGwe10Jsel2JRckRlpcWcOW4 ZYADX5xJPAu24oG3N/OXMsE= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:19 2024 by rpki-client on console-ams.rpki-client.org