$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/C4245600E55A11ED98D38780C4F9AE02.roa File: C4245600E55A11ED98D38780C4F9AE02.roa (raw, json) Hash identifier: lwysUIl261imU5lNPoWm0rxWTlZaqYmEjs3Z/0bNzL0= Subject key identifier: D1:9A:F5:AC:09:C9:38:4C:D5:4F:86:37:80:00:89:4F:50:09:67:E0 Certificate issuer: /CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Certificate serial: 050A Authority key identifier: 5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/C4245600E55A11ED98D38780C4F9AE02.roa Signing time: Tue 04 Jul 2023 23:30:14 +0000 ROA not before: Tue 04 Jul 2023 23:30:14 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 17766 IP address blocks: 192.150.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 23:13:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1290 (0x50a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CE6/serialNumber=5FAD1B39BE4555262206D19F5A669BC7B69F72C8 Validity Not Before: Jul 4 23:30:14 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a4ab86-0106 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e5:69:f7:a0:01:6a:be:1b:84:7e:77:d8:c3: 89:d7:10:63:ac:9c:ab:4f:42:16:cb:63:cc:07:c6: 22:b3:36:5a:47:6e:da:eb:8c:02:14:0d:a8:d0:8a: f0:90:41:f9:1e:25:44:36:31:6f:45:fa:98:1f:05: 84:f2:49:8d:61:fb:f7:4c:63:21:61:d2:bc:c8:d8: 03:ef:df:41:21:3e:af:f8:7a:f4:69:9e:e4:e2:aa: 57:23:3e:3e:14:06:20:2d:d8:4a:c7:3f:ee:04:93: 39:08:85:b8:19:a7:da:1c:c9:f2:93:ba:20:f6:2a: cf:ed:aa:8f:2f:43:aa:f2:f3:d0:f6:1d:14:5e:cb: e1:7a:cb:f3:b3:d7:3a:69:2b:bc:6d:d6:f7:c6:c7: 9a:b7:eb:0c:58:3d:7f:97:7b:20:55:ce:d6:61:06: dc:50:b0:8e:ee:04:b5:51:84:7b:77:a7:47:27:f4: 47:70:b3:06:17:fc:9b:9f:d1:e7:d5:4a:42:9c:4a: 26:de:b0:65:b8:ab:b5:91:0b:1c:f8:49:2a:05:96: 3d:33:79:f1:9a:43:80:c7:03:20:30:8c:9a:08:26: 10:79:48:07:25:ba:df:5e:ec:b7:89:55:dc:37:ba: 7c:d7:47:db:bb:44:d7:2e:a8:30:35:a3:b3:8a:e7: de:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:9A:F5:AC:09:C9:38:4C:D5:4F:86:37:80:00:89:4F:50:09:67:E0 X509v3 Authority Key Identifier: keyid:5F:AD:1B:39:BE:45:55:26:22:06:D1:9F:5A:66:9B:C7:B6:9F:72:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/X60bOb5FVSYiBtGfWmabx7afcsg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/X60bOb5FVSYiBtGfWmabx7afcsg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CE6/03A017847BD011EB85A66980C4F9AE02/C4245600E55A11ED98D38780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.150.129.0/24 Signature Algorithm: sha256WithRSAEncryption 39:71:f9:e3:bc:56:9c:56:1c:46:4f:fe:3d:c4:45:b1:f7:95: 73:46:64:d3:d9:04:d7:36:c3:45:8f:4f:21:95:72:67:a5:b0: c3:5d:3c:96:4d:65:ed:a2:0d:b8:10:a9:17:73:5a:c4:56:b3: 85:04:ac:28:21:e9:84:68:31:e3:96:ba:84:f6:55:c0:db:4f: 51:5a:47:54:bc:70:71:44:30:bd:db:44:d8:6a:c1:db:f4:33: 86:67:6c:87:76:48:7e:cf:62:39:ca:4c:85:ed:b2:f4:02:c3: f2:a6:8e:70:b3:ff:31:fa:d1:a5:03:26:c7:12:76:49:cc:ed: 1d:9d:48:00:84:8f:58:f2:34:25:cf:e9:e7:ae:18:64:e3:eb: af:da:92:95:3e:fe:7e:89:e6:94:7b:c9:35:58:ac:3d:a8:37: 52:9e:78:61:64:c1:6d:9c:a9:c4:3f:51:90:03:73:f8:89:c6: 65:12:9e:55:72:86:fa:27:a1:30:98:69:22:d7:bb:5e:77:32: d1:30:3f:75:ef:93:2d:1b:1b:e9:ab:a0:ce:43:58:3f:2c:9e: 86:5e:12:d4:ac:9a:ca:62:f3:b0:9b:f7:ba:c6:31:50:eb:2d: b5:c5:e1:9f:0d:f6:99:f2:a2:09:cd:26:cb:ce:65:ba:da:7f: 5d:99:99:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzNDRTYxMTAvBgNVBAUTKDVGQUQxQjM5QkU0NTU1MjYyMjA2RDE5RjVBNjY5QkM3 QjY5RjcyQzgwHhcNMjMwNzA0MjMzMDE0WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE0YWI4Ni0wMTA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr+Vp96ABar4bhH532MOJ1xBjrJyrT0IWy2PMB8YiszZaR27a64wCFA2o0Irw kEH5HiVENjFvRfqYHwWE8kmNYfv3TGMhYdK8yNgD799BIT6v+Hr0aZ7k4qpXIz4+ FAYgLdhKxz/uBJM5CIW4GafaHMnyk7og9irP7aqPL0Oq8vPQ9h0UXsvhesvzs9c6 aSu8bdb3xseat+sMWD1/l3sgVc7WYQbcULCO7gS1UYR7d6dHJ/RHcLMGF/ybn9Hn 1UpCnEom3rBluKu1kQsc+EkqBZY9M3nxmkOAxwMgMIyaCCYQeUgHJbrfXuy3iVXc N7p810fbu0TXLqgwNaOziufe8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNGa9awJ yThM1U+GN4AAiU9QCWfgMB8GA1UdIwQYMBaAFF+tGzm+RVUmIgbRn1pmm8e2n3LI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3M0NFNi8wM0EwMTc4NDdC RDAxMUVCODVBNjY5ODBDNEY5QUUwMi9YNjBiT2I1RlZTWWlCdEdmV21hYng3YWZj c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1g2MGJPYjVGVlNZaUJ0R2ZXbWFieDdhZmNzZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzNDRTYvMDNBMDE3ODQ3QkQwMTFFQjg1QTY2OTgwQzRGOUFFMDIvQzQyNDU2MDBF NTVBMTFFRDk4RDM4NzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADAloEwDQYJKoZIhvcNAQELBQADggEBADlx+eO8VpxWHEZP /j3ERbH3lXNGZNPZBNc2w0WPTyGVcmelsMNdPJZNZe2iDbgQqRdzWsRWs4UErCgh 6YRoMeOWuoT2VcDbT1FaR1S8cHFEML3bRNhqwdv0M4ZnbId2SH7PYjnKTIXtsvQC w/KmjnCz/zH60aUDJscSdknM7R2dSACEj1jyNCXP6eeuGGTj66/akpU+/n6J5pR7 yTVYrD2oN1KeeGFkwW2cqcQ/UZADc/iJxmUSnlVyhvonoTCYaSLXu153MtEwP3Xv ky0bG+mroM5DWD8snoZeEtSsmspi87Cb97rGMVDrLbXF4Z8N9pnyognNJsvOZbra f12Zmck= -----END CERTIFICATE-----Generated at Fri May 17 01:02:50 2024 by rpki-client on console-ams.rpki-client.org