$ rpki-client -vvf rpki.apnic.net/member_repository/A9176FD9/98D666CC0FA311EFB43C9432C4F9AE02/A937C2200FA511EFBDB06936C4F9AE02.roa File: A937C2200FA511EFBDB06936C4F9AE02.roa (raw, json) Hash identifier: XfBeMxrxzwXrsr487z7M++l5u/NnA4wheyyPbYGJaow= Subject key identifier: 1E:9D:0C:01:7B:9F:80:93:8F:4D:E5:13:E6:46:15:96:A7:11:29:2B Certificate issuer: /CN=A9176FD9/serialNumber=6223ABD6F6B67BAFEFE3E73646FD7A66E10214BE Certificate serial: 02 Authority key identifier: 62:23:AB:D6:F6:B6:7B:AF:EF:E3:E7:36:46:FD:7A:66:E1:02:14:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiOr1va2e6_v4-c2Rv16ZuECFL4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176FD9/98D666CC0FA311EFB43C9432C4F9AE02/A937C2200FA511EFBDB06936C4F9AE02.roa Signing time: Sat 11 May 2024 14:49:26 +0000 ROA not before: Sat 11 May 2024 14:49:26 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 46015 IP address blocks: 45.127.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176FD9/98D666CC0FA311EFB43C9432C4F9AE02/YiOr1va2e6_v4-c2Rv16ZuECFL4.crl rsync://rpki.apnic.net/member_repository/A9176FD9/98D666CC0FA311EFB43C9432C4F9AE02/YiOr1va2e6_v4-c2Rv16ZuECFL4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiOr1va2e6_v4-c2Rv16ZuECFL4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 02 Jul 2024 07:40:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176FD9/serialNumber=6223ABD6F6B67BAFEFE3E73646FD7A66E10214BE Validity Not Before: May 11 14:49:26 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=663f8575-233d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:f6:1c:72:38:7d:40:1e:bc:62:89:c4:53:25: e4:bd:c9:b0:e4:59:97:51:cf:ed:16:81:3b:b8:fd: f1:91:e6:b5:e7:65:fb:1b:55:d2:b5:3e:86:6e:e6: 23:6d:a1:65:98:5f:84:2f:81:a2:d3:a4:b8:c6:fe: 8c:45:43:b9:85:e7:42:31:e3:a1:80:98:7a:0a:89: 5e:56:38:eb:37:73:2f:15:d7:5d:6b:dd:19:9d:c3: bc:be:36:3d:65:05:d5:ea:c3:2a:ed:f6:95:6a:1d: 44:3a:6c:bb:87:43:4c:b9:ea:0c:5d:7f:0a:e3:cc: a4:b1:93:12:2c:d8:60:62:98:4f:7a:0f:63:7a:b9: f2:d7:01:e7:30:31:6c:92:c0:47:a4:e9:58:f6:5b: 0a:a7:85:48:f6:7a:61:8d:f2:e8:01:9f:19:69:3f: dd:9f:06:7d:c6:d5:aa:fe:23:44:72:f9:9a:cd:72: 85:bd:74:b8:b4:9a:50:1c:bb:8f:b0:3a:52:84:b0: 83:ff:96:95:c7:3a:0f:b7:d4:c7:8d:34:5e:90:a4: 49:b9:39:ab:19:0b:cf:b2:af:9d:5b:eb:bd:10:51: 60:d9:9a:52:b2:24:09:37:c7:0c:f3:3e:48:9b:aa: 5b:ae:41:5d:2c:0e:ac:b6:b2:2e:ee:28:f3:10:c2: 4a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:9D:0C:01:7B:9F:80:93:8F:4D:E5:13:E6:46:15:96:A7:11:29:2B X509v3 Authority Key Identifier: keyid:62:23:AB:D6:F6:B6:7B:AF:EF:E3:E7:36:46:FD:7A:66:E1:02:14:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176FD9/98D666CC0FA311EFB43C9432C4F9AE02/YiOr1va2e6_v4-c2Rv16ZuECFL4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiOr1va2e6_v4-c2Rv16ZuECFL4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176FD9/98D666CC0FA311EFB43C9432C4F9AE02/A937C2200FA511EFBDB06936C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.127.4.0/22 Signature Algorithm: sha256WithRSAEncryption 38:09:42:07:55:f0:b2:28:3b:83:e9:65:43:11:0d:1e:41:9b: 33:50:5a:6a:33:ca:99:28:00:7f:60:b5:2f:d1:3f:6f:b0:29: 9b:e3:fc:04:71:24:9b:c3:39:64:3f:75:e3:9d:f0:13:8e:cc: ae:11:a0:af:2d:f2:fc:3e:8b:1e:40:46:2a:0f:d5:41:46:e6: 6a:ba:ef:dc:63:8b:88:2b:d0:b9:d3:8e:21:eb:f5:3b:a2:d4: 49:54:db:e9:de:0f:d8:6d:32:a1:94:0b:cb:a8:e3:0b:62:30: 6e:3e:4c:df:b9:9a:09:e6:14:30:a7:6a:84:35:92:cf:66:0c: 55:21:d3:cb:fa:6a:a0:8b:50:68:db:f6:f8:5f:de:5c:80:cf: 44:3f:5a:4c:35:17:fd:47:3d:50:c8:ab:48:1a:5a:12:c6:34: 28:f4:47:4c:ed:9b:9f:e7:66:4c:53:a6:3a:b4:a9:81:88:c3: 0a:d4:21:be:9d:3a:09:5f:29:4c:2b:69:7e:2d:2d:25:68:32: 4c:bd:38:a6:21:af:5a:0a:7d:d0:e8:f0:98:70:ac:26:8e:a9: 19:12:85:13:8c:36:81:11:6c:ae:aa:fe:7d:95:9f:4c:75:12: 39:66:e6:e7:74:c2:3a:79:59:cb:e0:f2:fe:d5:be:67:6b:d6: 20:ad:c3:40 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NkZEOTExMC8GA1UEBRMoNjIyM0FCRDZGNkI2N0JBRkVGRTNFNzM2NDZGRDdBNjZF MTAyMTRCRTAeFw0yNDA1MTExNDQ5MjZaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2Y4NTc1LTIzM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC59hxyOH1AHrxiicRTJeS9ybDkWZdRz+0WgTu4/fGR5rXnZfsbVdK1PoZu5iNt oWWYX4QvgaLTpLjG/oxFQ7mF50Ix46GAmHoKiV5WOOs3cy8V111r3Rmdw7y+Nj1l BdXqwyrt9pVqHUQ6bLuHQ0y56gxdfwrjzKSxkxIs2GBimE96D2N6ufLXAecwMWyS wEek6Vj2WwqnhUj2emGN8ugBnxlpP92fBn3G1ar+I0Ry+ZrNcoW9dLi0mlAcu4+w OlKEsIP/lpXHOg+31MeNNF6QpEm5OasZC8+yr51b670QUWDZmlKyJAk3xwzzPkib qluuQV0sDqy2si7uKPMQwkqxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHp0MAXuf gJOPTeUT5kYVlqcRKSswHwYDVR0jBBgwFoAUYiOr1va2e6/v4+c2Rv16ZuECFL4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc2RkQ5Lzk4RDY2NkNDMEZB MzExRUZCNDNDOTQzMkM0RjlBRTAyL1lpT3IxdmEyZTZfdjQtYzJSdjE2WnVFQ0ZM NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWWlPcjF2YTJlNl92NC1jMlJ2MTZadUVDRkw0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NkZEOS85OEQ2NjZDQzBGQTMxMUVGQjQzQzk0MzJDNEY5QUUwMi9BOTM3QzIyMDBG QTUxMUVGQkRCMDY5MzZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAi1/BDANBgkqhkiG9w0BAQsFAAOCAQEAOAlCB1Xwsig7g+ll QxENHkGbM1BaajPKmSgAf2C1L9E/b7Apm+P8BHEkm8M5ZD91453wE47MrhGgry3y /D6LHkBGKg/VQUbmarrv3GOLiCvQudOOIev1O6LUSVTb6d4P2G0yoZQLy6jjC2Iw bj5M37maCeYUMKdqhDWSz2YMVSHTy/pqoItQaNv2+F/eXIDPRD9aTDUX/Uc9UMir SBpaEsY0KPRHTO2bn+dmTFOmOrSpgYjDCtQhvp06CV8pTCtpfi0tJWgyTL04piGv Wgp90OjwmHCsJo6pGRKFE4w2gRFsrqr+fZWfTHUSOWbm53TCOnlZy+Dy/tW+Z2vW IK3DQA== -----END CERTIFICATE-----Generated at Tue Jun 25 10:52:15 2024 by rpki-client on console-ams.rpki-client.org