$ rpki-client -vvf rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/D69F6688CD8511EBB5252063C4F9AE02.roa File: D69F6688CD8511EBB5252063C4F9AE02.roa (raw, json) Hash identifier: hnSK7EnYl2dAShOri2I5pXVfZa/CnYFVcrAafQeQ3vo= Subject key identifier: 43:F5:EA:BF:CC:74:D5:1E:81:45:49:C9:4C:3C:6E:24:9B:FB:89:DE Certificate issuer: /CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Certificate serial: 3351 Authority key identifier: 3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/D69F6688CD8511EBB5252063C4F9AE02.roa Signing time: Mon 28 Aug 2023 14:30:28 +0000 ROA not before: Mon 28 Aug 2023 14:30:28 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 9584 IP address blocks: 114.142.144.0/20 maxlen: 24 202.65.192.0/19 maxlen: 24 202.66.128.0/19 maxlen: 24 202.134.64.0/18 maxlen: 24 219.90.112.0/20 maxlen: 24 2001:eb0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 14:26:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13137 (0x3351) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C422/serialNumber=3E0CA33D76A75BA64F0DD6B06A442BE69586441A Validity Not Before: Aug 28 14:30:28 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ecaf83-b776 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:04:2f:bb:a0:ad:0a:fb:55:dc:df:e4:ef:dd: 12:e2:9c:88:05:59:4a:7b:bb:26:73:52:ba:71:4c: 15:75:63:e2:d8:0b:0a:c6:91:02:5f:9d:05:6a:51: 5b:90:3c:fd:6d:71:1c:c5:f3:cd:ed:19:ab:84:08: a8:9f:6a:56:f3:21:c1:c4:cc:a9:4f:2d:95:50:c3: e4:55:5e:c6:34:cd:b7:e9:1b:5d:ea:1f:65:5f:97: 38:82:82:8c:e1:34:97:9e:7e:b1:8a:9f:2b:57:db: 69:86:21:72:0c:bb:ce:24:a7:0b:fb:b4:27:4e:3b: 65:0b:d0:7e:4a:5e:0f:f0:b7:34:bb:50:db:8a:07: b3:f3:07:17:63:ae:97:4d:27:e6:e9:3b:3f:5c:4e: 09:64:34:66:6a:1e:4b:8f:fb:f5:14:60:1c:34:fe: 95:42:68:f3:2b:c5:16:ff:4d:d1:f4:d5:cf:9d:99: 75:3d:a5:b8:01:9a:85:b9:ae:68:c2:f0:f8:e9:d7: 22:2e:e7:ba:e7:ce:0c:df:ef:e5:c3:b4:f4:de:bc: b4:53:58:4d:c1:e5:09:0c:75:43:e1:4a:43:23:e1: 7a:2f:a8:8d:6d:a4:e1:f6:bc:c6:35:a4:e0:e3:21: cd:6d:96:16:75:46:1f:ac:d0:b1:c5:15:3f:cc:fe: bb:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:F5:EA:BF:CC:74:D5:1E:81:45:49:C9:4C:3C:6E:24:9B:FB:89:DE X509v3 Authority Key Identifier: keyid:3E:0C:A3:3D:76:A7:5B:A6:4F:0D:D6:B0:6A:44:2B:E6:95:86:44:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/PgyjPXanW6ZPDdawakQr5pWGRBo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PgyjPXanW6ZPDdawakQr5pWGRBo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C422/A2C738681D8511E287036ADC08B02CD2/D69F6688CD8511EBB5252063C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.142.144.0/20 202.65.192.0/19 202.66.128.0/19 202.134.64.0/18 219.90.112.0/20 IPv6: 2001:eb0::/32 Signature Algorithm: sha256WithRSAEncryption 7f:d7:14:9a:65:5d:c5:18:5e:c7:91:4e:a7:d1:bb:97:cf:fb: f8:53:3c:0c:d3:0b:52:5e:39:51:20:a6:a4:ff:5d:25:26:e2: 41:35:7b:41:8f:52:a9:d4:64:64:bc:80:8f:c9:d2:a4:12:62: 0d:f4:47:8a:67:0e:40:2b:89:43:93:24:3f:41:63:a6:78:3d: 87:d7:17:ad:6c:82:be:21:5c:09:7e:15:4d:2d:c5:e7:20:96: 3e:84:e4:dd:3f:d7:56:8f:ce:67:27:38:b9:69:dc:a9:df:cc: da:51:3f:ac:ec:ac:c0:6d:67:44:d1:c5:8e:09:72:b8:83:4a: 1c:3e:b5:54:5e:f3:05:e7:61:c9:ad:6f:ce:50:13:06:ab:38: f7:5d:19:61:8e:57:56:90:b6:fd:0d:1e:bb:94:33:4e:9c:64: 4d:d5:96:b5:64:b5:3e:db:a5:05:07:c9:12:87:7c:eb:5c:81: bb:e0:7d:44:33:b6:bf:a8:76:e8:5f:78:9d:93:d0:79:61:e8: 7b:8d:7b:58:3e:69:2c:ad:9b:be:91:7d:9d:3b:7b:25:f0:85: 22:31:c3:00:f7:8d:87:71:27:c1:d8:90:aa:69:57:90:b2:95: 40:4b:6d:eb:ef:b7:89:62:56:d1:7c:1a:c1:2a:31:20:80:36: 0b:1a:42:15 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICM1EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0MjIxMTAvBgNVBAUTKDNFMENBMzNENzZBNzVCQTY0RjBERDZCMDZBNDQyQkU2 OTU4NjQ0MUEwHhcNMjMwODI4MTQzMDI4WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVjYWY4My1iNzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsAQvu6CtCvtV3N/k790S4pyIBVlKe7smc1K6cUwVdWPi2AsKxpECX50FalFb kDz9bXEcxfPN7RmrhAion2pW8yHBxMypTy2VUMPkVV7GNM236Rtd6h9lX5c4goKM 4TSXnn6xip8rV9tphiFyDLvOJKcL+7QnTjtlC9B+Sl4P8Lc0u1Dbigez8wcXY66X TSfm6Ts/XE4JZDRmah5Lj/v1FGAcNP6VQmjzK8UW/03R9NXPnZl1PaW4AZqFua5o wvD46dciLue6584M3+/lw7T03ry0U1hNweUJDHVD4UpDI+F6L6iNbaTh9rzGNaTg 4yHNbZYWdUYfrNCxxRU/zP67pQIDAQABo4ICvDCCArgwHQYDVR0OBBYEFEP16r/M dNUegUVJyUw8biSb+4neMB8GA1UdIwQYMBaAFD4Moz12p1umTw3WsGpEK+aVhkQa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQyMi9BMkM3Mzg2ODFE ODUxMUUyODcwMzZBREMwOEIwMkNEMi9QZ3lqUFhhblc2WlBEZGF3YWtRcjVwV0dS Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BneWpQWGFuVzZaUERkYXdha1FyNXBXR1JCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0MjIvQTJDNzM4NjgxRDg1MTFFMjg3MDM2QURDMDhCMDJDRDIvRDY5RjY2ODhD RDg1MTFFQkI1MjUyMDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBARyjpADBAXKQcADBAXKQoADBAbKhkADBATbWnAwDQQCAAIw BwMFACABDrAwDQYJKoZIhvcNAQELBQADggEBAH/XFJplXcUYXseRTqfRu5fP+/hT PAzTC1JeOVEgpqT/XSUm4kE1e0GPUqnUZGS8gI/J0qQSYg30R4pnDkAriUOTJD9B Y6Z4PYfXF61sgr4hXAl+FU0txecglj6E5N0/11aPzmcnOLlp3KnfzNpRP6zsrMBt Z0TRxY4JcriDShw+tVRe8wXnYcmtb85QEwarOPddGWGOV1aQtv0NHruUM06cZE3V lrVktT7bpQUHyRKHfOtcgbvgfUQztr+oduhfeJ2T0Hlh6HuNe1g+aSytm76RfZ07 eyXwhSIxwwD3jYdxJ8HYkKppV5CylUBLbevvt4liVtF8GsEqMSCANgsaQhU= -----END CERTIFICATE-----Generated at Thu May 16 15:21:29 2024 by rpki-client on console-ams.rpki-client.org