$ rpki-client -vvf rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa File: AA14FB00C70811ECBAECCC78C4F9AE02.roa (raw, json) Hash identifier: Kvf5cYtWFhUFmLhnhkPqwpdlU8RYNJOmdpCDknLxVjc= Subject key identifier: 98:D0:B1:5A:DF:65:A1:91:DB:76:C2:77:61:52:F6:98:CF:3B:5F:28 Certificate issuer: /CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Certificate serial: 0307 Authority key identifier: 8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa Signing time: Thu 28 Mar 2024 18:40:12 +0000 ROA not before: Thu 28 Mar 2024 18:40:12 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 16509 IP address blocks: 141.163.128.0/20 maxlen: 24 141.163.144.0/20 maxlen: 24 141.163.160.0/20 maxlen: 24 141.163.176.0/20 maxlen: 24 141.163.192.0/20 maxlen: 24 141.163.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 21:46:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 775 (0x307) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185D6E/serialNumber=8D20207D1EDB5F5C2D663B0A6A10BCD40BAD3ADE Validity Not Before: Mar 28 18:40:12 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6605b98c-5cde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:be:0f:8a:b5:c3:5c:62:74:5c:f9:0e:0a:ab: 15:94:00:8f:eb:47:5d:6a:3d:0d:a1:fd:ac:a6:99: 18:62:e8:5d:f9:f2:28:b6:11:ce:90:7d:ca:d7:8b: 0d:d8:e8:81:75:76:4d:27:87:5e:4e:ea:44:e8:77: 83:8c:86:1d:5a:da:47:3c:82:c0:69:ac:83:b7:c0: c6:e8:ab:61:18:34:8c:29:2e:53:10:ac:88:af:7e: 43:92:61:72:20:59:f5:af:3d:66:1e:e8:7c:ad:c3: 23:75:30:06:91:c1:6e:60:de:4c:31:14:cc:05:15: f0:4e:42:dd:6d:1d:1d:4d:12:ed:0a:89:a3:fd:1d: 72:14:6e:d4:dd:be:c8:ab:28:a0:74:53:22:d8:47: f9:e4:d6:b0:7d:a5:b2:6f:bf:61:a0:5b:99:a3:0e: 4e:84:49:76:95:c2:c6:14:e9:d9:9c:9e:76:8a:86: 0f:c1:29:59:cf:53:73:8f:46:b1:be:83:a7:91:20: e5:05:7e:9d:24:80:82:10:2e:ad:c0:88:51:7c:f0: f4:d7:36:0a:1e:0f:ff:85:ea:71:ef:80:8b:16:1d: b0:52:04:2d:8e:16:b6:76:51:2f:9e:2c:18:17:ce: c9:f6:4f:a1:e0:e2:c3:58:4f:d3:cb:b7:d0:37:10: e7:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:D0:B1:5A:DF:65:A1:91:DB:76:C2:77:61:52:F6:98:CF:3B:5F:28 X509v3 Authority Key Identifier: keyid:8D:20:20:7D:1E:DB:5F:5C:2D:66:3B:0A:6A:10:BC:D4:0B:AD:3A:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/jSAgfR7bX1wtZjsKahC81AutOt4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/jSAgfR7bX1wtZjsKahC81AutOt4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185D6E/A46BE588888811EC91233A70C4F9AE02/AA14FB00C70811ECBAECCC78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 141.163.128.0-141.163.223.255 Signature Algorithm: sha256WithRSAEncryption 6b:94:05:01:da:78:21:03:2e:3c:a7:23:17:3c:44:f5:eb:dd: 4e:79:3c:ac:14:1b:67:44:76:57:5b:12:54:7e:32:86:cc:35: 2e:79:13:65:17:b1:5e:2d:39:09:02:3d:93:61:e2:21:fb:d7: 9f:13:92:26:c7:09:54:e5:54:09:37:4a:c6:1b:fe:5c:49:85: 3f:b3:fc:bf:f3:71:b8:8c:5f:0b:a2:34:97:9b:87:90:d5:8b: f8:26:d5:df:34:20:7f:22:1a:f3:a4:82:d3:91:0f:4d:6c:79: b6:74:ed:a1:a2:31:d9:39:8d:d5:3d:63:1c:b5:c4:f0:65:0c: 74:f7:0e:f4:e9:fd:e6:e2:74:25:1f:20:48:1a:b9:3b:31:70: a7:9e:17:46:d8:56:3c:bc:ba:8b:0a:b8:9a:f4:03:1d:dc:36: 86:0e:23:5d:e2:19:5b:42:9f:48:37:62:1c:2e:97:fa:29:0c: 82:a5:b3:a0:ec:48:78:49:b8:ff:a2:40:cf:1f:6f:ee:81:85: bc:af:20:bc:a7:67:7e:29:6d:71:fe:cf:51:5a:36:1b:2c:ed: ec:e9:d2:9b:f9:7c:5d:24:55:f3:df:31:bd:2b:d9:f3:06:db: df:f3:4e:8d:8b:49:72:13:db:d0:8a:ae:6d:b6:0b:f4:df:1c: 5d:41:2f:47 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAwcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODVENkUxMTAvBgNVBAUTKDhEMjAyMDdEMUVEQjVGNUMyRDY2M0IwQTZBMTBCQ0Q0 MEJBRDNBREUwHhcNMjQwMzI4MTg0MDEyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1Yjk4Yy01Y2RlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3L4PirXDXGJ0XPkOCqsVlACP60ddaj0Nof2sppkYYuhd+fIothHOkH3K14sN 2OiBdXZNJ4deTupE6HeDjIYdWtpHPILAaayDt8DG6KthGDSMKS5TEKyIr35DkmFy IFn1rz1mHuh8rcMjdTAGkcFuYN5MMRTMBRXwTkLdbR0dTRLtComj/R1yFG7U3b7I qyigdFMi2Ef55NawfaWyb79hoFuZow5OhEl2lcLGFOnZnJ52ioYPwSlZz1Nzj0ax voOnkSDlBX6dJICCEC6twIhRfPD01zYKHg//hepx74CLFh2wUgQtjha2dlEvniwY F87J9k+h4OLDWE/Ty7fQNxDnGQIDAQABo4ICnTCCApkwHQYDVR0OBBYEFJjQsVrf ZaGR23bCd2FS9pjPO18oMB8GA1UdIwQYMBaAFI0gIH0e219cLWY7CmoQvNQLrTre MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NUQ2RS9BNDZCRTU4ODg4 ODgxMUVDOTEyMzNBNzBDNEY5QUUwMi9qU0FnZlI3Ylgxd3RaanNLYWhDODFBdXRP dDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL2pTQWdmUjdiWDF3dFpqc0thaEM4MUF1dE90NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODVENkUvQTQ2QkU1ODg4ODg4MTFFQzkxMjMzQTcwQzRGOUFFMDIvQUExNEZCMDBD NzA4MTFFQ0JBRUNDQzc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEB42jgAMEBY2jwDANBgkqhkiG9w0BAQsFAAOCAQEAa5QF Adp4IQMuPKcjFzxE9evdTnk8rBQbZ0R2V1sSVH4yhsw1LnkTZRexXi05CQI9k2Hi IfvXnxOSJscJVOVUCTdKxhv+XEmFP7P8v/NxuIxfC6I0l5uHkNWL+CbV3zQgfyIa 86SC05EPTWx5tnTtoaIx2TmN1T1jHLXE8GUMdPcO9On95uJ0JR8gSBq5OzFwp54X RthWPLy6iwq4mvQDHdw2hg4jXeIZW0KfSDdiHC6X+ikMgqWzoOxIeEm4/6JAzx9v 7oGFvK8gvKdnfiltcf7PUVo2Gyzt7OnSm/l8XSRV898xvSvZ8wbb3/NOjYtJchPb 0IqubbYL9N8cXUEvRw== -----END CERTIFICATE-----Generated at Thu Apr 25 02:05:26 2024 by rpki-client on console-fra.rpki-client.org