$ rpki-client -vvf rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa File: B8F3C5B4E01811ED8385DA62C4F9AE02.roa (raw, json) Hash identifier: Iyc8FGJn7lRUDG2Trj0ctvIim9nix2Q09XZIfcDlHh8= Subject key identifier: 5E:92:99:D8:DB:1D:97:81:75:44:DB:CE:0E:92:58:B6:7B:9C:1B:BB Certificate issuer: /CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Certificate serial: 43 Authority key identifier: 2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa Signing time: Fri 25 Aug 2023 05:04:24 +0000 ROA not before: Fri 25 Aug 2023 05:04:24 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 24437 IP address blocks: 130.95.0.0/16 maxlen: 16 130.95.38.0/24 maxlen: 24 130.95.241.0/24 maxlen: 24 130.95.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67 (0x43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Validity Not Before: Aug 25 05:04:24 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e83658-1aba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c8:7f:ac:03:2f:35:24:82:38:9c:5f:83:18: 2b:df:0d:a3:67:ed:a2:29:7b:34:6e:a0:3e:d1:9a: 09:61:04:13:b7:29:6a:7e:1c:02:52:56:79:79:bc: 5e:2e:26:cb:fb:ae:7e:9d:b1:3c:11:d4:44:25:0a: 49:34:f9:f9:3f:eb:7a:e8:fe:f2:a5:d8:f7:eb:31: 6b:83:28:1f:0c:30:79:5e:8f:72:1e:aa:69:d7:d0: e9:f2:29:db:0e:99:1a:80:8b:b6:2d:ca:04:5d:89: de:97:52:73:1a:c8:13:4d:08:1c:a2:af:ff:9a:a2: 93:cb:6a:77:78:cc:03:be:69:6b:39:ac:fa:58:54: ab:77:56:a3:ab:25:d4:cf:4f:d4:66:9d:77:c7:ae: 3d:25:7d:c2:5a:51:1f:65:d3:f8:26:ba:e5:0f:a1: 98:83:bb:ca:34:c8:5f:41:b6:9d:29:1f:4a:43:d5: 5e:93:1a:9c:85:af:00:4e:16:35:61:c6:2c:86:13: d6:80:7f:86:2a:6c:4a:78:c1:15:11:66:24:56:38: 37:ed:f6:f1:dc:11:04:82:87:0f:d1:25:ad:89:6d: 73:e2:c9:be:f2:ea:5e:04:76:df:3d:65:6f:0a:1f: 62:97:ec:ba:e3:76:a8:ca:c8:f9:dd:92:68:95:ee: 15:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:92:99:D8:DB:1D:97:81:75:44:DB:CE:0E:92:58:B6:7B:9C:1B:BB X509v3 Authority Key Identifier: keyid:2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.95.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6b:c0:8a:a1:63:3c:d7:31:b0:37:70:69:de:c8:46:90:e0:75: cc:33:e6:41:69:81:77:76:34:8c:e5:7c:31:d3:a0:f7:40:ec: e7:b8:e9:93:91:7f:d6:05:3a:b3:10:6c:18:bd:50:af:43:21: 7c:39:a0:0d:ec:50:5e:9b:49:5f:3c:f1:57:ea:b3:58:12:86: b5:e1:a6:8f:20:d5:a4:05:ae:c9:77:5e:6d:77:c3:03:0c:d2: 19:e3:24:a5:27:36:a7:7d:be:da:35:9c:32:2f:cd:be:ea:58: 10:26:3c:9d:36:1a:61:32:7b:0e:58:07:18:b7:aa:dc:40:4d: 44:67:ba:45:b6:da:17:47:ce:ec:2e:d1:6a:8e:53:04:25:61: c3:71:cc:90:b5:63:75:66:da:df:25:cb:1e:2e:e2:a1:35:bf: dc:93:a9:8c:9b:05:6d:db:99:27:b6:1e:26:01:ea:f2:5b:47: bf:90:86:ec:65:12:5b:a3:70:1c:1f:a2:20:4d:23:6d:ca:25: 46:f0:7b:db:30:a9:e0:2c:ee:dc:87:c6:52:43:aa:68:b6:c8: 11:05:40:4d:fd:4d:b4:95:29:a9:c1:e5:c0:0d:b9:a7:dc:f6: e8:25:5e:5c:cd:24:e3:30:6e:a0:d1:61:18:8e:de:41:06:f7: d3:f3:a1:cd -----BEGIN CERTIFICATE----- MIIFbzCCBFegAwIBAgIBQzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 M0JGODExMC8GA1UEBRMoMkE4MTNBRTVENjE1Mjk2MDQ1REIzRTJDNDJDQjhGQ0RB QzZBRDIwQzAeFw0yMzA4MjUwNTA0MjRaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZTgzNjU4LTFhYmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDIyH+sAy81JII4nF+DGCvfDaNn7aIpezRuoD7RmglhBBO3KWp+HAJSVnl5vF4u Jsv7rn6dsTwR1EQlCkk0+fk/63ro/vKl2PfrMWuDKB8MMHlej3IeqmnX0OnyKdsO mRqAi7YtygRdid6XUnMayBNNCByir/+aopPLand4zAO+aWs5rPpYVKt3VqOrJdTP T9RmnXfHrj0lfcJaUR9l0/gmuuUPoZiDu8o0yF9Btp0pH0pD1V6TGpyFrwBOFjVh xiyGE9aAf4YqbEp4wRURZiRWODft9vHcEQSChw/RJa2JbXPiyb7y6l4Edt89ZW8K H2KX7LrjdqjKyPndkmiV7hVRAgMBAAGjggKUMIICkDAdBgNVHQ4EFgQUXpKZ2Nsd l4F1RNvODpJYtnucG7swHwYDVR0jBBgwFoAUKoE65dYVKWBF2z4sQsuPzaxq0gww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkzQkY4L0EyMkJEMTU4RTAx NTExRURCMTY2Njk2MUM0RjlBRTAyL0tvRTY1ZFlWS1dCRjJ6NHNRc3VQemF4cTBn dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvS29FNjVkWVZLV0JGMno0c1FzdVB6YXhxMGd3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 M0JGOC9BMjJCRDE1OEUwMTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9COEYzQzVCNEUw MTgxMUVEODM4NURBNjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAeBggrBgEFBQcBBwEB/wQP MA0wCwQCAAEwBQMDAIJfMA0GCSqGSIb3DQEBCwUAA4IBAQBrwIqhYzzXMbA3cGne yEaQ4HXMM+ZBaYF3djSM5Xwx06D3QOznuOmTkX/WBTqzEGwYvVCvQyF8OaAN7FBe m0lfPPFX6rNYEoa14aaPINWkBa7Jd15td8MDDNIZ4ySlJzanfb7aNZwyL82+6lgQ JjydNhphMnsOWAcYt6rcQE1EZ7pFttoXR87sLtFqjlMEJWHDccyQtWN1ZtrfJcse LuKhNb/ck6mMmwVt25knth4mAeryW0e/kIbsZRJbo3AcH6IgTSNtyiVG8HvbMKng LO7ch8ZSQ6potsgRBUBN/U20lSmpweXADbmn3PboJV5czSTjMG6g0WEYjt5BBvfT 86HN -----END CERTIFICATE-----Generated at Wed May 15 06:54:31 2024 by rpki-client on console-ams.rpki-client.org