$ rpki-client -vvf rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa File: B8F3C5B4E01811ED8385DA62C4F9AE02.roa (raw, json) Hash identifier: XP8lLbicS7mB1IqZ6ApZEYlo1iErgLT+WwIjnSaqxSY= Subject key identifier: 01:5D:81:FC:6E:78:4D:19:D4:0D:A4:DD:0C:9F:AA:CE:60:22:10:F6 Certificate issuer: /CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Certificate serial: 0104 Authority key identifier: 2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa Signing time: Sat 31 Aug 2024 05:36:58 +0000 ROA not before: Sat 31 Aug 2024 05:36:58 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 24437 IP address blocks: 130.95.0.0/16 maxlen: 16 130.95.38.0/24 maxlen: 24 130.95.241.0/24 maxlen: 24 130.95.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193BF8/serialNumber=2A813AE5D615296045DB3E2C42CB8FCDAC6AD20C Validity Not Before: Aug 31 05:36:58 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d2abfa-3895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:a1:f3:ed:b7:c4:9e:c8:6b:ad:72:e7:58:ca: f6:f5:6c:9e:3e:38:6b:9f:9b:c8:3d:18:63:e7:05: f8:b5:f3:32:dd:10:d2:38:a9:d2:2b:cc:f5:19:d2: cc:b9:0a:15:55:33:d1:f2:d5:72:89:00:f5:fc:39: 6a:15:d7:05:cf:1a:58:91:43:1b:68:86:04:88:d6: 7e:c7:87:dd:04:71:5d:3f:c2:08:08:df:c4:dc:81: 76:25:6a:f7:f0:47:44:2a:e1:31:7a:15:87:0a:3a: a5:c7:b2:b7:08:49:2d:51:ae:9f:19:26:8b:76:bd: 1b:6f:79:e5:dc:1f:27:09:94:93:c1:86:5d:51:c4: 3d:1f:68:db:21:bc:9d:16:c4:bd:66:2b:31:7d:f3: b6:c1:27:2e:9b:a7:91:6e:4e:4f:39:29:92:e6:98: d7:6d:49:de:40:56:a0:c1:fb:92:1f:fc:33:b8:05: 28:65:1a:00:fe:8f:74:82:bd:6e:c3:4b:6b:6e:29: d0:44:19:02:6b:fd:cd:69:f2:47:dc:c4:bc:75:ff: 34:f1:c9:7d:ca:f0:4f:2f:f9:09:ed:38:f2:15:62: 4e:72:fa:ab:7b:57:23:76:df:69:29:06:4f:22:30: af:63:88:16:ca:16:fc:af:23:b5:de:23:f6:4f:f2: f1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5D:81:FC:6E:78:4D:19:D4:0D:A4:DD:0C:9F:AA:CE:60:22:10:F6 X509v3 Authority Key Identifier: keyid:2A:81:3A:E5:D6:15:29:60:45:DB:3E:2C:42:CB:8F:CD:AC:6A:D2:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/KoE65dYVKWBF2z4sQsuPzaxq0gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/KoE65dYVKWBF2z4sQsuPzaxq0gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193BF8/A22BD158E01511EDB1666961C4F9AE02/B8F3C5B4E01811ED8385DA62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.95.0.0/16 Signature Algorithm: sha256WithRSAEncryption 87:5b:f7:1d:a3:0e:a1:0e:86:c0:32:aa:a3:f6:5a:a6:67:88: d1:20:10:8a:93:f4:0e:06:65:f0:28:12:91:d1:21:23:fd:f2: 92:a7:f0:ff:e8:53:c5:4d:d1:80:9a:f6:31:8c:92:a3:8b:ee: 5c:9b:49:3e:9f:98:f1:17:2e:b8:cb:e1:73:cb:8d:03:99:78: 81:3a:24:3d:15:ce:ef:45:5a:fb:4a:e0:ae:63:ae:fc:72:63: e5:21:aa:06:fb:ee:9b:38:95:61:40:43:f1:b3:1d:7e:a2:cd: f3:ea:c1:4e:4b:ca:29:4e:3a:d5:cb:d8:36:47:68:7f:df:26: f0:24:bb:3c:8a:59:dc:ee:7b:41:19:27:54:03:9a:17:06:73: 49:83:53:05:d2:11:c5:e4:0a:c8:1d:30:d5:27:66:d6:dd:3e: f0:dc:cc:e1:58:a8:d9:8f:dc:2a:f1:9b:c7:75:02:49:3f:f3: 39:93:aa:d7:47:bf:07:94:87:c2:59:75:60:99:59:42:c5:ad: e6:38:51:23:95:cc:32:66:9f:ca:80:ce:8c:d5:8e:8c:55:7e: 83:db:d4:59:17:ff:d2:21:a2:11:66:a2:56:c0:96:f9:1f:86: 1d:26:cc:bb:a0:cf:3d:25:af:c5:73:db:12:22:1e:ec:5c:9b: 69:1f:1f:b3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTNCRjgxMTAvBgNVBAUTKDJBODEzQUU1RDYxNTI5NjA0NURCM0UyQzQyQ0I4RkNE QUM2QUQyMEMwHhcNMjQwODMxMDUzNjU4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyYWJmYS0zODk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoKHz7bfEnshrrXLnWMr29WyePjhrn5vIPRhj5wX4tfMy3RDSOKnSK8z1GdLM uQoVVTPR8tVyiQD1/DlqFdcFzxpYkUMbaIYEiNZ+x4fdBHFdP8IICN/E3IF2JWr3 8EdEKuExehWHCjqlx7K3CEktUa6fGSaLdr0bb3nl3B8nCZSTwYZdUcQ9H2jbIbyd FsS9ZisxffO2wScum6eRbk5POSmS5pjXbUneQFagwfuSH/wzuAUoZRoA/o90gr1u w0trbinQRBkCa/3NafJH3MS8df808cl9yvBPL/kJ7TjyFWJOcvqre1cjdt9pKQZP IjCvY4gWyhb8ryO13iP2T/LxfQIDAQABo4IClDCCApAwHQYDVR0OBBYEFAFdgfxu eE0Z1A2k3Qyfqs5gIhD2MB8GA1UdIwQYMBaAFCqBOuXWFSlgRds+LELLj82satIM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5M0JGOC9BMjJCRDE1OEUw MTUxMUVEQjE2NjY5NjFDNEY5QUUwMi9Lb0U2NWRZVktXQkYyejRzUXN1UHpheHEw Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0tvRTY1ZFlWS1dCRjJ6NHNRc3VQemF4cTBndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTNCRjgvQTIyQkQxNThFMDE1MTFFREIxNjY2OTYxQzRGOUFFMDIvQjhGM0M1QjRF MDE4MTFFRDgzODVEQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCCXzANBgkqhkiG9w0BAQsFAAOCAQEAh1v3HaMOoQ6GwDKq o/ZapmeI0SAQipP0DgZl8CgSkdEhI/3ykqfw/+hTxU3RgJr2MYySo4vuXJtJPp+Y 8RcuuMvhc8uNA5l4gTokPRXO70Va+0rgrmOu/HJj5SGqBvvumziVYUBD8bMdfqLN 8+rBTkvKKU461cvYNkdof98m8CS7PIpZ3O57QRknVAOaFwZzSYNTBdIRxeQKyB0w 1Sdm1t0+8NzM4Vio2Y/cKvGbx3UCST/zOZOq10e/B5SHwll1YJlZQsWt5jhRI5XM MmafyoDOjNWOjFV+g9vUWRf/0iGiEWaiVsCW+R+GHSbMu6DPPSWvxXPbEiIe7Fyb aR8fsw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:09 2024 by rpki-client on console-ams.rpki-client.org