$ rpki-client -vvf rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/13C01CC0C4AD11EA9E35F20AC4F9AE02.roa File: 13C01CC0C4AD11EA9E35F20AC4F9AE02.roa (raw, json) Hash identifier: UW2tdhgS2lTmSXFx5LwnRTIQjL4MA8kSOlZtomPSIZQ= Subject key identifier: 4E:A3:DC:49:C4:69:C8:E4:69:61:9A:3D:EF:9E:87:2C:92:AA:02:BC Certificate issuer: /CN=A9194335/serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E Certificate serial: 0EBB Authority key identifier: 91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/13C01CC0C4AD11EA9E35F20AC4F9AE02.roa Signing time: Sat 30 Sep 2023 17:55:43 +0000 ROA not before: Sat 30 Sep 2023 17:55:43 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 9268 IP address blocks: 202.87.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:22:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3771 (0xebb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9194335/serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E Validity Not Before: Sep 30 17:55:43 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6518611f-fe5f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7c:a7:9a:61:10:db:d6:a8:ff:92:39:0a:f8: 5d:ad:07:79:bd:4d:63:7e:83:af:ae:b4:b2:0e:94: fa:38:86:34:71:b8:de:54:bf:c5:9e:2d:de:12:62: c2:7e:af:ee:6b:35:fb:9a:04:34:64:82:ec:c8:fd: 0e:b6:98:0c:20:47:32:76:c9:7e:fe:c7:3e:fa:9a: 33:a9:06:d5:20:d2:75:33:72:1d:d3:e4:81:ce:93: 2d:6e:50:14:9b:2e:79:d1:9b:01:6e:03:d3:62:3f: 3c:1f:b9:be:fa:0f:b7:89:c0:67:07:b3:07:9e:0c: 79:13:c6:9d:b1:2d:25:83:6d:a8:34:28:ba:24:4e: ca:cd:07:23:5d:e2:bf:ec:80:e3:3f:3d:a5:6b:b6: 94:9a:18:45:e4:0e:42:8a:66:5e:90:3e:7a:fc:89: e7:03:81:97:0a:6d:13:12:64:44:f7:f1:fb:c3:1a: 42:75:f4:e1:53:7c:b2:30:81:44:28:44:55:cd:9c: a2:8a:d9:a8:2f:51:d3:f2:06:b5:1b:25:ae:95:c2: 1c:81:d6:61:1c:30:25:5b:0d:11:0b:44:9a:0a:6f: ec:19:b4:8c:7f:56:6f:88:e7:20:53:bb:fb:4b:47: 5a:8b:ca:05:43:9e:7e:c5:3b:c6:32:1c:6d:49:ce: 60:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:A3:DC:49:C4:69:C8:E4:69:61:9A:3D:EF:9E:87:2C:92:AA:02:BC X509v3 Authority Key Identifier: keyid:91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/13C01CC0C4AD11EA9E35F20AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.87.4.0/22 Signature Algorithm: sha256WithRSAEncryption 35:20:a3:1c:f6:d5:4e:72:b9:58:f8:00:1e:2c:a0:9a:2d:9d: aa:9a:37:1a:8d:6c:43:47:32:8c:a2:53:56:1b:36:3d:18:31: eb:9d:9c:fa:e9:bd:c8:9a:ae:cd:31:b8:4d:4d:38:d3:99:56: bf:8c:08:8c:b7:dc:25:f0:1c:d6:e4:2c:ec:97:b9:da:5b:be: 0d:fd:6c:9e:a2:e6:65:18:60:32:aa:e9:40:81:7b:68:9a:01: 05:de:46:74:4f:9d:90:b6:f2:33:1f:b8:08:83:a8:a7:bf:22: d0:fc:2d:f8:d2:c8:6c:84:55:58:7a:2f:ae:34:0b:96:86:a3: ee:4b:0e:a4:0e:4a:a9:0d:a6:0b:6f:c9:2e:14:6e:e9:1a:21: 2c:f4:2d:85:11:b8:3e:cb:3b:5b:e2:8f:93:e3:f4:2e:ed:b2: 78:3c:72:19:80:05:0f:0c:b9:c7:a0:eb:51:70:a9:6a:6f:dd: 79:4f:f4:34:21:f4:0c:a7:d6:61:5c:a6:45:4a:6b:89:65:1a: 4d:bb:98:97:c7:ec:d7:80:24:da:be:79:c8:79:3f:4b:64:ed: d7:dd:8e:9d:41:7c:21:da:0b:62:17:02:89:30:26:f3:33:ed: a9:f0:4a:27:9d:a5:00:30:aa:6d:1b:d8:89:3c:7a:0e:70:65: 67:ab:a1:c6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDrswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTQzMzUxMTAvBgNVBAUTKDkxQkM3OUFFMTVDQ0FFQTQ0RTRGRTc4NDVGQkZDQTYz RTdGQUVCOUUwHhcNMjMwOTMwMTc1NTQzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTE4NjExZi1mZTVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs3ynmmEQ29ao/5I5CvhdrQd5vU1jfoOvrrSyDpT6OIY0cbjeVL/Fni3eEmLC fq/uazX7mgQ0ZILsyP0OtpgMIEcydsl+/sc++pozqQbVINJ1M3Id0+SBzpMtblAU my550ZsBbgPTYj88H7m++g+3icBnB7MHngx5E8adsS0lg22oNCi6JE7KzQcjXeK/ 7IDjPz2la7aUmhhF5A5CimZekD56/InnA4GXCm0TEmRE9/H7wxpCdfThU3yyMIFE KERVzZyiitmoL1HT8ga1GyWulcIcgdZhHDAlWw0RC0SaCm/sGbSMf1ZviOcgU7v7 S0dai8oFQ55+xTvGMhxtSc5g7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFE6j3EnE acjkaWGaPe+ehyySqgK8MB8GA1UdIwQYMBaAFJG8ea4VzK6kTk/nhF+/ymPn+uue MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NDMzNS8zNDJEMjIyODUx RDExMUU5QUYxRkY3M0NDNEY5QUUwMi9rYng1cmhYTXJxUk9ULWVFWDdfS1ktZjY2 NTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tieDVyaFhNcnFST1QtZUVYN19LWS1mNjY1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTQzMzUvMzQyRDIyMjg1MUQxMTFFOUFGMUZGNzNDQzRGOUFFMDIvMTNDMDFDQzBD NEFEMTFFQTlFMzVGMjBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKVwQwDQYJKoZIhvcNAQELBQADggEBADUgoxz21U5yuVj4 AB4soJotnaqaNxqNbENHMoyiU1YbNj0YMeudnPrpvciars0xuE1NONOZVr+MCIy3 3CXwHNbkLOyXudpbvg39bJ6i5mUYYDKq6UCBe2iaAQXeRnRPnZC28jMfuAiDqKe/ ItD8LfjSyGyEVVh6L640C5aGo+5LDqQOSqkNpgtvyS4UbukaISz0LYURuD7LO1vi j5Pj9C7tsng8chmABQ8Muceg61FwqWpv3XlP9DQh9Ayn1mFcpkVKa4llGk27mJfH 7NeAJNq+ech5P0tk7dfdjp1BfCHaC2IXAokwJvMz7anwSiedpQAwqm0b2Ik8eg5w ZWerocY= -----END CERTIFICATE-----Generated at Thu May 16 19:10:55 2024 by rpki-client on console-fra.rpki-client.org