$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/543CDDF0839011EAB5B82263C4F9AE02.roa File: 543CDDF0839011EAB5B82263C4F9AE02.roa (raw, json) Hash identifier: svTopiS+RYcKVKCTFFaIbvFYwVwSXRdDkMRKlgdMBU0= Subject key identifier: 01:36:29:FF:6D:2A:88:D6:00:72:CA:A9:04:A0:60:7E:C1:3B:35:46 Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 08BB Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/543CDDF0839011EAB5B82263C4F9AE02.roa Signing time: Tue 02 Jan 2024 21:18:49 +0000 ROA not before: Tue 02 Jan 2024 21:18:49 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134809 IP address blocks: 96.9.160.0/21 maxlen: 21 96.9.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2235 (0x8bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Jan 2 21:18:49 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65947db9-fe15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ba:1f:0d:bc:b3:ef:cb:e4:78:fa:f1:6d:68: 5e:e3:ce:73:05:ea:27:09:44:0a:76:26:61:f7:a8: 1e:a7:c2:30:43:af:bf:1e:c1:81:ad:4a:2d:c1:98: 9d:0a:17:4d:ff:a7:54:f6:64:08:80:69:f7:89:0f: 79:41:af:9a:56:d7:18:1e:20:9a:94:41:4a:b8:0a: 81:61:d4:e7:d2:a4:7e:7a:0e:06:3f:52:8f:e4:5f: 8f:72:b1:1b:de:2a:f7:2b:c7:c7:cb:5e:84:57:2c: 07:e3:fc:44:78:55:e9:c4:98:99:ff:92:b9:5b:6d: 52:08:a3:13:4a:55:c3:2e:59:4e:30:82:62:47:f3: cf:09:4a:25:7b:3f:c2:b5:8a:e9:96:b6:ba:21:46: 7a:f1:b8:5c:ce:1e:ae:39:91:aa:4f:10:99:42:ab: 5c:7b:56:0a:82:51:a8:8c:0d:5e:82:ab:f0:46:1f: 50:3d:a8:02:1b:30:d1:a2:9e:4b:2c:54:a5:ef:7d: 85:aa:c0:71:62:99:10:18:43:3d:82:4c:7e:7f:a0: 6f:5d:37:58:25:61:e1:c3:12:10:cb:ac:18:39:1a: 7e:9d:7e:b0:f3:4d:31:fe:d6:3f:7f:d6:54:a8:68: f2:d1:25:ba:50:75:fe:15:1b:9a:8a:69:bd:d1:52: a1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:36:29:FF:6D:2A:88:D6:00:72:CA:A9:04:A0:60:7E:C1:3B:35:46 X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/543CDDF0839011EAB5B82263C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 96.9.160.0/20 Signature Algorithm: sha256WithRSAEncryption b2:13:43:fe:ac:b9:6e:3b:1d:b3:6f:13:9c:48:c1:e9:b0:56: e9:a1:6d:e2:93:17:6a:e3:b4:ff:63:be:4d:6e:7f:26:85:b7: 21:5a:0f:5c:18:7d:b7:b9:3e:51:f3:8b:44:d4:bf:4e:a0:e8: d7:f2:13:1a:fe:56:5e:2e:c9:28:59:b9:61:cf:69:98:52:b2: 11:00:38:fb:92:7a:22:86:7f:32:9d:95:34:4d:60:67:5b:7b: 65:a5:f7:2e:f7:1a:89:5a:45:18:65:eb:fc:45:ea:e8:73:5a: 1a:a7:8f:8a:aa:09:c0:6e:a5:6e:1a:5f:77:a7:b0:b8:7f:d4: f2:71:23:e8:1c:69:e5:4a:67:3b:23:a3:13:65:ac:85:e2:ce: 41:bc:5f:38:52:13:9d:c7:a7:da:11:19:61:7f:52:98:8f:b3: c8:41:e2:15:36:98:04:9b:7f:de:95:9b:19:3f:01:fb:18:fe: fc:ad:05:a3:6c:ac:60:98:85:01:89:e9:ca:9a:0e:f9:b9:68: 04:42:58:b6:d1:50:3e:9b:f6:97:c7:ab:86:63:46:17:db:09: 9f:e3:24:f1:2f:cf:0f:37:06:13:23:90:da:82:5c:ac:75:18: 87:fc:b4:2b:2e:40:f2:e3:ec:34:b7:cd:ee:c9:ae:81:45:c6: 3e:56:ff:55 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjQwMTAyMjExODQ5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0N2RiOS1mZTE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorofDbyz78vkePrxbWhe485zBeonCUQKdiZh96gep8IwQ6+/HsGBrUotwZid ChdN/6dU9mQIgGn3iQ95Qa+aVtcYHiCalEFKuAqBYdTn0qR+eg4GP1KP5F+PcrEb 3ir3K8fHy16EVywH4/xEeFXpxJiZ/5K5W21SCKMTSlXDLllOMIJiR/PPCUolez/C tYrplra6IUZ68bhczh6uOZGqTxCZQqtce1YKglGojA1egqvwRh9QPagCGzDRop5L LFSl732FqsBxYpkQGEM9gkx+f6BvXTdYJWHhwxIQy6wYORp+nX6w800x/tY/f9ZU qGjy0SW6UHX+FRuaimm90VKhIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAE2Kf9t KojWAHLKqQSgYH7BOzVGMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVCQTkvRDg5MTQ3OEM4MzhFMTFFQThDRUEwOTYwQzRGOUFFMDIvNTQzQ0RERjA4 MzkwMTFFQUI1QjgyMjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARgCaAwDQYJKoZIhvcNAQELBQADggEBALITQ/6suW47HbNv E5xIwemwVumhbeKTF2rjtP9jvk1ufyaFtyFaD1wYfbe5PlHzi0TUv06g6NfyExr+ Vl4uyShZuWHPaZhSshEAOPuSeiKGfzKdlTRNYGdbe2Wl9y73GolaRRhl6/xF6uhz Whqnj4qqCcBupW4aX3ensLh/1PJxI+gcaeVKZzsjoxNlrIXizkG8XzhSE53Hp9oR GWF/UpiPs8hB4hU2mASbf96Vmxk/AfsY/vytBaNsrGCYhQGJ6cqaDvm5aARCWLbR UD6b9pfHq4ZjRhfbCZ/jJPEvzw83BhMjkNqCXKx1GIf8tCsuQPLj7DS3ze7JroFF xj5W/1U= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:35 2024 by rpki-client on console-ams.rpki-client.org