$ rpki-client -vvf rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/54DD69FA839011EAB5B82263C4F9AE02.roa File: 54DD69FA839011EAB5B82263C4F9AE02.roa (raw, json) Hash identifier: 21cd0AAkt6/w9sJ9ys0cn0VlSdqf+92mdCo6Phpu6sc= Subject key identifier: 2A:79:B0:A7:2C:E8:30:5C:C3:CF:7C:10:0B:4A:A6:FD:62:3A:CB:4F Certificate issuer: /CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Certificate serial: 08BC Authority key identifier: 22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/54DD69FA839011EAB5B82263C4F9AE02.roa Signing time: Tue 02 Jan 2024 21:18:50 +0000 ROA not before: Tue 02 Jan 2024 21:18:50 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 18106 IP address blocks: 96.9.160.0/20 maxlen: 20 132.147.64.0/18 maxlen: 18 132.147.112.0/24 maxlen: 24 132.147.113.0/24 maxlen: 24 132.147.114.0/24 maxlen: 24 132.147.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 20:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2236 (0x8bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9195BA9/serialNumber=2245AD91543ADDAD78123DD415D659BB52D5FB62 Validity Not Before: Jan 2 21:18:50 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65947db9-f02b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6b:4c:bd:63:57:aa:e0:14:a4:58:08:97:21: 41:54:37:33:7f:cd:08:e8:2e:94:ae:d5:74:d1:32: 63:30:61:fb:ee:8a:17:7d:fb:b1:7f:7c:96:1b:ae: 25:91:38:1f:09:9e:99:f0:18:06:19:8d:df:43:a4: 0a:38:a7:f5:0b:09:c5:3f:71:e6:af:a4:a3:d1:46: 73:f9:3d:44:23:45:42:cc:4e:69:6b:53:ba:4e:de: d2:f1:ef:08:f3:95:d2:87:dc:ed:de:6c:f7:80:28: d0:10:10:28:73:aa:c2:d6:b5:bb:72:5d:de:05:92: 73:9c:14:3d:51:ef:18:e0:51:e8:c2:99:03:ed:aa: 15:bb:b2:29:e2:b2:be:4f:39:dc:cb:19:b5:25:4d: ff:aa:b6:d6:2d:c7:ce:cd:62:e8:f3:f7:0a:99:39: 1b:6a:cc:68:34:af:2e:38:6a:71:7f:7b:0c:b5:7a: b6:a7:d4:7c:55:51:9f:17:17:a7:b4:93:45:ef:56: a5:10:6b:ed:00:1e:54:d2:b4:98:0e:54:d5:6c:3f: e9:49:06:9e:ec:fd:ef:0c:e6:8d:6a:2d:d3:c2:75: 19:42:76:71:42:fb:8c:d6:c7:f3:81:16:61:7b:95: 2b:64:e5:69:22:75:7c:84:79:e9:3a:4e:f9:c4:cc: f6:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:79:B0:A7:2C:E8:30:5C:C3:CF:7C:10:0B:4A:A6:FD:62:3A:CB:4F X509v3 Authority Key Identifier: keyid:22:45:AD:91:54:3A:DD:AD:78:12:3D:D4:15:D6:59:BB:52:D5:FB:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/IkWtkVQ63a14Ej3UFdZZu1LV-2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IkWtkVQ63a14Ej3UFdZZu1LV-2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9195BA9/D891478C838E11EA8CEA0960C4F9AE02/54DD69FA839011EAB5B82263C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 96.9.160.0/20 132.147.64.0/18 Signature Algorithm: sha256WithRSAEncryption e7:cf:d3:09:bd:9b:34:32:05:a7:54:e5:b1:12:3a:cf:e6:53: a4:b6:87:1b:b4:5a:e1:e5:fd:2e:86:2e:1c:e6:ea:e4:ff:fb: c8:4b:95:87:2a:85:d9:d7:8d:7a:d8:73:a7:1f:5d:91:9a:4e: 8c:db:b1:dc:3f:46:3d:36:13:82:1a:99:41:5e:55:66:67:a6: 90:b7:f1:4d:1c:7f:39:3a:bb:51:e7:64:36:44:ac:3b:fa:a6: 80:5d:af:d4:1d:db:58:61:4b:4f:22:d6:18:6f:04:6d:6e:06: 46:6d:9f:ca:2c:5a:11:ac:92:53:bf:f2:0b:8c:1c:6d:10:ab: 4c:5c:9d:17:a1:a5:45:20:e1:ab:b9:9b:59:20:ba:24:cc:36: ab:51:17:5f:65:9a:72:af:e0:94:df:01:e9:2a:6f:71:70:53: f0:a4:f9:6d:ce:4d:5f:ac:5e:4b:78:c2:d5:ae:6f:d7:e7:2e: 11:8e:bc:77:10:b0:2e:97:6b:bc:fe:e1:b0:4a:d7:4c:ad:e7: 40:f4:fc:46:bd:cc:f4:64:48:08:9a:1a:0e:82:15:e9:f3:36: 7a:ea:d1:99:bd:f6:d3:5c:ac:68:e7:a5:60:00:ea:98:9f:29: 83:24:b2:6d:30:b5:01:c2:29:34:a6:5d:e7:11:0f:7c:af:aa: 29:5c:ff:e1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTVCQTkxMTAvBgNVBAUTKDIyNDVBRDkxNTQzQUREQUQ3ODEyM0RENDE1RDY1OUJC NTJENUZCNjIwHhcNMjQwMTAyMjExODUwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0N2RiOS1mMDJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomtMvWNXquAUpFgIlyFBVDczf80I6C6UrtV00TJjMGH77ooXffuxf3yWG64l kTgfCZ6Z8BgGGY3fQ6QKOKf1CwnFP3Hmr6Sj0UZz+T1EI0VCzE5pa1O6Tt7S8e8I 85XSh9zt3mz3gCjQEBAoc6rC1rW7cl3eBZJznBQ9Ue8Y4FHowpkD7aoVu7Ip4rK+ Tzncyxm1JU3/qrbWLcfOzWLo8/cKmTkbasxoNK8uOGpxf3sMtXq2p9R8VVGfFxen tJNF71alEGvtAB5U0rSYDlTVbD/pSQae7P3vDOaNai3TwnUZQnZxQvuM1sfzgRZh e5UrZOVpInV8hHnpOk75xMz2dQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCp5sKcs 6DBcw898EAtKpv1iOstPMB8GA1UdIwQYMBaAFCJFrZFUOt2teBI91BXWWbtS1fti MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NUJBOS9EODkxNDc4Qzgz OEUxMUVBOENFQTA5NjBDNEY5QUUwMi9Ja1d0a1ZRNjNhMTRFajNVRmRaWnUxTFYt MkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lrV3RrVlE2M2ExNEVqM1VGZFpadTFMVi0ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTVCQTkvRDg5MTQ3OEM4MzhFMTFFQThDRUEwOTYwQzRGOUFFMDIvNTRERDY5RkE4 MzkwMTFFQUI1QjgyMjYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBARgCaADBAaEk0AwDQYJKoZIhvcNAQELBQADggEBAOfP0wm9 mzQyBadU5bESOs/mU6S2hxu0WuHl/S6GLhzm6uT/+8hLlYcqhdnXjXrYc6cfXZGa Tozbsdw/Rj02E4IamUFeVWZnppC38U0cfzk6u1HnZDZErDv6poBdr9Qd21hhS08i 1hhvBG1uBkZtn8osWhGsklO/8guMHG0Qq0xcnRehpUUg4au5m1kguiTMNqtRF19l mnKv4JTfAekqb3FwU/Ck+W3OTV+sXkt4wtWub9fnLhGOvHcQsC6Xa7z+4bBK10yt 50D0/Ea9zPRkSAiaGg6CFenzNnrq0Zm99tNcrGjnpWAA6pifKYMksm0wtQHCKTSm XecRD3yvqilc/+E= -----END CERTIFICATE-----Generated at Tue May 28 22:32:35 2024 by rpki-client on console-fra.rpki-client.org