$ rpki-client -vvf rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/7BAB9AF01B3D11EE903BB536C4F9AE02.roa File: 7BAB9AF01B3D11EE903BB536C4F9AE02.roa (raw, json) Hash identifier: IzlO4PEZ6TJqN+vF6zxFN0seCjb2xtchcqkkRjxaWWE= Subject key identifier: E0:DE:BA:10:15:5D:B4:CD:DA:5D:3B:03:9E:55:93:EE:BE:8E:67:41 Certificate issuer: /CN=A919EE77/serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Certificate serial: 06A8 Authority key identifier: B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/7BAB9AF01B3D11EE903BB536C4F9AE02.roa Signing time: Tue 30 Jan 2024 14:06:23 +0000 ROA not before: Tue 30 Jan 2024 14:06:23 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 133448 IP address blocks: 119.42.33.0/24 maxlen: 24 119.42.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 22:53:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1704 (0x6a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EE77/serialNumber=B781A2E7D91EDCA8B030DE3EA89FA4FAF1791F21 Validity Not Before: Jan 30 14:06:23 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65b9025f-ef46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:bd:cd:fa:a5:24:a3:f5:d3:7f:b2:f8:68:28: 6f:f3:89:a0:dd:e5:23:f4:9f:f2:5d:02:e1:51:8d: e7:6d:c8:1b:de:15:ee:74:dc:8a:83:f6:7c:c8:57: e5:fb:14:55:09:46:a6:73:2a:53:08:e1:e4:a6:d2: ad:2a:05:c8:30:57:af:d4:08:8d:95:f1:79:4a:23: 52:31:ac:89:92:aa:20:80:8f:86:2e:54:ef:7b:1a: 1f:2b:5d:94:2d:31:36:ca:59:fd:ee:b1:74:8d:49: d9:a2:de:f8:2e:47:80:93:ca:7a:f6:34:fe:47:d0: 5f:3a:a1:92:14:16:8d:32:9f:b9:4d:fc:50:11:9c: 42:f7:35:c2:5c:34:86:08:85:87:62:e6:dc:8e:ff: 43:af:86:87:d4:15:4b:f0:b9:8b:5c:bd:cf:a6:00: 95:40:91:2b:8f:ea:e1:8e:eb:cf:1f:67:a7:99:78: bc:3f:77:fe:04:f7:f2:8b:46:cc:c5:7c:63:39:95: 7c:b4:10:a5:19:f3:b7:d4:56:d7:9a:97:e7:6f:a0: fa:3d:eb:a1:ee:60:d0:f4:86:83:5e:0a:76:6d:6c: 42:d8:04:ad:cd:9a:df:6f:b4:9e:05:f1:0b:f3:6a: 38:3d:4a:7c:3b:55:24:59:5c:1a:99:65:ef:74:35: 96:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:DE:BA:10:15:5D:B4:CD:DA:5D:3B:03:9E:55:93:EE:BE:8E:67:41 X509v3 Authority Key Identifier: keyid:B7:81:A2:E7:D9:1E:DC:A8:B0:30:DE:3E:A8:9F:A4:FA:F1:79:1F:21 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/t4Gi59ke3KiwMN4-qJ-k-vF5HyE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EE77/D9BE07BA0CED11EBA7F1115BC4F9AE02/7BAB9AF01B3D11EE903BB536C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.42.33.0/24 119.42.35.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:28:4c:41:53:ea:05:e5:b1:cd:5d:0a:4e:df:15:44:23:7f: d0:41:16:86:4f:57:16:8f:9a:a8:09:d4:5a:87:59:3f:43:93: 37:6d:60:26:74:0c:78:80:a2:ae:e8:fe:1c:42:ab:01:6c:7f: 49:3b:34:07:e0:24:5c:b9:73:48:df:32:eb:80:be:13:54:4a: 67:fe:4a:26:f8:99:d7:b0:bf:6c:30:46:87:50:15:28:49:49: 89:6e:98:a5:9a:68:be:00:52:29:25:d5:80:ca:73:c9:05:32: 46:d4:9a:e0:82:de:0d:3b:65:99:a4:5b:9e:4c:9c:d6:93:82: 8a:1f:cb:b7:cf:64:34:90:92:58:1c:b6:3b:62:c4:75:a6:4a: 73:01:88:7e:34:1d:2b:98:da:87:56:df:26:54:e6:63:22:e8: ea:4e:4f:71:fd:ed:3a:04:70:6b:e8:b6:56:6f:4f:9a:94:16: 4f:b4:47:c4:77:e6:48:4b:5d:18:a9:58:e0:cd:73:ac:71:42: 8e:b7:ed:22:36:67:32:df:62:a3:37:c5:9a:ab:c3:37:39:aa: 44:8b:f8:ae:db:c7:f1:42:1c:0e:22:19:a6:54:ba:f1:77:a2: 52:68:57:dc:4e:14:aa:36:da:ff:4a:ad:e5:f8:fe:b5:f6:e8: 25:a5:6c:11 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBqgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVFNzcxMTAvBgNVBAUTKEI3ODFBMkU3RDkxRURDQThCMDMwREUzRUE4OUZBNEZB RjE3OTFGMjEwHhcNMjQwMTMwMTQwNjIzWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MDI1Zi1lZjQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA273N+qUko/XTf7L4aChv84mg3eUj9J/yXQLhUY3nbcgb3hXudNyKg/Z8yFfl +xRVCUamcypTCOHkptKtKgXIMFev1AiNlfF5SiNSMayJkqoggI+GLlTvexofK12U LTE2yln97rF0jUnZot74LkeAk8p69jT+R9BfOqGSFBaNMp+5TfxQEZxC9zXCXDSG CIWHYubcjv9Dr4aH1BVL8LmLXL3PpgCVQJErj+rhjuvPH2enmXi8P3f+BPfyi0bM xXxjOZV8tBClGfO31FbXmpfnb6D6Peuh7mDQ9IaDXgp2bWxC2AStzZrfb7SeBfEL 82o4PUp8O1UkWVwamWXvdDWWFQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFODeuhAV XbTN2l07A55Vk+6+jmdBMB8GA1UdIwQYMBaAFLeBoufZHtyosDDePqifpPrxeR8h MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUU3Ny9EOUJFMDdCQTBD RUQxMUVCQTdGMTExNUJDNEY5QUUwMi90NEdpNTlrZTNLaXdNTjQtcUotay12RjVI eUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Q0R2k1OWtlM0tpd01ONC1xSi1rLXZGNUh5RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVFNzcvRDlCRTA3QkEwQ0VEMTFFQkE3RjExMTVCQzRGOUFFMDIvN0JBQjlBRjAx QjNEMTFFRTkwM0JCNTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB3KiEDBAB3KiMwDQYJKoZIhvcNAQELBQADggEBAD0oTEFT 6gXlsc1dCk7fFUQjf9BBFoZPVxaPmqgJ1FqHWT9DkzdtYCZ0DHiAoq7o/hxCqwFs f0k7NAfgJFy5c0jfMuuAvhNUSmf+Sib4mdewv2wwRodQFShJSYlumKWaaL4AUikl 1YDKc8kFMkbUmuCC3g07ZZmkW55MnNaTgoofy7fPZDSQklgctjtixHWmSnMBiH40 HSuY2odW3yZU5mMi6OpOT3H97ToEcGvotlZvT5qUFk+0R8R35khLXRipWODNc6xx Qo637SI2ZzLfYqM3xZqrwzc5qkSL+K7bx/FCHA4iGaZUuvF3olJoV9xOFKo22v9K reX4/rX26CWlbBE= -----END CERTIFICATE-----Generated at Thu May 2 23:48:44 2024 by rpki-client on console-fra.rpki-client.org