$ rpki-client -vvf rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/F6D63E40054A11EAA00FB024C4F9AE02.roa File: F6D63E40054A11EAA00FB024C4F9AE02.roa (raw, json) Hash identifier: 8FohK/zegKwO9kEnPSVAChVsdZMDlGzmpA55SZVmIQ0= Subject key identifier: A9:DC:AE:9A:F6:35:96:C1:C4:D2:C0:B3:EF:C3:84:7F:33:A0:C4:43 Certificate issuer: /CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Certificate serial: 33DA Authority key identifier: 96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/F6D63E40054A11EAA00FB024C4F9AE02.roa Signing time: Tue 31 Oct 2023 14:40:24 +0000 ROA not before: Tue 31 Oct 2023 14:40:24 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132604 IP address blocks: 118.179.138.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:26:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13274 (0x33da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919EFDE/serialNumber=9669CD5B3D8735815A65D659F2741B43E64732B2 Validity Not Before: Oct 31 14:40:24 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654111d7-8972 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:a7:52:ba:b6:b2:71:8c:eb:c5:5d:40:cd:f4: 1c:81:db:a7:79:6d:77:47:12:e8:79:51:22:0d:97: 1b:64:83:0c:69:98:55:98:8f:5f:19:30:a3:4e:35: f2:3b:ce:6a:a0:4e:a2:a3:04:f0:6f:a7:1f:1e:ea: 3f:43:80:8d:43:29:87:fb:ab:d9:a0:de:da:84:64: 98:d9:34:8c:dd:12:cc:53:8e:61:93:08:c5:6b:39: a3:c8:20:0b:b7:15:7d:ed:06:2a:72:ed:d6:cc:2a: 9a:12:bb:24:82:5f:ab:fa:8b:7d:3d:2d:80:e2:21: 87:fd:aa:b1:87:d2:9d:82:b2:59:70:46:cd:be:ed: ce:25:5b:d7:50:0f:96:8d:83:07:a8:7c:7d:e9:d9: 70:a5:af:96:be:bb:e9:58:38:36:bb:b8:c2:b9:a2: ee:c3:18:11:ad:fe:e0:84:b2:78:4a:03:3c:49:cf: 83:8a:35:cb:23:26:23:f6:e2:ff:3e:4c:e3:0d:ff: 17:81:d7:4a:b4:66:41:ed:8b:ce:63:eb:e2:51:7b: 54:66:ae:2d:02:e8:b3:49:3d:ef:d9:e1:9d:b0:fe: 3c:5c:c3:12:22:92:ab:f0:de:9f:7f:5b:4d:98:3d: 75:91:92:c4:06:04:a3:d4:02:2c:6a:65:14:41:20: e9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:DC:AE:9A:F6:35:96:C1:C4:D2:C0:B3:EF:C3:84:7F:33:A0:C4:43 X509v3 Authority Key Identifier: keyid:96:69:CD:5B:3D:87:35:81:5A:65:D6:59:F2:74:1B:43:E6:47:32:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lmnNWz2HNYFaZdZZ8nQbQ-ZHMrI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919EFDE/CC45ECA81D8411E2956D03DB08B02CD2/F6D63E40054A11EAA00FB024C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.179.138.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:c7:12:7a:b3:ab:10:00:67:7c:1a:23:06:9d:5b:ac:e4:d1: e8:a3:46:b9:16:a4:cb:c6:96:c9:d8:3a:9c:b7:bc:02:81:f5: 9c:86:a2:ba:fa:50:e0:01:aa:ea:81:8e:74:4d:6b:6a:08:4c: 0c:55:6b:93:e6:d5:58:29:7a:ac:f8:6a:7b:b6:cc:9d:06:04: df:d4:23:f3:20:61:78:15:d4:5d:27:b1:24:3c:33:c7:96:0f: f0:d7:91:69:29:7e:1b:80:46:b9:c8:5c:3a:8a:1e:27:f1:7a: b8:49:e6:36:62:a6:9e:b7:b1:56:65:85:1e:0f:88:ad:5e:ff: 3b:cc:dd:fe:44:a4:4e:2e:c8:f2:4b:7b:23:5b:e0:59:bd:1d: e5:e1:94:05:5c:9f:dc:f1:e6:af:b0:b8:83:e7:2e:9d:a4:5a: 96:95:69:d5:02:0d:24:34:ca:db:60:30:7d:53:15:bc:93:c3: 03:30:de:18:02:41:66:a3:e0:5d:f0:6e:ea:43:a1:78:f2:f4: 55:32:01:1c:66:80:ff:9a:6c:df:fd:1d:95:7e:9c:56:e2:a1: 1d:f1:2a:80:89:ac:78:e8:3d:24:80:92:a1:a3:c5:41:85:28: 84:0f:81:d8:97:c7:96:08:1c:ea:23:91:36:15:1c:f7:92:8f: b1:55:d4:56 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVGREUxMTAvBgNVBAUTKDk2NjlDRDVCM0Q4NzM1ODE1QTY1RDY1OUYyNzQxQjQz RTY0NzMyQjIwHhcNMjMxMDMxMTQ0MDI0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQxMTFkNy04OTcyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAladSuraycYzrxV1AzfQcgduneW13RxLoeVEiDZcbZIMMaZhVmI9fGTCjTjXy O85qoE6iowTwb6cfHuo/Q4CNQymH+6vZoN7ahGSY2TSM3RLMU45hkwjFazmjyCAL txV97QYqcu3WzCqaErskgl+r+ot9PS2A4iGH/aqxh9KdgrJZcEbNvu3OJVvXUA+W jYMHqHx96dlwpa+WvrvpWDg2u7jCuaLuwxgRrf7ghLJ4SgM8Sc+DijXLIyYj9uL/ PkzjDf8XgddKtGZB7YvOY+viUXtUZq4tAuizST3v2eGdsP48XMMSIpKr8N6ff1tN mD11kZLEBgSj1AIsamUUQSDpgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKncrpr2 NZbBxNLAs+/DhH8zoMRDMB8GA1UdIwQYMBaAFJZpzVs9hzWBWmXWWfJ0G0PmRzKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUZERS9DQzQ1RUNBODFE ODQxMUUyOTU2RDAzREIwOEIwMkNEMi9sbW5OV3oySE5ZRmFaZFpaOG5RYlEtWkhN ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2xtbk5XejJITllGYVpkWlo4blFiUS1aSE1ySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVGREUvQ0M0NUVDQTgxRDg0MTFFMjk1NkQwM0RCMDhCMDJDRDIvRjZENjNFNDAw NTRBMTFFQUEwMEZCMDI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF2s4owDQYJKoZIhvcNAQELBQADggEBABrHEnqzqxAAZ3wa IwadW6zk0eijRrkWpMvGlsnYOpy3vAKB9ZyGorr6UOABquqBjnRNa2oITAxVa5Pm 1Vgpeqz4anu2zJ0GBN/UI/MgYXgV1F0nsSQ8M8eWD/DXkWkpfhuARrnIXDqKHifx erhJ5jZipp63sVZlhR4PiK1e/zvM3f5EpE4uyPJLeyNb4Fm9HeXhlAVcn9zx5q+w uIPnLp2kWpaVadUCDSQ0yttgMH1TFbyTwwMw3hgCQWaj4F3wbupDoXjy9FUyARxm gP+abN/9HZV+nFbioR3xKoCJrHjoPSSAkqGjxUGFKIQPgdiXx5YIHOojkTYVHPeS j7FV1FY= -----END CERTIFICATE-----Generated at Fri May 24 15:43:21 2024 by rpki-client on console-fra.rpki-client.org