$ rpki-client -vvf rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/B3501A3838BB11EB9F5B573BC4F9AE02.roa File: B3501A3838BB11EB9F5B573BC4F9AE02.roa (raw, json) Hash identifier: pnMsr3WIwLLBGugSoyMKC/Vhxsbts4ivWI9ZJvyficY= Subject key identifier: 3C:D0:62:2B:CD:AB:72:A9:B2:41:29:52:03:EB:EC:81:91:0D:4B:D1 Certificate issuer: /CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Certificate serial: 33FB Authority key identifier: EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/B3501A3838BB11EB9F5B573BC4F9AE02.roa Signing time: Thu 08 Jun 2023 15:20:48 +0000 ROA not before: Thu 08 Jun 2023 15:20:48 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 137029 IP address blocks: 114.130.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 15:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13307 (0x33fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AABB1/serialNumber=EB7FE9892DF000255FCF3AC0B2B4D12AEA6FF806 Validity Not Before: Jun 8 15:20:48 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6481f1d0-f40a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:9b:de:60:16:c0:60:3c:cd:3b:2f:8a:fd:96: d7:09:df:c7:bf:68:5d:55:ca:93:6b:99:f9:b8:e1: ce:41:94:ac:5b:7f:4f:cc:72:b7:c1:ee:e2:dd:d5: 4e:59:a7:33:81:7a:ca:8b:64:be:a6:c4:b2:85:ce: 18:91:c0:83:31:ca:64:cc:97:e4:75:91:92:ae:da: 23:1b:5d:e0:f8:f0:a9:e0:37:96:1a:25:7f:1f:1a: b0:d1:f0:38:bf:52:de:df:d2:88:ec:12:e0:d4:27: 10:3a:05:78:55:22:60:49:49:dd:1b:68:dd:57:54: b8:7a:ae:af:a1:9c:3d:6e:ae:94:90:67:51:3c:eb: c3:17:38:30:ce:1b:b2:7a:a4:ee:e1:8e:3b:15:ea: db:03:8b:d4:c0:1f:a7:8c:2d:09:25:d5:4d:da:7d: 00:74:5f:84:54:95:9c:a3:8d:c1:18:11:12:b1:e7: 98:3d:c6:f6:05:e8:11:95:ae:84:88:a0:10:5f:5d: 39:00:f1:5a:63:83:d9:a5:f5:01:8f:7f:d7:22:23: cc:78:5e:3e:f2:48:9c:e1:9a:2f:c0:b4:56:c9:b2: 46:2c:cb:ec:b7:9d:2f:29:64:1d:cd:38:9b:c0:6f: 8c:78:9f:99:03:7d:04:08:3b:b5:c2:c6:be:44:44: a3:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:D0:62:2B:CD:AB:72:A9:B2:41:29:52:03:EB:EC:81:91:0D:4B:D1 X509v3 Authority Key Identifier: keyid:EB:7F:E9:89:2D:F0:00:25:5F:CF:3A:C0:B2:B4:D1:2A:EA:6F:F8:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/63_piS3wACVfzzrAsrTRKupv-AY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/63_piS3wACVfzzrAsrTRKupv-AY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AABB1/8874E9E81D9811E29788A98208B02CD2/B3501A3838BB11EB9F5B573BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 114.130.72.0/24 Signature Algorithm: sha256WithRSAEncryption 79:94:d6:9a:3e:51:02:88:2c:ae:eb:d7:11:66:bf:f5:68:ab: 55:c5:10:5a:c9:55:1c:d4:79:7f:14:37:8a:e9:79:42:cc:cd: 28:96:bf:d6:2d:ed:4a:04:d9:01:07:70:bb:2f:9c:e9:3a:93: b6:5a:84:6b:34:0c:6f:00:e1:97:db:5e:be:d9:0b:71:38:21: 5d:f6:52:d2:78:67:f2:4c:32:6d:8f:b6:da:68:cc:8c:1d:0d: 00:55:c7:03:06:c1:f7:81:fe:34:d1:61:b3:70:2c:e7:81:25: 15:be:48:61:0b:fb:d6:72:6c:56:3f:68:e3:2e:2e:a0:6a:a3: 3d:1b:0b:55:74:5c:9c:e6:1a:9a:5b:fb:8b:0d:fe:9c:7a:7b: 9c:a0:16:fb:32:99:56:ce:3d:a7:0f:7a:d2:1c:af:5e:92:c7: a4:35:8f:e4:f8:7e:a8:d3:c2:3c:ac:8b:25:60:8d:12:25:24: eb:0d:9f:66:66:a0:f2:b5:90:c8:26:f6:9b:1f:a4:0d:03:c3: ff:b2:77:7e:26:b3:d2:be:13:d0:07:24:a7:58:63:72:91:d5: 2a:9f:75:c5:fc:75:87:32:f6:c4:16:f8:df:12:c8:35:5c:0d: ff:ce:d3:fe:b2:dd:c4:49:d1:84:ba:10:25:b2:bb:6f:30:49: d5:da:01:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM/swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUFCQjExMTAvBgNVBAUTKEVCN0ZFOTg5MkRGMDAwMjU1RkNGM0FDMEIyQjREMTJB RUE2RkY4MDYwHhcNMjMwNjA4MTUyMDQ4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgxZjFkMC1mNDBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9pveYBbAYDzNOy+K/ZbXCd/Hv2hdVcqTa5n5uOHOQZSsW39PzHK3we7i3dVO WaczgXrKi2S+psSyhc4YkcCDMcpkzJfkdZGSrtojG13g+PCp4DeWGiV/Hxqw0fA4 v1Le39KI7BLg1CcQOgV4VSJgSUndG2jdV1S4eq6voZw9bq6UkGdRPOvDFzgwzhuy eqTu4Y47FerbA4vUwB+njC0JJdVN2n0AdF+EVJWco43BGBESseeYPcb2BegRla6E iKAQX105APFaY4PZpfUBj3/XIiPMeF4+8kic4ZovwLRWybJGLMvst50vKWQdzTib wG+MeJ+ZA30ECDu1wsa+RESjBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDzQYivN q3KpskEpUgPr7IGRDUvRMB8GA1UdIwQYMBaAFOt/6Ykt8AAlX886wLK00Srqb/gG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQUJCMS84ODc0RTlFODFE OTgxMUUyOTc4OEE5ODIwOEIwMkNEMi82M19waVMzd0FDVmZ6enJBc3JUUkt1cHYt QVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzYzX3BpUzN3QUNWZnp6ckFzclRSS3Vwdi1BWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUFCQjEvODg3NEU5RTgxRDk4MTFFMjk3ODhBOTgyMDhCMDJDRDIvQjM1MDFBMzgz OEJCMTFFQjlGNUI1NzNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABygkgwDQYJKoZIhvcNAQELBQADggEBAHmU1po+UQKILK7r 1xFmv/Voq1XFEFrJVRzUeX8UN4rpeULMzSiWv9Yt7UoE2QEHcLsvnOk6k7ZahGs0 DG8A4ZfbXr7ZC3E4IV32UtJ4Z/JMMm2PttpozIwdDQBVxwMGwfeB/jTRYbNwLOeB JRW+SGEL+9ZybFY/aOMuLqBqoz0bC1V0XJzmGppb+4sN/px6e5ygFvsymVbOPacP etIcr16Sx6Q1j+T4fqjTwjysiyVgjRIlJOsNn2ZmoPK1kMgm9psfpA0Dw/+yd34m s9K+E9AHJKdYY3KR1SqfdcX8dYcy9sQW+N8SyDVcDf/O0/6y3cRJ0YS6ECWyu28w SdXaAao= -----END CERTIFICATE-----Generated at Mon May 20 17:23:56 2024 by rpki-client on console-ams.rpki-client.org