$ rpki-client -vvf rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F9424C6C80FA11ED9B35954DC4F9AE02.roa File: F9424C6C80FA11ED9B35954DC4F9AE02.roa (raw, json) Hash identifier: VH7Az1l3/C2rodFNPFK9l0cDE+AV/Y9VchB0X9wxyLY= Subject key identifier: E4:5E:10:7E:85:85:4D:37:08:AD:13:F8:B5:3D:46:5D:59:81:EB:3D Certificate issuer: /CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Certificate serial: E5 Authority key identifier: 3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F9424C6C80FA11ED9B35954DC4F9AE02.roa Signing time: Tue 05 Sep 2023 03:33:43 +0000 ROA not before: Tue 05 Sep 2023 03:33:43 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 7575 IP address blocks: 138.80.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 229 (0xe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F81AD/serialNumber=3B87690EF405567383B6F72FDD301160CE821F2B Validity Not Before: Sep 5 03:33:43 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f6a197-d8c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:39:39:f5:ff:d3:90:a8:f3:17:a2:f6:84:d3: 67:14:61:96:f6:d1:dc:21:87:d9:15:13:d0:4a:ce: 08:f1:b4:9c:3a:07:a7:1d:59:4b:3b:e9:82:8a:65: 7c:d6:e1:e5:66:26:54:5f:86:e1:64:2d:38:46:19: 26:9f:df:5e:05:54:0d:d3:12:4b:d2:66:4f:cc:96: cc:cd:4d:4e:e2:6c:33:56:26:46:a4:aa:a1:e6:d2: 37:82:80:cd:aa:0b:7f:c8:1b:e8:41:07:dd:9d:97: 42:26:d5:b9:27:6f:79:b6:cc:21:45:61:20:b9:9a: 5d:60:1a:f5:0e:42:ac:45:ee:1e:a0:00:44:71:9e: 19:8b:44:f3:85:65:70:6b:48:d6:b0:fe:b0:dc:3c: c5:ca:75:41:72:f9:5f:fa:28:80:34:0f:00:12:54: 78:1d:5b:07:e4:7d:8b:ae:8c:25:8a:e4:60:b9:bb: bd:b0:75:8d:4d:c2:c7:0b:49:68:cb:4f:bd:10:4f: 3c:75:99:2d:a7:c3:54:ce:dd:ae:df:eb:4c:48:98: 54:a5:40:59:e9:51:31:03:fe:4c:af:96:59:54:f1: 8b:6e:d4:1c:bc:3b:0c:5a:ce:03:ea:99:d3:b9:1f: a3:a6:6f:8d:79:9d:49:dd:e7:5f:30:77:22:3b:a1: 17:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:5E:10:7E:85:85:4D:37:08:AD:13:F8:B5:3D:46:5D:59:81:EB:3D X509v3 Authority Key Identifier: keyid:3B:87:69:0E:F4:05:56:73:83:B6:F7:2F:DD:30:11:60:CE:82:1F:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/O4dpDvQFVnODtvcv3TARYM6CHys.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/O4dpDvQFVnODtvcv3TARYM6CHys.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F81AD/43A511AE2CBE11ED99824B4CC4F9AE02/F9424C6C80FA11ED9B35954DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 138.80.0.0/16 Signature Algorithm: sha256WithRSAEncryption 55:97:70:6e:dc:25:4d:8b:68:b2:21:cc:36:70:3e:95:3f:02: 1e:1e:06:89:22:55:7f:a6:b2:0b:bf:23:f9:3f:4f:2e:7a:1c: 38:d7:49:33:3e:86:bd:e4:b6:13:e3:d3:c5:5e:57:01:73:e6: 13:0d:64:a7:18:36:5c:87:66:e3:af:b0:50:2c:a0:da:2c:0c: 70:5e:72:e7:e0:f1:63:54:8b:63:2a:49:56:da:ed:56:0f:c3: 75:0a:da:c4:30:df:aa:8b:b3:b7:33:16:42:2e:6c:c0:ae:0d: 49:5f:6f:5e:14:9e:49:dc:e9:b7:2b:88:ba:78:a2:28:a7:c1: 1c:af:34:dc:cd:07:93:e1:79:14:81:f6:1d:bc:47:19:03:9c: 06:27:ac:1e:d1:9c:45:15:36:1f:aa:f8:6a:87:80:d6:df:a0: 8e:8f:d4:7f:f0:0d:50:3f:e5:5d:59:f1:0b:cf:22:42:64:e5: 5f:67:70:bc:23:8e:e1:47:62:0b:0d:c5:0b:4d:91:0a:10:5b: 8f:1f:11:6e:08:aa:74:e9:24:e2:01:35:0d:ce:d1:4e:99:7e: 7a:a4:d7:d5:45:5e:72:e9:30:4e:33:85:22:ca:06:c5:90:45: 78:5e:78:dc:e0:8f:cd:a8:94:e5:95:7c:40:e6:1b:df:65:e7: 57:5b:b3:20 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjgxQUQxMTAvBgNVBAUTKDNCODc2OTBFRjQwNTU2NzM4M0I2RjcyRkREMzAxMTYw Q0U4MjFGMkIwHhcNMjMwOTA1MDMzMzQzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2YTE5Ny1kOGM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2Tk59f/TkKjzF6L2hNNnFGGW9tHcIYfZFRPQSs4I8bScOgenHVlLO+mCimV8 1uHlZiZUX4bhZC04Rhkmn99eBVQN0xJL0mZPzJbMzU1O4mwzViZGpKqh5tI3goDN qgt/yBvoQQfdnZdCJtW5J295tswhRWEguZpdYBr1DkKsRe4eoABEcZ4Zi0TzhWVw a0jWsP6w3DzFynVBcvlf+iiANA8AElR4HVsH5H2LrowliuRgubu9sHWNTcLHC0lo y0+9EE88dZktp8NUzt2u3+tMSJhUpUBZ6VExA/5Mr5ZZVPGLbtQcvDsMWs4D6pnT uR+jpm+NeZ1J3edfMHciO6EX4wIDAQABo4IClDCCApAwHQYDVR0OBBYEFOReEH6F hU03CK0T+LU9Rl1Zges9MB8GA1UdIwQYMBaAFDuHaQ70BVZzg7b3L90wEWDOgh8r MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGODFBRC80M0E1MTFBRTJD QkUxMUVEOTk4MjRCNENDNEY5QUUwMi9PNGRwRHZRRlZuT0R0dmN2M1RBUllNNkNI eXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL080ZHBEdlFGVm5PRHR2Y3YzVEFSWU02Q0h5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjgxQUQvNDNBNTExQUUyQ0JFMTFFRDk5ODI0QjRDQzRGOUFFMDIvRjk0MjRDNkM4 MEZBMTFFRDlCMzU5NTREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCKUDANBgkqhkiG9w0BAQsFAAOCAQEAVZdwbtwlTYtosiHM NnA+lT8CHh4GiSJVf6ayC78j+T9PLnocONdJMz6GveS2E+PTxV5XAXPmEw1kpxg2 XIdm46+wUCyg2iwMcF5y5+DxY1SLYypJVtrtVg/DdQraxDDfqouztzMWQi5swK4N SV9vXhSeSdzptyuIuniiKKfBHK803M0Hk+F5FIH2HbxHGQOcBiesHtGcRRU2H6r4 aoeA1t+gjo/Uf/ANUD/lXVnxC88iQmTlX2dwvCOO4UdiCw3FC02RChBbjx8Rbgiq dOkk4gE1Dc7RTpl+eqTX1UVecukwTjOFIsoGxZBFeF543OCPzaiU5ZV8QOYb32Xn V1uzIA== -----END CERTIFICATE-----Generated at Fri May 17 06:18:12 2024 by rpki-client on console-fra.rpki-client.org