$ rpki-client -vvf rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/8068BF600E9711EB9A6C2B3CC4F9AE02.roa File: 8068BF600E9711EB9A6C2B3CC4F9AE02.roa (raw, json) Hash identifier: SVn1VVZ+3ZR8Y8pLIZGfkKYftHZSrg4IHpWCNhJjYso= Subject key identifier: 81:2B:18:59:A5:B6:3B:D0:23:CA:05:85:4B:61:BD:21:4A:C2:A5:1A Certificate issuer: /CN=A9110718/serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Certificate serial: 070A Authority key identifier: 76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/8068BF600E9711EB9A6C2B3CC4F9AE02.roa Signing time: Sat 15 Jun 2024 00:02:17 +0000 ROA not before: Sat 15 Jun 2024 00:02:17 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 131245 IP address blocks: 202.92.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1802 (0x70a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110718/serialNumber=76174625E81632D38DF62A83B57B03BA2887E6F5 Validity Not Before: Jun 15 00:02:17 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=666cda08-bfbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:05:f5:65:3e:b0:46:85:db:90:16:ad:95:b8: 4e:c5:33:0c:76:5c:68:14:ad:e7:4b:5a:7c:18:19: ab:74:de:6b:33:d3:0a:30:36:0a:8a:78:e1:50:80: 1b:dc:00:60:df:dd:62:96:22:58:f7:8c:83:bc:76: 7f:76:98:23:8e:29:ae:60:f0:7f:ac:e7:6c:f9:94: 59:f1:ad:07:f1:6b:28:63:81:b0:4f:fe:fa:ef:56: 6e:f8:4d:3f:70:00:2d:8e:5b:76:b5:01:09:a6:31: d2:3e:84:0e:a9:5d:9b:b8:30:72:fa:f6:b6:4e:2e: d4:12:b3:95:64:72:f2:5d:d1:69:4b:c1:6c:6f:99: aa:f8:7f:5c:91:03:f9:09:f3:b8:7d:1d:7d:e8:4b: da:5d:22:59:1d:8a:26:2b:eb:87:0e:65:48:6f:30: 87:8d:c4:ca:a3:86:6f:7c:a8:e3:91:7d:93:d1:44: cf:6c:5e:e3:00:ee:a1:d4:f3:6e:31:f2:7a:7c:f0: ea:ef:89:fb:00:54:46:fc:3d:a3:83:46:d7:d9:09: 2a:4d:2d:7f:15:e0:f6:e2:2c:3c:c5:2f:6f:6f:8d: 55:79:eb:c6:60:af:48:6a:91:94:31:c5:8f:23:e5: be:5b:ea:4a:d0:d2:2f:dd:60:a4:a4:6c:00:01:be: 00:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:2B:18:59:A5:B6:3B:D0:23:CA:05:85:4B:61:BD:21:4A:C2:A5:1A X509v3 Authority Key Identifier: keyid:76:17:46:25:E8:16:32:D3:8D:F6:2A:83:B5:7B:03:BA:28:87:E6:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/dhdGJegWMtON9iqDtXsDuiiH5vU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dhdGJegWMtON9iqDtXsDuiiH5vU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110718/9283EDEE0E9411EB9669E133C4F9AE02/8068BF600E9711EB9A6C2B3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.92.133.0/24 Signature Algorithm: sha256WithRSAEncryption 15:f9:67:0b:64:53:ef:c3:b5:d4:de:09:4d:dd:42:43:7f:b5: 9d:b1:56:d9:65:85:41:30:3a:c5:bb:14:f6:d2:27:4f:fc:aa: 68:50:96:5c:0c:19:8a:b7:4e:16:ab:6b:18:a3:d1:ae:2a:3e: 06:09:70:c3:a4:b9:78:52:a5:d2:66:7b:0c:01:a0:f3:aa:f0: 20:4d:b0:81:99:87:57:e8:04:84:23:ab:05:84:1f:7c:15:4c: 01:2a:64:fb:6b:59:b3:9a:a9:30:53:6c:3e:4c:36:d8:2b:95: 60:2a:15:10:83:09:85:b5:44:a1:c9:cb:58:42:c4:8d:2f:0b: 0b:9e:17:40:b2:d5:ff:66:7c:14:c3:5e:91:45:e6:cd:03:6a: 3e:39:d7:64:64:0e:13:ab:73:90:79:ee:42:ae:3b:50:88:1b: eb:a9:9e:d6:a4:90:1f:5b:f9:4c:be:cc:fb:3d:ae:c6:de:75: 26:c3:0f:dd:f4:72:dc:f3:f9:ed:d0:eb:28:59:47:61:4f:f7: ad:98:3d:9b:3d:a8:ff:ea:12:5a:98:92:0e:16:cc:73:36:1f: 96:65:d5:c1:8e:98:d4:15:f2:60:db:0d:b1:d3:be:d1:da:a3: a3:8e:4f:69:55:47:d0:4b:8c:21:81:a3:6c:a6:8a:fd:6f:20: f2:eb:25:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBwowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA3MTgxMTAvBgNVBAUTKDc2MTc0NjI1RTgxNjMyRDM4REY2MkE4M0I1N0IwM0JB Mjg4N0U2RjUwHhcNMjQwNjE1MDAwMjE3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZjZGEwOC1iZmJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyAX1ZT6wRoXbkBatlbhOxTMMdlxoFK3nS1p8GBmrdN5rM9MKMDYKinjhUIAb 3ABg391iliJY94yDvHZ/dpgjjimuYPB/rOds+ZRZ8a0H8WsoY4GwT/7671Zu+E0/ cAAtjlt2tQEJpjHSPoQOqV2buDBy+va2Ti7UErOVZHLyXdFpS8Fsb5mq+H9ckQP5 CfO4fR196EvaXSJZHYomK+uHDmVIbzCHjcTKo4ZvfKjjkX2T0UTPbF7jAO6h1PNu MfJ6fPDq74n7AFRG/D2jg0bX2QkqTS1/FeD24iw8xS9vb41VeevGYK9IapGUMcWP I+W+W+pK0NIv3WCkpGwAAb4APQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIErGFml tjvQI8oFhUthvSFKwqUaMB8GA1UdIwQYMBaAFHYXRiXoFjLTjfYqg7V7A7ooh+b1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDcxOC85MjgzRURFRTBF OTQxMUVCOTY2OUUxMzNDNEY5QUUwMi9kaGRHSmVnV010T045aXFEdFhzRHVpaUg1 dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RoZEdKZWdXTXRPTjlpcUR0WHNEdWlpSDV2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA3MTgvOTI4M0VERUUwRTk0MTFFQjk2NjlFMTMzQzRGOUFFMDIvODA2OEJGNjAw RTk3MTFFQjlBNkMyQjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKXIUwDQYJKoZIhvcNAQELBQADggEBABX5ZwtkU+/DtdTe CU3dQkN/tZ2xVtllhUEwOsW7FPbSJ0/8qmhQllwMGYq3Tharaxij0a4qPgYJcMOk uXhSpdJmewwBoPOq8CBNsIGZh1foBIQjqwWEH3wVTAEqZPtrWbOaqTBTbD5MNtgr lWAqFRCDCYW1RKHJy1hCxI0vCwueF0Cy1f9mfBTDXpFF5s0Daj4512RkDhOrc5B5 7kKuO1CIG+upntakkB9b+Uy+zPs9rsbedSbDD930ctzz+e3Q6yhZR2FP962YPZs9 qP/qElqYkg4WzHM2H5Zl1cGOmNQV8mDbDbHTvtHao6OOT2lVR9BLjCGBo2ymiv1v IPLrJXM= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:20 2024 by rpki-client on console-ams.rpki-client.org