$ rpki-client -vvf rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/EA7000B2ABAA11EAAA93741EC4F9AE02.roa File: EA7000B2ABAA11EAAA93741EC4F9AE02.roa (raw, json) Hash identifier: qDzGWb5iAzXTrquFfas7IFpCBV3IzuaiszdzanC0KF8= Subject key identifier: 4F:26:21:7E:F8:CE:01:72:EF:DD:92:11:8A:58:AC:BF:74:78:9F:78 Certificate issuer: /CN=A9114F46/serialNumber=678EBBA2F848E3C8E5F072749005C8415252DB85 Certificate serial: 07BC Authority key identifier: 67:8E:BB:A2:F8:48:E3:C8:E5:F0:72:74:90:05:C8:41:52:52:DB:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z467ovhI48jl8HJ0kAXIQVJS24U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/EA7000B2ABAA11EAAA93741EC4F9AE02.roa Signing time: Mon 18 Sep 2023 21:18:19 +0000 ROA not before: Mon 18 Sep 2023 21:18:19 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 10127 IP address blocks: 202.124.28.0/24 maxlen: 24 202.124.29.0/24 maxlen: 24 202.124.30.0/24 maxlen: 24 202.124.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/Z467ovhI48jl8HJ0kAXIQVJS24U.crl rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/Z467ovhI48jl8HJ0kAXIQVJS24U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z467ovhI48jl8HJ0kAXIQVJS24U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:32:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1980 (0x7bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9114F46/serialNumber=678EBBA2F848E3C8E5F072749005C8415252DB85 Validity Not Before: Sep 18 21:18:19 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6508be9a-e4d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f6:b4:f1:f1:89:4a:65:c8:2a:f9:9b:73:d9: 42:d6:08:ae:0d:64:9c:3d:26:6f:38:85:37:9f:b4: 30:4d:2e:a3:dd:d0:36:bc:b5:2f:31:3d:66:83:9e: b2:63:21:50:94:f4:bc:ad:3f:7d:45:c9:d8:df:f4: 5c:96:f3:0d:ad:ca:8a:54:64:26:15:7b:29:bc:63: 5a:0a:bb:06:17:a7:94:af:d6:6f:ac:45:33:99:9f: 54:dc:28:b8:f2:67:0b:bf:ee:29:14:83:cb:da:52: f8:f6:7c:1e:20:e6:de:22:1a:bf:ed:c0:0e:27:01: f9:39:db:b6:09:57:a4:5f:15:c6:e9:1f:2c:54:6f: 3a:6c:cb:44:e1:d6:90:5b:26:1a:30:d6:e7:09:22: 7b:0a:e9:00:50:c2:47:f4:cf:77:6a:e5:60:87:06: 65:77:8c:ab:c5:1c:8b:ca:bd:78:3a:61:4e:c3:4e: df:a9:aa:5f:80:d1:bc:dc:56:7f:90:f8:5a:08:b7: 44:22:26:04:f3:49:7a:b5:e2:b1:53:94:3a:65:0b: 59:d4:2b:56:62:8a:8a:64:1d:19:10:46:d6:ff:15: 93:31:5f:46:48:2b:2f:00:c0:b7:88:a2:fa:5e:8d: 69:5d:7d:be:f9:fd:8c:fd:d6:59:b8:33:b2:6b:3e: 3b:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:26:21:7E:F8:CE:01:72:EF:DD:92:11:8A:58:AC:BF:74:78:9F:78 X509v3 Authority Key Identifier: keyid:67:8E:BB:A2:F8:48:E3:C8:E5:F0:72:74:90:05:C8:41:52:52:DB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/Z467ovhI48jl8HJ0kAXIQVJS24U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z467ovhI48jl8HJ0kAXIQVJS24U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9114F46/EFA69510ABA911EA91E5BF1DC4F9AE02/EA7000B2ABAA11EAAA93741EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.124.28.0/22 Signature Algorithm: sha256WithRSAEncryption 80:f5:94:0a:a6:ab:99:82:5f:9a:45:a7:c2:1f:c2:c2:2d:68: a4:89:c7:de:07:b6:df:82:aa:c6:79:e4:45:0b:2b:bb:5d:25: 20:4e:23:b0:45:44:d5:a5:c6:93:14:18:bb:3a:e1:dd:b1:51: 0e:ec:8f:ac:93:07:eb:de:c8:dc:6a:eb:50:0e:03:9a:af:6d: bf:45:a1:72:72:25:b6:ac:2b:0d:fc:b9:6d:7f:01:82:b4:c3: 28:27:08:9e:5e:4c:85:f7:0d:c4:a5:48:4e:cc:a2:1e:fd:ab: 4b:17:f3:7c:0d:4b:22:6c:69:0e:89:fd:8c:75:a9:1e:3c:f4: 03:ce:a0:b0:8e:5f:0f:55:8e:b8:f2:0f:4f:d7:af:44:61:ff: a1:df:8d:e3:72:e6:59:73:af:dd:1f:4c:90:08:c8:89:f8:19: 5c:b6:18:f2:ea:2e:cf:d9:23:e2:d8:8d:9e:57:d7:09:6d:dd: 34:09:ae:2e:18:94:62:59:0b:79:3f:fe:6e:e0:d8:f0:71:0d: 31:a5:d7:ff:98:61:16:1a:b7:02:8e:3b:42:23:3a:62:a8:6a: c0:9e:d1:1d:6b:ed:c5:09:f9:7f:9e:df:65:b8:d6:a7:8c:c6: f9:2a:31:1e:3b:a6:66:e5:2a:00:22:67:a7:3f:e7:91:45:5d: bc:c3:b5:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTRGNDYxMTAvBgNVBAUTKDY3OEVCQkEyRjg0OEUzQzhFNUYwNzI3NDkwMDVDODQx NTI1MkRCODUwHhcNMjMwOTE4MjExODE5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA4YmU5YS1lNGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv/a08fGJSmXIKvmbc9lC1giuDWScPSZvOIU3n7QwTS6j3dA2vLUvMT1mg56y YyFQlPS8rT99RcnY3/RclvMNrcqKVGQmFXspvGNaCrsGF6eUr9ZvrEUzmZ9U3Ci4 8mcLv+4pFIPL2lL49nweIObeIhq/7cAOJwH5Odu2CVekXxXG6R8sVG86bMtE4daQ WyYaMNbnCSJ7CukAUMJH9M93auVghwZld4yrxRyLyr14OmFOw07fqapfgNG83FZ/ kPhaCLdEIiYE80l6teKxU5Q6ZQtZ1CtWYoqKZB0ZEEbW/xWTMV9GSCsvAMC3iKL6 Xo1pXX2++f2M/dZZuDOyaz47OQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE8mIX74 zgFy792SEYpYrL90eJ94MB8GA1UdIwQYMBaAFGeOu6L4SOPI5fBydJAFyEFSUtuF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNEY0Ni9FRkE2OTUxMEFC QTkxMUVBOTFFNUJGMURDNEY5QUUwMi9aNDY3b3ZoSTQ4amw4SEowa0FYSVFWSlMy NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1o0NjdvdmhJNDhqbDhISjBrQVhJUVZKUzI0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTRGNDYvRUZBNjk1MTBBQkE5MTFFQTkxRTVCRjFEQzRGOUFFMDIvRUE3MDAwQjJB QkFBMTFFQUFBOTM3NDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKfBwwDQYJKoZIhvcNAQELBQADggEBAID1lAqmq5mCX5pF p8IfwsItaKSJx94Htt+CqsZ55EULK7tdJSBOI7BFRNWlxpMUGLs64d2xUQ7sj6yT B+veyNxq61AOA5qvbb9FoXJyJbasKw38uW1/AYK0wygnCJ5eTIX3DcSlSE7Moh79 q0sX83wNSyJsaQ6J/Yx1qR489APOoLCOXw9VjrjyD0/Xr0Rh/6HfjeNy5llzr90f TJAIyIn4GVy2GPLqLs/ZI+LYjZ5X1wlt3TQJri4YlGJZC3k//m7g2PBxDTGl1/+Y YRYatwKOO0IjOmKoasCe0R1r7cUJ+X+e32W41qeMxvkqMR47pmblKgAiZ6c/55FF XbzDtSA= -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:08 2024 by rpki-client on console-ams.rpki-client.org