$ rpki-client -vvf rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/2152B7B06C0411EEBC1AA814C4F9AE02.roa File: 2152B7B06C0411EEBC1AA814C4F9AE02.roa (raw, json) Hash identifier: uM3aIpNluGtsYzZphAI84X+sXAAc8YbQ0FM++FIKSB0= Subject key identifier: D0:F6:58:B0:FC:97:B5:0F:30:AE:A8:09:69:87:7A:D6:3B:E0:63:66 Certificate issuer: /CN=A911A108/serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Certificate serial: CD Authority key identifier: 6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/2152B7B06C0411EEBC1AA814C4F9AE02.roa Signing time: Thu 07 Nov 2024 03:57:09 +0000 ROA not before: Thu 07 Nov 2024 03:57:09 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 134032 IP address blocks: 202.137.254.0/23 maxlen: 23 202.137.254.0/24 maxlen: 24 202.137.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 205 (0xcd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911A108/serialNumber=6A8D3D6BF6DB0F5DE324E420C573B0A91843C794 Validity Not Before: Nov 7 03:57:09 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672c3a95-3a87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ca:ab:88:19:63:44:4f:ba:2e:a2:08:3b:a4: 00:02:08:45:a5:c9:44:57:19:13:c4:20:8c:0f:18: 77:75:7e:ab:c9:02:0d:b2:c2:76:86:f3:55:64:7c: aa:1b:d5:e5:12:98:f9:2f:b0:17:2b:f8:30:13:37: e8:cd:2f:66:96:e8:91:33:76:e3:70:04:6f:ab:31: 72:17:eb:ee:a5:db:e6:7c:23:a5:44:a2:be:66:d9: b8:e3:51:9d:c5:b5:1b:4f:2c:21:29:ca:6a:21:76: 1f:5e:9d:f5:89:83:98:08:98:0b:26:7e:cc:e7:15: 02:63:15:f3:bc:9d:8a:c5:e0:60:60:55:9c:b3:5f: ea:b2:be:e9:57:f3:76:7e:0e:fd:29:3a:60:42:0c: 97:1f:a2:ed:c6:4a:fa:f8:7d:60:c4:c8:49:97:28: 2e:00:11:6b:80:bc:53:4f:e0:0d:28:ba:a3:68:76: 7c:86:32:62:37:d6:dc:61:34:d3:7c:52:df:74:d2: 66:f1:35:84:1d:fa:0a:b4:e9:f6:95:a4:5e:b6:62: d1:37:13:be:a3:04:29:b6:e0:56:00:1b:14:2b:20: 68:f9:ad:86:f9:16:dd:94:4c:d1:46:5e:87:5a:f8: 00:fe:99:6c:cc:c4:40:bf:b5:16:43:b2:53:3a:1e: 1c:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:F6:58:B0:FC:97:B5:0F:30:AE:A8:09:69:87:7A:D6:3B:E0:63:66 X509v3 Authority Key Identifier: keyid:6A:8D:3D:6B:F6:DB:0F:5D:E3:24:E4:20:C5:73:B0:A9:18:43:C7:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/ao09a_bbD13jJOQgxXOwqRhDx5Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ao09a_bbD13jJOQgxXOwqRhDx5Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911A108/F958FC4A6C0011EEB98B430EC4F9AE02/2152B7B06C0411EEBC1AA814C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.137.254.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:5a:99:00:05:a9:10:98:d6:3c:0c:5e:56:21:d2:1a:13:91: cb:5b:9f:ae:b1:e4:28:c5:f0:31:4f:ac:cb:5d:a9:42:69:6a: f7:00:f2:39:53:ac:ff:63:65:73:3a:88:8f:97:66:f8:dc:c0: a9:43:19:d8:e1:0b:79:86:e6:67:7b:55:fa:80:6a:79:7f:c0: e1:83:68:00:14:44:ce:b0:7b:0a:8b:4f:89:9c:2e:88:60:96: bb:cb:88:41:5d:2f:10:d3:c6:2e:6d:3f:9e:81:e8:ff:dd:ff: ff:e6:78:ea:b8:29:05:49:30:6b:54:64:5c:5f:a6:79:3a:01: 01:1e:52:55:2b:89:2e:65:24:2f:e8:fe:2d:32:58:96:be:5f: 8c:00:40:f3:74:9d:d7:79:b8:5e:3d:f8:b6:23:97:58:31:b6: 17:ff:38:cb:16:db:89:13:f9:a4:b5:1e:7f:f2:20:a7:70:2a: 3e:b9:dc:7c:21:b9:75:df:95:c2:94:a8:44:d2:bf:b4:ce:1a: 52:03:02:38:0f:eb:a8:90:99:c4:4f:5a:df:0b:ec:93:6e:a4: 07:8b:2e:96:fd:8e:cd:d9:d1:73:17:b4:dd:d4:93:e6:3d:77: 1b:83:f6:8d:65:dd:ba:69:32:da:44:dc:0d:a7:e9:20:93:25: f7:5b:51:aa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUExMDgxMTAvBgNVBAUTKDZBOEQzRDZCRjZEQjBGNURFMzI0RTQyMEM1NzNCMEE5 MTg0M0M3OTQwHhcNMjQxMTA3MDM1NzA5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJjM2E5NS0zYTg3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw8qriBljRE+6LqIIO6QAAghFpclEVxkTxCCMDxh3dX6ryQINssJ2hvNVZHyq G9XlEpj5L7AXK/gwEzfozS9mluiRM3bjcARvqzFyF+vupdvmfCOlRKK+Ztm441Gd xbUbTywhKcpqIXYfXp31iYOYCJgLJn7M5xUCYxXzvJ2KxeBgYFWcs1/qsr7pV/N2 fg79KTpgQgyXH6Ltxkr6+H1gxMhJlyguABFrgLxTT+ANKLqjaHZ8hjJiN9bcYTTT fFLfdNJm8TWEHfoKtOn2laRetmLRNxO+owQptuBWABsUKyBo+a2G+RbdlEzRRl6H WvgA/plszMRAv7UWQ7JTOh4c2wIDAQABo4IClTCCApEwHQYDVR0OBBYEFND2WLD8 l7UPMK6oCWmHetY74GNmMB8GA1UdIwQYMBaAFGqNPWv22w9d4yTkIMVzsKkYQ8eU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQTEwOC9GOTU4RkM0QTZD MDAxMUVFQjk4QjQzMEVDNEY5QUUwMi9hbzA5YV9iYkQxM2pKT1FneFhPd3FSaER4 NVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FvMDlhX2JiRDEzakpPUWd4WE93cVJoRHg1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUExMDgvRjk1OEZDNEE2QzAwMTFFRUI5OEI0MzBFQzRGOUFFMDIvMjE1MkI3QjA2 QzA0MTFFRUJDMUFBODE0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKif4wDQYJKoZIhvcNAQELBQADggEBADtamQAFqRCY1jwM XlYh0hoTkctbn66x5CjF8DFPrMtdqUJpavcA8jlTrP9jZXM6iI+XZvjcwKlDGdjh C3mG5md7VfqAanl/wOGDaAAURM6wewqLT4mcLohglrvLiEFdLxDTxi5tP56B6P/d ///meOq4KQVJMGtUZFxfpnk6AQEeUlUriS5lJC/o/i0yWJa+X4wAQPN0ndd5uF49 +LYjl1gxthf/OMsW24kT+aS1Hn/yIKdwKj653HwhuXXflcKUqETSv7TOGlIDAjgP 66iQmcRPWt8L7JNupAeLLpb9js3Z0XMXtN3Uk+Y9dxuD9o1l3bppMtpE3A2n6SCT JfdbUao= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:00 2024 by rpki-client on console-ams.rpki-client.org