$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C828314A02CC11E6AA35863CC4F9AE02.roa File: C828314A02CC11E6AA35863CC4F9AE02.roa (raw, json) Hash identifier: tW1mGEPFjClIsfAfbqb1Da66ImzUBQ8a0SdqYQq9Z0Y= Subject key identifier: 1E:EC:C4:92:92:08:3D:B1:D5:4E:54:B1:EF:A5:7A:5D:DF:42:C9:73 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 227A Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C828314A02CC11E6AA35863CC4F9AE02.roa Signing time: Thu 20 Jul 2023 16:12:58 +0000 ROA not before: Thu 20 Jul 2023 16:12:58 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 18115 IP address blocks: 112.198.48.0/24 maxlen: 24 203.177.228.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8826 (0x227a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Jul 20 16:12:58 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b95d09-56b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1e:c7:6e:3a:5b:06:23:79:21:83:2a:d7:fe: 32:5a:b3:42:14:3a:0a:6d:81:19:d1:00:4d:89:15: fc:4c:c4:0f:bd:14:f2:10:c8:8d:c8:b9:09:49:b0: 9b:e0:a4:8b:ae:38:03:66:90:b4:ff:5a:1a:b4:da: bf:65:ba:f5:15:6b:39:af:36:92:88:b0:8f:d4:8f: 76:f8:c9:57:85:2c:fb:9b:e4:8b:f9:2e:47:3e:47: 9d:eb:26:59:e3:58:38:7f:0f:8f:6e:78:ee:e9:1a: a7:f0:93:9b:1d:73:c8:29:31:f5:35:9c:7e:c5:57: 4a:fe:34:e5:d2:0c:ee:43:6d:69:3f:f5:30:7f:d4: 5f:3a:fd:84:1a:eb:d9:64:e3:44:57:c7:1b:2b:83: 70:45:75:09:59:36:71:6b:2c:0b:cf:2b:0b:45:63: 50:4e:6b:85:36:13:f7:13:2e:1a:05:29:e8:6f:e0: b4:23:a8:99:07:a8:0c:12:ca:8d:cc:11:94:2c:33: 28:5f:74:cc:67:51:e2:ef:b9:10:07:7f:41:01:9c: 03:aa:2b:52:5c:0a:c3:27:c6:aa:d1:34:1e:d3:3b: 3a:81:48:b3:2a:14:8e:61:b7:69:48:60:73:3d:ca: de:51:78:12:9e:a0:85:5d:aa:4f:d5:9e:c4:1e:d3: 1e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:EC:C4:92:92:08:3D:B1:D5:4E:54:B1:EF:A5:7A:5D:DF:42:C9:73 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C828314A02CC11E6AA35863CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.198.48.0/24 203.177.228.0/24 Signature Algorithm: sha256WithRSAEncryption e0:3b:ee:d9:13:d2:9f:c2:38:fa:6a:ac:97:3b:9d:89:03:99: 56:cf:d4:54:c6:ff:15:15:87:e4:68:f6:60:1c:a5:68:df:99: a1:1b:6f:04:ec:57:0e:1e:07:2b:e0:63:8e:a4:3b:25:5c:c9: 72:bb:e1:44:d9:0b:2b:11:e7:38:fb:23:c2:b3:21:4e:b0:36: bb:55:d2:78:32:14:00:7b:93:88:68:bd:aa:de:90:5b:29:5c: 45:39:13:4d:5b:a1:87:b6:e9:c4:91:7d:db:5f:9e:df:a8:a1: e4:ed:b0:03:55:c7:8e:61:df:d0:c3:63:4c:28:4a:7d:cb:6a: 8c:07:4a:cf:b1:37:50:1a:76:45:6f:e5:1e:c8:5a:50:08:3f: 04:52:aa:06:6f:5e:e8:09:c5:70:3e:38:14:7d:be:7e:d1:95: 23:61:12:b6:ee:55:14:86:86:09:85:df:1e:f9:1e:0e:36:64: e3:aa:0a:cb:30:83:c7:8e:5a:d9:6a:9b:0a:a3:5a:8f:7a:8a: 8b:fa:40:cf:70:3a:e1:e8:6d:15:f9:11:87:fa:5c:e5:b8:80: 3b:a7:1f:c2:ef:85:ba:cf:ff:fa:12:80:d4:90:3b:3c:fc:62: 93:00:cf:7f:4f:7e:5f:8c:fe:27:3d:90:84:e0:13:12:af:03: 84:c5:f4:60 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICInowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjMwNzIwMTYxMjU4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5NWQwOS01NmIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuB7HbjpbBiN5IYMq1/4yWrNCFDoKbYEZ0QBNiRX8TMQPvRTyEMiNyLkJSbCb 4KSLrjgDZpC0/1oatNq/Zbr1FWs5rzaSiLCP1I92+MlXhSz7m+SL+S5HPked6yZZ 41g4fw+Pbnju6Rqn8JObHXPIKTH1NZx+xVdK/jTl0gzuQ21pP/Uwf9RfOv2EGuvZ ZONEV8cbK4NwRXUJWTZxaywLzysLRWNQTmuFNhP3Ey4aBSnob+C0I6iZB6gMEsqN zBGULDMoX3TMZ1Hi77kQB39BAZwDqitSXArDJ8aq0TQe0zs6gUizKhSOYbdpSGBz PcreUXgSnqCFXapP1Z7EHtMe1QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFB7sxJKS CD2x1U5Use+lel3fQslzMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQzgyODMxNEEw MkNDMTFFNkFBMzU4NjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABwxjADBADLseQwDQYJKoZIhvcNAQELBQADggEBAOA77tkT 0p/COPpqrJc7nYkDmVbP1FTG/xUVh+Ro9mAcpWjfmaEbbwTsVw4eByvgY46kOyVc yXK74UTZCysR5zj7I8KzIU6wNrtV0ngyFAB7k4hovarekFspXEU5E01boYe26cSR fdtfnt+ooeTtsANVx45h39DDY0woSn3LaowHSs+xN1AadkVv5R7IWlAIPwRSqgZv XugJxXA+OBR9vn7RlSNhErbuVRSGhgmF3x75Hg42ZOOqCsswg8eOWtlqmwqjWo96 iov6QM9wOuHobRX5EYf6XOW4gDunH8LvhbrP//oSgNSQOzz8YpMAz39Pfl+M/ic9 kITgExKvA4TF9GA= -----END CERTIFICATE-----Generated at Fri May 31 17:44:23 2024 by rpki-client on console-fra.rpki-client.org