$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CCE4E99E02CC11E6AA35863CC4F9AE02.roa File: CCE4E99E02CC11E6AA35863CC4F9AE02.roa (raw, json) Hash identifier: gx8aozWTQf7JXyVgMdC3qWs2Ff9FT4p7BC6NA0UOyBw= Subject key identifier: 88:6E:01:D5:2B:2D:A0:FD:1B:94:FA:88:83:5C:E8:42:E6:5A:5F:4B Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2285 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CCE4E99E02CC11E6AA35863CC4F9AE02.roa Signing time: Thu 20 Jul 2023 16:13:08 +0000 ROA not before: Thu 20 Jul 2023 16:13:08 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45832 IP address blocks: 120.28.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:30:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8837 (0x2285) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Jul 20 16:13:08 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b95d14-ac25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:95:6b:3a:09:33:30:fb:f5:91:76:24:e5:e8: f8:1b:19:16:44:04:f6:74:51:69:45:da:8f:eb:60: 17:2e:22:01:f8:5d:93:53:0d:9a:e3:3c:b6:ed:c5: 18:62:42:d9:af:e0:78:09:ed:bb:80:b9:06:b7:a7: 52:89:17:16:8d:7e:1a:e3:35:06:bb:1e:da:99:73: f4:02:2f:c7:6e:70:a1:83:08:cf:c1:9a:45:33:dc: 67:be:08:46:ba:d9:fc:7d:90:de:75:41:c0:3b:be: d3:f3:dd:a8:8d:34:fb:80:7a:45:86:23:b4:13:fb: d8:b9:60:bf:94:5e:41:7e:5c:0b:10:6f:be:29:41: 32:eb:81:f8:2d:d3:a3:be:c5:5d:83:1b:f4:b1:85: aa:75:1f:be:b3:aa:32:2e:91:97:f6:c5:f5:58:29: 9f:9e:72:ec:48:30:84:48:be:ef:35:a7:80:93:94: da:6c:0d:ed:e9:67:ac:71:c1:25:72:a5:23:09:3d: 9b:41:ea:a7:83:c2:8c:51:3d:13:b6:92:9b:43:f6: e7:2c:d5:b9:a3:07:b0:dd:b2:3f:0e:da:5d:8d:99: b3:50:4a:f6:4e:95:03:d4:c5:14:b0:62:41:ac:a8: ad:4c:c2:c1:6f:94:84:28:5b:8b:e1:fc:d6:1e:69: f7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6E:01:D5:2B:2D:A0:FD:1B:94:FA:88:83:5C:E8:42:E6:5A:5F:4B X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CCE4E99E02CC11E6AA35863CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.28.61.0/24 Signature Algorithm: sha256WithRSAEncryption d0:59:79:4f:e6:91:39:09:54:e5:ca:af:bd:fd:ef:d1:5b:97: c4:26:43:d4:74:d5:e4:31:b5:eb:61:60:33:a8:29:88:b7:5a: b5:2b:69:86:dd:eb:52:12:3f:a4:b8:8f:c3:30:c5:b6:7a:6b: dc:9a:3f:01:01:14:46:11:94:e3:d0:12:30:b3:40:94:53:4b: f7:a8:87:2a:72:c4:23:bd:2a:f3:8a:88:44:19:4b:39:d5:76: b4:b9:7e:9e:cc:43:ac:9a:f6:da:ea:fa:29:aa:b2:41:5f:c7: 85:0d:8d:3d:e2:7e:5a:1f:97:90:98:65:09:c7:e6:b5:fb:6a: 15:29:e0:fa:e6:fb:d6:e5:d1:3a:0c:55:fb:d3:83:f4:57:21: 3f:96:e1:53:73:5d:8e:8f:e6:85:f6:03:89:93:76:fe:1e:21: 2b:e3:0a:86:41:c9:df:84:2d:64:8e:84:f4:b6:ee:ee:48:01: c3:b0:6b:ee:f1:4f:73:5e:59:2b:7b:28:a8:8d:dc:80:ff:48: 31:90:e9:de:ad:78:a9:2e:a3:fb:bc:c6:47:21:0f:d3:7b:41: 2b:a0:dd:44:c7:39:5e:87:c2:6b:79:25:e6:45:93:95:63:6b: fd:9b:51:a5:2b:b3:3f:95:6e:1e:33:0d:28:41:c5:ab:f3:76: 15:b3:07:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIoUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjMwNzIwMTYxMzA4WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5NWQxNC1hYzI1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJVrOgkzMPv1kXYk5ej4GxkWRAT2dFFpRdqP62AXLiIB+F2TUw2a4zy27cUY YkLZr+B4Ce27gLkGt6dSiRcWjX4a4zUGux7amXP0Ai/HbnChgwjPwZpFM9xnvghG utn8fZDedUHAO77T892ojTT7gHpFhiO0E/vYuWC/lF5BflwLEG++KUEy64H4LdOj vsVdgxv0sYWqdR++s6oyLpGX9sX1WCmfnnLsSDCESL7vNaeAk5TabA3t6WesccEl cqUjCT2bQeqng8KMUT0TtpKbQ/bnLNW5owew3bI/DtpdjZmzUEr2TpUD1MUUsGJB rKitTMLBb5SEKFuL4fzWHmn3VQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIhuAdUr LaD9G5T6iINc6ELmWl9LMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQ0NFNEU5OUUw MkNDMTFFNkFBMzU4NjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB4HD0wDQYJKoZIhvcNAQELBQADggEBANBZeU/mkTkJVOXK r73979Fbl8QmQ9R01eQxtethYDOoKYi3WrUraYbd61ISP6S4j8MwxbZ6a9yaPwEB FEYRlOPQEjCzQJRTS/eohypyxCO9KvOKiEQZSznVdrS5fp7MQ6ya9trq+imqskFf x4UNjT3iflofl5CYZQnH5rX7ahUp4Prm+9bl0ToMVfvTg/RXIT+W4VNzXY6P5oX2 A4mTdv4eISvjCoZByd+ELWSOhPS27u5IAcOwa+7xT3NeWSt7KKiN3ID/SDGQ6d6t eKkuo/u8xkchD9N7QSug3UTHOV6Hwmt5JeZFk5Vja/2bUaUrsz+Vbh4zDShBxavz dhWzBxs= -----END CERTIFICATE-----Generated at Fri May 31 20:34:02 2024 by rpki-client on console-ams.rpki-client.org