$ rpki-client -vvf rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa File: 9BC1C0762BD411EC81C16155C4F9AE02.roa (raw, json) Hash identifier: en/5+Is2njNPEHjZ9D4KmksDt8McYOOkdTXWUEGbh1w= Subject key identifier: D6:F0:BF:9D:20:56:1F:E9:EC:E2:5C:11:7C:58:D6:9D:A7:5D:DC:D2 Certificate issuer: /CN=A914E91C/serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Certificate serial: 0418 Authority key identifier: 1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa Signing time: Wed 17 Jul 2024 01:23:11 +0000 ROA not before: Wed 17 Jul 2024 01:23:11 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140724 IP address blocks: 203.20.20.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1048 (0x418) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E91C/serialNumber=1A6123075694B82218AA2FC76F615B4025596156 Validity Not Before: Jul 17 01:23:11 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66971cff-bb9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:52:fb:9f:59:2d:d4:37:c4:e5:09:2f:be:09: 59:6b:da:96:f9:87:45:0b:54:76:2c:cd:01:a5:df: ec:d7:0e:bf:00:6b:c3:c7:0d:bf:32:be:a3:63:70: b0:9f:ad:3c:b6:9f:97:a7:5f:a8:ce:79:c7:12:ab: 95:43:9e:46:dc:b2:2e:60:eb:82:c9:fe:83:ab:e9: b6:65:f6:c3:49:af:66:31:36:4d:20:36:13:1c:94: b6:86:cd:b9:1c:d4:40:f7:04:16:10:03:c0:0c:56: 0c:23:fd:89:ae:24:c9:60:40:40:04:1a:16:b0:29: 62:6f:b1:f7:ba:98:75:8f:c2:ae:3b:38:fa:67:94: cd:d0:5e:48:1b:42:20:e7:3a:de:12:4f:72:59:ae: 22:82:f2:3e:91:67:f5:f8:b3:ff:78:14:7f:a9:7e: 5d:98:14:d9:47:29:e3:8a:b5:02:5f:cc:95:36:38: f3:38:5c:3e:c3:41:f9:b6:72:53:9a:d1:a8:64:df: e3:54:07:ad:8e:b1:9a:ff:33:83:f8:4a:0e:e0:26: a0:31:12:8f:bb:33:56:0b:32:c4:3b:2d:2d:34:34: 01:ad:01:f3:37:7b:ef:71:76:95:0e:cf:41:05:ac: c3:ca:44:18:59:3e:fe:f8:82:2e:1f:37:68:02:50: a9:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:F0:BF:9D:20:56:1F:E9:EC:E2:5C:11:7C:58:D6:9D:A7:5D:DC:D2 X509v3 Authority Key Identifier: keyid:1A:61:23:07:56:94:B8:22:18:AA:2F:C7:6F:61:5B:40:25:59:61:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GmEjB1aUuCIYqi_Hb2FbQCVZYVY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E91C/BC263A8E2BD111ECADDFA311C4F9AE02/9BC1C0762BD411EC81C16155C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.20.20.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:97:c7:a1:57:3e:f6:23:7d:e1:99:5e:70:47:97:82:85:08: 9b:b5:de:cc:07:40:45:7e:2f:34:a4:12:ef:0c:5d:d9:af:22: 2f:a0:4d:d5:60:e8:7e:c1:c5:10:16:7c:83:e5:ed:43:20:02: 06:b3:76:6e:05:34:ed:5f:26:28:6b:44:3b:44:bf:ff:c1:1a: 9c:89:48:c8:7f:9d:6b:56:dd:89:a6:e9:63:9d:6d:71:7b:a0: 90:03:40:27:cc:d0:80:8c:6a:f9:e5:8d:f8:f1:bd:fa:57:fb: 12:9b:34:ab:73:a4:1a:cd:5e:da:f1:b9:6a:e6:08:9d:89:fd: ec:60:19:2a:a3:17:bf:9b:0b:6e:5f:e4:cc:82:3a:ab:8e:08: a5:d0:b5:84:b1:65:cc:d0:1c:26:f2:1e:93:a3:43:71:a4:3f: d1:a6:4d:36:86:63:e4:5c:9a:62:db:0f:91:0e:2f:5d:a3:5e: b6:9f:84:8b:db:40:4a:76:f4:a8:b7:ee:d2:b9:83:9a:e8:79: f7:7b:0a:b9:03:a5:cd:43:b3:0d:3b:84:cc:bb:c8:8b:54:f8: 3f:28:68:db:8c:ea:c3:1a:7c:4e:77:a6:15:fa:d4:6d:4e:20: f2:92:2d:01:ab:07:ee:38:f6:75:de:aa:e8:98:40:a1:b7:5c: 06:ee:c5:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5MUMxMTAvBgNVBAUTKDFBNjEyMzA3NTY5NEI4MjIxOEFBMkZDNzZGNjE1QjQw MjU1OTYxNTYwHhcNMjQwNzE3MDEyMzExWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk3MWNmZi1iYjliMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlL7n1kt1DfE5QkvvglZa9qW+YdFC1R2LM0Bpd/s1w6/AGvDxw2/Mr6jY3Cw n608tp+Xp1+oznnHEquVQ55G3LIuYOuCyf6Dq+m2ZfbDSa9mMTZNIDYTHJS2hs25 HNRA9wQWEAPADFYMI/2JriTJYEBABBoWsClib7H3uph1j8KuOzj6Z5TN0F5IG0Ig 5zreEk9yWa4igvI+kWf1+LP/eBR/qX5dmBTZRynjirUCX8yVNjjzOFw+w0H5tnJT mtGoZN/jVAetjrGa/zOD+EoO4CagMRKPuzNWCzLEOy0tNDQBrQHzN3vvcXaVDs9B BazDykQYWT7++IIuHzdoAlCpeQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNbwv50g Vh/p7OJcEXxY1p2nXdzSMB8GA1UdIwQYMBaAFBphIwdWlLgiGKovx29hW0AlWWFW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTkxQy9CQzI2M0E4RTJC RDExMUVDQURERkEzMTFDNEY5QUUwMi9HbUVqQjFhVXVDSVlxaV9IYjJGYlFDVlpZ VlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dtRWpCMWFVdUNJWXFpX0hiMkZiUUNWWllWWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5MUMvQkMyNjNBOEUyQkQxMTFFQ0FEREZBMzExQzRGOUFFMDIvOUJDMUMwNzYy QkQ0MTFFQzgxQzE2MTU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLFBQwDQYJKoZIhvcNAQELBQADggEBAD2Xx6FXPvYjfeGZ XnBHl4KFCJu13swHQEV+LzSkEu8MXdmvIi+gTdVg6H7BxRAWfIPl7UMgAgazdm4F NO1fJihrRDtEv//BGpyJSMh/nWtW3Ymm6WOdbXF7oJADQCfM0ICMavnljfjxvfpX +xKbNKtzpBrNXtrxuWrmCJ2J/exgGSqjF7+bC25f5MyCOquOCKXQtYSxZczQHCby HpOjQ3GkP9GmTTaGY+RcmmLbD5EOL12jXrafhIvbQEp29Ki37tK5g5roefd7CrkD pc1Dsw07hMy7yItU+D8oaNuM6sMafE53phX61G1OIPKSLQGrB+449nXequiYQKG3 XAbuxRI= -----END CERTIFICATE-----Generated at Sat Nov 23 00:49:33 2024 by rpki-client on console-fra.rpki-client.org