$ rpki-client -vvf rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/BD3FF814A49811EEAD789D2AC4F9AE02.roa File: BD3FF814A49811EEAD789D2AC4F9AE02.roa (raw, json) Hash identifier: TklClzxx9K18o0RPLn1yMvXuXYYSv/q9QF8TfgX5y9s= Subject key identifier: 26:24:4D:92:5C:A2:54:D2:63:31:38:35:1F:56:7A:92:E4:BA:5C:96 Certificate issuer: /CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Certificate serial: 27B8 Authority key identifier: 90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/BD3FF814A49811EEAD789D2AC4F9AE02.roa Signing time: Thu 30 May 2024 16:38:26 +0000 ROA not before: Thu 30 May 2024 16:38:26 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 38193 IP address blocks: 218.100.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 16:03:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10168 (0x27b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150F66/serialNumber=9009E74196D48B03964F1FC56CFE446EC5048CF7 Validity Not Before: May 30 16:38:26 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6658ab81-d0a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f7:fe:1c:0d:27:f0:73:9e:00:78:7f:1c:02: 11:0f:c8:80:23:22:f2:4d:08:7f:8f:f7:f0:ac:09: bd:70:b8:d2:b7:01:51:75:dc:14:d5:0b:f9:d9:6c: 8b:45:47:2b:81:f7:3b:d5:7c:2a:1d:24:9d:10:b8: 5c:77:18:26:18:9a:da:96:46:09:37:ca:12:69:83: fa:cb:44:63:f6:03:29:9d:9f:22:f8:01:c2:1b:99: fe:4f:64:2e:76:c2:e4:51:70:b6:aa:2b:ed:d2:78: 82:8d:41:fa:95:b6:35:41:fd:8f:9d:73:72:a9:82: 72:c1:d2:08:2e:2a:45:46:73:e9:73:02:66:fa:69: 85:67:39:dc:9f:2c:ce:9d:74:26:ec:4b:74:92:81: e6:f2:f6:2f:18:97:56:35:fd:c1:64:39:bd:9f:e9: 3a:72:a3:e8:5d:be:4a:71:40:69:d7:5b:da:a5:94: f8:7b:57:cb:ab:ca:73:b2:a1:03:f7:cb:61:45:d4: 1d:34:4e:be:69:9e:84:ae:6f:76:02:68:b2:dd:4b: 27:28:e8:d7:44:24:d8:c7:b9:07:7d:d1:f1:e7:e8: e2:3f:49:be:e2:8b:f9:4a:3b:f7:b4:a9:ba:69:cc: e3:57:37:33:36:c9:fe:3a:24:ec:d5:24:1f:4e:e3: b0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:24:4D:92:5C:A2:54:D2:63:31:38:35:1F:56:7A:92:E4:BA:5C:96 X509v3 Authority Key Identifier: keyid:90:09:E7:41:96:D4:8B:03:96:4F:1F:C5:6C:FE:44:6E:C5:04:8C:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/kAnnQZbUiwOWTx_FbP5EbsUEjPc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kAnnQZbUiwOWTx_FbP5EbsUEjPc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150F66/BC1DC1F6C17511E4A2C7B74CC4F9AE02/BD3FF814A49811EEAD789D2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.100.85.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:4c:c1:cb:78:65:0c:4b:24:d4:55:f5:6c:82:b3:4c:c5:d0: eb:f8:e3:5a:90:ee:d2:09:84:25:8d:91:3f:72:ba:35:62:d5: 9c:30:63:52:50:5b:18:58:a1:b4:79:59:46:f7:eb:a5:c5:61: 37:a1:04:9c:1e:6b:e8:8c:fc:75:c5:1c:91:55:8d:d3:66:1c: 6c:d9:47:df:96:c9:5e:b0:fa:f4:1a:a4:e8:a7:a0:7d:47:8c: 2d:f0:89:1a:89:0d:eb:e4:52:83:cc:c9:86:2c:83:3c:4b:bb: 9a:cd:a4:87:c9:e1:de:fd:f2:29:9a:2c:c2:73:36:a9:12:39: cb:70:38:4b:8f:7d:7a:78:7a:09:c3:12:1b:b6:4f:2a:38:82: 7f:51:08:15:b7:b7:e4:3a:71:97:ce:dd:45:9f:41:58:0c:b6: 04:c4:b4:2c:e1:63:67:61:5f:f4:7d:80:a2:b2:06:69:06:de: 85:14:5b:33:13:8e:ce:0a:13:61:b4:b2:09:66:1f:72:a1:72: 7b:e8:65:3b:d9:77:96:c6:52:05:c5:87:17:29:0f:ef:fe:9d: f0:3e:44:e8:36:1a:45:bd:20:1d:37:25:f7:92:75:c8:42:c5: c1:e0:1c:92:7d:55:d7:3b:fa:44:a5:99:49:ea:b7:65:fe:df: 7b:c4:d7:48 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJ7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBGNjYxMTAvBgNVBAUTKDkwMDlFNzQxOTZENDhCMDM5NjRGMUZDNTZDRkU0NDZF QzUwNDhDRjcwHhcNMjQwNTMwMTYzODI2WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4YWI4MS1kMGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtPf+HA0n8HOeAHh/HAIRD8iAIyLyTQh/j/fwrAm9cLjStwFRddwU1Qv52WyL RUcrgfc71XwqHSSdELhcdxgmGJralkYJN8oSaYP6y0Rj9gMpnZ8i+AHCG5n+T2Qu dsLkUXC2qivt0niCjUH6lbY1Qf2PnXNyqYJywdIILipFRnPpcwJm+mmFZzncnyzO nXQm7Et0koHm8vYvGJdWNf3BZDm9n+k6cqPoXb5KcUBp11vapZT4e1fLq8pzsqED 98thRdQdNE6+aZ6Erm92Amiy3UsnKOjXRCTYx7kHfdHx5+jiP0m+4ov5Sjv3tKm6 aczjVzczNsn+OiTs1SQfTuOw6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCYkTZJc olTSYzE4NR9WepLkulyWMB8GA1UdIwQYMBaAFJAJ50GW1IsDlk8fxWz+RG7FBIz3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEY2Ni9CQzFEQzFGNkMx NzUxMUU0QTJDN0I3NENDNEY5QUUwMi9rQW5uUVpiVWl3T1dUeF9GYlA1RWJzVUVq UGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tBbm5RWmJVaXdPV1R4X0ZiUDVFYnNVRWpQYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBGNjYvQkMxREMxRjZDMTc1MTFFNEEyQzdCNzRDQzRGOUFFMDIvQkQzRkY4MTRB NDk4MTFFRUFENzg5RDJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADaZFUwDQYJKoZIhvcNAQELBQADggEBAHxMwct4ZQxLJNRV 9WyCs0zF0Ov441qQ7tIJhCWNkT9yujVi1ZwwY1JQWxhYobR5WUb366XFYTehBJwe a+iM/HXFHJFVjdNmHGzZR9+WyV6w+vQapOinoH1HjC3wiRqJDevkUoPMyYYsgzxL u5rNpIfJ4d798imaLMJzNqkSOctwOEuPfXp4egnDEhu2Tyo4gn9RCBW3t+Q6cZfO 3UWfQVgMtgTEtCzhY2dhX/R9gKKyBmkG3oUUWzMTjs4KE2G0sglmH3KhcnvoZTvZ d5bGUgXFhxcpD+/+nfA+ROg2GkW9IB03JfeSdchCxcHgHJJ9Vdc7+kSlmUnqt2X+ 33vE10g= -----END CERTIFICATE-----Generated at Fri May 31 20:34:03 2024 by rpki-client on console-ams.rpki-client.org