$ rpki-client -vvf rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/6E7BFE7092A611EEBD5D8720C4F9AE02.roa File: 6E7BFE7092A611EEBD5D8720C4F9AE02.roa (raw, json) Hash identifier: nLAI2KpHv4yGG3LNJRHSRrSrOVvhwD5I70+pJLgB34A= Subject key identifier: F7:53:6A:09:74:CB:A0:D4:3E:89:FE:7C:C0:1D:7C:4F:4C:09:FF:23 Certificate issuer: /CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Certificate serial: 90 Authority key identifier: A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/6E7BFE7092A611EEBD5D8720C4F9AE02.roa Signing time: Thu 05 Sep 2024 06:20:20 +0000 ROA not before: Thu 05 Sep 2024 06:20:20 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 7611 IP address blocks: 203.114.64.0/24 maxlen: 24 203.114.65.0/24 maxlen: 24 203.114.66.0/24 maxlen: 24 203.114.67.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 144 (0x90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158547/serialNumber=A0D66F1175533A23A852E9515065C85A339E7386 Validity Not Before: Sep 5 06:20:20 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d94da4-f720 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e6:f5:79:a0:da:91:91:7e:ef:23:c5:21:4b: c8:bc:cb:d9:ff:75:76:3e:74:ce:3e:cc:be:d5:d4: 8b:c3:78:5f:14:82:cb:d1:cf:88:14:02:8c:ca:b9: eb:67:f6:d6:56:e5:6f:ee:6a:c6:59:13:8d:31:1b: 87:3a:1e:c3:51:f7:04:a0:24:87:dc:a7:80:12:8a: 7e:ca:f2:10:e4:06:fd:fd:ad:bc:d2:48:fc:f3:b3: 15:99:79:9f:b8:83:ac:84:d2:3b:78:67:c2:c3:60: 12:bc:eb:60:20:42:00:6d:b2:c8:0b:03:ac:fb:3d: fa:ee:f5:2a:6a:78:27:a7:5b:66:22:1f:75:34:64: 23:30:0f:fe:65:aa:bf:fd:fd:95:b8:4b:c5:79:db: fc:5f:70:e3:26:b3:41:a9:80:6d:27:6b:57:9b:c3: b3:a8:02:ed:aa:00:ff:e5:f9:d7:e1:76:02:ce:df: f3:e6:10:ce:bb:7f:96:8e:ed:3b:46:20:9d:7c:1e: a3:9d:40:d3:76:4d:93:bc:d3:cf:dc:e1:12:d9:6a: 74:e4:5e:f9:d9:b7:62:90:ad:c1:3c:f8:b3:d5:00: 2a:a8:ce:01:19:f9:a4:de:b3:06:9e:1d:57:20:3e: 80:7f:23:a5:3a:b7:90:aa:03:38:3e:e9:26:2d:c9: d2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:53:6A:09:74:CB:A0:D4:3E:89:FE:7C:C0:1D:7C:4F:4C:09:FF:23 X509v3 Authority Key Identifier: keyid:A0:D6:6F:11:75:53:3A:23:A8:52:E9:51:50:65:C8:5A:33:9E:73:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/oNZvEXVTOiOoUulRUGXIWjOec4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oNZvEXVTOiOoUulRUGXIWjOec4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158547/B38668E492A511EE8CD95B1EC4F9AE02/6E7BFE7092A611EEBD5D8720C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.114.64.0/22 Signature Algorithm: sha256WithRSAEncryption 92:70:e6:fe:35:aa:32:56:e7:d5:75:36:0f:33:40:2e:9f:7d: d1:07:27:a1:01:93:f7:1f:25:29:fc:c1:1a:08:ed:d0:8d:ea: 75:e3:2c:66:a2:90:e9:71:ef:29:70:b0:b0:13:b5:1f:30:9f: 27:ab:5e:27:b7:88:ea:23:59:69:59:a0:ce:e8:63:a5:6f:ae: f2:5d:1b:20:c2:54:c1:21:9c:45:69:a3:fb:bb:0f:c9:3a:8e: 0d:d2:04:cf:a5:ba:ae:b9:08:c0:59:d5:ef:35:1c:89:00:b1: fa:14:20:f7:ff:32:ff:62:60:45:1a:b4:13:bf:35:2a:1e:30: 70:8c:1c:b9:94:70:d2:15:52:b8:80:be:b1:b9:4d:09:30:ec: e6:67:19:f0:ae:b2:d3:0e:fa:de:97:8e:47:a8:be:4b:a9:de: 87:10:a6:5c:97:ca:a7:06:ff:f7:6a:b9:a2:dc:14:39:25:0c: 3e:3a:25:94:9a:79:0c:ed:73:17:84:4d:25:99:30:85:5c:1c: cf:74:3e:c0:bf:12:5b:f4:77:2c:a4:f9:c5:95:9c:5a:3d:77: d4:5a:14:53:0c:6f:93:c6:f1:bc:9a:26:53:05:c4:71:fe:3f: 2d:53:f7:8a:24:a2:9c:ee:b9:0d:d2:09:62:32:f6:93:cc:f4: ee:a6:5b:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg1NDcxMTAvBgNVBAUTKEEwRDY2RjExNzU1MzNBMjNBODUyRTk1MTUwNjVDODVB MzM5RTczODYwHhcNMjQwOTA1MDYyMDIwWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ5NGRhNC1mNzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArOb1eaDakZF+7yPFIUvIvMvZ/3V2PnTOPsy+1dSLw3hfFILL0c+IFAKMyrnr Z/bWVuVv7mrGWRONMRuHOh7DUfcEoCSH3KeAEop+yvIQ5Ab9/a280kj887MVmXmf uIOshNI7eGfCw2ASvOtgIEIAbbLICwOs+z367vUqangnp1tmIh91NGQjMA/+Zaq/ /f2VuEvFedv8X3DjJrNBqYBtJ2tXm8OzqALtqgD/5fnX4XYCzt/z5hDOu3+Wju07 RiCdfB6jnUDTdk2TvNPP3OES2Wp05F752bdikK3BPPiz1QAqqM4BGfmk3rMGnh1X ID6AfyOlOreQqgM4PukmLcnSFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPdTagl0 y6DUPon+fMAdfE9MCf8jMB8GA1UdIwQYMBaAFKDWbxF1UzojqFLpUVBlyFoznnOG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODU0Ny9CMzg2NjhFNDky QTUxMUVFOENEOTVCMUVDNEY5QUUwMi9vTlp2RVhWVE9pT29VdWxSVUdYSVdqT2Vj NFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL29OWnZFWFZUT2lPb1V1bFJVR1hJV2pPZWM0WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg1NDcvQjM4NjY4RTQ5MkE1MTFFRThDRDk1QjFFQzRGOUFFMDIvNkU3QkZFNzA5 MkE2MTFFRUJENUQ4NzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALLckAwDQYJKoZIhvcNAQELBQADggEBAJJw5v41qjJW59V1 Ng8zQC6ffdEHJ6EBk/cfJSn8wRoI7dCN6nXjLGaikOlx7ylwsLATtR8wnyerXie3 iOojWWlZoM7oY6VvrvJdGyDCVMEhnEVpo/u7D8k6jg3SBM+luq65CMBZ1e81HIkA sfoUIPf/Mv9iYEUatBO/NSoeMHCMHLmUcNIVUriAvrG5TQkw7OZnGfCustMO+t6X jkeovkup3ocQplyXyqcG//dquaLcFDklDD46JZSaeQztcxeETSWZMIVcHM90PsC/ Elv0dyyk+cWVnFo9d9RaFFMMb5PG8byaJlMFxHH+Py1T94okopzuuQ3SCWIy9pPM 9O6mWy0= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:07 2024 by rpki-client on console-ams.rpki-client.org