$ rpki-client -vvf rpki.apnic.net/member_repository/A9158635/A9977956CFB011EAA86BEC27C4F9AE02/EB96EEB2CFB111EA8E6F7029C4F9AE02.roa File: EB96EEB2CFB111EA8E6F7029C4F9AE02.roa (raw, json) Hash identifier: PcHtSCFs8CsjGHDk4jEQixDxTi7zJioN2cF2ayYmLLo= Subject key identifier: 42:F6:DC:BB:14:82:42:24:B3:C8:FD:B3:4A:24:CD:1C:8F:14:CF:29 Certificate issuer: /CN=A9158635/serialNumber=18519E2BC4A64F7BD589CD963DF074B1A3305DF5 Certificate serial: 0764 Authority key identifier: 18:51:9E:2B:C4:A6:4F:7B:D5:89:CD:96:3D:F0:74:B1:A3:30:5D:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GFGeK8SmT3vVic2WPfB0saMwXfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158635/A9977956CFB011EAA86BEC27C4F9AE02/EB96EEB2CFB111EA8E6F7029C4F9AE02.roa Signing time: Sat 06 Apr 2024 22:31:08 +0000 ROA not before: Sat 06 Apr 2024 22:31:08 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 135415 IP address blocks: 203.21.200.0/24 maxlen: 24 203.21.201.0/24 maxlen: 24 203.21.202.0/24 maxlen: 24 203.21.203.0/24 maxlen: 24 2404:6080::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158635/A9977956CFB011EAA86BEC27C4F9AE02/GFGeK8SmT3vVic2WPfB0saMwXfU.crl rsync://rpki.apnic.net/member_repository/A9158635/A9977956CFB011EAA86BEC27C4F9AE02/GFGeK8SmT3vVic2WPfB0saMwXfU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GFGeK8SmT3vVic2WPfB0saMwXfU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:41:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1892 (0x764) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158635/serialNumber=18519E2BC4A64F7BD589CD963DF074B1A3305DF5 Validity Not Before: Apr 6 22:31:08 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6611cd2c-f40e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:15:f9:da:30:3c:43:a5:f9:b2:38:62:e4:44: e5:95:d8:bc:6f:51:a5:75:b0:cf:49:b7:a2:af:fe: 74:e7:14:b5:70:54:af:04:df:7e:94:a9:8b:80:74: a7:2b:7f:4d:81:3a:2d:76:01:cd:fb:ce:d2:60:a2: 10:08:34:dd:65:26:de:71:43:12:ba:af:4f:ac:5e: 20:e6:a4:8d:b1:dd:cd:ee:32:66:af:6e:c6:a6:74: 50:8d:01:c1:d3:2c:f3:1d:ba:fb:b9:01:e7:73:ab: 80:85:35:60:fa:7f:58:81:df:f0:ee:f2:4d:e4:d7: 5c:e9:ad:bc:94:3f:f6:6c:65:5d:98:a3:c6:26:36: 3f:41:c9:b6:2c:ea:9a:f8:82:10:d1:72:8b:22:32: dd:56:10:3d:3d:2f:ee:5a:9e:f7:93:e6:2d:26:7f: 5b:f5:db:77:60:74:d8:44:09:76:a9:be:34:79:3b: 2f:bd:56:54:0e:d1:19:dc:b5:34:f6:d0:e7:ea:66: 6e:14:34:32:ff:f9:15:1b:4a:ee:ae:db:fa:48:58: 1a:d4:2c:c5:80:54:7c:04:85:1e:41:1a:63:d5:2c: ea:8b:3a:e8:1f:44:b1:be:6c:66:93:3e:51:c4:f3: f0:cf:ab:20:b3:4d:53:14:35:6c:dd:f3:f8:78:75: 58:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:F6:DC:BB:14:82:42:24:B3:C8:FD:B3:4A:24:CD:1C:8F:14:CF:29 X509v3 Authority Key Identifier: keyid:18:51:9E:2B:C4:A6:4F:7B:D5:89:CD:96:3D:F0:74:B1:A3:30:5D:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158635/A9977956CFB011EAA86BEC27C4F9AE02/GFGeK8SmT3vVic2WPfB0saMwXfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GFGeK8SmT3vVic2WPfB0saMwXfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158635/A9977956CFB011EAA86BEC27C4F9AE02/EB96EEB2CFB111EA8E6F7029C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.200.0/22 IPv6: 2404:6080::/32 Signature Algorithm: sha256WithRSAEncryption 76:cd:69:6a:2b:0d:63:4e:68:37:74:a4:e2:1e:79:5a:cc:85: 82:93:48:09:83:c3:ad:fc:0a:2d:f8:bc:3b:21:eb:e7:54:b9: 2c:2f:50:f6:f0:26:13:75:48:f7:57:1c:38:4e:8c:bc:2d:ad: cc:32:f1:f0:54:db:8f:c3:15:74:98:45:a5:d8:9d:6a:8e:68: 45:24:58:5d:30:df:e1:59:90:68:02:eb:a1:3d:e9:5f:3d:7a: 43:e0:06:73:72:e0:0b:e7:2e:c8:72:11:34:c7:21:26:00:52: 75:45:87:6d:10:e5:ce:72:4d:8b:e9:86:52:b8:12:03:a4:43: f7:88:f4:68:c2:44:a3:f2:15:c3:01:60:8c:82:cc:13:7e:01: 1b:d1:23:72:f7:f2:bb:67:61:56:aa:7b:72:b3:b2:08:19:a1: 2a:0d:9f:e8:23:76:6b:1b:34:25:5e:ae:e4:f9:8a:4c:0a:08: 98:9d:c7:47:41:b1:ab:6a:ff:6d:c9:1a:89:d8:63:7a:83:43: 4b:00:cb:1f:ae:2d:ad:e4:2a:b1:ac:ac:f9:63:09:3f:16:f0: b7:a5:c5:05:d5:eb:47:ca:32:ec:40:d8:ab:3a:0d:28:39:87: f0:29:98:37:f1:fe:58:26:a4:36:00:ed:53:74:bf:ca:7c:7b: 16:fc:9b:11 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB2QwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg2MzUxMTAvBgNVBAUTKDE4NTE5RTJCQzRBNjRGN0JENTg5Q0Q5NjNERjA3NEIx QTMzMDVERjUwHhcNMjQwNDA2MjIzMTA4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjExY2QyYy1mNDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAphX52jA8Q6X5sjhi5ETlldi8b1GldbDPSbeir/505xS1cFSvBN9+lKmLgHSn K39NgTotdgHN+87SYKIQCDTdZSbecUMSuq9PrF4g5qSNsd3N7jJmr27GpnRQjQHB 0yzzHbr7uQHnc6uAhTVg+n9Ygd/w7vJN5Ndc6a28lD/2bGVdmKPGJjY/Qcm2LOqa +IIQ0XKLIjLdVhA9PS/uWp73k+YtJn9b9dt3YHTYRAl2qb40eTsvvVZUDtEZ3LU0 9tDn6mZuFDQy//kVG0rurtv6SFga1CzFgFR8BIUeQRpj1SzqizroH0Sxvmxmkz5R xPPwz6sgs01TFDVs3fP4eHVYJwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFEL23LsU gkIks8j9s0okzRyPFM8pMB8GA1UdIwQYMBaAFBhRnivEpk971YnNlj3wdLGjMF31 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODYzNS9BOTk3Nzk1NkNG QjAxMUVBQTg2QkVDMjdDNEY5QUUwMi9HRkdlSzhTbVQzdlZpYzJXUGZCMHNhTXdY ZlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dGR2VLOFNtVDN2VmljMldQZkIwc2FNd1hmVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg2MzUvQTk5Nzc5NTZDRkIwMTFFQUE4NkJFQzI3QzRGOUFFMDIvRUI5NkVFQjJD RkIxMTFFQThFNkY3MDI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBALLFcgwDQQCAAIwBwMFACQEYIAwDQYJKoZIhvcNAQELBQAD ggEBAHbNaWorDWNOaDd0pOIeeVrMhYKTSAmDw638Ci34vDsh6+dUuSwvUPbwJhN1 SPdXHDhOjLwtrcwy8fBU24/DFXSYRaXYnWqOaEUkWF0w3+FZkGgC66E96V89ekPg BnNy4AvnLshyETTHISYAUnVFh20Q5c5yTYvphlK4EgOkQ/eI9GjCRKPyFcMBYIyC zBN+ARvRI3L38rtnYVaqe3KzsggZoSoNn+gjdmsbNCVeruT5ikwKCJidx0dBsatq /23JGonYY3qDQ0sAyx+uLa3kKrGsrPljCT8W8LelxQXV60fKMuxA2Ks6DSg5h/Ap mDfx/lgmpDYA7VN0v8p8exb8mxE= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:27 2024 by rpki-client on console-ams.rpki-client.org