$ rpki-client -vvf rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/FEA470A4137911EBA3A5F233C4F9AE02.roa File: FEA470A4137911EBA3A5F233C4F9AE02.roa (raw, json) Hash identifier: TzkugJlacHGyiBaVtRQBiu7LPTpF6lMkRll4d2il6cM= Subject key identifier: 76:7B:C2:E9:54:E3:D5:92:3E:DB:BF:6D:C7:1A:35:88:3B:FC:FD:60 Certificate issuer: /CN=A915A9FD/serialNumber=CC6AF20750F8DE39FB75C0A1D0A441997CAD37B8 Certificate serial: 069A Authority key identifier: CC:6A:F2:07:50:F8:DE:39:FB:75:C0:A1:D0:A4:41:99:7C:AD:37:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zGryB1D43jn7dcCh0KRBmXytN7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/FEA470A4137911EBA3A5F233C4F9AE02.roa Signing time: Mon 04 Mar 2024 23:12:08 +0000 ROA not before: Mon 04 Mar 2024 23:12:08 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 131583 IP address blocks: 202.174.160.0/20 maxlen: 20 202.174.160.0/24 maxlen: 24 202.174.161.0/24 maxlen: 24 202.174.162.0/24 maxlen: 24 202.174.163.0/24 maxlen: 24 202.174.164.0/24 maxlen: 24 202.174.165.0/24 maxlen: 24 202.174.166.0/24 maxlen: 24 202.174.167.0/24 maxlen: 24 202.174.168.0/24 maxlen: 24 202.174.169.0/24 maxlen: 24 202.174.170.0/24 maxlen: 24 202.174.171.0/24 maxlen: 24 202.174.172.0/24 maxlen: 24 202.174.173.0/24 maxlen: 24 202.174.174.0/24 maxlen: 24 202.174.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/zGryB1D43jn7dcCh0KRBmXytN7g.crl rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/zGryB1D43jn7dcCh0KRBmXytN7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zGryB1D43jn7dcCh0KRBmXytN7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1690 (0x69a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915A9FD/serialNumber=CC6AF20750F8DE39FB75C0A1D0A441997CAD37B8 Validity Not Before: Mar 4 23:12:08 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e65548-2529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:46:67:4f:b8:87:93:fd:7b:8d:fd:c2:10:6d: aa:22:ac:c3:58:d5:f9:fe:ec:53:33:ca:6c:f2:54: 24:5f:57:39:c4:96:5b:75:41:69:9f:6d:73:83:df: 1a:71:18:be:ae:99:6a:61:f3:55:21:5a:06:10:85: 12:9a:e0:87:d5:78:8e:06:79:9a:a1:7e:d3:82:67: e9:1f:21:13:5a:7b:7b:46:50:3e:7c:fd:1f:08:fc: 0d:36:ac:d4:56:03:40:b2:bf:73:91:c5:67:97:64: bf:f6:3e:8d:c5:7e:2e:be:ae:d5:66:27:de:f8:84: 9d:e0:35:ff:f6:54:a9:0a:46:a6:37:a6:39:ce:f7: 20:2f:19:69:a9:1b:74:c6:f2:e7:a6:45:f3:27:02: dc:88:71:d0:a5:9e:7d:ed:58:b3:ba:37:49:cd:ae: fa:50:45:6c:b9:29:40:0a:f0:d6:40:10:f2:d2:e9: 29:59:cc:e2:5d:05:06:83:c5:f2:fa:65:cb:b9:34: 24:a9:0f:e5:c3:e0:4f:a9:39:88:e5:4c:b7:f2:e7: 8f:4c:98:22:82:4d:5a:09:12:cd:ed:69:be:1d:2c: 55:59:83:81:90:8c:9f:49:0a:1f:97:b3:59:59:94: 9e:02:d7:00:3a:98:9d:e5:11:6a:6c:c4:3f:cc:a9: 56:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:7B:C2:E9:54:E3:D5:92:3E:DB:BF:6D:C7:1A:35:88:3B:FC:FD:60 X509v3 Authority Key Identifier: keyid:CC:6A:F2:07:50:F8:DE:39:FB:75:C0:A1:D0:A4:41:99:7C:AD:37:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/zGryB1D43jn7dcCh0KRBmXytN7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zGryB1D43jn7dcCh0KRBmXytN7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915A9FD/A95618B6137711EBA4436F30C4F9AE02/FEA470A4137911EBA3A5F233C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.174.160.0/20 Signature Algorithm: sha256WithRSAEncryption 5f:43:ce:d4:32:f9:39:2b:de:d3:1e:73:86:51:27:d0:ce:34: 7a:18:cf:41:ae:78:11:8b:6c:39:51:99:b0:24:f8:90:2d:68: a9:5f:b3:71:b1:65:45:bc:0f:90:60:c5:85:e2:96:a5:e9:ff: 73:c8:17:c6:4c:b6:2f:65:db:6c:ec:ac:e5:2d:ef:86:a1:07: 9a:c9:e8:cb:ba:02:18:e0:c2:d1:72:1b:ac:4c:2a:f4:48:0a: 8b:70:07:9a:45:dc:d5:c1:fd:05:72:e3:05:b9:0c:5b:a6:8d: 8f:49:a1:a9:bc:7f:1b:48:9a:0e:00:73:22:13:10:52:11:23: fd:4f:49:65:43:94:fc:48:30:aa:6d:d2:da:34:7c:0f:88:6f: c6:79:c3:68:03:68:14:f3:b2:fd:ed:fb:33:3a:12:88:dd:ea: 38:dd:16:32:ac:b3:86:4a:d6:2d:4a:77:34:34:ad:40:c5:38: 32:7f:a4:fc:a1:49:e2:f5:23:9d:f9:88:56:dd:04:75:c2:fd: 31:e8:76:38:16:1a:54:b9:03:3e:38:92:f7:61:ec:78:73:b4: 05:38:5b:f6:6c:e5:08:6b:fe:b6:fe:a0:c0:63:a3:65:34:b6: 27:3f:6c:1f:17:08:83:9a:f8:35:e8:fc:09:19:4a:db:4c:10: f6:df:25:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUE5RkQxMTAvBgNVBAUTKENDNkFGMjA3NTBGOERFMzlGQjc1QzBBMUQwQTQ0MTk5 N0NBRDM3QjgwHhcNMjQwMzA0MjMxMjA4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2NTU0OC0yNTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UZnT7iHk/17jf3CEG2qIqzDWNX5/uxTM8ps8lQkX1c5xJZbdUFpn21zg98a cRi+rplqYfNVIVoGEIUSmuCH1XiOBnmaoX7TgmfpHyETWnt7RlA+fP0fCPwNNqzU VgNAsr9zkcVnl2S/9j6NxX4uvq7VZife+ISd4DX/9lSpCkamN6Y5zvcgLxlpqRt0 xvLnpkXzJwLciHHQpZ597VizujdJza76UEVsuSlACvDWQBDy0ukpWcziXQUGg8Xy +mXLuTQkqQ/lw+BPqTmI5Uy38uePTJgigk1aCRLN7Wm+HSxVWYOBkIyfSQofl7NZ WZSeAtcAOpid5RFqbMQ/zKlWHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHZ7wulU 49WSPtu/bccaNYg7/P1gMB8GA1UdIwQYMBaAFMxq8gdQ+N45+3XAodCkQZl8rTe4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QTlGRC9BOTU2MThCNjEz NzcxMUVCQTQ0MzZGMzBDNEY5QUUwMi96R3J5QjFENDNqbjdkY0NoMEtSQm1YeXRO N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pHcnlCMUQ0M2puN2RjQ2gwS1JCbVh5dE43Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUE5RkQvQTk1NjE4QjYxMzc3MTFFQkE0NDM2RjMwQzRGOUFFMDIvRkVBNDcwQTQx Mzc5MTFFQkEzQTVGMjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBATKrqAwDQYJKoZIhvcNAQELBQADggEBAF9DztQy+Tkr3tMe c4ZRJ9DONHoYz0GueBGLbDlRmbAk+JAtaKlfs3GxZUW8D5BgxYXilqXp/3PIF8ZM ti9l22zsrOUt74ahB5rJ6Mu6AhjgwtFyG6xMKvRICotwB5pF3NXB/QVy4wW5DFum jY9Joam8fxtImg4AcyITEFIRI/1PSWVDlPxIMKpt0to0fA+Ib8Z5w2gDaBTzsv3t +zM6Eojd6jjdFjKss4ZK1i1KdzQ0rUDFODJ/pPyhSeL1I535iFbdBHXC/THodjgW GlS5Az44kvdh7HhztAU4W/Zs5Qhr/rb+oMBjo2U0tic/bB8XCIOa+DXo/AkZSttM EPbfJUM= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:40 2024 by rpki-client on console-ams.rpki-client.org