$ rpki-client -vvf rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/0404E7B2672911EE9967640AC4F9AE02.roa File: 0404E7B2672911EE9967640AC4F9AE02.roa (raw, json) Hash identifier: 5vjFNwdorZQHn2sdj7sTYCMmbYEOY9pH8kC5XApbLFw= Subject key identifier: C8:74:0A:FD:3F:04:4B:09:82:44:CD:E5:37:48:D1:27:C1:03:F4:3C Certificate issuer: /CN=A9180127/serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Certificate serial: 7E Authority key identifier: 32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/0404E7B2672911EE9967640AC4F9AE02.roa Signing time: Tue 21 May 2024 07:40:57 +0000 ROA not before: Tue 21 May 2024 07:40:57 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 24453 IP address blocks: 202.151.40.0/21 maxlen: 21 202.151.40.0/24 maxlen: 24 202.151.41.0/24 maxlen: 24 202.151.42.0/24 maxlen: 24 202.151.43.0/24 maxlen: 24 202.151.44.0/24 maxlen: 24 202.151.45.0/24 maxlen: 24 202.151.46.0/24 maxlen: 24 202.151.47.0/24 maxlen: 24 2403:4c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180127/serialNumber=3215C5516AFB54D8E612D1EC3D5182D321E53171 Validity Not Before: May 21 07:40:57 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664c5009-2820 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:25:b8:4a:dd:a9:1a:5a:a5:65:54:c3:97:97: 50:40:0e:f2:7b:b5:36:8b:79:37:d2:85:36:92:e9: cc:8c:5a:b5:59:86:3f:0f:75:11:e8:5d:c7:25:7c: 0a:91:8d:00:f8:3e:26:cb:63:25:49:9f:10:c5:55: 76:fc:c4:b4:1f:32:23:60:0e:26:e3:fe:c1:98:6d: 64:8d:e8:a8:bc:6f:af:c1:a8:a3:b8:df:b1:6a:da: 9f:15:5d:dc:d2:a9:4d:f5:c8:6e:b6:82:6d:60:14: 17:0a:d0:40:b5:d5:7f:98:96:2f:c5:67:02:28:30: a5:78:04:51:09:de:da:8f:c7:27:77:e3:73:54:9b: 94:39:9d:fc:e8:2b:61:fd:7c:d9:98:1e:61:c6:4f: 02:57:08:d2:bd:61:fa:52:d8:8e:46:b0:6d:7c:11: 23:b8:e1:f3:92:40:f7:77:f8:59:6e:72:33:1c:d8: 9c:d8:47:12:5f:24:34:90:f8:90:99:03:37:21:67: 9a:2b:22:7a:f2:aa:8c:26:12:56:a9:98:81:c3:02: d5:f3:78:d7:30:11:74:9e:98:81:83:63:82:c5:84: 1c:b5:c0:01:da:0a:c7:ab:a0:95:86:55:f1:ee:16: e7:6a:b8:d6:a5:60:15:6a:92:f7:af:9a:f7:50:9a: 1f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:74:0A:FD:3F:04:4B:09:82:44:CD:E5:37:48:D1:27:C1:03:F4:3C X509v3 Authority Key Identifier: keyid:32:15:C5:51:6A:FB:54:D8:E6:12:D1:EC:3D:51:82:D3:21:E5:31:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/MhXFUWr7VNjmEtHsPVGC0yHlMXE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MhXFUWr7VNjmEtHsPVGC0yHlMXE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180127/16AF1D205B7F11EEBE320E35C4F9AE02/0404E7B2672911EE9967640AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.151.40.0/21 IPv6: 2403:4c00::/32 Signature Algorithm: sha256WithRSAEncryption 41:07:92:70:90:89:be:f0:52:30:c7:84:17:cb:9c:de:15:6d: be:76:39:57:f6:76:56:b0:b7:38:6d:41:6e:96:3c:78:21:41: 6b:b5:a5:7f:1a:44:11:7b:32:23:54:1d:65:65:cd:b4:ef:26: a6:87:c5:27:a4:7d:af:b4:dc:68:50:a1:5b:ab:9b:4f:26:48: 16:f5:67:b3:be:19:b5:2c:f6:9d:28:69:d7:05:ef:fc:d4:f3: 27:cf:2a:81:70:9a:b8:f4:b3:69:83:d0:ef:2f:77:7d:da:20: d8:2d:2e:bc:5b:5b:79:f4:c4:76:ad:c7:b5:5c:70:80:d4:24: ea:1c:65:27:2d:89:dc:e5:0e:15:4c:be:f9:b1:26:7b:dd:42: 1e:a4:5f:72:f7:b3:a5:d1:bc:d9:ff:24:f4:19:b8:85:cd:dc: a7:9b:b6:4a:cc:db:bd:30:b9:e4:80:2e:ad:6b:2d:84:e6:b8: d4:16:61:a0:1c:98:00:8e:42:ff:24:6d:00:d3:4b:d0:7b:e6: 54:46:24:5f:b4:c1:38:86:9e:cd:d5:57:61:41:39:66:13:e5: 10:ed:01:35:18:e6:47:59:ff:67:96:d9:66:ba:e9:39:5b:65: 3a:b2:73:a3:5b:0a:5b:a1:c6:ee:ed:06:ab:c6:24:cd:ff:07: d1:34:33:aa -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBfjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDEyNzExMC8GA1UEBRMoMzIxNUM1NTE2QUZCNTREOEU2MTJEMUVDM0Q1MTgyRDMy MUU1MzE3MTAeFw0yNDA1MjEwNzQwNTdaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NGM1MDA5LTI4MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0JbhK3akaWqVlVMOXl1BADvJ7tTaLeTfShTaS6cyMWrVZhj8PdRHoXcclfAqR jQD4PibLYyVJnxDFVXb8xLQfMiNgDibj/sGYbWSN6Ki8b6/BqKO437Fq2p8VXdzS qU31yG62gm1gFBcK0EC11X+Yli/FZwIoMKV4BFEJ3tqPxyd343NUm5Q5nfzoK2H9 fNmYHmHGTwJXCNK9YfpS2I5GsG18ESO44fOSQPd3+FlucjMc2JzYRxJfJDSQ+JCZ AzchZ5orInryqowmElapmIHDAtXzeNcwEXSemIGDY4LFhBy1wAHaCseroJWGVfHu FudquNalYBVqkvevmvdQmh/rAgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUyHQK/T8E SwmCRM3lN0jRJ8ED9DwwHwYDVR0jBBgwFoAUMhXFUWr7VNjmEtHsPVGC0yHlMXEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwMTI3LzE2QUYxRDIwNUI3 RjExRUVCRTMyMEUzNUM0RjlBRTAyL01oWEZVV3I3Vk5qbUV0SHNQVkdDMHlIbE1Y RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTWhYRlVXcjdWTmptRXRIc1BWR0MweUhsTVhFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDEyNy8xNkFGMUQyMDVCN0YxMUVFQkUzMjBFMzVDNEY5QUUwMi8wNDA0RTdCMjY3 MjkxMUVFOTk2NzY0MEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEA8qXKDANBAIAAjAHAwUAJANMADANBgkqhkiG9w0BAQsFAAOC AQEAQQeScJCJvvBSMMeEF8uc3hVtvnY5V/Z2VrC3OG1BbpY8eCFBa7WlfxpEEXsy I1QdZWXNtO8mpofFJ6R9r7TcaFChW6ubTyZIFvVns74ZtSz2nShp1wXv/NTzJ88q gXCauPSzaYPQ7y93fdog2C0uvFtbefTEdq3HtVxwgNQk6hxlJy2J3OUOFUy++bEm e91CHqRfcvezpdG82f8k9Bm4hc3cp5u2SszbvTC55IAurWsthOa41BZhoByYAI5C /yRtANNL0HvmVEYkX7TBOIaezdVXYUE5ZhPlEO0BNRjmR1n/Z5bZZrrpOVtlOrJz o1sKW6HG7u0Gq8Ykzf8H0TQzqg== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org