$ rpki-client -vvf rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/25FE32B86D9D11EEB269D31CC4F9AE02.roa File: 25FE32B86D9D11EEB269D31CC4F9AE02.roa (raw, json) Hash identifier: 7pdkVLQd2iDi4TqY7pImfsIqvgfxviEdh0IKPlLfG18= Subject key identifier: 4A:6C:26:A0:06:C9:BE:D0:6B:0E:F0:FE:67:C8:BF:CE:3D:55:C2:02 Certificate issuer: /CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Certificate serial: B4 Authority key identifier: 4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/25FE32B86D9D11EEB269D31CC4F9AE02.roa Signing time: Sun 29 Sep 2024 04:19:33 +0000 ROA not before: Sun 29 Sep 2024 04:19:33 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 151848 IP address blocks: 202.77.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Validity Not Before: Sep 29 04:19:33 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=66f8d555-7396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:42:53:b1:45:85:9e:4f:c5:88:d8:38:9c:46: 44:52:36:b8:75:2b:dd:a4:85:3c:9b:13:9b:c5:da: 16:70:a1:82:46:84:bd:54:2b:fb:ca:31:75:0b:af: ec:b8:24:49:d4:52:61:99:0d:33:16:17:e9:e0:76: 51:ef:03:ca:9f:a6:3e:54:4c:15:90:a2:76:c8:97: d4:59:55:96:65:73:ee:4d:dc:ca:6b:6e:1a:74:f9: 4a:11:69:76:72:66:46:bf:1d:87:07:53:bc:a7:55: b0:52:ef:9d:5e:64:bd:2a:77:a1:62:eb:a4:32:f3: fd:17:ef:53:1b:ba:56:14:9f:44:af:57:2f:b9:24: 96:76:5b:5e:17:7e:61:2c:00:ec:be:b3:93:42:62: 77:18:e5:df:8a:a3:7a:8b:d5:45:01:45:9b:81:85: 1f:68:9c:a6:b6:05:7d:4d:63:a6:dc:46:ce:19:0c: e5:87:9c:61:87:f8:b2:7c:f2:55:8f:52:df:c8:fb: 6d:cf:ae:b0:9a:d8:51:1d:ef:5a:90:07:94:41:5f: c7:1f:ca:6a:54:1e:28:44:42:4c:e9:31:e9:8a:b5: b8:af:21:6d:00:6c:96:d3:a1:b4:f2:3f:09:7c:3f: 43:81:45:f9:f1:ce:e7:c1:0a:e1:79:79:53:b8:f2: aa:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6C:26:A0:06:C9:BE:D0:6B:0E:F0:FE:67:C8:BF:CE:3D:55:C2:02 X509v3 Authority Key Identifier: keyid:4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/25FE32B86D9D11EEB269D31CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.77.138.0/24 Signature Algorithm: sha256WithRSAEncryption 67:43:88:a0:ac:b9:d9:5d:1b:be:f0:f2:96:5f:3d:09:cc:9e: 60:4d:84:97:25:b6:b8:76:86:78:18:48:7f:67:04:cf:bd:57: e9:3c:26:fa:58:a5:eb:ea:33:68:10:26:03:e4:99:a6:e1:5f: d7:c4:08:27:ca:ca:9e:14:22:f9:f3:38:60:4a:05:04:a0:37: aa:45:24:7b:87:23:a0:ce:a0:38:fd:5f:0c:da:85:76:9c:e8: 14:7b:49:24:81:65:95:7d:2f:2a:75:0d:13:a7:ed:8a:20:6f: 9e:50:04:45:70:c9:05:18:35:b5:86:54:88:75:19:95:e4:26: c3:f7:d0:82:59:6a:35:65:d7:5d:91:ac:3b:cd:30:99:0f:9a: e2:95:2c:dd:b0:d1:37:ea:76:45:08:ae:8b:fa:6d:e3:a8:02: 8e:94:95:c5:6e:d6:77:17:bd:ac:0b:e1:77:b5:eb:cb:58:fa: d4:25:77:d9:4a:75:7f:88:0e:c0:7e:40:90:b1:18:57:58:c1: e3:2b:e8:8b:50:d6:b4:e2:5b:61:67:09:67:bc:42:e2:49:83: 47:8d:2c:f9:34:12:54:00:f7:e9:bd:c2:b0:50:8f:ed:c7:a6: 8d:bd:9c:06:f4:05:3a:0c:b5:ef:f0:c8:22:7c:89:07:7e:89: 58:da:f0:69 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODBENzkxMTAvBgNVBAUTKDRFMjFGNUFBOEM5MjhDMEI2NzU3QzAzRTU1QjBBNTky M0M0RTQ4QUIwHhcNMjQwOTI5MDQxOTMzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4ZDU1NS03Mzk2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqEJTsUWFnk/FiNg4nEZEUja4dSvdpIU8mxObxdoWcKGCRoS9VCv7yjF1C6/s uCRJ1FJhmQ0zFhfp4HZR7wPKn6Y+VEwVkKJ2yJfUWVWWZXPuTdzKa24adPlKEWl2 cmZGvx2HB1O8p1WwUu+dXmS9KnehYuukMvP9F+9TG7pWFJ9Er1cvuSSWdlteF35h LADsvrOTQmJ3GOXfiqN6i9VFAUWbgYUfaJymtgV9TWOm3EbOGQzlh5xhh/iyfPJV j1LfyPttz66wmthRHe9akAeUQV/HH8pqVB4oREJM6THpirW4ryFtAGyW06G08j8J fD9DgUX58c7nwQrheXlTuPKqoQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEpsJqAG yb7Qaw7w/mfIv849VcICMB8GA1UdIwQYMBaAFE4h9aqMkowLZ1fAPlWwpZI8Tkir MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MEQ3OS9FMTgyMDhCQzZE OUMxMUVFQTAyQkJCMEVDNEY5QUUwMi9UaUgxcW95U2pBdG5WOEEtVmJDbGtqeE9T S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RpSDFxb3lTakF0blY4QS1WYkNsa2p4T1NLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODBENzkvRTE4MjA4QkM2RDlDMTFFRUEwMkJCQjBFQzRGOUFFMDIvMjVGRTMyQjg2 RDlEMTFFRUIyNjlEMzFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKTYowDQYJKoZIhvcNAQELBQADggEBAGdDiKCsudldG77w 8pZfPQnMnmBNhJcltrh2hngYSH9nBM+9V+k8JvpYpevqM2gQJgPkmabhX9fECCfK yp4UIvnzOGBKBQSgN6pFJHuHI6DOoDj9XwzahXac6BR7SSSBZZV9Lyp1DROn7Yog b55QBEVwyQUYNbWGVIh1GZXkJsP30IJZajVl112RrDvNMJkPmuKVLN2w0TfqdkUI rov6beOoAo6UlcVu1ncXvawL4Xe168tY+tQld9lKdX+IDsB+QJCxGFdYweMr6ItQ 1rTiW2FnCWe8QuJJg0eNLPk0ElQA9+m9wrBQj+3Hpo29nAb0BToMte/wyCJ8iQd+ iVja8Gk= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:51 2024 by rpki-client on console-fra.rpki-client.org