$ rpki-client -vvf rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/25FE32B86D9D11EEB269D31CC4F9AE02.roa File: 25FE32B86D9D11EEB269D31CC4F9AE02.roa (raw, json) Hash identifier: mDG6KWQqIBky5hpF/nD1JeOvhohU5HXcZMUm9gFQtRw= Subject key identifier: F5:D9:FD:35:26:8E:CB:B2:59:96:6D:CD:D0:EF:20:26:E5:C6:79:48 Certificate issuer: /CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Certificate serial: 02 Authority key identifier: 4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/25FE32B86D9D11EEB269D31CC4F9AE02.roa Signing time: Wed 18 Oct 2023 10:00:21 +0000 ROA not before: Wed 18 Oct 2023 10:00:21 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 151848 IP address blocks: 202.77.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180D79/serialNumber=4E21F5AA8C928C0B6757C03E55B0A5923C4E48AB Validity Not Before: Oct 18 10:00:21 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=652facb5-87e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:14:cb:00:d0:e2:ee:3b:97:c8:c5:5e:8c:cf: 86:07:49:68:dd:e0:da:67:70:f0:99:04:f2:36:18: fa:c7:88:bc:c4:77:17:f1:ee:9f:03:ea:a1:6d:fe: 53:c4:89:91:f1:03:3d:b6:fc:74:2c:a4:1c:b5:e7: c4:4f:a1:e5:3b:72:98:a1:69:c6:11:84:03:07:63: 8e:f8:5a:8c:a8:ab:43:44:bb:38:2b:d5:d4:b9:d0: ae:71:c8:2c:6d:01:33:82:08:2a:f1:30:34:51:f8: 64:83:30:29:5f:ea:8b:c0:d0:ce:f5:a5:b3:a1:2e: 43:5c:d2:3b:ef:95:5a:0e:28:bf:5d:00:9a:a5:90: 4f:58:fc:e1:51:59:b4:0c:66:d2:c6:08:fd:57:c8: bb:c0:ae:ea:0d:26:ce:36:c3:79:9f:ff:74:04:33: 0f:88:1c:66:40:0b:cc:24:1a:58:39:e8:33:ac:c9: 44:22:4a:cb:76:58:aa:d2:1d:a6:3d:a6:a6:ea:93: 5f:1f:ae:91:ca:c6:76:2c:0f:f8:77:4f:fd:5e:00: ea:e4:64:c3:67:b4:2d:5d:b4:b6:c7:b1:d2:f8:fa: 57:83:f3:1e:29:81:0d:a2:40:3f:71:5c:89:e4:45: 1d:27:60:78:84:f7:f8:3b:22:66:8e:05:99:90:35: e8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:D9:FD:35:26:8E:CB:B2:59:96:6D:CD:D0:EF:20:26:E5:C6:79:48 X509v3 Authority Key Identifier: keyid:4E:21:F5:AA:8C:92:8C:0B:67:57:C0:3E:55:B0:A5:92:3C:4E:48:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/TiH1qoySjAtnV8A-VbClkjxOSKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TiH1qoySjAtnV8A-VbClkjxOSKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180D79/E18208BC6D9C11EEA02BBB0EC4F9AE02/25FE32B86D9D11EEB269D31CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.77.138.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:db:cc:9c:61:61:1d:ae:80:f4:ed:60:89:fa:fb:2a:e2:fb: 81:9b:53:22:38:02:1d:85:d4:ea:28:cc:dd:f1:58:40:8d:dc: 82:a8:52:29:8c:2a:1b:d7:2c:b3:b5:6d:7c:f5:f9:81:d7:fd: 90:f7:24:24:c7:f9:a3:03:3b:4b:15:c4:4d:54:99:14:4d:7e: 92:22:89:55:50:df:0a:bd:c4:33:e5:29:0b:c6:b0:69:55:65: ba:65:8c:84:3b:bc:ff:c0:fa:ff:c1:3c:5a:15:c3:f1:a2:85: 55:d3:ff:81:66:d8:83:3a:55:58:02:68:dc:29:2c:e3:f4:5c: 47:b4:47:93:3e:ee:3c:dd:d4:b5:69:69:26:88:f3:61:c0:62: 73:b0:e9:71:4a:b5:90:bb:c8:21:bc:7a:5f:9c:19:04:65:02: ff:11:7c:eb:d8:7f:4a:48:78:d0:0a:90:b6:24:18:2c:6d:12: ad:19:81:9a:82:03:51:e5:22:2f:e5:4d:b6:0f:12:9c:73:a7: c3:f2:6a:01:f6:13:d1:1f:e1:0f:76:35:f7:c7:30:46:0d:13: 77:9c:94:a9:80:86:8e:45:fd:11:f8:40:30:1d:8c:87:49:b6: 1d:7b:e1:14:ca:dc:77:e6:22:84:ac:92:89:78:23:9c:fa:90: dd:17:32:dc -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MEQ3OTExMC8GA1UEBRMoNEUyMUY1QUE4QzkyOEMwQjY3NTdDMDNFNTVCMEE1OTIz QzRFNDhBQjAeFw0yMzEwMTgxMDAwMjFaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MmZhY2I1LTg3ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpFMsA0OLuO5fIxV6Mz4YHSWjd4NpncPCZBPI2GPrHiLzEdxfx7p8D6qFt/lPE iZHxAz22/HQspBy158RPoeU7cpihacYRhAMHY474Woyoq0NEuzgr1dS50K5xyCxt ATOCCCrxMDRR+GSDMClf6ovA0M71pbOhLkNc0jvvlVoOKL9dAJqlkE9Y/OFRWbQM ZtLGCP1XyLvAruoNJs42w3mf/3QEMw+IHGZAC8wkGlg56DOsyUQiSst2WKrSHaY9 pqbqk18frpHKxnYsD/h3T/1eAOrkZMNntC1dtLbHsdL4+leD8x4pgQ2iQD9xXInk RR0nYHiE9/g7ImaOBZmQNej/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9dn9NSaO y7JZlm3N0O8gJuXGeUgwHwYDVR0jBBgwFoAUTiH1qoySjAtnV8A+VbClkjxOSKsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwRDc5L0UxODIwOEJDNkQ5 QzExRUVBMDJCQkIwRUM0RjlBRTAyL1RpSDFxb3lTakF0blY4QS1WYkNsa2p4T1NL cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVGlIMXFveVNqQXRuVjhBLVZiQ2xranhPU0tzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MEQ3OS9FMTgyMDhCQzZEOUMxMUVFQTAyQkJCMEVDNEY5QUUwMi8yNUZFMzJCODZE OUQxMUVFQjI2OUQzMUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMpNijANBgkqhkiG9w0BAQsFAAOCAQEAOtvMnGFhHa6A9O1g ifr7KuL7gZtTIjgCHYXU6ijM3fFYQI3cgqhSKYwqG9css7VtfPX5gdf9kPckJMf5 owM7SxXETVSZFE1+kiKJVVDfCr3EM+UpC8awaVVlumWMhDu8/8D6/8E8WhXD8aKF VdP/gWbYgzpVWAJo3Cks4/RcR7RHkz7uPN3UtWlpJojzYcBic7DpcUq1kLvIIbx6 X5wZBGUC/xF869h/Skh40AqQtiQYLG0SrRmBmoIDUeUiL+VNtg8SnHOnw/JqAfYT 0R/hD3Y198cwRg0Td5yUqYCGjkX9EfhAMB2Mh0m2HXvhFMrcd+YihKySiXgjnPqQ 3Rcy3A== -----END CERTIFICATE-----Generated at Fri Jun 7 09:40:21 2024 by rpki-client on console-ams.rpki-client.org