$ rpki-client -vvf rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/66C1BA862FBB11EB9B861059C4F9AE02.roa File: 66C1BA862FBB11EB9B861059C4F9AE02.roa (raw, json) Hash identifier: 1+DFz3Ohl+K4Krz+OlUwDG7GSgikxyNy5V+bghBruP8= Subject key identifier: 4A:82:51:AB:FD:B5:F1:4E:2B:79:D0:6C:F6:9B:B1:4E:99:6F:7D:B3 Certificate issuer: /CN=A9186E8A/serialNumber=A9BCCA6D34D3D5F1EFF8BBE783D49773813E5EF8 Certificate serial: 06BE Authority key identifier: A9:BC:CA:6D:34:D3:D5:F1:EF:F8:BB:E7:83:D4:97:73:81:3E:5E:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/66C1BA862FBB11EB9B861059C4F9AE02.roa Signing time: Fri 05 Apr 2024 00:02:19 +0000 ROA not before: Fri 05 Apr 2024 00:02:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 135026 IP address blocks: 118.193.79.0/24 maxlen: 24 123.58.202.0/24 maxlen: 24 123.58.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.crl rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 23:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1726 (0x6be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186E8A/serialNumber=A9BCCA6D34D3D5F1EFF8BBE783D49773813E5EF8 Validity Not Before: Apr 5 00:02:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f3f8b-b2c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:71:4a:b0:f4:85:a1:b2:16:2f:37:3e:ae:84: 92:f3:e1:4a:bf:ec:a0:46:e4:27:c3:dd:a8:33:2f: 03:51:d3:3f:86:39:7b:c1:cc:86:7d:42:c8:16:e6: e3:d5:48:60:fd:4b:68:49:70:b3:fd:fa:97:5f:16: ec:95:c3:f9:fe:8e:71:b4:1a:6a:10:8d:0f:b4:b5: 4b:2e:a7:be:6a:57:d2:c3:40:68:ee:97:0c:40:77: b0:94:50:88:90:aa:16:56:7f:64:f4:17:53:52:2c: 95:76:89:76:c6:9c:16:35:e9:76:83:b2:6b:ea:10: 12:2b:72:ba:74:bf:5f:dc:15:84:31:e1:b7:18:be: b1:9e:7f:97:b2:c0:c5:e3:47:c4:c1:51:47:88:dc: 72:23:4b:9e:5d:be:dd:ff:fb:6b:c7:b1:84:84:71: f9:20:d5:91:bd:8c:39:02:96:fa:e8:67:b8:12:e5: ba:03:a5:24:c4:92:25:95:09:d5:2f:12:1a:8a:67: 87:0f:57:62:8f:32:93:11:87:48:2d:b9:fc:38:57: 10:20:59:a1:18:1f:c6:34:59:1a:23:86:ff:c6:39: fa:9b:0a:0d:98:92:57:0f:87:c1:1f:5c:d4:09:33: 22:3c:e4:b4:e7:b2:b7:95:e2:4f:57:0f:45:af:48: 47:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:82:51:AB:FD:B5:F1:4E:2B:79:D0:6C:F6:9B:B1:4E:99:6F:7D:B3 X509v3 Authority Key Identifier: keyid:A9:BC:CA:6D:34:D3:D5:F1:EF:F8:BB:E7:83:D4:97:73:81:3E:5E:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qbzKbTTT1fHv-Lvng9SXc4E-Xvg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186E8A/3B476E7C2DFF11EB868A9135C4F9AE02/66C1BA862FBB11EB9B861059C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.193.79.0/24 123.58.202.0/24 123.58.222.0/24 Signature Algorithm: sha256WithRSAEncryption 86:8a:c8:0d:65:3f:d9:35:a7:ec:a5:1e:ce:04:d0:09:51:1b: 7b:b7:6b:59:d3:65:66:e2:32:7c:81:9d:37:32:13:e7:18:1a: 0b:be:cc:b9:6d:ae:89:5a:5f:48:43:23:95:e2:85:b4:5d:fb: 12:0f:28:bd:a1:d6:15:a9:28:7d:5f:44:72:25:e5:b8:4c:8d: 88:9e:40:d4:bb:95:21:08:38:32:d2:26:b4:ca:85:af:af:da: 69:29:f4:8c:05:d9:ea:ac:27:d6:1f:b8:f4:b6:a7:eb:00:5a: 41:62:fa:3e:1c:b2:69:9a:54:c6:2e:59:ac:6d:6b:64:7a:12: 1b:da:45:91:8b:b9:77:b5:ec:ff:21:28:aa:f2:22:55:34:d5: 98:ba:12:ad:72:ee:c1:71:7e:8f:5d:99:2d:51:a3:4d:04:d2: 62:54:18:a8:d6:1b:45:0e:4b:c8:87:3e:8a:0a:b0:94:6f:d5: 04:bc:43:ae:25:73:d1:b5:95:e9:57:40:2d:9f:c1:cc:06:2e: 79:8a:f8:61:b2:8a:5d:a0:36:e4:1c:75:5d:5f:9f:44:7a:9a: 64:41:f9:9c:3b:15:a7:cb:31:c0:e0:01:97:42:f1:f3:27:03: e7:b4:4e:d5:8b:a7:79:9c:d2:4e:c8:7a:17:9a:43:a5:42:4e: a0:50:91:eb -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBr4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODZFOEExMTAvBgNVBAUTKEE5QkNDQTZEMzREM0Q1RjFFRkY4QkJFNzgzRDQ5Nzcz ODEzRTVFRjgwHhcNMjQwNDA1MDAwMjE5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmM2Y4Yi1iMmM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtXFKsPSFobIWLzc+roSS8+FKv+ygRuQnw92oMy8DUdM/hjl7wcyGfULIFubj 1Uhg/UtoSXCz/fqXXxbslcP5/o5xtBpqEI0PtLVLLqe+alfSw0Bo7pcMQHewlFCI kKoWVn9k9BdTUiyVdol2xpwWNel2g7Jr6hASK3K6dL9f3BWEMeG3GL6xnn+XssDF 40fEwVFHiNxyI0ueXb7d//trx7GEhHH5INWRvYw5Apb66Ge4EuW6A6UkxJIllQnV LxIaimeHD1dijzKTEYdILbn8OFcQIFmhGB/GNFkaI4b/xjn6mwoNmJJXD4fBH1zU CTMiPOS057K3leJPVw9Fr0hHQwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFEqCUav9 tfFOK3nQbPabsU6Zb32zMB8GA1UdIwQYMBaAFKm8ym0009Xx7/i754PUl3OBPl74 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NkU4QS8zQjQ3NkU3QzJE RkYxMUVCODY4QTkxMzVDNEY5QUUwMi9xYnpLYlRUVDFmSHYtTHZuZzlTWGM0RS1Y dmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FiektiVFRUMWZIdi1Mdm5nOVNYYzRFLVh2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODZFOEEvM0I0NzZFN0MyREZGMTFFQjg2OEE5MTM1QzRGOUFFMDIvNjZDMUJBODYy RkJCMTFFQjlCODYxMDU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAB2wU8DBAB7OsoDBAB7Ot4wDQYJKoZIhvcNAQELBQADggEB AIaKyA1lP9k1p+ylHs4E0AlRG3u3a1nTZWbiMnyBnTcyE+cYGgu+zLltrolaX0hD I5XihbRd+xIPKL2h1hWpKH1fRHIl5bhMjYieQNS7lSEIODLSJrTKha+v2mkp9IwF 2eqsJ9YfuPS2p+sAWkFi+j4csmmaVMYuWaxta2R6EhvaRZGLuXe17P8hKKryIlU0 1Zi6Eq1y7sFxfo9dmS1Ro00E0mJUGKjWG0UOS8iHPooKsJRv1QS8Q64lc9G1lelX QC2fwcwGLnmK+GGyil2gNuQcdV1fn0R6mmRB+Zw7FafLMcDgAZdC8fMnA+e0TtWL p3mc0k7IeheaQ6VCTqBQkes= -----END CERTIFICATE-----Generated at Mon Jun 3 01:08:45 2024 by rpki-client on console-fra.rpki-client.org