$ rpki-client -vvf rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/1501E24625F511EF8F342F3EC4F9AE02.roa File: 1501E24625F511EF8F342F3EC4F9AE02.roa (raw, json) Hash identifier: xb5pYUXWejftZcnwxhpgprfBYw1l18qZhykhwAV8tW4= Subject key identifier: 68:27:8E:6F:DB:91:62:87:C7:81:FB:06:C4:5B:1A:72:96:FE:A6:BF Certificate issuer: /CN=A9188F77/serialNumber=16315A68A745080BDDB6C8F0156D043068931B57 Certificate serial: 44 Authority key identifier: 16:31:5A:68:A7:45:08:0B:DD:B6:C8:F0:15:6D:04:30:68:93:1B:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FjFaaKdFCAvdtsjwFW0EMGiTG1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/1501E24625F511EF8F342F3EC4F9AE02.roa Signing time: Fri 11 Oct 2024 01:48:47 +0000 ROA not before: Fri 11 Oct 2024 01:48:47 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136433 IP address blocks: 202.61.110.0/24 maxlen: 24 2001:df4:4a40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/FjFaaKdFCAvdtsjwFW0EMGiTG1c.crl rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/FjFaaKdFCAvdtsjwFW0EMGiTG1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FjFaaKdFCAvdtsjwFW0EMGiTG1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68 (0x44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9188F77/serialNumber=16315A68A745080BDDB6C8F0156D043068931B57 Validity Not Before: Oct 11 01:48:47 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=670883fe-05ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:60:b7:f0:4c:ff:55:15:12:0d:72:f5:9c:99: 0f:71:3a:84:55:4d:2b:be:26:d8:09:ff:72:54:26: 25:70:9d:c1:e3:72:1e:a0:d3:a2:e0:ad:11:af:67: 29:7c:1b:e2:5d:08:19:74:54:13:d5:ae:40:24:63: 48:d2:21:6e:0b:27:5b:46:2d:7b:f7:53:08:64:d6: 63:b3:8a:42:79:8c:1f:77:a2:69:d0:42:a3:96:2f: 02:66:33:f2:2e:f2:a0:9c:5a:fd:c7:e0:c0:7d:30: b2:d7:8a:2b:48:21:fd:1b:92:a6:65:06:19:3a:d5: 4b:38:7a:93:b9:a9:20:60:ed:71:3a:b2:22:39:43: 5d:a1:59:bd:ac:04:53:11:f5:3c:d1:56:1d:e1:18: c2:c9:ef:71:3a:12:6a:1f:7b:83:23:c5:6d:74:81: e9:cc:ce:e7:e2:bc:ed:d2:2d:9d:0f:5a:94:d9:be: f5:6c:3b:39:12:7d:a2:01:91:a7:fc:02:a0:57:6d: 1c:50:4c:33:89:a3:b8:4f:af:b2:cc:43:dc:45:f3: e4:8b:d4:4e:59:8b:7b:ed:e0:9a:80:32:e5:7b:e3: d8:62:ce:e4:5d:d7:1b:72:14:42:c1:d8:5b:ec:14: 9e:63:fb:ef:fb:d4:47:6e:56:01:b9:44:b2:c2:93: 30:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:27:8E:6F:DB:91:62:87:C7:81:FB:06:C4:5B:1A:72:96:FE:A6:BF X509v3 Authority Key Identifier: keyid:16:31:5A:68:A7:45:08:0B:DD:B6:C8:F0:15:6D:04:30:68:93:1B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/FjFaaKdFCAvdtsjwFW0EMGiTG1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FjFaaKdFCAvdtsjwFW0EMGiTG1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9188F77/CD28738225C111EF90097F5AC4F9AE02/1501E24625F511EF8F342F3EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.61.110.0/24 IPv6: 2001:df4:4a40::/48 Signature Algorithm: sha256WithRSAEncryption 4c:a0:bd:da:da:40:ba:00:93:f2:6b:83:b0:46:ce:48:e2:92: 3e:33:71:ba:94:01:11:b1:a3:18:9b:c3:01:61:bd:db:94:6b: 59:26:38:ed:2a:ec:20:00:50:18:1a:e0:a7:d4:4a:86:b9:80: 01:66:72:8a:f8:f4:03:0b:5e:f4:55:94:84:03:44:02:7c:bd: 0d:00:74:53:dd:40:98:92:bd:8e:ac:93:cb:9e:a7:04:c2:67: a9:26:45:3e:e1:6b:7f:98:28:05:bc:69:ce:60:1b:fb:c3:c9: dd:56:b4:f2:8d:65:dd:b3:6e:fe:ff:1b:7b:ff:66:ee:3e:c3: 29:a6:66:79:8d:18:af:0d:89:0e:8d:c7:ab:e8:98:1b:65:e0: 3f:58:ee:b8:87:75:d3:e0:f5:a2:4e:a8:18:2b:7d:8c:3f:d0: b0:35:5c:8b:38:b1:eb:a9:ed:7d:31:e5:15:31:af:7c:11:99: 7e:9c:a6:62:1a:ca:f1:47:bb:e0:dd:30:ba:09:70:c4:95:85: c6:2d:cb:c8:01:04:a9:df:6b:15:e3:44:34:f1:85:8b:37:83: 72:c4:31:37:bc:5e:b8:1a:26:3b:ba:00:c0:91:a7:5c:16:61: 22:4d:1e:81:ad:db:2d:8a:3a:71:2b:86:56:44:79:3e:86:a3: 7c:ef:c1:ea -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBRDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 OEY3NzExMC8GA1UEBRMoMTYzMTVBNjhBNzQ1MDgwQkREQjZDOEYwMTU2RDA0MzA2 ODkzMUI1NzAeFw0yNDEwMTEwMTQ4NDdaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDg4M2ZlLTA1ZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCtYLfwTP9VFRINcvWcmQ9xOoRVTSu+JtgJ/3JUJiVwncHjch6g06LgrRGvZyl8 G+JdCBl0VBPVrkAkY0jSIW4LJ1tGLXv3Uwhk1mOzikJ5jB93omnQQqOWLwJmM/Iu 8qCcWv3H4MB9MLLXiitIIf0bkqZlBhk61Us4epO5qSBg7XE6siI5Q12hWb2sBFMR 9TzRVh3hGMLJ73E6Emofe4MjxW10genMzufivO3SLZ0PWpTZvvVsOzkSfaIBkaf8 AqBXbRxQTDOJo7hPr7LMQ9xF8+SL1E5Zi3vt4JqAMuV749hizuRd1xtyFELB2Fvs FJ5j++/71EduVgG5RLLCkzAHAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUaCeOb9uR YofHgfsGxFsacpb+pr8wHwYDVR0jBBgwFoAUFjFaaKdFCAvdtsjwFW0EMGiTG1cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg4Rjc3L0NEMjg3MzgyMjVD MTExRUY5MDA5N0Y1QUM0RjlBRTAyL0ZqRmFhS2RGQ0F2ZHRzandGVzBFTUdpVEcx Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRmpGYWFLZEZDQXZkdHNqd0ZXMEVNR2lURzFjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 OEY3Ny9DRDI4NzM4MjI1QzExMUVGOTAwOTdGNUFDNEY5QUUwMi8xNTAxRTI0NjI1 RjUxMUVGOEYzNDJGM0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAMo9bjAPBAIAAjAJAwcAIAEN9EpAMA0GCSqGSIb3DQEBCwUA A4IBAQBMoL3a2kC6AJPya4OwRs5I4pI+M3G6lAERsaMYm8MBYb3blGtZJjjtKuwg AFAYGuCn1EqGuYABZnKK+PQDC170VZSEA0QCfL0NAHRT3UCYkr2OrJPLnqcEwmep JkU+4Wt/mCgFvGnOYBv7w8ndVrTyjWXds27+/xt7/2buPsMppmZ5jRivDYkOjcer 6JgbZeA/WO64h3XT4PWiTqgYK32MP9CwNVyLOLHrqe19MeUVMa98EZl+nKZiGsrx R7vg3TC6CXDElYXGLcvIAQSp32sV40Q08YWLN4NyxDE3vF64GiY7ugDAkadcFmEi TR6BrdstijpxK4ZWRHk+hqN878Hq -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:27 2024 by rpki-client on console-fra.rpki-client.org