$ rpki-client -vvf rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/0A1FAC405BB211EEAD06B243C4F9AE02.roa File: 0A1FAC405BB211EEAD06B243C4F9AE02.roa (raw, json) Hash identifier: tgnIyxqnM5e1e77M6KmIsMUhPNhnEFkzQfcV1nAwP9g= Subject key identifier: 11:3C:E3:9F:7A:31:6B:10:92:71:91:55:4B:50:7C:DF:0F:B6:04:D3 Certificate issuer: /CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Certificate serial: 0489 Authority key identifier: E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/0A1FAC405BB211EEAD06B243C4F9AE02.roa Signing time: Tue 09 Jan 2024 01:22:55 +0000 ROA not before: Tue 09 Jan 2024 01:22:55 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 4787 IP address blocks: 202.179.136.0/24 maxlen: 24 202.179.137.0/24 maxlen: 24 202.179.138.0/24 maxlen: 24 202.179.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 01:35:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1161 (0x489) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197FDB/serialNumber=E0025BF932E716E1A1F8AF9010211C411084FC9D Validity Not Before: Jan 9 01:22:55 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659c9fee-86df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b0:ee:ae:aa:84:41:fa:5c:ef:28:38:c8:d2: c0:5d:b0:4d:b5:60:58:08:ef:1e:6c:b3:2f:25:35: 29:4c:37:84:e0:50:2b:4d:16:77:80:01:3a:02:b9: de:67:fb:9d:36:6a:0e:72:06:93:e9:74:98:f6:0e: 8b:da:94:81:fc:9b:7e:13:97:35:88:bd:34:e4:0e: 23:bb:2b:21:5b:4d:d7:00:95:22:79:3b:9f:ed:d7: 66:db:57:b2:e9:9e:c4:76:5f:f4:fa:df:14:ce:54: fc:a6:43:67:fe:a6:d7:6d:67:b1:c3:a4:5a:8e:38: 0f:54:3b:09:04:c6:e1:89:5a:04:e7:3f:a0:ae:0b: 40:17:6d:fa:96:c9:19:3c:1c:45:93:1e:73:37:89: 41:24:ab:82:5d:fc:f0:da:ab:79:15:4c:ce:07:90: 23:45:28:12:d6:3f:3e:d3:94:8c:00:3e:61:0f:a4: 17:c2:9f:a9:3e:2c:14:cc:a6:19:6b:12:76:ce:63: 45:4e:67:4f:40:a7:f7:2b:2f:40:5b:99:69:b0:26: a1:2b:00:f8:e4:56:4b:34:dd:62:d2:9a:40:05:da: fd:ec:a7:ca:56:3c:18:39:f0:a6:3b:17:8c:93:dc: 8c:25:2a:a8:af:e1:c0:e6:2d:ad:fa:46:ad:65:d2: 6d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:3C:E3:9F:7A:31:6B:10:92:71:91:55:4B:50:7C:DF:0F:B6:04:D3 X509v3 Authority Key Identifier: keyid:E0:02:5B:F9:32:E7:16:E1:A1:F8:AF:90:10:21:1C:41:10:84:FC:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/4AJb-TLnFuGh-K-QECEcQRCE_J0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4AJb-TLnFuGh-K-QECEcQRCE_J0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197FDB/657E4074DA3611EB84E6A349C4F9AE02/0A1FAC405BB211EEAD06B243C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.179.136.0/22 Signature Algorithm: sha256WithRSAEncryption 00:bf:e3:3b:d8:6a:eb:69:f6:4b:83:45:f9:e5:a6:0e:15:ad: 04:54:19:38:09:e3:0c:cb:7a:cd:08:2a:60:c1:65:be:6c:f1: a3:4b:b5:d2:f4:f2:d1:70:48:85:dc:df:b1:16:58:0a:d2:57: 87:5d:70:80:60:2f:d7:6f:02:0a:c6:7d:22:a7:c9:3b:f0:fb: 76:a0:2e:85:b1:82:eb:63:f2:d9:31:75:6c:4a:33:2e:46:dd: 81:62:8a:47:f8:16:df:a8:1c:74:6f:6a:0b:8f:48:ed:73:c0: 96:fc:44:b6:45:73:13:60:af:55:6a:8a:92:03:36:6b:72:fd: 6e:e6:68:6d:e5:d5:bf:8c:3a:c6:4b:2e:56:64:7d:34:3b:26: 09:f2:68:b5:0e:41:d3:0d:8e:02:0e:de:d7:5b:33:a2:42:69: 15:b7:dc:4d:e6:cc:a9:ad:e1:b7:90:b4:ed:10:92:53:d0:62: 50:d3:9a:a2:71:7f:a2:ee:de:24:e7:94:04:a8:01:b6:92:81: 76:fe:9f:60:7b:10:0f:8f:b8:2f:ab:5e:d2:b3:1a:34:24:40: d4:4e:b3:c6:dc:42:1e:0e:bd:6f:b9:ba:39:03:5e:37:8d:18: 20:44:9d:8d:d9:6f:2d:07:7d:fe:2e:ad:fc:ed:93:4f:69:62: 7b:20:51:e9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBIkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTdGREIxMTAvBgNVBAUTKEUwMDI1QkY5MzJFNzE2RTFBMUY4QUY5MDEwMjExQzQx MTA4NEZDOUQwHhcNMjQwMTA5MDEyMjU1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTljOWZlZS04NmRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtrDurqqEQfpc7yg4yNLAXbBNtWBYCO8ebLMvJTUpTDeE4FArTRZ3gAE6Arne Z/udNmoOcgaT6XSY9g6L2pSB/Jt+E5c1iL005A4juyshW03XAJUieTuf7ddm21ey 6Z7Edl/0+t8UzlT8pkNn/qbXbWexw6RajjgPVDsJBMbhiVoE5z+grgtAF236lskZ PBxFkx5zN4lBJKuCXfzw2qt5FUzOB5AjRSgS1j8+05SMAD5hD6QXwp+pPiwUzKYZ axJ2zmNFTmdPQKf3Ky9AW5lpsCahKwD45FZLNN1i0ppABdr97KfKVjwYOfCmOxeM k9yMJSqor+HA5i2t+katZdJtLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBE84596 MWsQknGRVUtQfN8PtgTTMB8GA1UdIwQYMBaAFOACW/ky5xbhofivkBAhHEEQhPyd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5N0ZEQi82NTdFNDA3NERB MzYxMUVCODRFNkEzNDlDNEY5QUUwMi80QUpiLVRMbkZ1R2gtSy1RRUNFY1FSQ0Vf SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRBSmItVExuRnVHaC1LLVFFQ0VjUVJDRV9KMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTdGREIvNjU3RTQwNzREQTM2MTFFQjg0RTZBMzQ5QzRGOUFFMDIvMEExRkFDNDA1 QkIyMTFFRUFEMDZCMjQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKs4gwDQYJKoZIhvcNAQELBQADggEBAAC/4zvYautp9kuD Rfnlpg4VrQRUGTgJ4wzLes0IKmDBZb5s8aNLtdL08tFwSIXc37EWWArSV4ddcIBg L9dvAgrGfSKnyTvw+3agLoWxgutj8tkxdWxKMy5G3YFiikf4Ft+oHHRvaguPSO1z wJb8RLZFcxNgr1VqipIDNmty/W7maG3l1b+MOsZLLlZkfTQ7JgnyaLUOQdMNjgIO 3tdbM6JCaRW33E3mzKmt4beQtO0QklPQYlDTmqJxf6Lu3iTnlASoAbaSgXb+n2B7 EA+PuC+rXtKzGjQkQNROs8bcQh4OvW+5ujkDXjeNGCBEnY3Zby0Hff4urfztk09p YnsgUek= -----END CERTIFICATE-----Generated at Fri May 3 04:45:20 2024 by rpki-client on console-fra.rpki-client.org