$ rpki-client -vvf rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/8D23BDE287C611EB8C8DDB70C4F9AE02.roa File: 8D23BDE287C611EB8C8DDB70C4F9AE02.roa (raw, json) Hash identifier: OAOhBdws2Og/Ca7gVwngPo7rjcHZWaqTFgTJSHrV1uM= Subject key identifier: CB:92:01:AD:4C:35:75:B9:F6:11:CB:88:18:27:03:E5:B0:D3:73:28 Certificate issuer: /CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Certificate serial: 05B5 Authority key identifier: 68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/8D23BDE287C611EB8C8DDB70C4F9AE02.roa Signing time: Thu 27 Jun 2024 00:19:53 +0000 ROA not before: Thu 27 Jun 2024 00:19:53 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 58740 IP address blocks: 202.164.16.0/21 maxlen: 21 2402:9f00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1461 (0x5b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9119AE2/serialNumber=68595B98E4C27B30BAA331CEAAC7261767CB92EB Validity Not Before: Jun 27 00:19:53 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667cb028-9e8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:dd:c9:4e:8f:74:4d:72:fa:0c:f1:c5:0b:e6: b2:e3:c2:41:db:9e:cb:49:e4:b0:ae:2a:07:e4:57: 73:fd:de:87:fc:41:f8:fa:fe:46:bb:72:6a:c1:2e: 71:da:7a:d2:1d:1e:83:49:18:e4:ae:65:9b:4e:ae: d7:17:ae:20:0d:35:44:16:2f:f5:2f:03:99:4f:70: df:7a:e2:6b:eb:e5:df:08:cb:b2:59:d7:35:2c:bf: f5:da:50:51:de:f6:c8:e5:88:9e:a3:3b:85:2e:68: 22:37:14:d4:51:c3:5a:0f:63:1e:ca:a4:3a:4c:62: fe:2e:95:d3:18:94:05:8b:24:86:af:43:0f:62:19: 4a:38:5d:ce:a3:b5:71:9b:1f:a8:da:f4:5c:15:22: b9:d2:b8:8e:fb:8e:97:15:33:94:f0:74:7d:d7:33: 76:a0:c2:23:73:13:af:01:c9:d6:96:d4:5a:a8:a5: db:0a:98:28:19:bd:ba:85:28:e1:c3:58:bc:74:e9: 0b:42:0d:0a:a5:86:07:9e:a1:6d:23:42:02:54:87: 19:f9:b5:72:32:4a:f9:91:a6:70:80:20:3b:d6:91: 16:96:2a:7b:2e:f6:8d:19:5c:9f:0d:67:e5:32:6b: 80:5a:d6:a6:f8:06:19:29:48:ff:5a:75:47:0a:68: b1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:92:01:AD:4C:35:75:B9:F6:11:CB:88:18:27:03:E5:B0:D3:73:28 X509v3 Authority Key Identifier: keyid:68:59:5B:98:E4:C2:7B:30:BA:A3:31:CE:AA:C7:26:17:67:CB:92:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/aFlbmOTCezC6ozHOqscmF2fLkus.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aFlbmOTCezC6ozHOqscmF2fLkus.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9119AE2/8AB8C18A87C411EBA1FDD86BC4F9AE02/8D23BDE287C611EB8C8DDB70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.164.16.0/21 IPv6: 2402:9f00::/32 Signature Algorithm: sha256WithRSAEncryption 05:b8:95:a5:4c:bb:89:ed:98:51:d8:39:5d:dc:5a:56:97:af: a0:aa:95:22:fb:c0:c6:9b:48:cd:dd:51:04:95:e5:37:f5:31: 31:35:06:4c:ba:d5:49:e2:ad:e1:c0:ca:42:85:cc:98:3e:4e: 76:76:e2:81:32:b7:f6:cd:b5:3a:92:ef:83:f0:65:06:a9:52: 0a:ef:70:05:47:29:da:1e:2a:2e:cd:69:91:a8:83:58:71:26: fb:5c:b2:cf:20:7c:59:23:d9:40:8f:54:85:07:4b:5e:f2:7a: 5a:07:92:59:88:cb:ab:73:5b:2e:28:92:f1:9c:66:3e:ef:0a: 60:26:ee:d0:57:cd:a2:bd:3a:ff:2f:a1:9d:40:3f:3d:41:35: be:84:6a:ca:55:de:eb:e4:de:6b:3b:9c:bc:eb:39:f7:89:a3: b3:52:5c:49:11:ac:d2:6e:45:02:b0:2f:c9:2a:97:79:d7:b9: a0:1e:d6:5a:e0:f9:76:dc:52:ba:3f:3f:ad:d0:c2:0b:d1:da: 0a:74:1f:78:c6:24:79:01:80:ed:0b:eb:fd:63:18:e6:f7:36: 53:c7:82:4f:77:63:b7:eb:0e:37:c5:4e:4c:1c:02:68:27:40: 0b:98:fe:a8:5e:dd:f5:0d:dd:87:17:5a:91:25:0c:c8:b4:c8: 29:f9:8e:0f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTlBRTIxMTAvBgNVBAUTKDY4NTk1Qjk4RTRDMjdCMzBCQUEzMzFDRUFBQzcyNjE3 NjdDQjkyRUIwHhcNMjQwNjI3MDAxOTUzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjYjAyOC05ZThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7d3JTo90TXL6DPHFC+ay48JB257LSeSwrioH5Fdz/d6H/EH4+v5Gu3JqwS5x 2nrSHR6DSRjkrmWbTq7XF64gDTVEFi/1LwOZT3DfeuJr6+XfCMuyWdc1LL/12lBR 3vbI5YieozuFLmgiNxTUUcNaD2MeyqQ6TGL+LpXTGJQFiySGr0MPYhlKOF3Oo7Vx mx+o2vRcFSK50riO+46XFTOU8HR91zN2oMIjcxOvAcnWltRaqKXbCpgoGb26hSjh w1i8dOkLQg0KpYYHnqFtI0ICVIcZ+bVyMkr5kaZwgCA71pEWlip7LvaNGVyfDWfl MmuAWtam+AYZKUj/WnVHCmixxwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMuSAa1M NXW59hHLiBgnA+Ww03MoMB8GA1UdIwQYMBaAFGhZW5jkwnswuqMxzqrHJhdny5Lr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOUFFMi84QUI4QzE4QTg3 QzQxMUVCQTFGREQ4NkJDNEY5QUUwMi9hRmxibU9UQ2V6QzZvekhPcXNjbUYyZkxr dXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FGbGJtT1RDZXpDNm96SE9xc2NtRjJmTGt1cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTlBRTIvOEFCOEMxOEE4N0M0MTFFQkExRkREODZCQzRGOUFFMDIvOEQyM0JERTI4 N0M2MTFFQjhDOEREQjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAPKpBAwDQQCAAIwBwMFACQCnwAwDQYJKoZIhvcNAQELBQAD ggEBAAW4laVMu4ntmFHYOV3cWlaXr6CqlSL7wMabSM3dUQSV5Tf1MTE1Bky61Uni reHAykKFzJg+TnZ24oEyt/bNtTqS74PwZQapUgrvcAVHKdoeKi7NaZGog1hxJvtc ss8gfFkj2UCPVIUHS17yeloHklmIy6tzWy4okvGcZj7vCmAm7tBXzaK9Ov8voZ1A Pz1BNb6EaspV3uvk3ms7nLzrOfeJo7NSXEkRrNJuRQKwL8kql3nXuaAe1lrg+Xbc Uro/P63QwgvR2gp0H3jGJHkBgO0L6/1jGOb3NlPHgk93Y7frDjfFTkwcAmgnQAuY /qhe3fUN3YcXWpElDMi0yCn5jg8= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:34 2024 by rpki-client on console-ams.rpki-client.org