$ rpki-client -vvf rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/AF6AA9ECFF6011ED90C62C26C4F9AE02.roa File: AF6AA9ECFF6011ED90C62C26C4F9AE02.roa (raw, json) Hash identifier: WN63r0LYc8OT8onwa3D/94S7/WYcequXWARWDYr4XRc= Subject key identifier: 4C:97:D9:7A:3C:71:E5:4D:E1:5A:67:56:03:02:39:A0:86:38:79:EA Certificate issuer: /CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Certificate serial: 3404 Authority key identifier: 86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/AF6AA9ECFF6011ED90C62C26C4F9AE02.roa Signing time: Thu 30 May 2024 14:50:31 +0000 ROA not before: Thu 30 May 2024 14:50:31 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136897 IP address blocks: 202.181.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:23:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13316 (0x3404) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9120B99/serialNumber=86C7946946B2A57B056F02B279340D30C2CE49B4 Validity Not Before: May 30 14:50:31 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66589237-9707 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:52:2e:cc:23:7a:fb:7e:7d:cd:47:64:8d:ef: 02:48:98:df:c6:68:37:cd:1c:f3:33:9a:81:1d:65: a2:bf:15:11:85:42:d2:74:ee:82:a1:2e:b9:40:46: e0:33:00:f8:9b:8b:40:b6:1c:35:59:bb:79:f1:1f: aa:21:f6:1c:ed:64:20:67:c7:fb:cf:29:70:bd:3d: ff:04:55:89:04:3c:08:e4:a8:75:02:54:e6:b8:b3: 53:88:fa:c9:b7:62:37:87:26:63:c1:f0:88:b4:67: 20:34:b5:89:a2:69:12:31:b7:14:d7:84:66:5b:b0: 48:b8:c9:fd:67:75:b6:a1:f8:ec:ca:31:58:5f:a8: 30:2f:d0:2d:27:82:b4:32:8f:df:24:4e:ba:a0:3e: 52:d6:67:fb:43:ad:7a:db:2d:67:bb:e2:61:a3:ce: 4f:f3:e6:40:3e:e0:16:87:c0:46:b5:f8:13:57:e8: 3a:e2:11:fa:21:a1:2e:c5:7a:88:d2:e2:a0:fe:f0: 3b:ad:ef:a6:0c:98:29:8e:9c:8d:7d:2a:f6:38:cc: 1e:58:e7:80:05:9e:73:c2:64:a6:96:53:06:0a:e9: 8f:d1:48:cf:32:f7:1b:52:3b:cc:ab:48:2b:ea:d8: fd:88:12:d6:d4:0f:87:4a:4b:bf:4d:e9:9a:64:cb: e4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:97:D9:7A:3C:71:E5:4D:E1:5A:67:56:03:02:39:A0:86:38:79:EA X509v3 Authority Key Identifier: keyid:86:C7:94:69:46:B2:A5:7B:05:6F:02:B2:79:34:0D:30:C2:CE:49:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/hseUaUaypXsFbwKyeTQNMMLOSbQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hseUaUaypXsFbwKyeTQNMMLOSbQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9120B99/D3F9051C1D8311E2B4ED5CD908B02CD2/AF6AA9ECFF6011ED90C62C26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.181.136.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:fe:14:e5:bc:1e:22:81:af:31:45:54:91:18:9f:1c:23:b4: 37:35:58:16:21:95:97:78:b2:77:30:26:a5:4f:1d:d1:0e:aa: 92:7f:36:65:b8:46:21:34:83:66:b7:5e:51:21:59:94:0a:ea: c5:91:1e:01:27:62:13:3b:da:e8:8e:e0:b8:d5:dd:cb:9e:a2: b6:35:0c:37:48:cc:29:f3:37:93:ee:e9:10:67:45:7b:79:b1: 2c:a9:79:dc:c0:58:b2:89:d8:c0:4a:1e:65:f6:c8:8e:a6:e5: 9f:c0:e8:7a:c0:e6:dc:75:a8:9e:c4:83:f4:60:3a:86:f3:34: 4d:58:e6:b3:81:27:d8:ff:00:a4:08:77:51:e1:9e:d2:94:b2: 8a:7b:f5:af:cf:41:6a:0a:ef:d9:f1:54:d1:eb:ec:0c:00:b2: 08:74:cd:04:88:31:57:25:38:fd:37:00:08:b0:97:0f:e3:69: 96:cc:cb:47:67:a8:00:38:f6:b4:b6:35:86:00:23:8b:33:8f: bf:e2:77:ac:a3:76:ac:b1:c5:f5:67:7d:c7:05:ac:63:6e:19: d4:c3:b5:e5:60:ae:49:20:3b:81:8d:2e:bd:e1:e1:7c:97:83: 81:ea:f3:94:72:a4:cf:c8:27:65:dc:b7:be:85:1a:7d:9b:65: 60:91:c0:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNAQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjBCOTkxMTAvBgNVBAUTKDg2Qzc5NDY5NDZCMkE1N0IwNTZGMDJCMjc5MzQwRDMw QzJDRTQ5QjQwHhcNMjQwNTMwMTQ1MDMxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4OTIzNy05NzA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsVIuzCN6+359zUdkje8CSJjfxmg3zRzzM5qBHWWivxURhULSdO6CoS65QEbg MwD4m4tAthw1Wbt58R+qIfYc7WQgZ8f7zylwvT3/BFWJBDwI5Kh1AlTmuLNTiPrJ t2I3hyZjwfCItGcgNLWJomkSMbcU14RmW7BIuMn9Z3W2ofjsyjFYX6gwL9AtJ4K0 Mo/fJE66oD5S1mf7Q6162y1nu+Jho85P8+ZAPuAWh8BGtfgTV+g64hH6IaEuxXqI 0uKg/vA7re+mDJgpjpyNfSr2OMweWOeABZ5zwmSmllMGCumP0UjPMvcbUjvMq0gr 6tj9iBLW1A+HSku/TemaZMvkDQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEyX2Xo8 ceVN4VpnVgMCOaCGOHnqMB8GA1UdIwQYMBaAFIbHlGlGsqV7BW8Csnk0DTDCzkm0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMEI5OS9EM0Y5MDUxQzFE ODMxMUUyQjRFRDVDRDkwOEIwMkNEMi9oc2VVYVVheXBYc0Zid0t5ZVRRTk1NTE9T YlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hzZVVhVWF5cFhzRmJ3S3llVFFOTU1MT1NiUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjBCOTkvRDNGOTA1MUMxRDgzMTFFMkI0RUQ1Q0Q5MDhCMDJDRDIvQUY2QUE5RUNG RjYwMTFFRDkwQzYyQzI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKtYgwDQYJKoZIhvcNAQELBQADggEBAEr+FOW8HiKBrzFF VJEYnxwjtDc1WBYhlZd4sncwJqVPHdEOqpJ/NmW4RiE0g2a3XlEhWZQK6sWRHgEn YhM72uiO4LjV3cueorY1DDdIzCnzN5Pu6RBnRXt5sSypedzAWLKJ2MBKHmX2yI6m 5Z/A6HrA5tx1qJ7Eg/RgOobzNE1Y5rOBJ9j/AKQId1HhntKUsop79a/PQWoK79nx VNHr7AwAsgh0zQSIMVclOP03AAiwlw/jaZbMy0dnqAA49rS2NYYAI4szj7/id6yj dqyxxfVnfccFrGNuGdTDteVgrkkgO4GNLr3h4XyXg4Hq85RypM/IJ2Xct76FGn2b ZWCRwKg= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:34 2024 by rpki-client on console-fra.rpki-client.org