$ rpki-client -vvf rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa File: BAF4AD0418B211EB8C78F510C4F9AE02.roa (raw, json) Hash identifier: YX7S6YQKfzWgrnHOnII3LrtKoEeWJuSugYS6SU9zhmg= Subject key identifier: E2:55:15:5E:7B:11:18:AC:19:19:E9:F3:87:9F:14:41:89:34:A7:1F Certificate issuer: /CN=A9121D26/serialNumber=E95EFFC29416584BF37C0C8F9EB73B920F9A41AD Certificate serial: 0712 Authority key identifier: E9:5E:FF:C2:94:16:58:4B:F3:7C:0C:8F:9E:B7:3B:92:0F:9A:41:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa Signing time: Tue 24 Sep 2024 22:11:25 +0000 ROA not before: Tue 24 Sep 2024 22:11:25 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141197 IP address blocks: 202.0.159.0/24 maxlen: 24 2407:1240:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.crl rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1810 (0x712) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9121D26/serialNumber=E95EFFC29416584BF37C0C8F9EB73B920F9A41AD Validity Not Before: Sep 24 22:11:25 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=66f3390d-f6e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:c1:7d:97:9f:6a:d3:2b:0a:a2:f6:57:10:e8: 64:b7:a1:1f:27:8b:1a:a3:db:34:86:a9:46:7e:17: 3e:c8:3e:f9:53:5c:da:12:18:30:fb:4a:0b:3e:ba: 5f:0c:9c:89:ed:a2:24:e5:96:4f:54:20:05:9f:9c: 90:bb:e6:34:d2:fa:27:72:81:45:e9:1a:fd:45:a3: 24:5c:0f:01:56:f4:55:35:55:a2:95:2c:59:c8:81: d0:b7:b5:54:fb:f7:93:87:7c:95:78:67:3f:e1:fe: e9:33:2f:49:2a:06:62:93:1f:93:29:9d:a8:58:f1: 84:29:e0:bb:62:75:58:fe:41:7c:6c:dc:74:c7:c0: 8b:1b:e4:9b:3b:f1:b5:1e:a3:71:8b:cb:06:bc:2b: ac:f3:23:ac:2b:ff:09:af:a9:d2:a0:03:18:4b:3a: 92:9f:ff:f3:48:6d:26:36:1f:bd:79:c0:b4:98:de: a8:12:59:8f:f5:57:44:3c:37:77:8d:d6:7c:18:33: fc:a3:38:34:c6:2d:f9:08:3c:9a:ad:7b:a2:3b:b7: 43:21:d2:0b:3b:5a:a8:21:cc:c0:47:75:7b:a8:a9: 3a:bf:b9:b2:5f:a9:c3:3d:79:99:09:75:73:ec:ab: 4f:d3:31:c4:e0:be:91:62:2a:4d:47:fc:13:30:fd: fa:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:55:15:5E:7B:11:18:AC:19:19:E9:F3:87:9F:14:41:89:34:A7:1F X509v3 Authority Key Identifier: keyid:E9:5E:FF:C2:94:16:58:4B:F3:7C:0C:8F:9E:B7:3B:92:0F:9A:41:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/6V7_wpQWWEvzfAyPnrc7kg-aQa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V7_wpQWWEvzfAyPnrc7kg-aQa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9121D26/07F0848018AD11EB9EE33485C4F9AE02/BAF4AD0418B211EB8C78F510C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.0.159.0/24 IPv6: 2407:1240:1::/48 Signature Algorithm: sha256WithRSAEncryption 12:42:c0:ce:bd:fd:8b:1c:6f:b5:1d:9f:17:dc:03:9d:f2:66: 72:cf:30:bc:26:f5:0a:3c:3e:31:47:0d:5e:33:a9:32:64:9f: a5:b7:ac:90:9c:61:b6:f4:8f:67:cd:4d:18:a8:68:18:c6:38: 63:04:4e:72:9b:0f:84:5b:c0:b4:2c:1b:fd:4e:0d:fc:27:5a: f4:92:59:74:b1:46:9b:7c:7b:03:e7:8a:69:a9:8e:ca:68:20: a6:e0:6e:60:1d:89:16:47:00:4e:1d:26:48:e4:7e:3b:c7:7e: c1:86:94:5b:bf:b3:50:4a:84:a9:51:37:df:b6:bb:0c:2f:f9: 93:42:ee:ab:65:4e:a1:9f:1a:69:06:dc:63:4f:d5:84:96:1c: b7:bd:4d:c7:b6:f8:ae:0d:59:61:5c:b1:cd:25:84:e4:3f:55: 4b:5b:2a:e3:d5:fc:5c:9e:af:c4:53:48:6c:12:be:5d:2d:62: 5a:a3:b9:83:d1:9b:6d:62:3d:4a:75:c2:a9:a1:8e:1c:7b:3c: a2:06:ed:06:eb:df:49:9a:ef:ea:c1:59:c2:0b:94:8a:6a:7e: 2f:8d:89:f3:14:e3:33:d8:52:ff:64:c7:dd:19:64:cd:98:e7: 44:20:9b:88:a0:9e:d1:17:32:c9:02:df:aa:be:1e:c7:30:6c: f7:46:77:a0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBxIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjFEMjYxMTAvBgNVBAUTKEU5NUVGRkMyOTQxNjU4NEJGMzdDMEM4RjlFQjczQjky MEY5QTQxQUQwHhcNMjQwOTI0MjIxMTI1WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmYzMzkwZC1mNmU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA48F9l59q0ysKovZXEOhkt6EfJ4sao9s0hqlGfhc+yD75U1zaEhgw+0oLPrpf DJyJ7aIk5ZZPVCAFn5yQu+Y00voncoFF6Rr9RaMkXA8BVvRVNVWilSxZyIHQt7VU +/eTh3yVeGc/4f7pMy9JKgZikx+TKZ2oWPGEKeC7YnVY/kF8bNx0x8CLG+SbO/G1 HqNxi8sGvCus8yOsK/8Jr6nSoAMYSzqSn//zSG0mNh+9ecC0mN6oElmP9VdEPDd3 jdZ8GDP8ozg0xi35CDyarXuiO7dDIdILO1qoIczAR3V7qKk6v7myX6nDPXmZCXVz 7KtP0zHE4L6RYipNR/wTMP36KQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOJVFV57 ERisGRnp84efFEGJNKcfMB8GA1UdIwQYMBaAFOle/8KUFlhL83wMj563O5IPmkGt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMUQyNi8wN0YwODQ4MDE4 QUQxMUVCOUVFMzM0ODVDNEY5QUUwMi82Vjdfd3BRV1dFdnpmQXlQbnJjN2tnLWFR YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZWN193cFFXV0V2emZBeVBucmM3a2ctYVFhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjFEMjYvMDdGMDg0ODAxOEFEMTFFQjlFRTMzNDg1QzRGOUFFMDIvQkFGNEFEMDQx OEIyMTFFQjhDNzhGNTEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKAJ8wDwQCAAIwCQMHACQHEkAAATANBgkqhkiG9w0BAQsF AAOCAQEAEkLAzr39ixxvtR2fF9wDnfJmcs8wvCb1Cjw+MUcNXjOpMmSfpbeskJxh tvSPZ81NGKhoGMY4YwROcpsPhFvAtCwb/U4N/Cda9JJZdLFGm3x7A+eKaamOymgg puBuYB2JFkcATh0mSOR+O8d+wYaUW7+zUEqEqVE337a7DC/5k0Luq2VOoZ8aaQbc Y0/VhJYct71Nx7b4rg1ZYVyxzSWE5D9VS1sq49X8XJ6vxFNIbBK+XS1iWqO5g9Gb bWI9SnXCqaGOHHs8ogbtBuvfSZrv6sFZwguUimp+L42J8xTjM9hS/2TH3RlkzZjn RCCbiKCe0RcyyQLfqr4exzBs90Z3oA== -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:35 2024 by rpki-client on console-ams.rpki-client.org