$ rpki-client -vvf rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa File: 0827E4147F7911EC86DE4B56C4F9AE02.roa (raw, json) Hash identifier: CFNa1CRrRXsw2NlqSuSKe2rvDg2ywkEC8x6fBZFbOK4= Subject key identifier: AD:06:64:AB:94:A0:8A:D3:2B:3D:F3:35:7A:31:8D:9E:32:DE:95:BB Certificate issuer: /CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Certificate serial: 0BDE Authority key identifier: 13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa Signing time: Mon 20 May 2024 19:27:51 +0000 ROA not before: Mon 20 May 2024 19:27:51 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 141731 IP address blocks: 202.83.125.0/24 maxlen: 24 2400:4fc0:3ff::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:15:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3038 (0xbde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9130F9C/serialNumber=138CD10A4778DE0E35911E9C9C944F4B21C4DB09 Validity Not Before: May 20 19:27:51 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664ba437-ce54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:47:68:ed:24:ec:c3:a1:cb:45:88:9b:79:cd: 5a:6d:ce:e7:6f:02:36:e8:de:53:a4:d6:94:2a:ba: 82:b3:b2:92:20:b4:d3:11:e3:b4:bb:bf:8a:b4:8c: 4b:99:8c:c4:41:e8:1b:61:ca:87:e1:4c:8c:f4:72: 81:cf:99:87:2f:86:52:7a:55:1b:6c:28:e4:f4:3e: ee:7f:39:c3:8f:f2:55:c9:18:53:1b:a9:41:3b:81: 33:f8:f1:93:1e:c4:91:51:4b:61:a7:79:3c:38:71: 66:39:a3:3c:fb:72:33:f9:d0:c9:53:d6:ed:ed:ba: 53:ae:57:dc:d4:b6:3e:88:de:81:6a:e4:06:a3:5e: c4:20:84:e2:c4:54:cd:60:49:e0:91:23:71:e0:8f: 34:ba:2b:ca:dd:b6:e0:c6:be:28:19:37:c8:4e:fc: 39:75:49:72:18:c4:5d:e3:5f:2f:5d:de:e7:49:6b: b8:d2:c6:b6:81:b6:3d:b3:f8:20:47:83:ef:dc:e4: d8:b6:43:c0:fc:16:04:fa:0c:3a:e1:a2:12:86:a1: 7d:7d:39:bb:9a:8a:42:8c:64:5f:13:8c:e7:8a:1a: c6:9f:4f:e7:7f:3b:b0:a4:c4:a8:35:4e:45:52:0b: f2:6b:43:24:2e:0d:23:51:48:1c:cc:d8:d9:f2:a1: 63:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:06:64:AB:94:A0:8A:D3:2B:3D:F3:35:7A:31:8D:9E:32:DE:95:BB X509v3 Authority Key Identifier: keyid:13:8C:D1:0A:47:78:DE:0E:35:91:1E:9C:9C:94:4F:4B:21:C4:DB:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/E4zRCkd43g41kR6cnJRPSyHE2wk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E4zRCkd43g41kR6cnJRPSyHE2wk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9130F9C/29CB020EFA0B11E9978B0A32C4F9AE02/0827E4147F7911EC86DE4B56C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.125.0/24 IPv6: 2400:4fc0:3ff::/48 Signature Algorithm: sha256WithRSAEncryption 27:9a:df:94:22:70:17:d5:b2:4b:6e:08:8d:21:c8:93:7d:8a: 1e:d4:dd:c2:35:c6:60:5b:0b:5f:38:1a:d2:57:7e:7e:74:34: 6f:0c:94:23:db:6b:3a:bf:8b:d8:f8:74:1b:4d:54:46:9a:b5: 1e:6e:35:21:d7:88:83:7e:2d:c2:4d:b0:a6:87:bb:49:03:e2: 31:2f:e5:6c:a4:b7:64:f6:cf:e4:62:a4:bb:94:79:98:ed:cf: 20:bf:0d:3f:5e:de:1d:40:40:55:37:1b:8b:9f:16:7f:45:ca: 03:cb:bf:2c:8b:0b:b5:f1:2a:64:e4:de:29:30:3c:0d:54:67: ed:50:3c:39:8b:f4:0e:87:34:ca:b4:78:7a:f3:08:f6:eb:1c: 0c:d9:1f:66:c4:b0:cb:64:5c:ef:d4:bd:10:48:d2:a5:e5:9f: 6c:de:11:4b:62:ff:67:1e:4e:f6:11:bd:59:7c:8c:2f:e2:7b: 70:e7:d7:bf:60:c9:5c:dc:e2:f3:15:92:fe:16:b5:9e:26:70: c1:7d:c0:5f:fd:92:6a:19:2b:76:b8:32:c0:18:d3:5c:3d:2c: 08:9f:52:77:d5:7b:51:b8:12:c3:53:39:d9:b9:f7:23:bb:16: 23:11:4e:f9:78:fa:ad:10:75:f1:7e:29:a9:e4:ad:43:b1:51: 7b:35:50:94 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICC94wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzBGOUMxMTAvBgNVBAUTKDEzOENEMTBBNDc3OERFMEUzNTkxMUU5QzlDOTQ0RjRC MjFDNERCMDkwHhcNMjQwNTIwMTkyNzUxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjRiYTQzNy1jZTU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApkdo7STsw6HLRYibec1abc7nbwI26N5TpNaUKrqCs7KSILTTEeO0u7+KtIxL mYzEQegbYcqH4UyM9HKBz5mHL4ZSelUbbCjk9D7ufznDj/JVyRhTG6lBO4Ez+PGT HsSRUUthp3k8OHFmOaM8+3Iz+dDJU9bt7bpTrlfc1LY+iN6BauQGo17EIITixFTN YEngkSNx4I80uivK3bbgxr4oGTfITvw5dUlyGMRd418vXd7nSWu40sa2gbY9s/gg R4Pv3OTYtkPA/BYE+gw64aIShqF9fTm7mopCjGRfE4znihrGn0/nfzuwpMSoNU5F Ugvya0MkLg0jUUgczNjZ8qFjCwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFK0GZKuU oIrTKz3zNXoxjZ4y3pW7MB8GA1UdIwQYMBaAFBOM0QpHeN4ONZEenJyUT0shxNsJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMEY5Qy8yOUNCMDIwRUZB MEIxMUU5OTc4QjBBMzJDNEY5QUUwMi9FNHpSQ2tkNDNnNDFrUjZjbkpSUFN5SEUy d2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0U0elJDa2Q0M2c0MWtSNmNuSlJQU3lIRTJ3ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzBGOUMvMjlDQjAyMEVGQTBCMTFFOTk3OEIwQTMyQzRGOUFFMDIvMDgyN0U0MTQ3 Rjc5MTFFQzg2REU0QjU2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKU30wDwQCAAIwCQMHACQAT8AD/zANBgkqhkiG9w0BAQsF AAOCAQEAJ5rflCJwF9WyS24IjSHIk32KHtTdwjXGYFsLXzga0ld+fnQ0bwyUI9tr Or+L2Ph0G01URpq1Hm41IdeIg34twk2wpoe7SQPiMS/lbKS3ZPbP5GKku5R5mO3P IL8NP17eHUBAVTcbi58Wf0XKA8u/LIsLtfEqZOTeKTA8DVRn7VA8OYv0Doc0yrR4 evMI9uscDNkfZsSwy2Rc79S9EEjSpeWfbN4RS2L/Zx5O9hG9WXyML+J7cOfXv2DJ XNzi8xWS/ha1niZwwX3AX/2SahkrdrgywBjTXD0sCJ9Sd9V7UbgSw1M52bn3I7sW IxFO+Xj6rRB18X4pqeStQ7FRezVQlA== -----END CERTIFICATE-----Generated at Fri Nov 22 19:49:59 2024 by rpki-client on console-ams.rpki-client.org