$ rpki-client -vvf rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa File: 66EE9D94152511ECAD055780C4F9AE02.roa (raw, json) Hash identifier: xYIcgS1Zp8wD+PJFBZBjfV7mWptLx74W20qrbaZleiE= Subject key identifier: AF:79:71:73:0E:5D:C2:F3:39:02:38:10:2C:33:AA:DB:6C:77:B1:95 Certificate issuer: /CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Certificate serial: 0752 Authority key identifier: 1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa Signing time: Mon 26 Aug 2024 21:59:58 +0000 ROA not before: Mon 26 Aug 2024 21:59:58 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 17888 IP address blocks: 202.83.192.0/19 maxlen: 19 202.83.192.0/20 maxlen: 20 202.83.192.0/24 maxlen: 24 202.83.194.0/24 maxlen: 24 202.83.195.0/24 maxlen: 24 202.83.196.0/24 maxlen: 24 202.83.203.0/24 maxlen: 24 202.83.204.0/24 maxlen: 24 202.83.205.0/24 maxlen: 24 202.83.206.0/24 maxlen: 24 202.83.208.0/24 maxlen: 24 202.83.209.0/24 maxlen: 24 202.83.210.0/24 maxlen: 24 202.83.211.0/24 maxlen: 24 202.83.214.0/24 maxlen: 24 202.83.216.0/24 maxlen: 24 202.83.220.0/24 maxlen: 24 202.83.222.0/24 maxlen: 24 2400:f000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1874 (0x752) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9131A2D/serialNumber=1D04AC5D03D8EF6AC431DE1A7AAE7B687681B636 Validity Not Before: Aug 26 21:59:58 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66ccfadd-b961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:93:b3:57:5c:59:c3:04:f9:d2:a8:4b:25:07: 5e:d5:e2:6e:d9:2b:fd:7d:29:02:b9:6f:f2:8d:4a: 61:08:35:15:7d:d5:89:a8:97:27:6a:ee:7d:85:c9: bf:ff:a9:99:ea:87:2f:6b:81:fb:d4:07:e5:34:90: 5d:57:24:19:a8:bd:ac:5c:f1:77:43:4e:20:e6:5a: 44:58:51:b8:0b:cd:55:14:55:1f:e6:10:50:c9:2c: 4d:27:7f:48:d9:25:2e:6d:32:80:98:d1:b8:cd:4f: f4:8b:08:24:8d:41:96:c2:2c:37:25:3a:91:23:88: bd:5f:99:07:3a:9f:ed:fb:91:c3:79:03:54:01:31: d0:49:68:e7:22:82:a7:19:0d:c3:ea:e4:d0:ec:d8: bb:1b:ce:51:21:99:22:78:9a:42:20:e5:36:1b:b7: 7f:00:84:ba:56:61:ed:dc:a4:f7:6a:96:d1:17:c5: e5:36:be:b6:31:b2:39:8b:2e:f2:99:b7:48:ad:27: 5f:48:ee:2f:2d:5b:e8:b5:f0:b4:87:50:03:89:d6: 1d:f2:a8:d6:57:e4:d9:70:2a:48:18:21:2d:84:b3: 10:dd:6f:5e:e0:7d:79:2f:e6:56:54:26:0a:19:2b: 84:62:c0:db:e1:b0:7a:c4:ca:ac:aa:43:df:b6:dd: 50:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:79:71:73:0E:5D:C2:F3:39:02:38:10:2C:33:AA:DB:6C:77:B1:95 X509v3 Authority Key Identifier: keyid:1D:04:AC:5D:03:D8:EF:6A:C4:31:DE:1A:7A:AE:7B:68:76:81:B6:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/HQSsXQPY72rEMd4aeq57aHaBtjY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HQSsXQPY72rEMd4aeq57aHaBtjY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9131A2D/DA46609AF7C311EA9B2EF785C4F9AE02/66EE9D94152511ECAD055780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.83.192.0/19 IPv6: 2400:f000::/32 Signature Algorithm: sha256WithRSAEncryption 69:02:a1:a3:0a:67:21:54:2f:f5:eb:af:90:f1:15:32:14:8d: 8e:1b:e2:f9:ce:87:dc:58:c0:cd:dc:c7:72:3e:98:54:64:13: c8:4d:1a:cc:d4:4f:26:e5:55:48:25:3c:ab:e7:49:af:13:d7: e1:85:dc:3a:4c:31:97:21:18:97:a5:a3:e7:1c:6b:e9:0c:8c: 51:12:cb:2b:06:f2:44:97:e8:55:23:53:76:45:59:73:2f:fc: 8d:fd:6b:f6:05:8a:fb:09:11:c5:f7:4e:fa:39:32:ab:ec:a5: fc:07:2d:b1:ef:31:29:6f:d2:4e:1c:9c:df:0f:c5:41:8e:f6: cc:4e:28:ed:15:dd:07:52:66:4b:ab:36:09:6a:b0:0f:f3:d8: 21:d9:15:ec:45:3e:25:15:e7:4b:74:f6:6f:35:03:05:d1:84: a6:1d:11:16:e4:bd:29:3f:17:43:7e:ce:43:d2:06:a7:2d:63: 14:73:d9:bd:b8:30:b1:77:cf:53:80:2b:ce:c7:1f:80:1e:80: 4c:37:06:5f:2d:8d:c8:d4:e2:f1:bf:61:ce:0c:32:db:b9:fc: 9f:29:47:18:85:a0:2e:e0:08:39:00:da:ae:17:e5:78:63:2b: 31:44:85:03:9e:15:b8:66:f4:f0:e3:3f:2a:8d:c2:8f:16:c9: 49:96:ed:f7 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICB1IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzFBMkQxMTAvBgNVBAUTKDFEMDRBQzVEMDNEOEVGNkFDNDMxREUxQTdBQUU3QjY4 NzY4MUI2MzYwHhcNMjQwODI2MjE1OTU4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjZmFkZC1iOTYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupOzV1xZwwT50qhLJQde1eJu2Sv9fSkCuW/yjUphCDUVfdWJqJcnau59hcm/ /6mZ6ocva4H71AflNJBdVyQZqL2sXPF3Q04g5lpEWFG4C81VFFUf5hBQySxNJ39I 2SUubTKAmNG4zU/0iwgkjUGWwiw3JTqRI4i9X5kHOp/t+5HDeQNUATHQSWjnIoKn GQ3D6uTQ7Ni7G85RIZkieJpCIOU2G7d/AIS6VmHt3KT3apbRF8XlNr62MbI5iy7y mbdIrSdfSO4vLVvotfC0h1ADidYd8qjWV+TZcCpIGCEthLMQ3W9e4H15L+ZWVCYK GSuEYsDb4bB6xMqsqkPftt1QrQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFK95cXMO XcLzOQI4ECwzqttsd7GVMB8GA1UdIwQYMBaAFB0ErF0D2O9qxDHeGnque2h2gbY2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMUEyRC9EQTQ2NjA5QUY3 QzMxMUVBOUIyRUY3ODVDNEY5QUUwMi9IUVNzWFFQWTcyckVNZDRhZXE1N2FIYUJ0 alkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hRU3NYUVBZNzJyRU1kNGFlcTU3YUhhQnRqWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzFBMkQvREE0NjYwOUFGN0MzMTFFQTlCMkVGNzg1QzRGOUFFMDIvNjZFRTlEOTQx NTI1MTFFQ0FEMDU1NzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAXKU8AwDQQCAAIwBwMFACQA8AAwDQYJKoZIhvcNAQELBQAD ggEBAGkCoaMKZyFUL/Xrr5DxFTIUjY4b4vnOh9xYwM3cx3I+mFRkE8hNGszUTybl VUglPKvnSa8T1+GF3DpMMZchGJelo+cca+kMjFESyysG8kSX6FUjU3ZFWXMv/I39 a/YFivsJEcX3Tvo5MqvspfwHLbHvMSlv0k4cnN8PxUGO9sxOKO0V3QdSZkurNglq sA/z2CHZFexFPiUV50t09m81AwXRhKYdERbkvSk/F0N+zkPSBqctYxRz2b24MLF3 z1OAK87HH4AegEw3Bl8tjcjU4vG/Yc4MMtu5/J8pRxiFoC7gCDkA2q4X5XhjKzFE hQOeFbhm9PDjPyqNwo8WyUmW7fc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org