$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/ED4952AAEA5F11EE914FC26AC4F9AE02.roa File: ED4952AAEA5F11EE914FC26AC4F9AE02.roa (raw, json) Hash identifier: 3bRK2TgTgn4a7te6MV4Dn7KMIu+vBrlckUhRy7mg7+k= Subject key identifier: 08:94:91:47:4F:C1:C2:C4:00:82:1D:D7:12:0A:12:8B:EC:DC:33:EE Certificate issuer: /CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Certificate serial: 09C5 Authority key identifier: AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/ED4952AAEA5F11EE914FC26AC4F9AE02.roa Signing time: Tue 14 May 2024 21:30:47 +0000 ROA not before: Tue 14 May 2024 21:30:47 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 24462 IP address blocks: 101.78.204.0/22 maxlen: 24 116.92.130.0/24 maxlen: 24 203.174.32.0/24 maxlen: 24 220.232.228.0/24 maxlen: 24 220.232.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2501 (0x9c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Validity Not Before: May 14 21:30:47 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6643d807-9c20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:da:12:a8:c9:55:fc:1a:f3:fc:a4:79:e9:e0: 9c:c3:de:82:ee:a3:50:14:62:c5:64:32:1f:8f:61: 18:43:5c:a1:13:e8:8a:3d:9b:47:e6:60:2e:db:ea: 68:59:a2:a0:4e:17:f4:ce:91:5c:44:1b:6f:43:c7: 83:36:43:1d:de:ec:11:05:f7:05:6f:d8:a1:16:a8: 7c:cc:92:47:9e:d5:cb:d9:a0:7c:52:23:54:b5:90: 59:4f:93:bc:fa:cb:c2:ce:4f:fa:b9:13:ae:b5:d5: 82:e2:77:77:52:4b:2f:6e:21:79:14:37:4e:05:66: 81:06:51:68:32:ad:d1:ce:73:0b:69:24:81:29:32: 9a:16:07:c6:c6:9a:8a:16:5e:04:0b:5d:27:cd:9a: 53:95:bc:a5:5b:a9:88:de:e2:57:7e:4b:5d:da:d1: 57:bd:56:cb:05:34:3c:6b:51:5d:55:84:a3:d2:af: e3:65:4d:b8:fe:a7:c1:9b:15:9d:03:1f:99:7b:93: 71:93:4e:a9:18:f3:62:32:73:95:9c:2a:87:b2:ff: e1:36:04:bc:af:6b:ca:af:50:bf:ca:1b:4f:7c:c8: 36:8e:62:7c:aa:04:fe:ca:ed:9d:aa:23:45:c3:c1: f5:bb:7b:00:a4:71:cb:7b:7e:fd:0a:f5:a2:c7:07: 01:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:94:91:47:4F:C1:C2:C4:00:82:1D:D7:12:0A:12:8B:EC:DC:33:EE X509v3 Authority Key Identifier: keyid:AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/ED4952AAEA5F11EE914FC26AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.78.204.0/22 116.92.130.0/24 203.174.32.0/24 220.232.228.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:ca:c8:7d:97:f3:5b:2a:52:b8:5e:84:29:2c:c7:b5:cb:79: 04:5d:78:6c:1a:8e:63:13:95:29:41:a1:8c:6a:39:8a:49:2d: 27:51:55:28:1b:e6:0b:05:3e:e6:ef:61:ee:98:51:b2:5c:41: fe:0f:16:9a:3e:b0:dc:64:9a:f6:ef:25:9d:71:aa:2f:67:54: 9c:f9:7f:ae:b3:13:d1:5d:ec:15:5b:e7:54:06:cc:09:ec:d0: c1:63:b0:69:06:da:8a:9c:be:7b:e1:ac:60:a2:da:21:13:36: 67:6d:8a:7b:70:b0:b2:bd:b5:5a:62:7b:08:17:c9:62:86:3a: 32:9d:c5:57:1b:5f:b0:0b:d7:f2:1d:a2:23:65:16:16:89:27: ce:d4:ed:80:4b:92:b7:08:eb:27:f0:e5:46:26:8c:96:73:44: a1:1c:fe:1a:9c:4c:27:cb:47:e5:d0:0e:9d:7c:2f:0d:b3:c0: 0c:59:09:1e:19:25:cb:71:42:37:1a:97:4a:89:2f:36:e6:15: b1:3f:4d:fc:83:c6:eb:62:e8:ac:3d:c5:ae:6b:fa:dc:bc:4b: 24:ea:92:1c:ce:1b:fc:c3:ff:77:d5:ac:88:bc:83:86:f6:e8: 40:15:07:1d:c3:df:19:59:7c:b6:0b:36:f5:7c:49:fd:05:94: 9f:14:41:cd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUUxMTAvBgNVBAUTKEFCRDQzNTQ4NjU5Q0JCMjc2RUY4RDM1QjgyMTJGODM4 RThDRUI3NUYwHhcNMjQwNTE0MjEzMDQ3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQzZDgwNy05YzIwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwdoSqMlV/Brz/KR56eCcw96C7qNQFGLFZDIfj2EYQ1yhE+iKPZtH5mAu2+po WaKgThf0zpFcRBtvQ8eDNkMd3uwRBfcFb9ihFqh8zJJHntXL2aB8UiNUtZBZT5O8 +svCzk/6uROutdWC4nd3UksvbiF5FDdOBWaBBlFoMq3RznMLaSSBKTKaFgfGxpqK Fl4EC10nzZpTlbylW6mI3uJXfktd2tFXvVbLBTQ8a1FdVYSj0q/jZU24/qfBmxWd Ax+Ze5Nxk06pGPNiMnOVnCqHsv/hNgS8r2vKr1C/yhtPfMg2jmJ8qgT+yu2dqiNF w8H1u3sApHHLe379CvWixwcBtQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFAiUkUdP wcLEAIId1xIKEovs3DPuMB8GA1UdIwQYMBaAFKvUNUhlnLsnbvjTW4IS+Djozrdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRS84OTM2Q0MwNDg4 MzIxMUVBODQ4NjFCNzBDNEY5QUUwMi9xOVExU0dXY3V5ZHUtTk5iZ2hMNE9Pak90 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E5UTFTR1djdXlkdS1OTmJnaEw0T09qT3QxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUUvODkzNkNDMDQ4ODMyMTFFQTg0ODYxQjcwQzRGOUFFMDIvRUQ0OTUyQUFF QTVGMTFFRTkxNEZDMjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAJlTswDBAB0XIIDBADLriADBAHc6OQwDQYJKoZIhvcNAQEL BQADggEBAFrKyH2X81sqUrhehCksx7XLeQRdeGwajmMTlSlBoYxqOYpJLSdRVSgb 5gsFPubvYe6YUbJcQf4PFpo+sNxkmvbvJZ1xqi9nVJz5f66zE9Fd7BVb51QGzAns 0MFjsGkG2oqcvnvhrGCi2iETNmdtintwsLK9tVpiewgXyWKGOjKdxVcbX7AL1/Id oiNlFhaJJ87U7YBLkrcI6yfw5UYmjJZzRKEc/hqcTCfLR+XQDp18Lw2zwAxZCR4Z JctxQjcal0qJLzbmFbE/TfyDxuti6Kw9xa5r+ty8SyTqkhzOG/zD/3fVrIi8g4b2 6EAVBx3D3xlZfLYLNvV8Sf0FlJ8UQc0= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:23 2024 by rpki-client on console-ams.rpki-client.org