$ rpki-client -vvf rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/0E0F41EC382811EE8E967C19C4F9AE02.roa File: 0E0F41EC382811EE8E967C19C4F9AE02.roa (raw, json) Hash identifier: nZMBJ29Cgwd4dqWSC434sBKhKH44qXcQdgdQQj/qbSk= Subject key identifier: 9A:FD:5B:74:DE:3D:CE:0C:2B:2D:CA:E3:2C:4B:C2:20:E1:8C:DD:1E Certificate issuer: /CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Certificate serial: 38A8 Authority key identifier: 61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/0E0F41EC382811EE8E967C19C4F9AE02.roa Signing time: Tue 16 Jul 2024 14:31:02 +0000 ROA not before: Tue 16 Jul 2024 14:31:02 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 24128 IP address blocks: 202.71.112.0/22 maxlen: 24 202.71.116.0/24 maxlen: 24 202.71.120.0/24 maxlen: 24 202.71.123.0/24 maxlen: 24 202.71.124.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14504 (0x38a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9137ABC/serialNumber=61BF3ED4C3BFBC0916EF9480AAFF222A437AF02C Validity Not Before: Jul 16 14:31:02 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66968426-a1d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f7:77:33:1b:45:08:aa:47:55:f8:62:c3:dd: 45:12:95:2c:50:35:60:e7:6d:55:43:76:fc:70:96: 1e:4c:f3:ef:32:87:cd:74:98:4f:82:07:87:1a:c5: 7b:a2:c7:5f:b5:17:fa:87:de:71:e8:e6:b9:66:33: 40:0f:bb:3b:bf:42:1a:bb:e7:a1:3f:58:67:89:d5: 72:fb:67:ab:66:58:4b:a6:e6:11:d1:d9:c2:46:d9: 48:51:f9:f0:04:3a:b1:8c:f8:f4:2d:e0:3f:47:df: dc:0b:19:49:0b:81:69:92:aa:a5:a7:a9:97:b8:d7: 54:54:f2:73:45:52:7f:6d:be:b6:f9:23:38:d6:d9: 3e:9d:82:80:53:87:8e:94:c9:0a:ba:fb:b4:fe:e5: 1c:2e:ca:cc:9b:f2:46:9b:7b:a0:3b:32:71:74:fa: 30:1e:cb:a5:02:3e:34:0c:a3:bc:e7:b7:63:56:32: 14:34:1f:f7:ff:96:7f:48:6a:ef:2e:83:a7:e2:8a: db:bc:25:94:43:dd:fe:50:5c:70:20:26:d0:8d:c6: f2:66:0f:c0:b1:1e:e7:db:c0:b1:90:71:65:a3:07: d4:c5:b3:9e:f9:32:d1:96:9f:7e:ab:e1:97:54:3b: c2:bf:7c:66:64:d4:e4:dd:0c:ef:40:27:cd:eb:93: e3:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:FD:5B:74:DE:3D:CE:0C:2B:2D:CA:E3:2C:4B:C2:20:E1:8C:DD:1E X509v3 Authority Key Identifier: keyid:61:BF:3E:D4:C3:BF:BC:09:16:EF:94:80:AA:FF:22:2A:43:7A:F0:2C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Yb8-1MO_vAkW75SAqv8iKkN68Cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9137ABC/713D9FB01D7811E282868DC408B02CD2/0E0F41EC382811EE8E967C19C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.71.112.0-202.71.116.255 202.71.120.0/24 202.71.123.0-202.71.124.255 Signature Algorithm: sha256WithRSAEncryption 15:b9:83:60:23:ae:1d:ac:6a:22:19:14:69:f0:56:b6:d7:38: 3f:23:b6:1a:14:80:8b:03:bd:a7:bc:3c:03:d2:52:9d:15:a4: 52:8a:3b:e0:09:80:14:97:97:6f:35:57:d9:9e:1d:be:eb:ee: 21:81:97:29:e2:86:57:f9:8b:4d:56:7a:97:e3:4e:de:47:95: 23:cb:d0:32:3e:57:ac:12:5b:e3:f3:9f:c0:39:57:b0:af:45: 27:d1:c4:24:52:54:05:96:51:f4:4c:61:2f:74:cc:97:15:8c: c0:f9:fc:dd:0f:d6:33:6e:20:f6:c6:7d:69:54:f8:2c:3c:f9: d7:90:5c:76:33:83:35:de:14:04:89:86:41:35:da:b0:32:ad: 14:00:1a:91:b8:40:8b:70:34:d9:50:8b:6c:44:76:fe:43:06: 52:05:c8:46:ac:16:f3:27:66:64:96:5f:23:d9:3a:cf:52:4c: 1c:52:22:c1:ce:df:23:38:0c:ee:c8:75:a4:ca:37:12:a7:8a: 23:89:f6:80:69:bf:e2:b7:f3:30:33:81:4a:38:52:8a:08:eb: 75:d2:2f:2b:a9:ad:ae:50:4b:53:26:ef:5e:28:5e:51:45:82: 86:54:55:43:f2:07:51:bf:24:44:6c:30:72:4e:d5:36:c8:0c: be:4b:69:15 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICOKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzdBQkMxMTAvBgNVBAUTKDYxQkYzRUQ0QzNCRkJDMDkxNkVGOTQ4MEFBRkYyMjJB NDM3QUYwMkMwHhcNMjQwNzE2MTQzMTAyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ODQyNi1hMWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5vd3MxtFCKpHVfhiw91FEpUsUDVg521VQ3b8cJYeTPPvMofNdJhPggeHGsV7 osdftRf6h95x6Oa5ZjNAD7s7v0Iau+ehP1hnidVy+2erZlhLpuYR0dnCRtlIUfnw BDqxjPj0LeA/R9/cCxlJC4Fpkqqlp6mXuNdUVPJzRVJ/bb62+SM41tk+nYKAU4eO lMkKuvu0/uUcLsrMm/JGm3ugOzJxdPowHsulAj40DKO857djVjIUNB/3/5Z/SGrv LoOn4orbvCWUQ93+UFxwICbQjcbyZg/AsR7n28CxkHFlowfUxbOe+TLRlp9+q+GX VDvCv3xmZNTk3QzvQCfN65PjDwIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFJr9W3Te Pc4MKy3K4yxLwiDhjN0eMB8GA1UdIwQYMBaAFGG/PtTDv7wJFu+UgKr/IipDevAs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzN0FCQy83MTNEOUZCMDFE NzgxMUUyODI4NjhEQzQwOEIwMkNEMi9ZYjgtMU1PX3ZBa1c3NVNBcXY4aUtrTjY4 Q3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1liOC0xTU9fdkFrVzc1U0FxdjhpS2tONjhDdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzdBQkMvNzEzRDlGQjAxRDc4MTFFMjgyODY4REM0MDhCMDJDRDIvMEUwRjQxRUMz ODI4MTFFRThFOTY3QzE5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMCgEAgABMCIwDAMEBMpHcAMEAMpHdAMEAMpHeDAMAwQAykd7AwQAykd8MA0G CSqGSIb3DQEBCwUAA4IBAQAVuYNgI64drGoiGRRp8Fa21zg/I7YaFICLA72nvDwD 0lKdFaRSijvgCYAUl5dvNVfZnh2+6+4hgZcp4oZX+YtNVnqX407eR5Ujy9AyPles Elvj85/AOVewr0Un0cQkUlQFllH0TGEvdMyXFYzA+fzdD9YzbiD2xn1pVPgsPPnX kFx2M4M13hQEiYZBNdqwMq0UABqRuECLcDTZUItsRHb+QwZSBchGrBbzJ2Zkll8j 2TrPUkwcUiLBzt8jOAzuyHWkyjcSp4ojifaAab/it/MwM4FKOFKKCOt10i8rqa2u UEtTJu9eKF5RRYKGVFVD8gdRvyREbDByTtU2yAy+S2kV -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:06 2024 by rpki-client on console-ams.rpki-client.org