$ rpki-client -vvf rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/DBF621F42C7211EF8FB22F85C4F9AE02.roa File: DBF621F42C7211EF8FB22F85C4F9AE02.roa (raw, json) Hash identifier: fEV4Nv9YEsz1gwlF4scqWCuSbskSixTpqMCtGjgZ1FA= Subject key identifier: 7F:F9:DE:1D:9F:F9:0E:03:9E:3C:C4:F7:67:75:4A:17:47:96:23:5D Certificate issuer: /CN=A9138EEB/serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Certificate serial: 2A Authority key identifier: A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/DBF621F42C7211EF8FB22F85C4F9AE02.roa Signing time: Wed 28 Aug 2024 05:37:46 +0000 ROA not before: Wed 28 Aug 2024 05:37:46 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 152633 IP address blocks: 202.27.230.0/23 maxlen: 24 2401:8760::/45 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9138EEB/serialNumber=A619950CCA646487AB9BD44A41F7F6C9B409B3D7 Validity Not Before: Aug 28 05:37:46 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66ceb7aa-8b50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0e:74:6c:e0:8f:82:dc:98:d6:c8:17:6b:30: 65:5a:15:a1:09:b9:e3:be:81:39:0a:3a:be:64:f0: 6a:31:c8:51:14:a6:96:3b:11:8c:0e:f4:f5:7f:1a: 8b:41:62:47:88:3d:4d:79:21:50:1f:a6:5b:e1:52: 7c:ef:5a:db:ed:eb:e9:bc:8f:94:fd:f7:f4:e0:36: 8a:69:95:51:fb:b3:55:dc:db:59:6b:59:e7:66:5a: 26:6c:ca:8f:6c:09:a1:9e:75:07:b7:de:b1:c1:2a: 7a:19:6d:8f:e4:2f:9d:46:06:ae:bc:5e:c9:82:71: 1e:10:b4:b5:fe:80:fd:5c:cb:3c:87:a1:39:e8:3a: b8:c0:7c:68:4f:7e:c7:e1:ec:58:05:a1:87:20:b2: 5b:a1:74:db:ed:96:b2:f1:30:b2:c2:34:57:5d:1e: 62:57:8b:63:fc:fc:b5:9a:c8:a5:84:3e:19:69:97: c9:86:75:65:8f:88:52:83:f1:f7:c8:47:0c:c8:ce: 31:50:5a:b9:7b:a9:d6:49:e6:25:22:5e:3b:59:73: 16:d0:42:58:11:1c:23:31:62:c1:5b:36:0d:3c:2f: 1b:6e:4e:36:44:4b:fb:46:a4:c8:81:5b:ab:d9:a4: ef:86:e1:d1:c5:f1:78:8c:0c:f4:1d:e1:f2:30:fe: 5c:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:F9:DE:1D:9F:F9:0E:03:9E:3C:C4:F7:67:75:4A:17:47:96:23:5D X509v3 Authority Key Identifier: keyid:A6:19:95:0C:CA:64:64:87:AB:9B:D4:4A:41:F7:F6:C9:B4:09:B3:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/phmVDMpkZIerm9RKQff2ybQJs9c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/phmVDMpkZIerm9RKQff2ybQJs9c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9138EEB/F49114802BC311EFB85FFB65C4F9AE02/DBF621F42C7211EF8FB22F85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.27.230.0/23 IPv6: 2401:8760::/45 Signature Algorithm: sha256WithRSAEncryption ab:f8:86:b6:ae:cd:1c:9b:6c:26:fb:d1:1b:59:15:25:45:d3: f3:89:be:fd:74:7e:7c:64:2f:33:6c:f3:39:1b:d9:74:1f:11: 88:a6:85:fb:13:c3:8d:1d:bb:a6:e0:dd:1c:09:d3:17:86:f1: 96:e4:f4:c0:64:8d:68:ac:a9:eb:f1:32:53:1e:51:a4:b1:e6: 02:df:1c:3a:13:34:ff:3b:20:4d:31:f8:fc:29:1c:b5:da:b9: 78:65:5b:fe:14:c3:24:52:18:6e:e6:57:d8:b7:8a:29:12:f1: d0:f7:d0:40:a7:d5:8b:3b:5c:a6:12:1e:9d:4d:92:6d:38:28: ba:0b:9e:2c:0a:d8:d2:65:cf:b8:94:13:56:55:b2:11:86:97: 1c:c5:35:99:51:92:86:5d:75:6d:56:5e:98:d3:1f:41:4c:b1: 5a:ab:c9:87:b5:5e:80:d3:7b:c5:d7:6e:32:43:51:cd:d2:4c: f9:ac:f2:03:9e:bc:b5:e0:14:9d:ed:e9:96:17:dd:ad:cb:af: ba:6f:86:1d:ab:ba:8e:32:82:63:5e:bf:a4:88:13:c9:db:36: 95:47:58:9b:69:83:f4:8c:76:51:4f:43:40:35:05:18:9e:85: e8:5e:31:2f:86:ef:62:b4:13:d5:7b:55:9a:26:4a:c1:6d:d0: 9f:52:07:dc -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBKjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEz OEVFQjExMC8GA1UEBRMoQTYxOTk1MENDQTY0NjQ4N0FCOUJENDRBNDFGN0Y2QzlC NDA5QjNENzAeFw0yNDA4MjgwNTM3NDZaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2Y2ViN2FhLThiNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuDnRs4I+C3JjWyBdrMGVaFaEJueO+gTkKOr5k8GoxyFEUppY7EYwO9PV/GotB YkeIPU15IVAfplvhUnzvWtvt6+m8j5T99/TgNopplVH7s1Xc21lrWedmWiZsyo9s CaGedQe33rHBKnoZbY/kL51GBq68XsmCcR4QtLX+gP1cyzyHoTnoOrjAfGhPfsfh 7FgFoYcgsluhdNvtlrLxMLLCNFddHmJXi2P8/LWayKWEPhlpl8mGdWWPiFKD8ffI RwzIzjFQWrl7qdZJ5iUiXjtZcxbQQlgRHCMxYsFbNg08LxtuTjZES/tGpMiBW6vZ pO+G4dHF8XiMDPQd4fIw/lwNAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUf/neHZ/5 DgOePMT3Z3VKF0eWI10wHwYDVR0jBBgwFoAUphmVDMpkZIerm9RKQff2ybQJs9cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTM4RUVCL0Y0OTExNDgwMkJD MzExRUZCODVGRkI2NUM0RjlBRTAyL3BobVZETXBrWkllcm05UktRZmYyeWJRSnM5 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGhtVkRNcGtaSWVybTlSS1FmZjJ5YlFKczljLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEz OEVFQi9GNDkxMTQ4MDJCQzMxMUVGQjg1RkZCNjVDNEY5QUUwMi9EQkY2MjFGNDJD NzIxMUVGOEZCMjJGODVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAcob5jAPBAIAAjAJAwcDJAGHYAAAMA0GCSqGSIb3DQEBCwUA A4IBAQCr+Ia2rs0cm2wm+9EbWRUlRdPzib79dH58ZC8zbPM5G9l0HxGIpoX7E8ON Hbum4N0cCdMXhvGW5PTAZI1orKnr8TJTHlGkseYC3xw6EzT/OyBNMfj8KRy12rl4 ZVv+FMMkUhhu5lfYt4opEvHQ99BAp9WLO1ymEh6dTZJtOCi6C54sCtjSZc+4lBNW VbIRhpccxTWZUZKGXXVtVl6Y0x9BTLFaq8mHtV6A03vF124yQ1HN0kz5rPIDnry1 4BSd7emWF92ty6+6b4Ydq7qOMoJjXr+kiBPJ2zaVR1ibaYP0jHZRT0NANQUYnoXo XjEvhu9itBPVe1WaJkrBbdCfUgfc -----END CERTIFICATE-----Generated at Tue Sep 17 06:07:26 2024 by rpki-client on console-fra.rpki-client.org