$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/98ADC3467FBF11ECBBD2EE30C4F9AE02.roa File: 98ADC3467FBF11ECBBD2EE30C4F9AE02.roa (raw, json) Hash identifier: Sv4qHdh5wjpXghb1voZXtKckkq/Y0Mtvw/hp9XCJNM8= Subject key identifier: 25:68:48:88:D4:31:B3:6D:53:D8:79:EB:03:D1:85:39:FF:55:BA:4A Certificate issuer: /CN=A9140BD4/serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Certificate serial: 02D7 Authority key identifier: F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/98ADC3467FBF11ECBBD2EE30C4F9AE02.roa Signing time: Mon 03 Jul 2023 01:51:42 +0000 ROA not before: Mon 03 Jul 2023 01:51:42 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 4049 IP address blocks: 202.21.130.0/24 maxlen: 24 202.50.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 14 May 2024 02:48:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 727 (0x2d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BD4/serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Validity Not Before: Jul 3 01:51:42 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64a229ae-a21f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:00:d3:df:0f:05:00:6c:37:67:35:3e:0f:35: 32:66:99:08:30:de:6a:7e:68:4e:1c:3a:59:ae:53: 55:1d:de:a8:ae:69:fc:83:eb:30:48:b3:7c:a4:ee: 4b:a1:d6:f2:9b:1c:cf:4c:fe:28:d7:42:2c:1f:62: 6f:92:93:80:a3:7b:37:21:c6:ea:43:20:81:65:b0: 94:84:e1:01:d6:26:81:18:02:d1:2a:39:ee:8e:ac: fe:61:81:9b:73:94:23:e2:ac:c0:7e:ee:c0:95:ea: 7c:47:71:e6:f4:a5:6d:ac:6c:6f:78:16:a7:f7:0e: 80:f1:ca:8a:e8:78:48:85:39:a8:85:6d:f6:7f:b8: 98:38:47:f7:dc:09:c4:72:ce:ae:ec:ed:f4:ba:aa: 6e:53:e2:ee:72:8d:ec:86:40:23:2b:91:ef:72:70: 1c:e5:3b:8d:f7:1f:bf:bb:76:0c:0a:7a:80:ca:6b: c5:2f:8b:12:ba:4c:58:a7:28:70:40:cc:a3:53:4f: 97:eb:a0:63:83:b6:52:04:96:a0:b6:40:2a:cb:54: bb:64:5d:e5:87:80:ba:16:d4:6f:8a:a4:31:4c:b6: dd:a6:88:da:98:af:f6:06:81:5f:95:32:36:40:b5: 04:69:32:2e:2d:0e:1c:38:8c:56:15:1d:24:c0:37: 7a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:68:48:88:D4:31:B3:6D:53:D8:79:EB:03:D1:85:39:FF:55:BA:4A X509v3 Authority Key Identifier: keyid:F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/98ADC3467FBF11ECBBD2EE30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.21.130.0/24 202.50.192.0/22 Signature Algorithm: sha256WithRSAEncryption 64:51:f2:3f:12:0e:b3:db:d1:51:bd:dd:c8:32:e0:fd:1c:f5: b6:f9:b6:9f:a5:8b:61:70:9f:86:b1:0a:a6:27:66:47:f4:c2: 28:e5:b8:04:df:b9:e9:ca:e8:68:67:2e:a8:0a:d8:d2:81:49: 3b:1e:8e:90:af:23:17:e7:6d:8c:a0:44:06:d8:df:c2:c5:5e: 46:e2:18:fa:f5:7c:8f:04:e1:da:e7:cf:a3:7d:d1:89:b1:ef: 86:29:75:2d:01:36:03:bb:6c:ca:a7:f1:0e:01:b3:44:0f:87: 79:be:f0:c1:fb:6e:c5:15:49:0e:03:9e:eb:42:d3:30:fd:9d: 11:58:10:bd:20:69:2c:c8:3c:50:01:38:e9:ad:fd:fc:b2:b6: 6f:cb:04:93:16:9a:f6:42:d0:78:32:b8:9f:4f:e3:ac:cc:a3: f4:ba:ad:9c:a1:03:d3:7f:44:ca:e1:47:c3:69:8e:00:e0:a4: 29:05:fb:6b:b7:78:cb:ab:04:d8:cd:7f:3e:ec:63:57:43:b2: 7b:31:44:7e:a0:d4:38:d5:90:5c:6a:1a:26:5a:92:6b:97:d9: 95:fe:6d:7d:76:4b:2a:d8:8d:2f:1b:2e:d9:b8:7b:b6:78:80: 3a:c7:3e:00:6a:b8:6d:75:a6:77:6b:9b:5f:a2:1e:6a:76:2b: f8:75:96:44 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRDQxMTAvBgNVBAUTKEYxM0JDQTgwNEY4RjE5ODE3NkY5OUU3QkM5QUVBOThD QUZDMEI4QjEwHhcNMjMwNzAzMDE1MTQyWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGEyMjlhZS1hMjFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7gDT3w8FAGw3ZzU+DzUyZpkIMN5qfmhOHDpZrlNVHd6ormn8g+swSLN8pO5L odbymxzPTP4o10IsH2JvkpOAo3s3IcbqQyCBZbCUhOEB1iaBGALRKjnujqz+YYGb c5Qj4qzAfu7Alep8R3Hm9KVtrGxveBan9w6A8cqK6HhIhTmohW32f7iYOEf33AnE cs6u7O30uqpuU+Luco3shkAjK5HvcnAc5TuN9x+/u3YMCnqAymvFL4sSukxYpyhw QMyjU0+X66Bjg7ZSBJagtkAqy1S7ZF3lh4C6FtRviqQxTLbdpojamK/2BoFflTI2 QLUEaTIuLQ4cOIxWFR0kwDd6TQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCVoSIjU MbNtU9h56wPRhTn/VbpKMB8GA1UdIwQYMBaAFPE7yoBPjxmBdvmee8muqYyvwLix MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJENC80ODY1QkQ0ODYx MTExMUVDOTg0RTNFN0ZDNEY5QUUwMi84VHZLZ0UtUEdZRjItWjU3eWE2cGpLX0F1 TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhUdktnRS1QR1lGMi1aNTd5YTZwaktfQXVMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBCRDQvNDg2NUJENDg2MTExMTFFQzk4NEUzRTdGQzRGOUFFMDIvOThBREMzNDY3 RkJGMTFFQ0JCRDJFRTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKFYIDBALKMsAwDQYJKoZIhvcNAQELBQADggEBAGRR8j8S DrPb0VG93cgy4P0c9bb5tp+li2Fwn4axCqYnZkf0wijluATfuenK6GhnLqgK2NKB STsejpCvIxfnbYygRAbY38LFXkbiGPr1fI8E4drnz6N90Ymx74YpdS0BNgO7bMqn 8Q4Bs0QPh3m+8MH7bsUVSQ4DnutC0zD9nRFYEL0gaSzIPFABOOmt/fyytm/LBJMW mvZC0HgyuJ9P46zMo/S6rZyhA9N/RMrhR8NpjgDgpCkF+2u3eMurBNjNfz7sY1dD snsxRH6g1DjVkFxqGiZakmuX2ZX+bX12SyrYjS8bLtm4e7Z4gDrHPgBquG11pndr m1+iHmp2K/h1lkQ= -----END CERTIFICATE-----Generated at Tue May 7 03:53:36 2024 by rpki-client on console-fra.rpki-client.org