$ rpki-client -vvf rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/98ADC3467FBF11ECBBD2EE30C4F9AE02.roa File: 98ADC3467FBF11ECBBD2EE30C4F9AE02.roa (raw, json) Hash identifier: Edg5XyMaTvECsxqM+UFLgy72ZaVY+YpYeTfeKOCN8u8= Subject key identifier: 53:A4:C0:67:4A:07:B1:37:3A:28:33:F4:11:E2:67:2A:2A:38:8B:CD Certificate issuer: /CN=A9140BD4/serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Certificate serial: 0396 Authority key identifier: F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/98ADC3467FBF11ECBBD2EE30C4F9AE02.roa Signing time: Sat 29 Jun 2024 02:55:00 +0000 ROA not before: Sat 29 Jun 2024 02:55:00 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 4049 IP address blocks: 202.21.130.0/24 maxlen: 24 202.50.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 918 (0x396) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9140BD4/serialNumber=F13BCA804F8F198176F99E7BC9AEA98CAFC0B8B1 Validity Not Before: Jun 29 02:55:00 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667f7783-22f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:4b:ad:43:e8:f1:1f:cd:b5:e5:17:1b:73:3c: cb:54:d3:5a:c8:6d:9a:9a:7a:be:55:16:15:aa:fe: 3a:71:0c:3d:b1:12:54:9a:19:02:56:3d:c6:72:94: bd:2f:36:6f:a5:99:8d:39:c2:98:d3:67:67:a7:a6: 85:90:40:fe:9f:dc:cf:79:3a:72:50:2b:79:96:ef: 30:ca:38:ac:53:3e:c6:c7:f0:c1:b0:9b:7a:d3:fd: ca:7d:b8:ce:ec:2c:ee:1f:bf:0d:5a:bf:54:73:1e: 52:96:c8:12:8c:4d:ec:4b:44:2f:fa:ab:68:3d:c7: ee:87:5b:cd:59:36:8a:db:05:63:7c:77:6b:48:bb: e6:7f:8a:6e:bb:80:a6:68:ca:9d:b8:49:f5:58:c3: 4c:a4:f4:f8:4c:c9:7b:af:5f:26:2a:ff:4e:f7:2b: 27:d6:f4:9f:76:fe:a0:92:73:7a:94:c7:de:41:4c: 34:2f:bb:7f:21:4f:38:c2:71:d9:2e:8f:d5:18:e2: 94:fa:45:c7:d9:2d:d7:ed:5c:88:e5:54:dd:ad:d2: 65:24:70:5b:07:3c:98:99:08:06:b8:1d:51:59:69: 7a:62:1d:bf:dd:59:d9:98:0a:fe:41:c6:a4:22:7e: 2d:de:fc:2f:fd:0d:37:e1:01:0b:b2:51:37:39:f3: 7d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A4:C0:67:4A:07:B1:37:3A:28:33:F4:11:E2:67:2A:2A:38:8B:CD X509v3 Authority Key Identifier: keyid:F1:3B:CA:80:4F:8F:19:81:76:F9:9E:7B:C9:AE:A9:8C:AF:C0:B8:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/8TvKgE-PGYF2-Z57ya6pjK_AuLE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8TvKgE-PGYF2-Z57ya6pjK_AuLE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9140BD4/4865BD48611111EC984E3E7FC4F9AE02/98ADC3467FBF11ECBBD2EE30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.21.130.0/24 202.50.192.0/22 Signature Algorithm: sha256WithRSAEncryption cf:c2:1c:8e:7d:8e:4f:32:16:b0:79:8a:e8:5c:23:84:dc:21: 84:c7:65:2b:a4:a4:75:b2:5d:26:09:f5:c6:2f:e8:c5:9d:82: ec:a6:5c:14:8f:39:7f:bd:2b:4d:c6:b7:15:44:e6:07:8d:7b: f0:14:fd:cf:82:07:46:3d:2c:23:7e:79:3a:55:ea:83:f7:10: 17:dd:ce:79:03:1f:68:1b:a2:ca:71:6c:89:14:8e:0b:5d:d3: dc:da:68:1d:b7:06:40:6e:d0:f8:42:56:f0:27:e6:77:ec:ca: 99:0f:34:3a:85:f7:bd:de:df:87:08:a9:5a:fb:93:18:84:4a: af:52:20:ae:5b:96:f0:0d:99:3b:3b:3c:63:9c:79:91:ed:31: f3:48:28:b4:93:4f:61:55:28:f0:d2:d5:5d:c6:70:08:79:fb: ff:a1:7c:60:32:42:e8:32:e2:23:12:64:a9:c0:1d:e4:b5:b9: 7c:a4:64:12:df:5a:dc:97:94:55:c4:ff:8c:12:ad:7b:99:13: 4b:59:6e:fc:79:57:ee:6f:04:41:07:41:03:95:a6:46:bc:42: d7:5c:66:73:a3:ff:cf:07:04:41:99:94:ae:a8:08:b7:63:40: 4a:99:94:b0:99:d5:ee:27:c3:bf:df:dd:f6:ce:30:ba:77:01: 0b:29:9c:c0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDBCRDQxMTAvBgNVBAUTKEYxM0JDQTgwNEY4RjE5ODE3NkY5OUU3QkM5QUVBOThD QUZDMEI4QjEwHhcNMjQwNjI5MDI1NTAwWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdmNzc4My0yMmY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxkutQ+jxH8215RcbczzLVNNayG2amnq+VRYVqv46cQw9sRJUmhkCVj3GcpS9 LzZvpZmNOcKY02dnp6aFkED+n9zPeTpyUCt5lu8wyjisUz7Gx/DBsJt60/3KfbjO 7CzuH78NWr9Ucx5SlsgSjE3sS0Qv+qtoPcfuh1vNWTaK2wVjfHdrSLvmf4puu4Cm aMqduEn1WMNMpPT4TMl7r18mKv9O9ysn1vSfdv6gknN6lMfeQUw0L7t/IU84wnHZ Lo/VGOKU+kXH2S3X7VyI5VTdrdJlJHBbBzyYmQgGuB1RWWl6Yh2/3VnZmAr+Qcak In4t3vwv/Q034QELslE3OfN9cwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFFOkwGdK B7E3Oigz9BHiZyoqOIvNMB8GA1UdIwQYMBaAFPE7yoBPjxmBdvmee8muqYyvwLix MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MEJENC80ODY1QkQ0ODYx MTExMUVDOTg0RTNFN0ZDNEY5QUUwMi84VHZLZ0UtUEdZRjItWjU3eWE2cGpLX0F1 TEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhUdktnRS1QR1lGMi1aNTd5YTZwaktfQXVMRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDBCRDQvNDg2NUJENDg2MTExMTFFQzk4NEUzRTdGQzRGOUFFMDIvOThBREMzNDY3 RkJGMTFFQ0JCRDJFRTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKFYIDBALKMsAwDQYJKoZIhvcNAQELBQADggEBAM/CHI59 jk8yFrB5iuhcI4TcIYTHZSukpHWyXSYJ9cYv6MWdguymXBSPOX+9K03GtxVE5geN e/AU/c+CB0Y9LCN+eTpV6oP3EBfdznkDH2gbospxbIkUjgtd09zaaB23BkBu0PhC VvAn5nfsypkPNDqF973e34cIqVr7kxiESq9SIK5blvANmTs7PGOceZHtMfNIKLST T2FVKPDS1V3GcAh5+/+hfGAyQugy4iMSZKnAHeS1uXykZBLfWtyXlFXE/4wSrXuZ E0tZbvx5V+5vBEEHQQOVpka8QtdcZnOj/88HBEGZlK6oCLdjQEqZlLCZ1e4nw7/f 3fbOMLp3AQspnMA= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:57 2024 by rpki-client on console-ams.rpki-client.org