$ rpki-client -vvf rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/643F1F08B72F11ED85F55F23C4F9AE02.roa File: 643F1F08B72F11ED85F55F23C4F9AE02.roa (raw, json) Hash identifier: Jr5/4E0BqvD6E+dU0waXVfsK7t56ulJ7qARG32utiNc= Subject key identifier: A5:83:4E:EC:30:96:61:13:7E:00:D3:BF:A2:82:0F:B3:53:B8:0D:70 Certificate issuer: /CN=A9141BED/serialNumber=27689043C43FE61B3CE3C4EBE6B6C15FBCCD2D07 Certificate serial: 0110 Authority key identifier: 27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/643F1F08B72F11ED85F55F23C4F9AE02.roa Signing time: Thu 11 Jul 2024 04:55:53 +0000 ROA not before: Thu 11 Jul 2024 04:55:53 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 18259 IP address blocks: 202.178.96.0/20 maxlen: 24 2401:4640::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.crl rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:37:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 272 (0x110) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141BED/serialNumber=27689043C43FE61B3CE3C4EBE6B6C15FBCCD2D07 Validity Not Before: Jul 11 04:55:53 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=668f65d9-3828 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ad:7f:63:61:5a:95:3b:c4:50:87:9b:e3:68: 55:b0:37:de:7f:d2:a2:05:69:70:03:be:91:53:b8: f8:4e:d7:34:f9:dc:ac:de:4e:b8:87:e7:8c:ce:fd: 2d:e1:85:ec:25:11:df:aa:fd:e0:17:7d:05:93:6f: 27:fc:32:28:08:5d:05:84:8d:7e:e9:8f:c5:42:71: f2:f4:67:6d:35:84:61:82:3f:e6:27:7c:57:5a:ee: 3d:9b:24:88:c1:fa:48:bc:0e:fd:00:59:2d:01:f3: 81:4d:1e:93:8c:94:cc:0c:60:99:bf:a1:8d:a9:da: 54:fe:0a:63:72:e5:89:19:bb:45:3e:3d:4e:52:29: 28:82:be:67:94:18:49:70:53:c4:d9:88:2d:39:a1: 5f:17:b7:f3:a7:ae:e1:2f:0d:95:80:26:d1:03:48: 52:fa:7e:55:51:c4:b1:5d:f0:7f:78:3b:3c:9a:38: f1:40:dd:63:a7:ea:c1:be:61:0a:c6:9e:26:8a:7f: 52:04:9f:a6:d9:49:44:c7:16:2e:e1:80:21:bd:1d: 66:a2:15:2c:46:06:27:1b:fe:22:84:51:a4:04:93: 02:5b:b3:de:75:35:7d:f7:70:b1:9c:94:6f:ba:7f: a0:a2:a8:5d:10:60:88:82:7c:8f:6d:77:df:d5:2a: d5:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:83:4E:EC:30:96:61:13:7E:00:D3:BF:A2:82:0F:B3:53:B8:0D:70 X509v3 Authority Key Identifier: keyid:27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/643F1F08B72F11ED85F55F23C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.178.96.0/20 IPv6: 2401:4640::/32 Signature Algorithm: sha256WithRSAEncryption 42:ce:95:0d:13:4f:35:63:80:e2:d2:28:26:04:6f:01:c1:cc: 95:f5:04:8f:80:fd:1a:14:9d:e8:44:6a:9f:c4:f5:4c:d0:ef: 7a:d6:ae:e8:98:8d:73:79:45:bc:10:ad:cb:2d:18:04:db:c0: c4:28:04:26:e3:66:75:54:65:f9:8d:f3:68:06:68:ba:72:7a: 2c:22:69:fa:24:d4:30:53:68:a1:63:bb:26:62:d7:45:27:a1: 62:1c:fc:58:a9:0c:4a:4b:b8:a3:74:c9:c4:ea:ee:5b:76:c6: a7:d8:e2:8e:02:c7:ee:ea:45:5f:15:9d:ca:ac:48:00:1b:cd: fc:c8:36:92:b4:0c:1d:5c:82:f8:a6:06:c1:fb:d3:60:28:20: 73:c0:ca:bb:43:0c:1f:d2:06:fc:c7:20:4e:7a:69:d4:1f:8b: d0:21:73:b2:a4:52:9b:3e:0c:dc:f4:40:10:a2:90:2c:9f:c4: f7:f1:d9:10:a1:89:20:39:33:c4:db:c1:c0:58:cd:ab:07:ef: b9:b0:94:74:59:00:cc:b8:92:7d:31:48:aa:ea:94:8b:1d:3e: f6:1d:7d:08:8f:c6:3f:63:91:50:c1:3b:81:c4:01:f5:3d:e4: 5a:ee:5a:62:7d:6a:88:c4:d8:43:93:d1:81:36:df:31:58:6d: 83:cb:91:b1 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICARAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFCRUQxMTAvBgNVBAUTKDI3Njg5MDQzQzQzRkU2MUIzQ0UzQzRFQkU2QjZDMTVG QkNDRDJEMDcwHhcNMjQwNzExMDQ1NTUzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhmNjVkOS0zODI4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwq1/Y2FalTvEUIeb42hVsDfef9KiBWlwA76RU7j4Ttc0+dys3k64h+eMzv0t 4YXsJRHfqv3gF30Fk28n/DIoCF0FhI1+6Y/FQnHy9GdtNYRhgj/mJ3xXWu49mySI wfpIvA79AFktAfOBTR6TjJTMDGCZv6GNqdpU/gpjcuWJGbtFPj1OUikogr5nlBhJ cFPE2YgtOaFfF7fzp67hLw2VgCbRA0hS+n5VUcSxXfB/eDs8mjjxQN1jp+rBvmEK xp4min9SBJ+m2UlExxYu4YAhvR1mohUsRgYnG/4ihFGkBJMCW7PedTV993CxnJRv un+goqhdEGCIgnyPbXff1SrVuwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKWDTuww lmETfgDTv6KCD7NTuA1wMB8GA1UdIwQYMBaAFCdokEPEP+YbPOPE6+a2wV+8zS0H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUJFRC9GQjJBQThFQ0I3 MkExMUVEODg0QTA5MURDNEY5QUUwMi9KMmlRUThRXzVoczg0OFRyNXJiQlg3ek5M UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0oyaVFROFFfNWhzODQ4VHI1cmJCWDd6TkxRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDFCRUQvRkIyQUE4RUNCNzJBMTFFRDg4NEEwOTFEQzRGOUFFMDIvNjQzRjFGMDhC NzJGMTFFRDg1RjU1RjIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBATKsmAwDQQCAAIwBwMFACQBRkAwDQYJKoZIhvcNAQELBQAD ggEBAELOlQ0TTzVjgOLSKCYEbwHBzJX1BI+A/RoUnehEap/E9UzQ73rWruiYjXN5 RbwQrcstGATbwMQoBCbjZnVUZfmN82gGaLpyeiwiafok1DBTaKFjuyZi10UnoWIc /FipDEpLuKN0ycTq7lt2xqfY4o4Cx+7qRV8VncqsSAAbzfzINpK0DB1cgvimBsH7 02AoIHPAyrtDDB/SBvzHIE56adQfi9Ahc7KkUps+DNz0QBCikCyfxPfx2RChiSA5 M8TbwcBYzasH77mwlHRZAMy4kn0xSKrqlIsdPvYdfQiPxj9jkVDBO4HEAfU95Fru WmJ9aojE2EOT0YE23zFYbYPLkbE= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:55 2024 by rpki-client on console-fra.rpki-client.org