$ rpki-client -vvf rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/85BB7A4E2AB311EE98EA0315C4F9AE02.roa File: 85BB7A4E2AB311EE98EA0315C4F9AE02.roa (raw, json) Hash identifier: 5w8g5x+ok2twOTv8Pno7z7uYOa1KLIU/k+gb4VmjlK8= Subject key identifier: C1:46:79:5D:BA:6D:79:25:C2:C3:70:A3:50:48:E0:68:03:86:72:F5 Certificate issuer: /CN=A9141BED/serialNumber=27689043C43FE61B3CE3C4EBE6B6C15FBCCD2D07 Certificate serial: 0111 Authority key identifier: 27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/85BB7A4E2AB311EE98EA0315C4F9AE02.roa Signing time: Thu 11 Jul 2024 04:55:54 +0000 ROA not before: Thu 11 Jul 2024 04:55:54 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 37900 IP address blocks: 202.2.88.0/22 maxlen: 24 202.4.244.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.crl rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 273 (0x111) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141BED/serialNumber=27689043C43FE61B3CE3C4EBE6B6C15FBCCD2D07 Validity Not Before: Jul 11 04:55:54 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=668f65da-d29a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:9d:00:65:60:83:f4:db:d7:d0:16:ed:8e:26: 3f:5d:fe:1f:7f:30:ba:c5:ad:88:c4:9b:e0:7d:85: 07:9f:44:fa:42:20:2f:55:7b:b5:25:35:35:1f:07: b8:f5:01:f3:e9:95:44:a8:9b:f1:3a:a0:d0:41:99: 9d:77:6d:5a:0d:7c:91:2a:4a:24:30:26:60:e2:d8: 06:6c:6b:36:dc:4e:4e:22:fa:e5:77:28:d3:0b:70: da:25:a2:05:66:8e:b4:12:2a:7e:1a:28:9a:31:3f: 69:e0:50:d1:e3:84:ea:a0:bb:d7:35:4a:21:c8:9e: ba:72:9f:89:03:ec:5f:78:f5:55:51:92:b3:cd:0a: f4:64:3b:56:c2:29:e1:62:e3:d3:c2:15:fd:6a:04: e4:e2:c9:03:49:ed:9f:63:65:d5:ec:27:a5:18:31: 36:d7:fc:d2:de:91:47:ba:a2:05:f0:32:85:cf:35: 26:2b:4d:51:de:30:fe:0a:f8:6f:3f:85:3d:11:e4: 5d:0b:28:28:58:ca:ee:29:11:51:3b:a3:5c:9a:12: bc:79:48:6b:4d:e3:fb:34:ca:b8:a7:e5:b6:99:70: 89:45:63:dc:4a:6e:e3:bd:b5:a6:3c:dd:21:32:c0: 5d:ad:50:a8:a7:04:d1:1f:2a:87:5d:56:5d:64:d6: dd:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:46:79:5D:BA:6D:79:25:C2:C3:70:A3:50:48:E0:68:03:86:72:F5 X509v3 Authority Key Identifier: keyid:27:68:90:43:C4:3F:E6:1B:3C:E3:C4:EB:E6:B6:C1:5F:BC:CD:2D:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/J2iQQ8Q_5hs848Tr5rbBX7zNLQc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141BED/FB2AA8ECB72A11ED884A091DC4F9AE02/85BB7A4E2AB311EE98EA0315C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.2.88.0/22 202.4.244.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:b3:d8:22:b4:ca:2d:33:9f:c3:f4:2f:15:ba:2d:56:84:47: db:66:ff:fa:38:29:38:26:04:63:b6:44:6a:82:6d:e1:df:2a: 5a:9b:0e:2d:4d:6b:f3:46:e1:5b:7f:c1:83:33:bf:44:fb:62: e5:48:8c:f0:08:c9:38:b8:08:48:70:35:e8:fb:28:06:1b:6f: e2:e5:4a:c0:f4:e5:4c:76:81:01:e1:3a:1d:bb:f7:2a:3b:5a: 7c:2a:1d:0b:1e:04:2b:dc:2b:5a:87:98:1a:49:91:fd:ca:9c: d1:05:c3:9d:a0:53:c4:65:12:16:12:db:3e:10:ae:fb:a2:af: 7d:53:07:e7:83:72:75:13:6e:36:12:99:85:0d:63:ef:9f:6d: 20:48:db:dd:f3:6a:76:5c:d3:1a:81:86:b8:43:43:f8:07:50: ff:73:a0:fb:44:75:f0:b3:b9:9b:40:d4:ae:84:74:4d:bd:a5: 23:db:98:b1:d9:ef:5c:91:45:b1:8a:be:5e:79:30:78:38:90: 11:7e:fc:14:bf:f1:74:1d:f0:c2:db:41:3a:67:66:dd:89:cd: 65:84:43:ed:37:72:5e:a2:75:5d:30:fc:b6:42:ef:de:23:6c: 48:24:6c:fc:d9:50:01:98:12:ba:b9:cd:5d:3f:78:99:96:c3: be:a1:f8:d2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAREwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDFCRUQxMTAvBgNVBAUTKDI3Njg5MDQzQzQzRkU2MUIzQ0UzQzRFQkU2QjZDMTVG QkNDRDJEMDcwHhcNMjQwNzExMDQ1NTU0WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjhmNjVkYS1kMjlhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvZ0AZWCD9NvX0BbtjiY/Xf4ffzC6xa2IxJvgfYUHn0T6QiAvVXu1JTU1Hwe4 9QHz6ZVEqJvxOqDQQZmdd21aDXyRKkokMCZg4tgGbGs23E5OIvrldyjTC3DaJaIF Zo60Eip+GiiaMT9p4FDR44TqoLvXNUohyJ66cp+JA+xfePVVUZKzzQr0ZDtWwinh YuPTwhX9agTk4skDSe2fY2XV7CelGDE21/zS3pFHuqIF8DKFzzUmK01R3jD+Cvhv P4U9EeRdCygoWMruKRFRO6NcmhK8eUhrTeP7NMq4p+W2mXCJRWPcSm7jvbWmPN0h MsBdrVCopwTRHyqHXVZdZNbdTQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMFGeV26 bXklwsNwo1BI4GgDhnL1MB8GA1UdIwQYMBaAFCdokEPEP+YbPOPE6+a2wV+8zS0H MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MUJFRC9GQjJBQThFQ0I3 MkExMUVEODg0QTA5MURDNEY5QUUwMi9KMmlRUThRXzVoczg0OFRyNXJiQlg3ek5M UWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0oyaVFROFFfNWhzODQ4VHI1cmJCWDd6TkxRYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDFCRUQvRkIyQUE4RUNCNzJBMTFFRDg4NEEwOTFEQzRGOUFFMDIvODVCQjdBNEUy QUIzMTFFRTk4RUEwMzE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBALKAlgDBALKBPQwDQYJKoZIhvcNAQELBQADggEBAI+z2CK0 yi0zn8P0LxW6LVaER9tm//o4KTgmBGO2RGqCbeHfKlqbDi1Na/NG4Vt/wYMzv0T7 YuVIjPAIyTi4CEhwNej7KAYbb+LlSsD05Ux2gQHhOh279yo7WnwqHQseBCvcK1qH mBpJkf3KnNEFw52gU8RlEhYS2z4Qrvuir31TB+eDcnUTbjYSmYUNY++fbSBI293z anZc0xqBhrhDQ/gHUP9zoPtEdfCzuZtA1K6EdE29pSPbmLHZ71yRRbGKvl55MHg4 kBF+/BS/8XQd8MLbQTpnZt2JzWWEQ+03cl6idV0w/LZC794jbEgkbPzZUAGYErq5 zV0/eJmWw76h+NI= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org