$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0454DCC4C63A11EAB59CC262C4F9AE02.roa File: 0454DCC4C63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: sjVV92TWr17Q5E7deLvp5LrkNkR25Y2nq+eGhf+3ca4= Subject key identifier: 4A:EA:6F:51:F4:0A:3A:B6:9A:FF:87:26:73:4E:CA:E7:D9:73:6D:68 Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 07F5 Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0454DCC4C63A11EAB59CC262C4F9AE02.roa Signing time: Mon 26 Aug 2024 21:29:57 +0000 ROA not before: Mon 26 Aug 2024 21:29:57 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 14618 IP address blocks: 202.173.24.0/24 maxlen: 24 202.173.26.0/24 maxlen: 24 202.173.27.0/24 maxlen: 24 202.173.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:11:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2037 (0x7f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Validity Not Before: Aug 26 21:29:57 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ccf3d5-576a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4a:e3:43:62:e2:5d:26:0b:a9:55:c2:22:bc: 28:7b:6b:c3:45:fa:ac:1f:9c:6b:b0:c8:79:8a:8d: 1a:63:4a:6a:b1:3c:66:ab:fc:71:03:b4:e7:df:8d: 74:48:c8:57:44:7c:4e:3e:f0:ae:70:49:95:9b:3e: a0:5c:f7:0e:27:60:6b:fe:e0:60:7d:58:29:c6:68: ed:4a:96:38:ec:57:91:eb:7c:67:10:3b:53:98:b6: c5:51:8a:19:7d:ef:6a:57:e3:8b:b4:f8:fa:dc:91: a4:03:38:49:45:91:12:ba:e5:94:98:b0:c9:1d:bc: dc:05:74:c4:7c:ba:c2:46:e3:70:c7:27:c1:73:e2: 1e:be:8b:07:cd:f0:97:6a:ac:87:51:0c:0b:86:40: fd:67:a2:cf:18:a5:3c:0a:6f:4e:28:ac:ae:56:0a: b2:96:68:8c:55:54:e8:44:0a:e1:b4:27:d8:b9:66: 96:ec:7c:ae:0a:d4:63:be:5c:b8:0d:bb:1f:f6:9b: da:01:85:78:96:d2:6b:61:75:36:5d:49:32:6a:71: 7f:1f:dc:d0:e7:0b:d0:e4:37:78:2c:e2:b9:07:fd: 12:82:40:7c:5b:19:5c:10:69:07:fb:41:31:19:77: 53:fd:74:0c:12:ad:08:ff:6d:b3:fa:04:b6:76:a3: f9:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:EA:6F:51:F4:0A:3A:B6:9A:FF:87:26:73:4E:CA:E7:D9:73:6D:68 X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/0454DCC4C63A11EAB59CC262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.24.0/24 202.173.26.0/23 202.173.31.0/24 Signature Algorithm: sha256WithRSAEncryption b5:1d:67:5c:21:2f:ed:4a:df:02:33:2b:97:bd:7e:8a:87:f2: 0e:e5:0f:35:6a:5a:46:05:d3:27:c1:f4:4b:b4:ef:01:5f:b3: b9:10:f5:86:fc:83:8a:d5:f5:52:20:de:fc:91:7e:1e:ee:23: 7b:50:26:8b:9f:a4:56:25:28:29:05:5f:c8:18:48:48:ed:d2: 3c:72:1f:39:8d:2f:00:4a:d2:eb:50:11:dc:ee:c8:1b:76:48: f0:08:a6:ca:9e:55:82:06:02:ca:e0:dd:cc:84:93:68:89:38: 33:5e:49:bb:83:c1:2c:d7:fe:00:67:6d:32:0d:33:12:13:4a: 6d:3f:da:ef:b2:75:1a:f8:42:4a:2a:8e:cb:cf:87:f7:ee:bb: 41:e4:2c:61:8f:94:cb:a4:5c:e5:77:d8:6b:79:4e:b4:e0:af: 9c:6a:68:8a:27:e0:40:e5:d5:b6:79:9b:10:59:34:a7:cb:23: 07:69:c6:75:a7:b3:94:12:24:b2:5c:71:ba:ba:90:ea:78:fc: 2d:6f:21:05:e6:d5:e3:fb:04:bf:a0:86:70:10:5e:b8:ec:20: 96:d4:b7:51:8c:13:d8:c6:3b:37:28:b9:2a:15:0a:c4:63:8d: 74:03:87:0b:9a:d1:53:db:98:a6:c8:d6:ed:67:bf:80:88:10: b3:9f:ad:96 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB/UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjQwODI2MjEyOTU3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjZjNkNS01NzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3UrjQ2LiXSYLqVXCIrwoe2vDRfqsH5xrsMh5io0aY0pqsTxmq/xxA7Tn3410 SMhXRHxOPvCucEmVmz6gXPcOJ2Br/uBgfVgpxmjtSpY47FeR63xnEDtTmLbFUYoZ fe9qV+OLtPj63JGkAzhJRZESuuWUmLDJHbzcBXTEfLrCRuNwxyfBc+IevosHzfCX aqyHUQwLhkD9Z6LPGKU8Cm9OKKyuVgqylmiMVVToRArhtCfYuWaW7HyuCtRjvly4 Dbsf9pvaAYV4ltJrYXU2XUkyanF/H9zQ5wvQ5Dd4LOK5B/0SgkB8WxlcEGkH+0Ex GXdT/XQMEq0I/22z+gS2dqP5PwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFErqb1H0 Cjq2mv+HJnNOyufZc21oMB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDQ1NERDQzRD NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKrRgDBAHKrRoDBADKrR8wDQYJKoZIhvcNAQELBQADggEB ALUdZ1whL+1K3wIzK5e9foqH8g7lDzVqWkYF0yfB9Eu07wFfs7kQ9Yb8g4rV9VIg 3vyRfh7uI3tQJoufpFYlKCkFX8gYSEjt0jxyHzmNLwBK0utQEdzuyBt2SPAIpsqe VYIGAsrg3cyEk2iJODNeSbuDwSzX/gBnbTINMxITSm0/2u+ydRr4QkoqjsvPh/fu u0HkLGGPlMukXOV32Gt5TrTgr5xqaIon4EDl1bZ5mxBZNKfLIwdpxnWns5QSJLJc cbq6kOp4/C1vIQXm1eP7BL+ghnAQXrjsIJbUt1GME9jGOzcouSoVCsRjjXQDhwua 0VPbmKbI1u1nv4CIELOfrZY= -----END CERTIFICATE-----Generated at Sun Nov 24 22:11:57 2024 by rpki-client on console-fra.rpki-client.org