$ rpki-client -vvf rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/04F19212C63A11EAB59CC262C4F9AE02.roa File: 04F19212C63A11EAB59CC262C4F9AE02.roa (raw, json) Hash identifier: 9Lu/m9ZIOQ62O9GVdOQbSiFzGg5F/YviY3o3WadSNV4= Subject key identifier: 5E:81:78:F0:FD:DD:AA:19:42:73:64:C2:DC:8C:C1:16:7D:25:54:B9 Certificate issuer: /CN=A9142241/serialNumber=2B53091DC9CB38447758E61D9DEE153541413ED0 Certificate serial: 07F6 Authority key identifier: 2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/04F19212C63A11EAB59CC262C4F9AE02.roa Signing time: Mon 26 Aug 2024 21:29:57 +0000 ROA not before: Mon 26 Aug 2024 21:29:57 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 202.173.24.0/24 maxlen: 24 202.173.26.0/24 maxlen: 24 202.173.27.0/24 maxlen: 24 202.173.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2038 (0x7f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142241 Validity Not Before: Aug 26 21:29:57 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ccf3d5-6c50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:28:1f:6b:b5:56:d5:e3:1a:24:78:b8:33:59: 5d:4d:bf:5d:94:e9:29:86:1e:e0:32:bb:77:99:43: d0:a5:03:b2:47:6f:2c:7c:8f:b5:f6:44:a6:05:f1: 28:e6:75:82:42:1b:15:87:ee:52:c1:b7:42:af:9b: 01:68:ff:ec:87:01:36:cb:be:cd:06:6c:6d:1a:c7: 05:4a:37:e4:d1:82:7b:20:72:c0:ed:af:35:bb:2e: 2b:e2:0f:bc:44:04:e4:a6:3d:7d:a1:59:a2:6d:27: 4f:34:1d:9e:23:50:c4:d1:f6:bb:22:09:8d:f0:5f: 71:dd:4a:94:e7:d4:c1:ca:03:ea:f7:c1:91:ba:39: a2:84:6a:40:bc:7b:14:72:67:74:19:55:db:a1:a4: 9d:cc:13:9a:9b:ec:78:86:dc:cf:0d:96:e5:e8:86: d9:f6:d4:28:ea:5f:fd:8e:cf:b5:6e:34:ff:37:69: d0:61:da:03:5f:61:a7:7e:fe:8d:ae:47:a1:f6:71: 47:d2:ef:77:ed:77:5b:2a:e5:fe:46:2b:46:f3:98: f0:d1:ed:28:80:aa:ad:c3:f6:44:96:ce:df:db:87: 55:5a:26:3a:b0:ed:2e:a6:f1:85:9f:0c:7a:1f:39: ef:df:2f:d4:d3:85:fc:3e:9f:8c:3f:76:1f:24:70: 1f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:81:78:F0:FD:DD:AA:19:42:73:64:C2:DC:8C:C1:16:7D:25:54:B9 X509v3 Authority Key Identifier: keyid:2B:53:09:1D:C9:CB:38:44:77:58:E6:1D:9D:EE:15:35:41:41:3E:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/K1MJHcnLOER3WOYdne4VNUFBPtA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1MJHcnLOER3WOYdne4VNUFBPtA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142241/4F7B9866C5F711EABA9D2081C4F9AE02/04F19212C63A11EAB59CC262C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.173.24.0/24 202.173.26.0/23 202.173.31.0/24 Signature Algorithm: sha256WithRSAEncryption 89:97:0f:8a:e6:33:45:74:01:b9:6c:e9:25:da:0f:5a:ef:36: c4:9e:bf:5c:e4:37:52:a3:a1:30:02:a6:e4:52:74:5b:86:ad: 82:8b:99:07:cd:86:b0:8e:ab:09:5f:69:17:de:61:74:0a:a1: ef:25:ed:7b:1c:59:7e:27:77:07:5e:6a:89:07:0a:69:bf:bd: d2:ed:3b:1b:99:ed:e2:63:fa:8b:03:5e:9a:e4:16:fe:54:74: ad:45:47:c3:21:0f:cc:4d:df:a7:1e:b2:c0:30:06:16:d5:f3: 78:70:30:3a:5f:e1:6c:7f:6f:dc:be:3f:dd:09:66:4b:96:1a: b9:e1:f2:00:29:36:18:35:6f:fa:00:25:d7:b6:7e:aa:e3:bc: ee:d4:45:9b:14:ce:c2:8a:ba:89:a7:b1:1c:2a:e2:a9:c9:78: 3d:b1:2a:b8:c1:8b:65:8a:b1:f5:02:39:fb:a9:73:3c:b6:bc: 7d:de:c5:9c:06:1e:d2:bb:ae:d2:78:46:00:d1:1f:16:fb:05: f3:e3:0f:09:8e:76:57:d9:89:7f:59:fe:0e:cc:2b:75:9e:9f: c7:c6:22:50:9d:19:77:29:cc:67:e4:bd:32:bd:38:87:c7:70: 2c:12:57:be:7b:59:3f:12:5e:44:95:69:7c:5c:8c:43:ee:00: c9:be:f6:44 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICB/YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIyNDExMTAvBgNVBAUTKDJCNTMwOTFEQzlDQjM4NDQ3NzU4RTYxRDlERUUxNTM1 NDE0MTNFRDAwHhcNMjQwODI2MjEyOTU3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNjZjNkNS02YzUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqygfa7VW1eMaJHi4M1ldTb9dlOkphh7gMrt3mUPQpQOyR28sfI+19kSmBfEo 5nWCQhsVh+5SwbdCr5sBaP/shwE2y77NBmxtGscFSjfk0YJ7IHLA7a81uy4r4g+8 RATkpj19oVmibSdPNB2eI1DE0fa7IgmN8F9x3UqU59TBygPq98GRujmihGpAvHsU cmd0GVXboaSdzBOam+x4htzPDZbl6IbZ9tQo6l/9js+1bjT/N2nQYdoDX2Gnfv6N rkeh9nFH0u937XdbKuX+RitG85jw0e0ogKqtw/ZEls7f24dVWiY6sO0upvGFnwx6 Hznv3y/U04X8Pp+MP3YfJHAf8wIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFF6BePD9 3aoZQnNkwtyMwRZ9JVS5MB8GA1UdIwQYMBaAFCtTCR3JyzhEd1jmHZ3uFTVBQT7Q MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjI0MS80RjdCOTg2NkM1 RjcxMUVBQkE5RDIwODFDNEY5QUUwMi9LMU1KSGNuTE9FUjNXT1lkbmU0Vk5VRkJQ dEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxTUpIY25MT0VSM1dPWWRuZTRWTlVGQlB0QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIyNDEvNEY3Qjk4NjZDNUY3MTFFQUJBOUQyMDgxQzRGOUFFMDIvMDRGMTkyMTJD NjNBMTFFQUI1OUNDMjYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBADKrRgDBAHKrRoDBADKrR8wDQYJKoZIhvcNAQELBQADggEB AImXD4rmM0V0Abls6SXaD1rvNsSev1zkN1KjoTACpuRSdFuGrYKLmQfNhrCOqwlf aRfeYXQKoe8l7XscWX4ndwdeaokHCmm/vdLtOxuZ7eJj+osDXprkFv5UdK1FR8Mh D8xN36cessAwBhbV83hwMDpf4Wx/b9y+P90JZkuWGrnh8gApNhg1b/oAJde2fqrj vO7URZsUzsKKuomnsRwq4qnJeD2xKrjBi2WKsfUCOfupczy2vH3exZwGHtK7rtJ4 RgDRHxb7BfPjDwmOdlfZiX9Z/g7MK3Wen8fGIlCdGXcpzGfkvTK9OIfHcCwSV757 WT8SXkSVaXxcjEPuAMm+9kQ= -----END CERTIFICATE-----Generated at Sun Feb 16 15:48:19 2025 by rpki-client