$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/14BC2D3ACCAA11EA9E95D81BC4F9AE02.roa File: 14BC2D3ACCAA11EA9E95D81BC4F9AE02.roa (raw, json) Hash identifier: n7jlwwjdFJ+RKwuKH29PXvEGEpKzuEPAVlddcWoawd4= Subject key identifier: 3B:0F:DC:14:00:2E:C3:80:6A:AC:F4:78:3A:6F:7B:C1:02:4D:55:9A Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2400 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/14BC2D3ACCAA11EA9E95D81BC4F9AE02.roa Signing time: Fri 26 Jul 2024 16:33:34 +0000 ROA not before: Fri 26 Jul 2024 16:33:34 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 18190 IP address blocks: 120.28.15.0/24 maxlen: 24 120.28.56.0/24 maxlen: 24 124.6.146.0/24 maxlen: 24 222.127.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9216 (0x2400) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Jul 26 16:33:34 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a3cfde-459f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:60:6a:37:a6:b6:6f:ff:0f:73:44:6f:1e:a2: b5:c4:fa:eb:6c:f4:13:70:8a:47:80:3e:ec:47:b3: 25:27:51:f9:27:15:a8:09:02:13:1e:c4:dd:b7:ea: ec:7c:fb:99:f5:34:6d:80:41:59:92:b4:ed:a4:e0: 1e:40:3d:31:fc:81:73:db:d1:4a:94:6b:fc:97:47: cf:a5:9e:48:f6:50:c8:0e:20:29:7b:00:91:3d:a7: 67:28:6c:a4:d5:1b:67:6b:25:f0:5d:65:64:e6:7c: 31:76:99:e8:33:7f:59:75:01:6d:9d:31:1b:f7:2b: 01:4b:79:92:23:16:ab:2c:be:69:ee:78:ff:32:ad: 3b:ca:ce:67:ba:74:4f:fd:30:fd:cd:64:ae:03:6e: e6:16:16:79:1f:7e:58:5c:51:3b:71:e8:96:b3:63: eb:31:39:8b:91:8f:5b:32:52:55:7b:2b:59:5f:3f: bf:9f:27:14:9b:15:0d:68:eb:be:53:59:79:b1:58: 5e:44:40:c9:c6:d1:db:ba:dc:a7:00:2b:fb:78:b8: 40:fd:da:2f:e5:0a:f0:00:ac:35:e8:32:8d:04:64: 8b:70:12:c7:7e:0e:7d:3e:10:af:94:2f:19:d5:12: 29:25:8d:b2:a7:33:49:d2:d4:68:18:a6:13:65:8d: 93:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:0F:DC:14:00:2E:C3:80:6A:AC:F4:78:3A:6F:7B:C1:02:4D:55:9A X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/14BC2D3ACCAA11EA9E95D81BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.28.15.0/24 120.28.56.0/24 124.6.146.0/24 222.127.129.0/24 Signature Algorithm: sha256WithRSAEncryption 82:ec:b3:aa:1a:e1:8f:50:2e:0b:ec:af:62:d4:74:db:0d:4f: 21:d9:35:99:b7:34:f4:8a:6e:a4:d6:da:9b:30:45:0e:53:06: 5d:66:88:c2:0d:16:b6:5f:c3:51:67:ec:b0:16:0f:9d:39:9b: ea:d9:38:12:5a:0e:74:5d:42:25:96:a9:4f:f5:4f:d6:40:09: 25:b8:bd:98:1d:6c:e7:22:f3:bf:a3:8c:62:aa:7b:f5:c6:d1: 23:f0:f4:e0:6f:6b:d5:50:71:94:1c:8c:d7:b6:30:64:d4:78: 66:f9:42:09:1e:a5:f9:0b:08:7e:52:7b:34:05:eb:cc:78:21: a1:da:ae:40:b1:ca:4b:1d:29:fc:f4:fe:61:6d:8d:17:b2:08: d3:d7:3a:3e:9c:04:75:09:0b:05:08:65:08:4d:e1:30:74:16: 26:b8:85:1c:6a:de:8b:0d:d8:18:87:be:13:5d:05:70:08:76: 19:4c:b0:c4:80:ea:5a:b4:bf:90:67:d0:30:a5:f4:f7:fe:1b: f6:85:2d:ec:5c:12:91:f5:99:3b:18:ca:38:9e:a2:9f:7c:4c: a2:d8:16:41:df:53:f4:46:1b:9e:19:05:cc:30:54:32:b8:76: ff:5b:5a:be:0e:e1:7c:6c:d8:e3:65:6f:83:ed:49:20:ef:28: a4:fa:3d:fc -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICJAAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjQwNzI2MTYzMzM0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzY2ZkZS00NTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8GBqN6a2b/8Pc0RvHqK1xPrrbPQTcIpHgD7sR7MlJ1H5JxWoCQITHsTdt+rs fPuZ9TRtgEFZkrTtpOAeQD0x/IFz29FKlGv8l0fPpZ5I9lDIDiApewCRPadnKGyk 1RtnayXwXWVk5nwxdpnoM39ZdQFtnTEb9ysBS3mSIxarLL5p7nj/Mq07ys5nunRP /TD9zWSuA27mFhZ5H35YXFE7ceiWs2PrMTmLkY9bMlJVeytZXz+/nycUmxUNaOu+ U1l5sVheREDJxtHbutynACv7eLhA/dov5QrwAKw16DKNBGSLcBLHfg59PhCvlC8Z 1RIpJY2ypzNJ0tRoGKYTZY2TzQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFDsP3BQA LsOAaqz0eDpve8ECTVWaMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvMTRCQzJEM0FD Q0FBMTFFQTlFOTVEODFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAB4HA8DBAB4HDgDBAB8BpIDBADef4EwDQYJKoZIhvcNAQEL BQADggEBAILss6oa4Y9QLgvsr2LUdNsNTyHZNZm3NPSKbqTW2pswRQ5TBl1miMIN FrZfw1Fn7LAWD505m+rZOBJaDnRdQiWWqU/1T9ZACSW4vZgdbOci87+jjGKqe/XG 0SPw9OBva9VQcZQcjNe2MGTUeGb5QgkepfkLCH5SezQF68x4IaHarkCxyksdKfz0 /mFtjReyCNPXOj6cBHUJCwUIZQhN4TB0Fia4hRxq3osN2BiHvhNdBXAIdhlMsMSA 6lq0v5Bn0DCl9Pf+G/aFLexcEpH1mTsYyjieop98TKLYFkHfU/RGG54ZBcwwVDK4 dv9bWr4O4Xxs2ONlb4PtSSDvKKT6Pfw= -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:42 2024 by rpki-client on console-fra.rpki-client.org