$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/2F88F46802CE11E6B167303FC4F9AE02.roa File: 2F88F46802CE11E6B167303FC4F9AE02.roa (raw, json) Hash identifier: CQWi2YF8MQ4UHFHqDi+xaEbH9uwwbmiWIRH/VdottEg= Subject key identifier: 18:D0:B2:DF:76:A1:DC:A7:A0:CD:0A:7C:A4:53:2A:FC:DA:B4:19:C6 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2409 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/2F88F46802CE11E6B167303FC4F9AE02.roa Signing time: Fri 26 Jul 2024 16:33:42 +0000 ROA not before: Fri 26 Jul 2024 16:33:42 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38822 IP address blocks: 222.127.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9225 (0x2409) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Jul 26 16:33:42 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a3cfe6-ed90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:f1:6d:de:3d:5a:e9:9b:57:40:68:d6:9d:b7: 58:1c:8d:44:70:39:b2:14:19:22:a3:15:0a:8a:73: 5e:3c:b7:df:00:0a:22:cc:8a:a7:9f:ef:a6:b8:0d: 6d:30:a2:90:a8:04:38:55:95:e6:71:ef:3c:02:18: 82:fd:5b:70:6d:a4:c2:b5:16:d3:0c:08:8b:0c:e7: 1f:26:ba:d4:15:44:e4:94:8f:1d:7b:2a:f6:b3:ca: 89:07:60:35:dd:0e:62:89:ed:da:56:8f:58:b3:c4: de:eb:b1:00:be:5a:b9:9c:7e:ef:ef:a6:b8:2d:23: 23:cf:48:3d:93:cc:57:f4:5b:ba:56:61:40:7e:53: 1a:82:20:d3:c3:ad:ba:ee:16:ea:d1:d5:63:20:1d: be:2c:7d:5e:22:2e:b6:b8:c9:73:10:ce:5a:e9:e1: c7:b6:81:43:06:e9:ea:4b:a7:c3:39:53:05:8a:2d: 27:10:44:67:d9:eb:03:6b:92:5c:88:a7:63:52:cc: 02:8a:10:3b:b1:1c:45:03:e4:de:5f:a1:fa:20:48: 9b:45:a7:46:7d:65:f2:56:d5:48:92:06:68:bd:83: 33:8b:94:04:8a:a1:8b:cf:64:d1:c4:5a:2d:85:a6: 8d:a0:fd:5a:fe:c5:f9:72:0e:c0:92:52:47:28:a7: fa:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:D0:B2:DF:76:A1:DC:A7:A0:CD:0A:7C:A4:53:2A:FC:DA:B4:19:C6 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/2F88F46802CE11E6B167303FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.127.138.0/24 Signature Algorithm: sha256WithRSAEncryption b5:02:a6:09:bd:9c:00:ea:9f:88:8b:54:3e:57:25:aa:e9:23: 50:30:1b:63:8f:22:3f:ed:2d:3b:fb:42:e9:22:b6:f2:90:26: ab:56:5b:f3:64:21:bd:26:cf:39:fe:7b:22:6d:ee:ea:92:f3: 55:5b:dc:4c:dc:af:86:b1:38:6d:17:8c:5b:62:71:c6:95:c5: 57:86:2a:f8:d5:79:6f:85:b2:01:79:39:4e:93:cf:ae:ab:28: 5d:e0:f4:dd:f5:51:85:78:ed:f4:69:b1:89:33:64:7f:04:9f: a5:19:f3:01:0e:08:fe:8e:79:f7:8d:96:15:e8:d0:ea:90:9f: fb:64:17:fa:1b:99:e9:83:52:e0:03:df:09:f1:1c:cb:c8:18: 07:1c:ca:02:7d:34:8d:93:21:f7:8b:da:a2:07:43:02:50:cc: db:c9:38:5f:6b:55:d1:ff:20:5e:a9:80:4c:5c:2d:ef:03:63: ad:c1:75:cf:0b:f5:2d:21:34:d1:30:d1:64:ef:82:40:94:7d: 4d:e8:42:64:6e:33:64:f6:36:99:11:fb:96:61:59:31:89:01: f8:7f:db:91:5c:4d:2d:b5:bf:a4:b2:20:b6:0e:11:a8:ef:bd: 19:9a:9e:e7:77:7c:09:16:4f:10:e6:77:d2:55:48:5f:35:25: d9:da:64:7c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJAkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjQwNzI2MTYzMzQyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzY2ZlNi1lZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArvFt3j1a6ZtXQGjWnbdYHI1EcDmyFBkioxUKinNePLffAAoizIqnn++muA1t MKKQqAQ4VZXmce88AhiC/VtwbaTCtRbTDAiLDOcfJrrUFUTklI8deyr2s8qJB2A1 3Q5iie3aVo9Ys8Te67EAvlq5nH7v76a4LSMjz0g9k8xX9Fu6VmFAflMagiDTw626 7hbq0dVjIB2+LH1eIi62uMlzEM5a6eHHtoFDBunqS6fDOVMFii0nEERn2esDa5Jc iKdjUswCihA7sRxFA+TeX6H6IEibRadGfWXyVtVIkgZovYMzi5QEiqGLz2TRxFot haaNoP1a/sX5cg7AklJHKKf6owIDAQABo4IClTCCApEwHQYDVR0OBBYEFBjQst92 odynoM0KfKRTKvzatBnGMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvMkY4OEY0Njgw MkNFMTFFNkIxNjczMDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADef4owDQYJKoZIhvcNAQELBQADggEBALUCpgm9nADqn4iL VD5XJarpI1AwG2OPIj/tLTv7QukitvKQJqtWW/NkIb0mzzn+eyJt7uqS81Vb3Ezc r4axOG0XjFticcaVxVeGKvjVeW+FsgF5OU6Tz66rKF3g9N31UYV47fRpsYkzZH8E n6UZ8wEOCP6OefeNlhXo0OqQn/tkF/obmemDUuAD3wnxHMvIGAccygJ9NI2TIfeL 2qIHQwJQzNvJOF9rVdH/IF6pgExcLe8DY63Bdc8L9S0hNNEw0WTvgkCUfU3oQmRu M2T2NpkR+5ZhWTGJAfh/25FcTS21v6SyILYOEajvvRmanud3fAkWTxDmd9JVSF81 JdnaZHw= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org