$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/2F88F46802CE11E6B167303FC4F9AE02.roa File: 2F88F46802CE11E6B167303FC4F9AE02.roa (raw, json) Hash identifier: xZB8ir+5zZ7vRH0rR8WOracJPzW4Z3o+MvmL2L9kTMM= Subject key identifier: FD:3B:00:3E:E9:6D:BA:65:4C:E3:F5:36:B0:F3:AF:7A:C7:F6:A1:94 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2283 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/2F88F46802CE11E6B167303FC4F9AE02.roa Signing time: Thu 20 Jul 2023 16:13:06 +0000 ROA not before: Thu 20 Jul 2023 16:13:06 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38822 IP address blocks: 222.127.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 16:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8835 (0x2283) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Jul 20 16:13:06 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b95d12-dee5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:aa:63:16:a9:53:38:05:20:a6:43:02:fa:b4: 8d:59:93:9a:5a:fb:e1:ff:83:92:a3:6b:c3:60:71: a1:ea:8f:6d:78:f1:ca:c3:66:fb:b1:bc:05:2d:ce: 1e:1d:6a:b2:78:3c:ab:f6:03:e7:72:84:c8:26:db: a0:3d:60:23:04:e1:a6:e9:db:51:b0:2d:11:e1:d9: 14:6f:39:37:bf:0c:b1:6c:e8:b4:24:c2:ec:c6:ec: 9d:7c:8f:7c:3b:2e:ae:de:86:6d:5b:89:60:f3:3c: f3:07:ca:11:ca:58:0c:88:ae:48:c3:7e:16:30:08: 50:6d:10:d5:b1:ff:31:ed:22:c5:2c:3c:34:e8:67: b3:6f:a6:a7:15:40:1a:c6:66:ff:3c:0a:fd:f5:dd: 9d:65:b7:0f:30:b7:ee:20:9d:66:9c:ca:1d:34:14: 12:12:36:fa:20:a9:85:10:44:ad:a7:e2:47:7d:1e: 6f:7d:98:84:77:b1:ae:dc:41:01:b1:5b:61:3f:74: e6:6c:12:6e:a2:cb:bd:fb:f1:4f:a0:0a:27:87:4c: e8:32:d1:99:c6:38:e0:71:50:3c:ab:86:4e:3b:4a: c2:cb:8d:14:50:bc:92:54:4a:6a:43:47:d3:05:3f: 31:d6:21:16:7c:33:f8:d4:a6:86:fb:3d:fc:f5:c9: ca:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:3B:00:3E:E9:6D:BA:65:4C:E3:F5:36:B0:F3:AF:7A:C7:F6:A1:94 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/2F88F46802CE11E6B167303FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 222.127.138.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:0a:bc:86:9c:b5:c7:00:05:07:25:1c:25:6b:26:e6:95:3a: 70:4e:24:40:1e:40:3d:6e:d4:fd:2c:80:fd:95:49:d7:2e:01: ed:eb:ab:02:40:ac:28:00:db:ae:a4:d7:c5:85:31:e1:b0:9a: bd:4f:14:c7:73:44:b2:08:a4:86:e1:1e:0d:bf:f8:11:60:e9: a9:25:28:dc:1a:81:71:5b:5a:3e:7c:68:c5:6b:af:76:52:3d: eb:c9:f4:05:63:84:f2:1d:c4:93:9d:d2:d1:99:25:eb:55:b5: e2:00:0f:17:58:75:1f:0b:51:47:33:24:31:a3:93:99:88:f9: 95:b1:84:03:c9:e9:97:dd:a8:ac:94:67:bd:9d:c6:3e:43:5d: 03:85:05:d1:02:e3:0a:32:c8:4f:f3:cc:85:d9:b6:d6:9a:f4: f7:89:d4:03:43:54:fb:4a:1b:9b:7b:bc:96:1c:34:da:49:1f: 53:e2:45:d9:dc:79:da:41:8b:71:cd:77:e1:ca:35:d7:42:be: 10:60:ad:b6:09:29:3f:5b:71:71:e3:b5:c2:05:44:5a:9a:9f: b4:1d:80:7c:89:04:8b:dc:c5:74:87:5b:91:ba:d8:62:0e:47: 30:c3:ac:14:e0:a8:f2:7e:22:65:43:83:ef:8f:48:5e:64:6f: ae:2f:55:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIoMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjMwNzIwMTYxMzA2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5NWQxMi1kZWU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz6pjFqlTOAUgpkMC+rSNWZOaWvvh/4OSo2vDYHGh6o9tePHKw2b7sbwFLc4e HWqyeDyr9gPncoTIJtugPWAjBOGm6dtRsC0R4dkUbzk3vwyxbOi0JMLsxuydfI98 Oy6u3oZtW4lg8zzzB8oRylgMiK5Iw34WMAhQbRDVsf8x7SLFLDw06Gezb6anFUAa xmb/PAr99d2dZbcPMLfuIJ1mnModNBQSEjb6IKmFEEStp+JHfR5vfZiEd7Gu3EEB sVthP3TmbBJuosu9+/FPoAonh0zoMtGZxjjgcVA8q4ZOO0rCy40UULySVEpqQ0fT BT8x1iEWfDP41KaG+z389cnKDwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP07AD7p bbplTOP1NrDzr3rH9qGUMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvMkY4OEY0Njgw MkNFMTFFNkIxNjczMDNGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADef4owDQYJKoZIhvcNAQELBQADggEBAA4KvIactccABQcl HCVrJuaVOnBOJEAeQD1u1P0sgP2VSdcuAe3rqwJArCgA266k18WFMeGwmr1PFMdz RLIIpIbhHg2/+BFg6aklKNwagXFbWj58aMVrr3ZSPevJ9AVjhPIdxJOd0tGZJetV teIADxdYdR8LUUczJDGjk5mI+ZWxhAPJ6ZfdqKyUZ72dxj5DXQOFBdEC4woyyE/z zIXZttaa9PeJ1ANDVPtKG5t7vJYcNNpJH1PiRdncedpBi3HNd+HKNddCvhBgrbYJ KT9bcXHjtcIFRFqan7QdgHyJBIvcxXSHW5G62GIORzDDrBTgqPJ+ImVDg++PSF5k b64vVck= -----END CERTIFICATE-----Generated at Sun Jun 2 18:46:18 2024 by rpki-client on console-ams.rpki-client.org