$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/4CF2D3B68C5411EF84ABE03CC4F9AE02.roa File: 4CF2D3B68C5411EF84ABE03CC4F9AE02.roa (raw, json) Hash identifier: 94Rt3YQOo3z7AHBNPf7mUO8MdNhSBexZLfHTIqNCUWQ= Subject key identifier: 9F:E5:B8:89:CA:30:67:55:AB:17:65:E3:74:24:0B:F7:36:C6:2E:A9 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2497 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/4CF2D3B68C5411EF84ABE03CC4F9AE02.roa Signing time: Thu 17 Oct 2024 06:51:57 +0000 ROA not before: Thu 17 Oct 2024 06:51:57 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 135645 IP address blocks: 203.177.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9367 (0x2497) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Oct 17 06:51:57 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6710b40d-a24b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:18:b7:21:b4:6e:25:9a:cf:34:fb:cc:48:70: cf:a5:5a:79:96:94:dd:64:f7:fc:91:3c:9f:63:52: 21:78:91:05:74:73:7a:13:cf:6f:a6:69:61:8f:0f: c0:d7:23:20:be:39:30:55:78:c7:92:fe:cf:a4:d2: 0f:68:d4:58:31:49:98:b2:ee:fd:00:95:1f:33:fd: a3:62:1f:98:db:37:8c:8b:10:2d:0e:9c:61:d3:59: f9:57:79:dd:51:f3:20:d3:13:d3:39:4d:35:ae:94: 80:66:72:ac:34:eb:5e:96:a5:71:bf:22:41:7d:88: 75:87:bf:ec:60:32:db:ab:bf:4a:39:99:7d:17:e3: 61:0b:aa:b7:8d:8e:0f:b5:67:cc:5d:69:17:8e:12: fc:5d:5e:6d:ca:4d:ec:db:44:d0:a4:90:6c:e9:96: 59:2f:0a:f0:e2:de:0f:84:b6:f4:80:90:1e:33:6a: 43:85:f6:9d:38:00:a1:31:23:9e:d9:35:d4:7e:9b: 12:21:85:23:ce:c6:02:d2:28:31:35:fc:34:68:8b: 69:5d:40:b9:0e:0f:32:6c:a5:ae:06:c1:cb:b9:9e: 56:89:b9:79:cb:11:77:b8:6f:bd:8b:cc:88:db:ba: f6:b5:5c:51:ed:af:fc:77:2a:a6:47:05:cd:e5:e2: 2d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:E5:B8:89:CA:30:67:55:AB:17:65:E3:74:24:0B:F7:36:C6:2E:A9 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/4CF2D3B68C5411EF84ABE03CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.177.125.0/24 Signature Algorithm: sha256WithRSAEncryption d3:dc:a3:e6:07:5d:44:51:bc:72:7b:9c:f1:d7:8b:35:91:f4: 16:11:21:dc:a3:37:e5:e7:86:b1:36:f4:5c:a0:cb:11:2b:fa: f2:01:51:b3:42:8a:c2:ab:60:ce:d2:95:af:b4:a0:8d:f8:12: a0:8d:89:e8:9c:fa:69:df:1b:08:56:27:83:d5:a8:6b:e5:ec: d1:e9:b8:cf:f0:f6:f1:25:41:6c:f6:b9:19:1b:11:fd:78:ae: 5f:a1:ee:c7:2f:4c:52:e3:57:e4:88:52:29:47:8d:59:ea:26: ff:21:75:09:5e:ae:e4:b0:03:87:2a:f3:2a:90:0e:7f:e8:78: 3a:5e:05:bc:7a:40:fa:5f:e4:79:b4:36:49:6b:8c:5e:85:d4: cd:f9:9f:5d:ea:08:84:61:a6:f9:f4:5a:0d:89:b6:83:51:0f: 76:a7:b2:9d:fb:c0:f7:37:45:50:ae:f4:4f:52:b2:8c:15:88: 3b:5a:fa:c9:0c:1b:d6:f2:7b:25:77:33:77:22:2a:de:ef:2f: e4:54:ce:2a:60:fb:9f:68:e6:d9:a5:b6:9f:65:89:a2:c5:4e: 58:71:9f:b1:c3:6c:04:22:13:24:21:e4:a7:f9:6f:af:f0:cb: d3:a3:02:1a:43:32:9f:64:7c:6d:95:2a:6d:b0:e6:22:ea:e1: 5c:e2:62:6a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjQxMDE3MDY1MTU3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzEwYjQwZC1hMjRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Bi3IbRuJZrPNPvMSHDPpVp5lpTdZPf8kTyfY1IheJEFdHN6E89vpmlhjw/A 1yMgvjkwVXjHkv7PpNIPaNRYMUmYsu79AJUfM/2jYh+Y2zeMixAtDpxh01n5V3nd UfMg0xPTOU01rpSAZnKsNOtelqVxvyJBfYh1h7/sYDLbq79KOZl9F+NhC6q3jY4P tWfMXWkXjhL8XV5tyk3s20TQpJBs6ZZZLwrw4t4PhLb0gJAeM2pDhfadOAChMSOe 2TXUfpsSIYUjzsYC0igxNfw0aItpXUC5Dg8ybKWuBsHLuZ5Wibl5yxF3uG+9i8yI 27r2tVxR7a/8dyqmRwXN5eItyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ/luInK MGdVqxdl43QkC/c2xi6pMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvNENGMkQzQjY4 QzU0MTFFRjg0QUJFMDNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLsX0wDQYJKoZIhvcNAQELBQADggEBANPco+YHXURRvHJ7 nPHXizWR9BYRIdyjN+XnhrE29FygyxEr+vIBUbNCisKrYM7Sla+0oI34EqCNieic +mnfGwhWJ4PVqGvl7NHpuM/w9vElQWz2uRkbEf14rl+h7scvTFLjV+SIUilHjVnq Jv8hdQleruSwA4cq8yqQDn/oeDpeBbx6QPpf5Hm0NklrjF6F1M35n13qCIRhpvn0 Wg2JtoNRD3ansp37wPc3RVCu9E9SsowViDta+skMG9byeyV3M3ciKt7vL+RUzipg +59o5tmltp9liaLFTlhxn7HDbAQiEyQh5Kf5b6/wy9OjAhpDMp9kfG2VKm2w5iLq 4VziYmo= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org