$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C6C9159E02CC11E6AA35863CC4F9AE02.roa File: C6C9159E02CC11E6AA35863CC4F9AE02.roa (raw, json) Hash identifier: n/BL8NEIAHpYJ0v9wedyUGmzL2t/5O06rDGFVPPDMuI= Subject key identifier: 4F:33:AF:61:78:D7:03:08:DC:C8:0D:52:F4:5B:13:06:D7:3F:56:AE Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 23FE Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C6C9159E02CC11E6AA35863CC4F9AE02.roa Signing time: Fri 26 Jul 2024 16:33:33 +0000 ROA not before: Fri 26 Jul 2024 16:33:33 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 17894 IP address blocks: 120.28.36.0/22 maxlen: 22 203.177.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:58:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9214 (0x23fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Jul 26 16:33:33 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a3cfdc-8aa1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e6:46:a6:58:0e:5d:58:ee:01:45:14:d4:df: 7c:28:c2:db:8e:50:09:33:36:25:91:6b:36:91:a6: 52:66:b8:9e:c7:42:62:e3:ba:74:e5:09:18:e3:85: dd:20:8a:e6:6c:57:0b:47:b7:87:6e:60:df:b5:30: 30:29:18:77:50:8b:70:b5:db:52:1f:5e:79:1b:9f: 00:d7:d2:4a:d6:9c:ed:0f:7e:5b:e0:2e:53:71:85: bb:bb:a0:56:bf:47:44:fd:1d:5a:17:70:2d:1c:0c: fd:c6:33:72:0b:44:ac:b7:ac:2b:c8:0c:de:ae:62: 3e:1f:11:c2:11:52:ed:16:5a:fc:7f:62:ce:19:86: ce:de:85:fb:4d:19:92:72:99:1a:40:13:5e:91:1a: 58:03:8a:60:7b:bc:92:9a:d2:c5:f4:69:35:b2:70: e3:4e:38:ea:06:ac:e3:bd:84:b1:d2:6d:d2:14:26: 45:24:f9:4c:fa:c2:d5:dc:94:69:f2:0b:d9:11:cd: b6:3a:a4:d2:48:da:9a:47:fb:b9:f2:86:a0:61:15: be:ee:d6:48:25:70:6e:60:d2:ed:cc:67:dd:31:6c: 1f:c8:b6:b7:7a:d6:b2:7c:b5:c3:68:99:8a:ad:56: 1f:7a:28:ee:70:e2:32:93:67:e2:91:f8:5e:07:8c: 36:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:33:AF:61:78:D7:03:08:DC:C8:0D:52:F4:5B:13:06:D7:3F:56:AE X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/C6C9159E02CC11E6AA35863CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.28.36.0/22 203.177.255.0/24 Signature Algorithm: sha256WithRSAEncryption a8:9f:8a:af:12:61:43:85:f0:1a:8c:49:e4:53:4e:38:31:45: 2b:3f:21:d1:54:64:fe:43:64:5c:b2:9b:3f:64:ba:99:b9:48: ea:35:37:2e:17:35:a9:9f:2f:1c:e6:f5:42:9d:70:77:aa:32: b9:fe:d4:a1:94:26:fa:b9:09:00:57:2f:fc:70:0b:ed:b8:3b: 36:b4:50:0f:ee:02:de:fd:4f:e3:86:91:0c:24:8f:29:84:2f: 07:9d:6e:58:09:0a:15:a9:2c:5d:1f:0b:95:6c:da:e4:25:fe: 76:31:9a:13:70:28:9a:63:28:f8:39:ba:7e:00:f1:a7:b2:3c: 14:3c:c7:0f:8d:b8:e3:a7:47:79:e2:28:53:f9:fe:4e:f2:c1: bb:77:15:65:9b:c4:6b:56:87:bb:fd:ab:b4:13:b7:e6:1d:0f: 84:83:1b:24:b9:65:05:79:91:d8:4f:db:fd:3b:ba:87:c2:46: 05:5d:86:9c:06:d3:39:fe:44:ce:ce:31:b0:ca:0a:1f:70:6d: b0:a2:fe:05:14:62:56:e1:c2:7c:12:b4:31:76:39:00:5e:ee: f1:32:9f:28:59:74:e7:4a:2c:72:b3:e9:4c:77:6f:14:71:51: 09:08:33:43:7f:24:e6:1c:b4:00:57:a4:3e:3d:c5:80:5a:4a: 05:3d:48:19 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICI/4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjQwNzI2MTYzMzMzWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzY2ZkYy04YWExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteZGplgOXVjuAUUU1N98KMLbjlAJMzYlkWs2kaZSZriex0Ji47p05QkY44Xd IIrmbFcLR7eHbmDftTAwKRh3UItwtdtSH155G58A19JK1pztD35b4C5TcYW7u6BW v0dE/R1aF3AtHAz9xjNyC0Sst6wryAzermI+HxHCEVLtFlr8f2LOGYbO3oX7TRmS cpkaQBNekRpYA4pge7ySmtLF9Gk1snDjTjjqBqzjvYSx0m3SFCZFJPlM+sLV3JRp 8gvZEc22OqTSSNqaR/u58oagYRW+7tZIJXBuYNLtzGfdMWwfyLa3etayfLXDaJmK rVYfeijucOIyk2fikfheB4w2oQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFE8zr2F4 1wMI3MgNUvRbEwbXP1auMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQzZDOTE1OUUw MkNDMTFFNkFBMzU4NjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJ4HCQDBADLsf8wDQYJKoZIhvcNAQELBQADggEBAKifiq8S YUOF8BqMSeRTTjgxRSs/IdFUZP5DZFyymz9kupm5SOo1Ny4XNamfLxzm9UKdcHeq Mrn+1KGUJvq5CQBXL/xwC+24Oza0UA/uAt79T+OGkQwkjymELwedblgJChWpLF0f C5Vs2uQl/nYxmhNwKJpjKPg5un4A8aeyPBQ8xw+NuOOnR3niKFP5/k7ywbt3FWWb xGtWh7v9q7QTt+YdD4SDGyS5ZQV5kdhP2/07uofCRgVdhpwG0zn+RM7OMbDKCh9w bbCi/gUUYlbhwnwStDF2OQBe7vEynyhZdOdKLHKz6Ux3bxRxUQkIM0N/JOYctABX pD49xYBaSgU9SBk= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:01 2024 by rpki-client on console-ams.rpki-client.org