$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CD70D3940A7811EEA489D07BC4F9AE02.roa File: CD70D3940A7811EEA489D07BC4F9AE02.roa (raw, json) Hash identifier: t5djPk6hRxumnBronOWGPt0S6SKIdGkS8pdRzMS18Tg= Subject key identifier: 20:6F:72:5B:81:43:21:1B:2A:2B:77:D9:2E:B6:E5:EC:18:39:07:2A Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2281 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CD70D3940A7811EEA489D07BC4F9AE02.roa Signing time: Thu 20 Jul 2023 16:13:04 +0000 ROA not before: Thu 20 Jul 2023 16:13:04 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 26344 IP address blocks: 120.28.20.0/24 maxlen: 24 222.127.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 16:29:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8833 (0x2281) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Jul 20 16:13:04 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b95d10-d28b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8e:dd:82:87:13:ea:17:27:f4:b3:75:56:7c: 2d:2b:2b:15:cb:20:4f:81:64:f0:c9:d0:fe:8a:67: 38:0b:40:a6:6a:e7:ee:d9:af:8f:40:3a:92:dd:a1: da:30:e9:fb:96:87:bf:c7:f3:a8:4f:eb:26:64:f1: e4:e1:95:88:e0:6e:e3:b2:99:ff:2a:01:d6:21:36: a9:1f:b2:0e:87:66:e7:51:ac:84:6f:f1:59:d7:14: a8:95:d5:70:b6:7b:24:8d:37:fb:50:dd:91:ce:5c: 6a:a4:3a:fb:80:8d:92:14:0a:0c:51:ec:23:73:91: e3:e5:35:95:8a:e5:9a:33:d6:05:b9:8a:39:03:d9: 3b:d0:d5:ca:49:0a:2a:9b:a4:a0:4a:6e:ff:37:34: ab:65:29:70:2a:70:ff:ee:2c:55:b1:de:12:52:1a: 40:ce:af:df:6c:0f:71:43:61:0e:44:98:0d:b9:af: 11:d6:01:eb:e2:9d:b7:95:fa:b2:9c:7b:af:37:f6: 10:bd:61:5b:24:65:58:90:47:92:ca:a0:8b:2a:17: 11:34:99:3c:17:26:da:19:e6:f3:1f:73:ee:26:63: bf:cb:fc:70:bf:2f:57:b3:27:f1:c8:6d:d9:10:e4: 97:6c:a0:af:60:7c:9d:2c:82:6a:d3:f1:44:63:7a: e8:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:6F:72:5B:81:43:21:1B:2A:2B:77:D9:2E:B6:E5:EC:18:39:07:2A X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CD70D3940A7811EEA489D07BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.28.20.0/24 222.127.19.0/24 Signature Algorithm: sha256WithRSAEncryption 45:1b:81:28:e9:d0:7d:6e:da:7d:5b:2b:93:2c:77:3e:14:34: 1a:82:9c:87:2a:86:84:0e:42:c4:c3:30:27:f6:34:77:a0:3b: 3b:b4:b7:14:80:df:79:93:75:c7:d3:b0:9d:67:14:09:cc:61: 6f:0a:f5:e5:b3:6c:f7:7f:06:06:91:c0:84:7a:a2:4a:f9:2b: f0:3d:68:0a:4c:92:7b:63:b2:af:ac:b1:91:47:3c:92:2e:78: 1e:a4:bf:3a:9b:cb:c6:3e:68:60:0c:fa:01:06:1f:c8:b1:50: f4:ac:cd:42:de:8c:fd:03:7f:fd:51:78:fc:76:a8:92:2f:40: fb:ac:4a:ad:d0:02:c8:e8:47:72:17:49:97:97:b2:74:b0:ca: be:ff:2f:a2:5f:a2:e8:f6:87:94:93:20:66:a0:98:15:9e:83: 22:ac:6d:6c:00:2d:88:9c:01:ad:1a:19:f7:1a:93:f0:dd:3e: d0:e1:8a:fb:76:68:17:2d:c2:42:41:cb:34:f5:d1:06:27:97: 22:a7:d4:ed:ef:b7:98:b0:c8:86:44:22:14:cb:6e:d3:8c:3e: ea:ad:90:9e:3b:04:da:fc:1d:45:9f:03:23:e9:ae:b7:bb:31: 6a:84:f5:4d:e0:56:cb:53:36:ee:fc:32:8d:de:2a:a4:b2:1f: c7:5b:d8:aa -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICIoEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjMwNzIwMTYxMzA0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5NWQxMC1kMjhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0Y7dgocT6hcn9LN1VnwtKysVyyBPgWTwydD+imc4C0Cmaufu2a+PQDqS3aHa MOn7loe/x/OoT+smZPHk4ZWI4G7jspn/KgHWITapH7IOh2bnUayEb/FZ1xSoldVw tnskjTf7UN2RzlxqpDr7gI2SFAoMUewjc5Hj5TWViuWaM9YFuYo5A9k70NXKSQoq m6SgSm7/NzSrZSlwKnD/7ixVsd4SUhpAzq/fbA9xQ2EORJgNua8R1gHr4p23lfqy nHuvN/YQvWFbJGVYkEeSyqCLKhcRNJk8FybaGebzH3PuJmO/y/xwvy9XsyfxyG3Z EOSXbKCvYHydLIJq0/FEY3ro4QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCBvcluB QyEbKit32S625ewYOQcqMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQ0Q3MEQzOTQw QTc4MTFFRUE0ODlEMDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB4HBQDBADefxMwDQYJKoZIhvcNAQELBQADggEBAEUbgSjp 0H1u2n1bK5Msdz4UNBqCnIcqhoQOQsTDMCf2NHegOzu0txSA33mTdcfTsJ1nFAnM YW8K9eWzbPd/BgaRwIR6okr5K/A9aApMkntjsq+ssZFHPJIueB6kvzqby8Y+aGAM +gEGH8ixUPSszULejP0Df/1RePx2qJIvQPusSq3QAsjoR3IXSZeXsnSwyr7/L6Jf ouj2h5STIGagmBWegyKsbWwALYicAa0aGfcak/DdPtDhivt2aBctwkJByzT10QYn lyKn1O3vt5iwyIZEIhTLbtOMPuqtkJ47BNr8HUWfAyPprre7MWqE9U3gVstTNu78 Mo3eKqSyH8db2Ko= -----END CERTIFICATE-----Generated at Thu Jun 6 18:47:46 2024 by rpki-client on console-fra.rpki-client.org