$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CD70D3940A7811EEA489D07BC4F9AE02.roa File: CD70D3940A7811EEA489D07BC4F9AE02.roa (raw, json) Hash identifier: tUCXmWof0USHAd/AnTe/zIcja2f8KydMrpeti85baXA= Subject key identifier: DC:0B:B6:40:27:09:3B:BD:7B:6D:BA:C2:3D:25:A8:BE:D2:AE:C8:EE Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2407 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CD70D3940A7811EEA489D07BC4F9AE02.roa Signing time: Fri 26 Jul 2024 16:33:40 +0000 ROA not before: Fri 26 Jul 2024 16:33:40 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 26344 IP address blocks: 120.28.20.0/24 maxlen: 24 222.127.19.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:52:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9223 (0x2407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Jul 26 16:33:40 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a3cfe4-a3da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:3e:d0:84:eb:ba:73:b5:9b:96:d3:d9:93:14: 7b:09:9e:03:22:2b:7a:c4:bb:1a:1f:84:42:9b:fd: 7b:30:d5:4f:cf:2e:82:35:af:9a:9b:69:1c:87:b3: 74:d0:e9:50:fd:35:2e:be:34:05:41:09:c5:57:b1: 09:13:19:84:8c:a5:78:b3:e9:84:75:83:20:e3:5c: 87:56:c1:6c:45:0c:e3:dc:d3:15:a0:24:0b:2d:fd: 9a:d7:73:24:a7:66:96:33:73:c3:3a:5c:71:e8:af: 83:64:47:c3:63:28:ce:02:0b:03:50:08:6a:a1:7e: 14:12:d3:c6:53:ea:41:f4:d7:bc:75:af:c9:d5:aa: 62:68:97:b9:61:2c:aa:25:c5:ff:e0:79:3f:6f:4c: 25:82:53:dc:f1:4f:a5:c4:fc:85:11:6d:24:79:ac: 20:27:74:3b:32:3f:c3:0c:1d:b7:be:32:b4:44:99: ff:7f:ee:5b:16:a4:d1:cd:52:03:fe:b8:58:78:3a: 7e:83:2e:5d:d0:ff:0d:80:a6:78:de:ee:de:8b:ed: ef:c9:da:a7:03:5b:52:35:18:62:35:27:06:32:40: 67:0d:d1:d5:37:b6:0e:9d:6f:de:c1:45:65:a2:0a: 13:ec:1b:ab:1c:17:0e:20:c2:ce:df:74:d8:cc:f4: 38:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:0B:B6:40:27:09:3B:BD:7B:6D:BA:C2:3D:25:A8:BE:D2:AE:C8:EE X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/CD70D3940A7811EEA489D07BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 120.28.20.0/24 222.127.19.0/24 Signature Algorithm: sha256WithRSAEncryption 13:b3:3c:fc:1a:cd:01:40:ec:c6:ad:fc:64:7f:7e:37:54:ca: 3f:a1:16:54:c2:b5:7d:66:ee:be:7c:6f:7f:c7:05:ff:51:29: 0d:3c:e7:a5:e0:25:58:86:75:5f:08:a7:84:f8:06:f2:7c:2e: 45:8e:97:fd:39:73:2e:4f:d1:a7:4a:27:48:98:69:b9:7b:13: 7b:25:c7:ba:82:fe:34:04:85:69:f7:0d:29:94:28:e6:43:d2: e7:f2:50:9c:eb:82:47:b8:71:20:4a:dc:cc:91:26:f7:44:67: f4:31:b1:5e:f4:8f:ed:08:50:48:f4:1f:40:53:ce:e6:43:9e: f2:7b:45:01:ef:ae:60:e0:5a:c7:0e:ab:19:c2:43:7c:98:6e: d1:42:54:c0:a5:62:dc:9c:3c:86:4d:d5:1e:5a:aa:fb:63:ac: ab:50:45:f2:ef:a8:08:73:9f:43:ef:00:3c:5e:e6:3c:ae:85: 90:b9:ac:29:41:39:6c:54:e0:e3:7b:d0:29:1d:6d:ec:45:9d: f2:18:85:5f:56:99:9d:45:7f:8a:5b:a4:67:0e:59:59:47:0f: 17:ce:c4:85:de:bb:44:62:c0:99:70:d2:5f:4a:4d:8c:09:f0: 0e:65:ed:0c:77:34:9c:61:49:e4:30:d4:34:e1:be:9a:c2:41: 8c:82:5b:fe -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjQwNzI2MTYzMzQwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEzY2ZlNC1hM2RhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3j7QhOu6c7WbltPZkxR7CZ4DIit6xLsaH4RCm/17MNVPzy6CNa+am2kch7N0 0OlQ/TUuvjQFQQnFV7EJExmEjKV4s+mEdYMg41yHVsFsRQzj3NMVoCQLLf2a13Mk p2aWM3PDOlxx6K+DZEfDYyjOAgsDUAhqoX4UEtPGU+pB9Ne8da/J1apiaJe5YSyq JcX/4Hk/b0wlglPc8U+lxPyFEW0keawgJ3Q7Mj/DDB23vjK0RJn/f+5bFqTRzVID /rhYeDp+gy5d0P8NgKZ43u7ei+3vydqnA1tSNRhiNScGMkBnDdHVN7YOnW/ewUVl ogoT7BurHBcOIMLO33TYzPQ4DwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNwLtkAn CTu9e226wj0lqL7SrsjuMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvQ0Q3MEQzOTQw QTc4MTFFRUE0ODlEMDdCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAB4HBQDBADefxMwDQYJKoZIhvcNAQELBQADggEBABOzPPwa zQFA7Mat/GR/fjdUyj+hFlTCtX1m7r58b3/HBf9RKQ0856XgJViGdV8Ip4T4BvJ8 LkWOl/05cy5P0adKJ0iYabl7E3slx7qC/jQEhWn3DSmUKOZD0ufyUJzrgke4cSBK 3MyRJvdEZ/QxsV70j+0IUEj0H0BTzuZDnvJ7RQHvrmDgWscOqxnCQ3yYbtFCVMCl YtycPIZN1R5aqvtjrKtQRfLvqAhzn0PvADxe5jyuhZC5rClBOWxU4ON70CkdbexF nfIYhV9WmZ1Ff4pbpGcOWVlHDxfOxIXeu0RiwJlw0l9KTYwJ8A5l7Qx3NJxhSeQw 1DThvprCQYyCW/4= -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:01 2024 by rpki-client on console-fra.rpki-client.org