$ rpki-client -vvf rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/E4301768335611EA9EBAA34DC4F9AE02.roa File: E4301768335611EA9EBAA34DC4F9AE02.roa (raw, json) Hash identifier: UVIr2avWKgXWoSnw2ZjOY5uRVTTPQmSxzANCaVCsw0w= Subject key identifier: BE:A3:D2:5C:6E:79:69:C2:79:4D:C7:EC:E0:35:84:BD:DA:EE:86:28 Certificate issuer: /CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Certificate serial: 2274 Authority key identifier: 9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/E4301768335611EA9EBAA34DC4F9AE02.roa Signing time: Thu 20 Jul 2023 16:12:52 +0000 ROA not before: Thu 20 Jul 2023 16:12:52 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139798 IP address blocks: 203.177.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 16:29:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8820 (0x2274) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146207/serialNumber=9E668E6E67BAD0ACF940A228C4BC093B8B24002B Validity Not Before: Jul 20 16:12:52 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b95d04-1671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c2:8f:f9:0f:22:65:c4:2b:1f:30:92:4c:37: 41:eb:78:af:79:c6:de:79:81:0f:90:76:d7:d6:c8: 5e:05:81:d9:57:23:1f:4d:5b:51:d8:0a:82:80:56: 0d:07:d3:88:c2:35:19:3f:d7:db:e6:e4:91:96:b2: 65:2e:53:b2:b2:ef:2b:f0:01:8d:3c:fb:6b:c8:b0: 03:86:c9:3f:e4:c5:cb:c5:d1:ae:24:1c:72:9b:bf: c4:fa:ed:d5:e6:e8:bf:7a:86:cd:29:f5:6a:70:87: 9f:f3:7a:29:de:91:db:4f:9d:18:0b:5a:67:fd:51: d0:6d:4b:64:6e:4c:4b:da:d1:94:b7:02:1e:ed:cb: f1:3c:54:13:f2:bc:13:a1:9c:7b:35:0f:03:d6:1f: c8:f6:39:10:4a:38:ed:2e:f0:b5:f1:86:ce:d0:a3: 6d:06:93:10:6a:e5:e7:9c:70:e4:db:c8:83:85:65: f6:7e:68:db:77:cf:f4:b8:54:79:84:b2:50:03:17: bb:90:a0:6f:31:4b:ab:c5:c6:79:3f:b8:d2:93:3e: 9c:f8:56:06:e1:17:08:ff:30:46:77:92:fd:9b:6b: c7:69:5d:7c:b2:54:8e:24:45:c3:9a:a1:92:0a:cf: b2:89:f3:2e:5f:7d:30:52:69:d2:0b:b9:98:99:5a: 29:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A3:D2:5C:6E:79:69:C2:79:4D:C7:EC:E0:35:84:BD:DA:EE:86:28 X509v3 Authority Key Identifier: keyid:9E:66:8E:6E:67:BA:D0:AC:F9:40:A2:28:C4:BC:09:3B:8B:24:00:2B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/nmaObme60Kz5QKIoxLwJO4skACs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nmaObme60Kz5QKIoxLwJO4skACs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146207/FE75634002CB11E6865B8F3BC4F9AE02/E4301768335611EA9EBAA34DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.177.87.0/24 Signature Algorithm: sha256WithRSAEncryption 55:d2:ee:49:df:7e:9d:6c:b2:15:6c:93:f5:59:a3:74:f7:4d: b7:cd:30:8f:84:7a:bc:3e:ed:e9:0d:f6:24:2f:dd:d2:bc:3c: 64:44:2d:7f:04:dc:b2:e7:da:e3:b5:ac:a1:ad:88:30:7f:f5: 92:4a:e8:f2:d9:54:84:8d:a9:70:02:e7:6e:73:60:f0:7a:c4: cd:c7:ba:e6:85:c5:65:1e:02:7b:23:bd:b1:d4:af:a6:cc:c5: a2:b3:0a:24:08:e9:10:0e:c7:e2:79:72:de:db:b3:b1:4e:21: f4:3f:32:e9:48:92:e5:58:57:1a:e5:de:63:41:a7:4a:c7:54: 54:01:e8:39:f1:f7:73:4f:ee:c7:1c:7f:53:b4:70:0a:48:d3: 19:42:72:e9:08:e8:96:01:db:f7:1c:71:45:2b:e1:25:9a:00: 2a:d2:54:a7:ea:7b:3e:33:fe:e0:1f:01:47:8b:66:09:8a:9c: 3d:49:da:a4:8a:aa:87:ae:46:40:19:88:9b:56:6a:65:48:e7: 75:0c:86:9f:fa:9d:75:65:6a:32:6f:01:4b:e4:b5:e4:50:b2: b5:df:5b:f3:7c:97:c3:ca:dc:ac:0c:7e:c5:75:74:a6:20:11: 2e:5b:a0:7f:7d:d1:03:e1:6f:ef:77:3b:4f:da:b7:af:55:39: a9:ff:84:b6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICInQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDYyMDcxMTAvBgNVBAUTKDlFNjY4RTZFNjdCQUQwQUNGOTQwQTIyOEM0QkMwOTNC OEIyNDAwMkIwHhcNMjMwNzIwMTYxMjUyWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5NWQwNC0xNjcxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxsKP+Q8iZcQrHzCSTDdB63ivecbeeYEPkHbX1sheBYHZVyMfTVtR2AqCgFYN B9OIwjUZP9fb5uSRlrJlLlOysu8r8AGNPPtryLADhsk/5MXLxdGuJBxym7/E+u3V 5ui/eobNKfVqcIef83op3pHbT50YC1pn/VHQbUtkbkxL2tGUtwIe7cvxPFQT8rwT oZx7NQ8D1h/I9jkQSjjtLvC18YbO0KNtBpMQauXnnHDk28iDhWX2fmjbd8/0uFR5 hLJQAxe7kKBvMUurxcZ5P7jSkz6c+FYG4RcI/zBGd5L9m2vHaV18slSOJEXDmqGS Cs+yifMuX30wUmnSC7mYmVopEQIDAQABo4IClTCCApEwHQYDVR0OBBYEFL6j0lxu eWnCeU3H7OA1hL3a7oYoMB8GA1UdIwQYMBaAFJ5mjm5nutCs+UCiKMS8CTuLJAAr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NjIwNy9GRTc1NjM0MDAy Q0IxMUU2ODY1QjhGM0JDNEY5QUUwMi9ubWFPYm1lNjBLejVRS0lveEx3Sk80c2tB Q3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25tYU9ibWU2MEt6NVFLSW94THdKTzRza0FDcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDYyMDcvRkU3NTYzNDAwMkNCMTFFNjg2NUI4RjNCQzRGOUFFMDIvRTQzMDE3Njgz MzU2MTFFQTlFQkFBMzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLsVcwDQYJKoZIhvcNAQELBQADggEBAFXS7knffp1sshVs k/VZo3T3TbfNMI+Eerw+7ekN9iQv3dK8PGRELX8E3LLn2uO1rKGtiDB/9ZJK6PLZ VISNqXAC525zYPB6xM3HuuaFxWUeAnsjvbHUr6bMxaKzCiQI6RAOx+J5ct7bs7FO IfQ/MulIkuVYVxrl3mNBp0rHVFQB6Dnx93NP7sccf1O0cApI0xlCcukI6JYB2/cc cUUr4SWaACrSVKfqez4z/uAfAUeLZgmKnD1J2qSKqoeuRkAZiJtWamVI53UMhp/6 nXVlajJvAUvkteRQsrXfW/N8l8PK3KwMfsV1dKYgES5boH990QPhb+93O0/at69V Oan/hLY= -----END CERTIFICATE-----Generated at Sun Jun 2 17:59:42 2024 by rpki-client on console-fra.rpki-client.org