$ rpki-client -vvf rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/6B09C1DAB16811ECBB0AD94EC4F9AE02.roa File: 6B09C1DAB16811ECBB0AD94EC4F9AE02.roa (raw, json) Hash identifier: bpMRXxZBXAOsZQnuEufTbUr5i0daZxEr/0mDahplZDA= Subject key identifier: 7A:55:1B:DE:F2:51:CB:9C:8A:A8:42:98:D7:62:00:D4:BF:73:B5:DB Certificate issuer: /CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Certificate serial: 18FD Authority key identifier: BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/6B09C1DAB16811ECBB0AD94EC4F9AE02.roa Signing time: Sat 18 May 2024 17:25:06 +0000 ROA not before: Sat 18 May 2024 17:25:06 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 17649 IP address blocks: 116.89.224.0/20 maxlen: 20 203.97.224.0/24 maxlen: 24 203.97.225.0/24 maxlen: 24 203.97.226.0/24 maxlen: 24 203.97.227.0/24 maxlen: 24 203.97.229.0/24 maxlen: 24 203.144.32.0/20 maxlen: 20 2406:9a00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 17:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6397 (0x18fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9146AD7/serialNumber=BAF5ADA32CA0D34CF3CCF53ABDF86DE6F8ED9005 Validity Not Before: May 18 17:25:06 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6648e472-94e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:69:84:17:07:00:14:71:ea:2a:55:f3:36:04: fd:72:80:73:bc:b9:eb:a9:3a:78:aa:32:12:30:ee: fb:1e:b0:41:a3:92:4a:14:b7:3f:cc:83:72:f4:68: 6c:46:2e:be:03:25:cd:47:73:98:7c:15:51:ba:97: c0:46:9e:5a:a1:3f:ac:c8:b5:16:dd:06:9c:86:c8: 4c:21:b9:74:55:b8:f9:81:7c:f3:c7:08:81:19:35: 97:06:72:0d:2e:ed:13:eb:a0:18:c3:92:de:eb:07: b5:35:bf:6a:db:1f:0f:2c:9d:01:4c:9d:a1:db:38: e8:db:78:49:d4:08:4b:64:21:76:c7:a7:bb:4f:fb: de:ee:c1:f8:f5:f3:ba:1f:bb:8f:a8:3c:58:a5:d7: a3:c1:db:2b:5b:43:63:c5:6c:d9:17:9c:9d:2e:f6: ae:53:4f:5b:ef:23:5f:37:71:98:25:07:61:eb:c5: ed:4b:1b:e8:70:95:c5:f8:b3:44:ca:27:82:b6:df: ed:99:64:ac:40:80:88:77:a8:c3:9f:bc:04:09:80: 1a:51:2d:03:9a:1d:02:32:dc:72:6c:31:c2:cd:4f: 7e:42:ad:9b:8b:da:0a:27:ba:0e:29:72:ea:4c:c4: a9:6d:70:d7:13:97:e8:11:53:51:4d:ba:21:33:df: 24:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:55:1B:DE:F2:51:CB:9C:8A:A8:42:98:D7:62:00:D4:BF:73:B5:DB X509v3 Authority Key Identifier: keyid:BA:F5:AD:A3:2C:A0:D3:4C:F3:CC:F5:3A:BD:F8:6D:E6:F8:ED:90:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/uvWtoyyg00zzzPU6vfht5vjtkAU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uvWtoyyg00zzzPU6vfht5vjtkAU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9146AD7/F8BABACA8B8911E790115C3FC4F9AE02/6B09C1DAB16811ECBB0AD94EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.89.224.0/20 203.97.224.0/22 203.97.229.0/24 203.144.32.0/20 IPv6: 2406:9a00::/32 Signature Algorithm: sha256WithRSAEncryption 52:50:e7:27:95:32:28:f8:34:3c:b3:7f:83:a1:b9:b0:a4:3f: 67:de:c9:49:51:86:4e:bc:04:b6:c5:d9:32:1f:2e:28:cc:50: 1a:72:5b:8a:99:7f:93:08:6d:e6:c9:5c:81:e1:87:84:76:34: 70:68:6a:a8:d6:78:34:ec:e4:31:c1:4f:f5:87:73:4e:dd:39: 5a:8b:99:75:31:1e:62:3f:61:c2:77:e7:ab:06:68:e7:b5:47: a6:36:87:22:15:dc:e9:28:a0:b4:58:5a:db:9e:cd:75:ff:b6: 90:b8:29:a5:99:8d:4d:67:41:94:54:29:3c:26:8e:8b:08:43: 0d:c0:f2:0a:70:93:19:4f:a0:09:c3:d9:2f:f3:40:b2:42:fa: 0b:5c:c2:43:dd:dc:34:60:2d:dc:3f:98:02:c1:c0:9a:f8:ad: 07:ad:ac:e9:a5:71:f2:3e:fb:a8:c0:40:94:ae:3a:93:6a:e1: da:2a:3f:f5:35:32:1b:e7:d9:c2:55:62:e8:9c:0c:e8:ab:b3: 3a:b9:a5:68:d2:6f:ba:df:0b:1a:b4:17:f9:93:bf:1a:2f:48: 89:67:ff:83:34:3f:d3:25:6c:f8:87:c3:87:e9:60:29:79:67: 6a:47:7b:e5:0a:fd:8f:a0:24:bb:17:23:92:a8:fb:71:28:b5: 43:01:ae:bc -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICGP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDZBRDcxMTAvBgNVBAUTKEJBRjVBREEzMkNBMEQzNENGM0NDRjUzQUJERjg2REU2 RjhFRDkwMDUwHhcNMjQwNTE4MTcyNTA2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ4ZTQ3Mi05NGUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsmmEFwcAFHHqKlXzNgT9coBzvLnrqTp4qjISMO77HrBBo5JKFLc/zINy9Ghs Ri6+AyXNR3OYfBVRupfARp5aoT+syLUW3QachshMIbl0Vbj5gXzzxwiBGTWXBnIN Lu0T66AYw5Le6we1Nb9q2x8PLJ0BTJ2h2zjo23hJ1AhLZCF2x6e7T/ve7sH49fO6 H7uPqDxYpdejwdsrW0NjxWzZF5ydLvauU09b7yNfN3GYJQdh68XtSxvocJXF+LNE yieCtt/tmWSsQICId6jDn7wECYAaUS0Dmh0CMtxybDHCzU9+Qq2bi9oKJ7oOKXLq TMSpbXDXE5foEVNRTbohM98kmwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFHpVG97y UcuciqhCmNdiANS/c7XbMB8GA1UdIwQYMBaAFLr1raMsoNNM88z1Or34beb47ZAF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NkFENy9GOEJBQkFDQThC ODkxMUU3OTAxMTVDM0ZDNEY5QUUwMi91dld0b3l5ZzAwenp6UFU2dmZodDV2anRr QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V2V3RveXlnMDB6enpQVTZ2Zmh0NXZqdGtBVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDZBRDcvRjhCQUJBQ0E4Qjg5MTFFNzkwMTE1QzNGQzRGOUFFMDIvNkIwOUMxREFC MTY4MTFFQ0JCMEFEOTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAR0WeADBALLYeADBADLYeUDBATLkCAwDQQCAAIwBwMFACQG mgAwDQYJKoZIhvcNAQELBQADggEBAFJQ5yeVMij4NDyzf4OhubCkP2feyUlRhk68 BLbF2TIfLijMUBpyW4qZf5MIbebJXIHhh4R2NHBoaqjWeDTs5DHBT/WHc07dOVqL mXUxHmI/YcJ356sGaOe1R6Y2hyIV3OkooLRYWtuezXX/tpC4KaWZjU1nQZRUKTwm josIQw3A8gpwkxlPoAnD2S/zQLJC+gtcwkPd3DRgLdw/mALBwJr4rQetrOmlcfI+ +6jAQJSuOpNq4doqP/U1Mhvn2cJVYuicDOirszq5pWjSb7rfCxq0F/mTvxovSIln /4M0P9MlbPiHw4fpYCl5Z2pHe+UK/Y+gJLsXI5Ko+3EotUMBrrw= -----END CERTIFICATE-----Generated at Fri May 24 17:56:32 2024 by rpki-client on console-fra.rpki-client.org