$ rpki-client -vvf rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/927AA46C549211EFB6D69465C4F9AE02.roa File: 927AA46C549211EFB6D69465C4F9AE02.roa (raw, json) Hash identifier: gGjbQrgM08otmBBevw5wvzpRfB5KnX1ffhZnJEh71ug= Subject key identifier: 6A:29:6E:5B:B8:C7:10:22:64:0B:CE:BE:6B:F8:F2:71:A7:0B:52:62 Certificate issuer: /CN=A9148B19/serialNumber=70D2D06919957C6AA6771CF55DB96FC7EFE789A0 Certificate serial: 0366 Authority key identifier: 70:D2:D0:69:19:95:7C:6A:A6:77:1C:F5:5D:B9:6F:C7:EF:E7:89:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNLQaRmVfGqmdxz1Xblvx-_niaA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/927AA46C549211EFB6D69465C4F9AE02.roa Signing time: Fri 11 Oct 2024 01:04:47 +0000 ROA not before: Fri 11 Oct 2024 01:04:47 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 1221 IP address blocks: 202.36.14.0/24 maxlen: 24 203.16.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/cNLQaRmVfGqmdxz1Xblvx-_niaA.crl rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/cNLQaRmVfGqmdxz1Xblvx-_niaA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNLQaRmVfGqmdxz1Xblvx-_niaA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 870 (0x366) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9148B19/serialNumber=70D2D06919957C6AA6771CF55DB96FC7EFE789A0 Validity Not Before: Oct 11 01:04:47 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670879ae-a0ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:4b:a8:89:52:ab:bf:9c:10:71:b7:0b:a3:e5: 04:db:19:cd:47:c8:31:64:1f:5d:e2:0f:34:54:95: 65:a3:eb:2c:5e:6a:70:78:63:72:e7:b5:b4:24:a4: f6:71:16:85:02:84:ec:2f:04:c5:ae:71:a8:03:2e: e2:c1:83:4d:fb:3f:b6:de:db:33:f5:94:7e:fb:82: 71:24:57:04:a8:4b:ee:36:98:42:c6:90:1e:28:30: 00:5c:17:68:83:2f:86:b8:e7:44:0c:ea:ce:9e:4c: 8f:61:fb:1d:fc:a9:f9:96:a0:79:50:97:ac:47:b1: 4a:48:a4:5f:a0:a1:c6:ec:d6:ce:57:3e:ff:1c:0d: 45:fe:95:8d:af:52:c1:04:dc:73:14:de:07:4e:38: 59:74:25:32:c6:49:c5:99:9d:6f:55:f9:43:e6:c4: 5c:bd:86:99:ee:25:60:96:00:c7:56:98:51:80:98: 2d:3d:e0:c7:7e:8f:af:f5:50:38:d1:f2:00:d5:ee: 9c:84:19:15:cc:75:91:61:11:02:4e:be:29:c5:ac: 2b:f8:03:d4:08:98:c6:55:9e:79:8e:7f:08:71:a8: ec:a4:7a:99:03:1c:8a:1a:bf:16:db:21:6e:1c:5a: 3b:0d:08:9a:06:72:23:99:c8:ee:8b:76:ae:fa:e3: 97:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:29:6E:5B:B8:C7:10:22:64:0B:CE:BE:6B:F8:F2:71:A7:0B:52:62 X509v3 Authority Key Identifier: keyid:70:D2:D0:69:19:95:7C:6A:A6:77:1C:F5:5D:B9:6F:C7:EF:E7:89:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/cNLQaRmVfGqmdxz1Xblvx-_niaA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cNLQaRmVfGqmdxz1Xblvx-_niaA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9148B19/11030AF4855611EC9AB82E21C4F9AE02/927AA46C549211EFB6D69465C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.36.14.0/24 203.16.140.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:9a:db:1a:f0:e5:d2:4e:95:b7:cd:07:01:f0:f3:b9:c6:d9: 7b:af:94:86:20:3e:36:2f:ac:f2:a9:e2:5c:d3:38:46:58:65: b7:d2:0d:91:1d:2c:ed:05:49:cf:75:a3:b2:0b:c0:0e:53:ba: 3c:c6:d7:86:81:ed:4b:42:0c:83:20:0a:eb:61:d6:60:b0:ae: da:dc:fa:bf:9d:da:cc:59:1b:ca:82:8f:a5:4e:17:b5:a9:eb: 6b:ff:23:f3:35:5d:76:f5:db:34:7e:6b:fb:93:92:0f:f4:ea: 0a:b2:8f:8f:41:94:23:b9:c1:cb:86:20:2d:b6:c7:2e:41:6f: 70:61:84:65:cd:b2:f3:c0:2e:81:75:bb:46:5f:51:2a:1a:3c: 49:a9:9a:c0:47:4d:5c:e2:98:85:56:f4:b8:8b:0f:fc:bc:51: 7b:36:2a:2f:fb:bc:2e:7c:8f:85:f9:fa:34:fd:48:ab:fe:e1: 37:1f:48:5f:5b:53:ff:16:98:51:ba:0b:a5:b6:04:da:d5:cf: 07:55:4e:cb:72:0b:1b:93:ff:54:65:12:4a:f9:2f:a8:d6:bb: be:21:c1:6a:cd:94:e7:a7:58:c2:de:96:cd:e9:10:89:14:d6: b7:db:46:b3:ac:e6:6b:ff:5d:f0:74:71:e8:5e:5c:ad:b3:e9: 2d:e6:6b:16 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA2YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDhCMTkxMTAvBgNVBAUTKDcwRDJEMDY5MTk5NTdDNkFBNjc3MUNGNTVEQjk2RkM3 RUZFNzg5QTAwHhcNMjQxMDExMDEwNDQ3WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4NzlhZS1hMGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA10uoiVKrv5wQcbcLo+UE2xnNR8gxZB9d4g80VJVlo+ssXmpweGNy57W0JKT2 cRaFAoTsLwTFrnGoAy7iwYNN+z+23tsz9ZR++4JxJFcEqEvuNphCxpAeKDAAXBdo gy+GuOdEDOrOnkyPYfsd/Kn5lqB5UJesR7FKSKRfoKHG7NbOVz7/HA1F/pWNr1LB BNxzFN4HTjhZdCUyxknFmZ1vVflD5sRcvYaZ7iVglgDHVphRgJgtPeDHfo+v9VA4 0fIA1e6chBkVzHWRYRECTr4pxawr+APUCJjGVZ55jn8IcajspHqZAxyKGr8W2yFu HFo7DQiaBnIjmcjui3au+uOXxwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFGopblu4 xxAiZAvOvmv48nGnC1JiMB8GA1UdIwQYMBaAFHDS0GkZlXxqpncc9V25b8fv54mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OEIxOS8xMTAzMEFGNDg1 NTYxMUVDOUFCODJFMjFDNEY5QUUwMi9jTkxRYVJtVmZHcW1keHoxWGJsdngtX25p YUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NOTFFhUm1WZkdxbWR4ejFYYmx2eC1fbmlhQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDhCMTkvMTEwMzBBRjQ4NTU2MTFFQzlBQjgyRTIxQzRGOUFFMDIvOTI3QUE0NkM1 NDkyMTFFRkI2RDY5NDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADKJA4DBADLEIwwDQYJKoZIhvcNAQELBQADggEBAF+a2xrw 5dJOlbfNBwHw87nG2XuvlIYgPjYvrPKp4lzTOEZYZbfSDZEdLO0FSc91o7ILwA5T ujzG14aB7UtCDIMgCuth1mCwrtrc+r+d2sxZG8qCj6VOF7Wp62v/I/M1XXb12zR+ a/uTkg/06gqyj49BlCO5wcuGIC22xy5Bb3BhhGXNsvPALoF1u0ZfUSoaPEmpmsBH TVzimIVW9LiLD/y8UXs2Ki/7vC58j4X5+jT9SKv+4TcfSF9bU/8WmFG6C6W2BNrV zwdVTstyCxuT/1RlEkr5L6jWu74hwWrNlOenWMLels3pEIkU1rfbRrOs5mv/XfB0 ceheXK2z6S3maxY= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:35 2024 by rpki-client on console-fra.rpki-client.org