$ rpki-client -vvf rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/186E151AD35C11E69A0BDB79C4F9AE02.roa File: 186E151AD35C11E69A0BDB79C4F9AE02.roa (raw, json) Hash identifier: V4196ZhhCxsgU9zTQc0AU9DRoJSebxB0m+8UFFMd4zo= Subject key identifier: 0F:03:F9:43:08:B1:55:AC:6F:4F:13:CC:70:1F:1D:1F:49:48:30:65 Certificate issuer: /CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Certificate serial: 1BE6 Authority key identifier: FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/186E151AD35C11E69A0BDB79C4F9AE02.roa Signing time: Sat 16 Dec 2023 16:43:48 +0000 ROA not before: Sat 16 Dec 2023 16:43:48 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 5511 IP address blocks: 202.167.0.0/17 maxlen: 17 202.167.128.0/18 maxlen: 18 202.167.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7142 (0x1be6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Validity Not Before: Dec 16 16:43:48 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657dd3c3-8a7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:76:d2:f9:65:0d:80:27:29:8f:66:50:bd:d4: 35:8c:55:6e:dd:c0:5e:f5:8e:08:a3:e6:41:30:99: 94:9b:ff:11:ec:54:e0:5c:8e:f2:f2:0b:e8:18:17: 01:0d:c2:b3:3f:b2:2d:bd:3f:e2:52:c0:47:55:7d: 4b:f1:9e:9e:e8:e1:8e:06:77:bd:d7:0f:8a:af:a3: 7e:2d:cd:3e:a7:c3:fd:83:f2:df:d7:4b:50:9f:fa: 13:46:02:1e:57:9b:da:f4:23:27:30:a1:0d:5d:a3: 6f:10:5e:6e:96:2c:46:f0:9f:85:03:f2:36:76:c6: be:04:8d:a9:cd:fa:ab:49:64:61:42:5d:75:01:ea: 29:d4:40:0a:03:56:12:38:81:cb:1f:94:ce:80:43: 33:4b:0a:cf:c4:5c:4f:04:fa:63:4b:25:f4:52:c7: 4d:95:43:c7:7b:de:e6:35:65:fd:dc:cf:fc:ab:f3: 97:b9:e1:aa:40:1d:a0:39:7d:b8:08:0d:8e:04:93: 9a:e5:1d:95:7f:f2:70:e7:f9:31:68:e4:66:ab:0e: e3:44:ae:12:8f:cb:9f:13:d5:f6:5f:2c:c4:32:70: fe:35:fa:2a:79:1d:07:c7:fa:52:0e:1e:80:89:ba: 1e:8c:46:c8:6b:c1:8d:c4:ec:93:83:de:8c:51:2a: 35:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:03:F9:43:08:B1:55:AC:6F:4F:13:CC:70:1F:1D:1F:49:48:30:65 X509v3 Authority Key Identifier: keyid:FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/186E151AD35C11E69A0BDB79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.167.0.0-202.167.207.255 Signature Algorithm: sha256WithRSAEncryption a8:55:3a:98:2d:6a:0a:08:3d:70:fc:fd:5d:d3:df:39:f2:ef: 86:f9:0c:68:42:5b:23:c6:71:0b:c1:c3:4d:f6:b2:0f:02:a4: c4:08:91:5e:d2:ff:8d:4f:81:41:9d:a2:49:21:79:93:41:aa: 04:fd:bc:40:2c:c4:a9:e0:d5:5d:ac:9e:a4:73:a8:eb:9d:32: 90:86:19:51:1e:89:e1:2b:d0:e4:c1:e3:9f:f4:73:99:c6:ad: a2:de:60:4a:e2:b8:0e:bd:bb:e7:de:5c:d2:10:a0:41:57:30: d8:14:27:1b:eb:73:ab:01:64:26:4e:57:6c:ff:0f:71:76:b0: 08:cc:65:de:47:b8:ce:8c:a4:cb:fa:db:b9:5c:f7:b0:45:32: ce:a2:5c:eb:73:31:41:4b:c7:f6:bc:77:2f:58:46:e1:db:62: ec:d7:97:52:76:58:49:7a:c9:cb:98:a3:a3:2a:f4:73:0f:8a: 11:88:58:b5:67:f3:0b:f5:8b:79:38:74:75:88:ae:5d:d9:ee: 5d:68:f6:61:5e:1b:8b:5d:d4:2d:58:32:35:2c:c8:38:eb:ed: 6c:08:60:5d:ca:63:d9:ba:26:5e:04:90:c3:69:fb:bf:65:a3: f4:00:41:a8:2c:a4:81:ab:79:f9:e9:fe:fa:3d:4a:6c:86:44: e9:a1:01:80 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICG+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBEMjcxMTAvBgNVBAUTKEZGQ0QyMERDQTY4REU0MzJGMjE5MUI3QjYzMzI4NkJD OTg3RTQyRUMwHhcNMjMxMjE2MTY0MzQ4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdkZDNjMy04YTdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2XbS+WUNgCcpj2ZQvdQ1jFVu3cBe9Y4Io+ZBMJmUm/8R7FTgXI7y8gvoGBcB DcKzP7ItvT/iUsBHVX1L8Z6e6OGOBne91w+Kr6N+Lc0+p8P9g/Lf10tQn/oTRgIe V5va9CMnMKENXaNvEF5ulixG8J+FA/I2dsa+BI2pzfqrSWRhQl11Aeop1EAKA1YS OIHLH5TOgEMzSwrPxFxPBPpjSyX0UsdNlUPHe97mNWX93M/8q/OXueGqQB2gOX24 CA2OBJOa5R2Vf/Jw5/kxaORmqw7jRK4Sj8ufE9X2XyzEMnD+NfoqeR0Hx/pSDh6A iboejEbIa8GNxOyTg96MUSo1ewIDAQABo4ICnDCCApgwHQYDVR0OBBYEFA8D+UMI sVWsb08TzHAfHR9JSDBlMB8GA1UdIwQYMBaAFP/NINymjeQy8hkbe2MyhryYfkLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEQyNy8yQTYxQ0E4QUQz NTkxMUU2QjU1QUZBNzBDNEY5QUUwMi9fODBnM0thTjVETHlHUnQ3WXpLR3ZKaC1R dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL184MGczS2FONURMeUdSdDdZektHdkpoLVF1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBEMjcvMkE2MUNBOEFEMzU5MTFFNkI1NUFGQTcwQzRGOUFFMDIvMTg2RTE1MUFE MzVDMTFFNjlBMEJEQjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMDAMqnAwQEyqfAMA0GCSqGSIb3DQEBCwUAA4IBAQCoVTqY LWoKCD1w/P1d09858u+G+QxoQlsjxnELwcNN9rIPAqTECJFe0v+NT4FBnaJJIXmT QaoE/bxALMSp4NVdrJ6kc6jrnTKQhhlRHonhK9DkweOf9HOZxq2i3mBK4rgOvbvn 3lzSEKBBVzDYFCcb63OrAWQmTlds/w9xdrAIzGXeR7jOjKTL+tu5XPewRTLOolzr czFBS8f2vHcvWEbh22Ls15dSdlhJesnLmKOjKvRzD4oRiFi1Z/ML9Yt5OHR1iK5d 2e5daPZhXhuLXdQtWDI1LMg46+1sCGBdymPZuiZeBJDDafu/ZaP0AEGoLKSBq3n5 6f76PUpshkTpoQGA -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org