$ rpki-client -vvf rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/186E151AD35C11E69A0BDB79C4F9AE02.roa File: 186E151AD35C11E69A0BDB79C4F9AE02.roa (raw, json) Hash identifier: qeTmmubtmqrY2/e8m/Tsiuz4+UZv7NeRmzZbrXj/lVI= Subject key identifier: 52:47:B1:97:0E:31:93:7F:41:CA:B9:24:59:23:9C:36:06:06:4E:88 Certificate issuer: /CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Certificate serial: 1C90 Authority key identifier: FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/186E151AD35C11E69A0BDB79C4F9AE02.roa Signing time: Sat 02 Nov 2024 16:24:03 +0000 ROA not before: Sat 02 Nov 2024 16:24:03 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 5511 IP address blocks: 202.167.0.0/17 maxlen: 17 202.167.128.0/18 maxlen: 18 202.167.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:10:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7312 (0x1c90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Validity Not Before: Nov 2 16:24:03 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67265222-0114 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:26:42:fe:22:ad:76:31:c5:e1:9a:62:c2:3d: 63:91:c4:a6:a1:93:ff:a9:0e:51:e0:6b:29:9b:93: 30:f6:87:cb:49:84:f9:78:d5:69:f2:e5:70:f0:f5: 0a:7f:40:77:55:e3:10:b2:f1:90:65:d9:62:e5:47: 59:5d:a3:3a:8b:92:dd:df:ac:88:6a:6f:02:5e:82: 1a:fd:48:d7:d4:93:a0:d7:e9:35:43:81:f6:66:f0: 6e:9d:1e:9b:75:e6:c3:3b:44:a8:f0:da:11:8b:a2: 68:24:35:58:64:61:1d:6a:c5:7f:46:73:4f:b7:2b: 5f:96:a3:df:08:e7:20:9a:bd:5c:de:96:a7:29:22: 29:71:7a:ac:cc:ae:87:d6:eb:4d:b7:d9:6d:02:7a: b1:d8:99:85:76:55:95:f5:f3:f1:04:e1:4a:51:d4: 3a:35:40:84:34:39:21:3c:f8:48:4c:1e:2c:b9:60: d3:57:68:77:49:b0:f3:89:83:93:fe:2a:d5:d1:95: b7:cd:31:51:81:ee:23:b0:50:d3:e9:4a:20:b0:e5: a8:8e:a0:48:4c:d7:2c:66:b0:23:79:b3:6a:c4:28: 52:c3:bb:82:a1:73:dd:4d:48:ba:a3:48:3a:4f:12: 29:52:a3:e4:d9:57:6f:10:e6:58:0e:8d:21:fe:1a: 3e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:47:B1:97:0E:31:93:7F:41:CA:B9:24:59:23:9C:36:06:06:4E:88 X509v3 Authority Key Identifier: keyid:FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/186E151AD35C11E69A0BDB79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.167.0.0-202.167.207.255 Signature Algorithm: sha256WithRSAEncryption 30:da:5d:3b:69:b5:46:f7:a1:7d:b8:b4:da:46:03:f6:5f:e0: 14:a0:52:b5:70:54:34:34:7a:0e:dd:07:f9:74:3c:44:e2:a1: 82:a0:09:81:be:94:8e:48:cd:39:8b:1a:52:d8:51:f9:63:67: 06:e1:ca:ff:11:f3:c0:dc:77:ab:af:a4:20:de:c9:7a:a9:6a: 5f:3c:98:8f:b0:cf:ff:da:cb:4c:76:9e:7c:3a:a1:5e:6b:50: 73:42:04:e0:e2:00:27:bf:ba:32:1a:b1:15:de:fe:c7:27:42: 76:df:e1:e2:e3:51:39:ce:bd:44:e1:ac:15:96:0d:e2:e7:1e: 31:14:bc:48:10:5b:d7:ce:13:fa:91:c2:da:c4:4c:31:8a:50: 94:e5:d7:ea:8c:ac:ec:01:81:43:91:20:aa:9f:a1:3c:af:d8: 6e:e7:63:10:74:98:26:fe:5f:cc:df:e3:5d:b1:c1:1c:91:df: 1c:0b:c7:79:2a:ba:e5:b6:92:54:d6:30:c7:71:31:cf:ed:7b: e7:59:3d:91:6c:38:82:2d:fd:f7:89:fd:ad:3a:ee:1d:ff:2f: 25:fa:b9:6b:a6:b9:af:b4:a2:e7:d2:48:0b:64:2e:23:a7:9d: 7f:ef:d0:89:22:06:9a:2f:a2:b9:69:6b:9c:3e:de:af:75:11: a5:cc:28:b8 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICHJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBEMjcxMTAvBgNVBAUTKEZGQ0QyMERDQTY4REU0MzJGMjE5MUI3QjYzMzI4NkJD OTg3RTQyRUMwHhcNMjQxMTAyMTYyNDAzWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NTIyMi0wMTE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuSZC/iKtdjHF4Zpiwj1jkcSmoZP/qQ5R4Gspm5Mw9ofLSYT5eNVp8uVw8PUK f0B3VeMQsvGQZdli5UdZXaM6i5Ld36yIam8CXoIa/UjX1JOg1+k1Q4H2ZvBunR6b debDO0So8NoRi6JoJDVYZGEdasV/RnNPtytflqPfCOcgmr1c3panKSIpcXqszK6H 1utNt9ltAnqx2JmFdlWV9fPxBOFKUdQ6NUCENDkhPPhITB4suWDTV2h3SbDziYOT /irV0ZW3zTFRge4jsFDT6UogsOWojqBITNcsZrAjebNqxChSw7uCoXPdTUi6o0g6 TxIpUqPk2VdvEOZYDo0h/ho+6wIDAQABo4ICnDCCApgwHQYDVR0OBBYEFFJHsZcO MZN/Qcq5JFkjnDYGBk6IMB8GA1UdIwQYMBaAFP/NINymjeQy8hkbe2MyhryYfkLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEQyNy8yQTYxQ0E4QUQz NTkxMUU2QjU1QUZBNzBDNEY5QUUwMi9fODBnM0thTjVETHlHUnQ3WXpLR3ZKaC1R dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL184MGczS2FONURMeUdSdDdZektHdkpoLVF1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBEMjcvMkE2MUNBOEFEMzU5MTFFNkI1NUFGQTcwQzRGOUFFMDIvMTg2RTE1MUFE MzVDMTFFNjlBMEJEQjc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMDAMqnAwQEyqfAMA0GCSqGSIb3DQEBCwUAA4IBAQAw2l07 abVG96F9uLTaRgP2X+AUoFK1cFQ0NHoO3Qf5dDxE4qGCoAmBvpSOSM05ixpS2FH5 Y2cG4cr/EfPA3Herr6Qg3sl6qWpfPJiPsM//2stMdp58OqFea1BzQgTg4gAnv7oy GrEV3v7HJ0J23+Hi41E5zr1E4awVlg3i5x4xFLxIEFvXzhP6kcLaxEwxilCU5dfq jKzsAYFDkSCqn6E8r9hu52MQdJgm/l/M3+NdscEckd8cC8d5KrrltpJU1jDHcTHP 7XvnWT2RbDiCLf33if2tOu4d/y8l+rlrprmvtKLn0kgLZC4jp51/79CJIgaaL6K5 aWucPt6vdRGlzCi4 -----END CERTIFICATE-----Generated at Wed Nov 20 18:44:54 2024 by rpki-client on console-fra.rpki-client.org