$ rpki-client -vvf rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/335B84084C9611E7B9D8512DC4F9AE02.roa File: 335B84084C9611E7B9D8512DC4F9AE02.roa (raw, json) Hash identifier: lfXXFKA1BewBY10R96banzWyiiHGZ5/wupAGz1DuT5w= Subject key identifier: 8F:75:F6:D4:8A:EC:91:B3:DE:B2:A8:52:9B:29:16:18:D9:60:27:B8 Certificate issuer: /CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Certificate serial: 1C8F Authority key identifier: FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/335B84084C9611E7B9D8512DC4F9AE02.roa Signing time: Sat 02 Nov 2024 16:24:01 +0000 ROA not before: Sat 02 Nov 2024 16:24:01 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 51964 IP address blocks: 202.167.0.0/17 maxlen: 32 202.167.128.0/18 maxlen: 32 202.167.192.0/20 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:54:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7311 (0x1c8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9150D27/serialNumber=FFCD20DCA68DE432F2191B7B633286BC987E42EC Validity Not Before: Nov 2 16:24:01 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=67265221-ce3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:91:84:55:c4:4b:c9:04:93:46:f3:37:d1:d8: ca:4c:90:66:06:71:eb:51:7b:74:c4:b7:a6:86:bb: c5:74:dd:5e:d5:95:b3:46:dc:c8:15:33:11:84:d4: 34:e9:2e:34:ce:ed:1c:0d:f1:8a:c5:9c:9a:2e:98: 7b:87:4c:2b:32:f8:98:fa:99:3f:be:ef:bd:78:d1: 40:39:cb:2f:3c:4e:8d:d1:e2:9c:c2:6a:9c:68:6c: 88:2e:8b:55:75:8e:79:86:3b:8a:b5:b7:91:c8:5a: 47:f1:cc:b4:3c:2c:58:de:87:de:87:a9:16:96:78: 82:2c:01:2f:b9:8b:3d:20:31:be:aa:62:5f:e0:ef: 37:37:d7:9d:d7:9b:96:b1:53:6a:fd:e3:ce:18:9f: 3c:f8:ea:c6:12:f2:71:d0:50:9e:b6:10:c1:d9:ca: 93:55:f3:88:01:a3:69:f6:da:4c:00:41:e5:41:0a: 86:f6:61:9f:99:f5:d2:cb:18:a2:f5:ae:11:84:15: 01:f0:19:3a:c5:59:6b:a9:2d:85:7f:b9:7f:a8:92: 9b:90:46:af:b1:9b:54:81:36:00:9e:6b:8d:6e:b1: 16:c3:38:15:5f:38:62:1d:d5:a3:07:a5:de:97:6f: 04:60:2e:a4:40:20:fb:ad:25:61:60:95:b6:b8:f4: 1c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:75:F6:D4:8A:EC:91:B3:DE:B2:A8:52:9B:29:16:18:D9:60:27:B8 X509v3 Authority Key Identifier: keyid:FF:CD:20:DC:A6:8D:E4:32:F2:19:1B:7B:63:32:86:BC:98:7E:42:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/_80g3KaN5DLyGRt7YzKGvJh-Quw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_80g3KaN5DLyGRt7YzKGvJh-Quw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9150D27/2A61CA8AD35911E6B55AFA70C4F9AE02/335B84084C9611E7B9D8512DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.167.0.0-202.167.207.255 Signature Algorithm: sha256WithRSAEncryption 8b:20:e4:d4:7a:44:ab:4c:51:22:2c:03:56:5e:56:12:05:cf: 82:c8:f5:36:9e:c0:13:50:b3:8a:ae:fc:a2:b0:70:92:f9:40: 60:12:8a:d4:57:fd:99:d0:ec:63:79:00:c7:14:6e:7e:fd:62: 15:cf:74:9a:28:59:16:12:f1:33:29:1c:98:8c:7a:b1:b4:1e: 74:6e:b4:fd:0e:77:b0:b0:89:1d:ae:4e:0c:47:66:5d:d5:f3: 91:ab:43:d0:4c:9f:1d:49:5b:3f:70:9d:9e:52:c2:38:5d:55: 55:17:de:d7:1c:94:34:32:90:5c:11:88:93:17:fe:8c:b8:d7: 25:fb:68:14:b0:05:72:05:85:63:02:ad:20:95:45:4d:bc:44: c9:e1:dc:0c:0a:a1:86:61:22:14:be:55:15:db:ea:91:16:34: b1:df:b2:27:be:84:e1:5b:67:75:d9:bd:03:12:1f:9e:17:88: cb:e7:e6:e6:df:68:d5:e2:77:3e:10:cf:03:a4:85:08:31:bf: 34:50:51:15:57:4f:74:a6:d9:43:2b:e2:53:e5:93:0e:13:76: 4d:87:60:b6:7f:8c:61:7b:7f:9c:d8:4c:98:b3:6c:72:9a:06: 8c:22:00:f6:9c:06:b0:67:ee:bd:f9:09:19:1f:bd:00:51:df: a0:c5:66:1c -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICHI8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTBEMjcxMTAvBgNVBAUTKEZGQ0QyMERDQTY4REU0MzJGMjE5MUI3QjYzMzI4NkJD OTg3RTQyRUMwHhcNMjQxMTAyMTYyNDAxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI2NTIyMS1jZTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx5GEVcRLyQSTRvM30djKTJBmBnHrUXt0xLemhrvFdN1e1ZWzRtzIFTMRhNQ0 6S40zu0cDfGKxZyaLph7h0wrMviY+pk/vu+9eNFAOcsvPE6N0eKcwmqcaGyILotV dY55hjuKtbeRyFpH8cy0PCxY3ofeh6kWlniCLAEvuYs9IDG+qmJf4O83N9ed15uW sVNq/ePOGJ88+OrGEvJx0FCethDB2cqTVfOIAaNp9tpMAEHlQQqG9mGfmfXSyxii 9a4RhBUB8Bk6xVlrqS2Ff7l/qJKbkEavsZtUgTYAnmuNbrEWwzgVXzhiHdWjB6Xe l28EYC6kQCD7rSVhYJW2uPQcUQIDAQABo4ICnDCCApgwHQYDVR0OBBYEFI919tSK 7JGz3rKoUpspFhjZYCe4MB8GA1UdIwQYMBaAFP/NINymjeQy8hkbe2MyhryYfkLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MEQyNy8yQTYxQ0E4QUQz NTkxMUU2QjU1QUZBNzBDNEY5QUUwMi9fODBnM0thTjVETHlHUnQ3WXpLR3ZKaC1R dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL184MGczS2FONURMeUdSdDdZektHdkpoLVF1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTBEMjcvMkE2MUNBOEFEMzU5MTFFNkI1NUFGQTcwQzRGOUFFMDIvMzM1Qjg0MDg0 Qzk2MTFFN0I5RDg1MTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMDAMqnAwQEyqfAMA0GCSqGSIb3DQEBCwUAA4IBAQCLIOTU ekSrTFEiLANWXlYSBc+CyPU2nsATULOKrvyisHCS+UBgEorUV/2Z0OxjeQDHFG5+ /WIVz3SaKFkWEvEzKRyYjHqxtB50brT9DnewsIkdrk4MR2Zd1fORq0PQTJ8dSVs/ cJ2eUsI4XVVVF97XHJQ0MpBcEYiTF/6MuNcl+2gUsAVyBYVjAq0glUVNvETJ4dwM CqGGYSIUvlUV2+qRFjSx37InvoThW2d12b0DEh+eF4jL5+bm32jV4nc+EM8DpIUI Mb80UFEVV090ptlDK+JT5ZMOE3ZNh2C2f4xhe3+c2EyYs2xymgaMIgD2nAawZ+69 +QkZH70AUd+gxWYc -----END CERTIFICATE-----Generated at Sun Nov 24 17:20:04 2024 by rpki-client on console-fra.rpki-client.org