$ rpki-client -vvf rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa File: B8370F3A5E6011EDB5361D3BC4F9AE02.roa (raw, json) Hash identifier: 2v1fNj4a/xWl8aWsyyllbFfz3S6+MQv77E5w5OZvxxo= Subject key identifier: A1:76:E2:2E:64:E1:0F:59:AB:B6:D0:06:31:52:D3:97:02:54:C2:9F Certificate issuer: /CN=A9155675/serialNumber=C7B1309D00872D0666396B4C23D8EF5C312C6BEB Certificate serial: 0138 Authority key identifier: C7:B1:30:9D:00:87:2D:06:66:39:6B:4C:23:D8:EF:5C:31:2C:6B:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa Signing time: Thu 27 Jun 2024 04:26:27 +0000 ROA not before: Thu 27 Jun 2024 04:26:27 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 45353 IP address blocks: 202.45.144.0/22 maxlen: 22 202.45.144.0/24 maxlen: 24 202.45.145.0/24 maxlen: 24 202.45.146.0/24 maxlen: 24 202.45.147.0/24 maxlen: 24 2001:df0:8b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.crl rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:01:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 312 (0x138) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155675/serialNumber=C7B1309D00872D0666396B4C23D8EF5C312C6BEB Validity Not Before: Jun 27 04:26:27 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667ce9f3-22c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:23:92:c7:9e:77:74:0c:20:68:08:fc:4a:e3: b7:61:39:8f:f7:2e:53:b4:53:1a:09:56:ca:f6:d1: 4a:d0:eb:47:30:25:5a:84:a8:b4:b2:79:98:81:95: 5a:55:5e:0e:d1:c2:4a:1c:0b:e0:d1:4b:bb:03:0e: 07:88:49:dc:01:6c:f2:b5:60:cc:13:84:59:1e:04: 1d:1f:d3:0c:68:c7:84:80:14:73:31:65:3f:55:76: e8:7d:11:0a:e9:1b:00:3a:d3:68:5d:87:0e:d2:d6: d9:fc:cf:86:cf:e5:f8:73:0d:0a:61:99:c9:33:94: c7:eb:31:23:3e:2f:56:51:b1:95:17:59:2d:b9:bc: a7:18:cc:6c:56:84:05:26:ee:9f:04:e3:b9:1c:94: 26:8b:cf:71:71:8e:7b:2a:dd:81:7d:aa:86:58:e0: af:33:8d:51:e9:37:08:74:f3:4e:08:68:fd:6c:f2: 99:36:3e:b6:cd:5a:71:00:10:38:16:fb:12:48:bb: 0e:24:da:25:a1:40:1a:05:98:5b:da:66:7a:1f:01: a3:8b:8a:40:ff:86:4e:52:e7:9a:b5:82:18:1c:30: 10:6b:d5:f8:71:81:2e:93:cc:27:e6:bc:ef:00:ea: f0:25:97:53:1e:57:70:a5:bc:cd:5b:18:cf:0b:6e: b4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:76:E2:2E:64:E1:0F:59:AB:B6:D0:06:31:52:D3:97:02:54:C2:9F X509v3 Authority Key Identifier: keyid:C7:B1:30:9D:00:87:2D:06:66:39:6B:4C:23:D8:EF:5C:31:2C:6B:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/x7EwnQCHLQZmOWtMI9jvXDEsa-s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/x7EwnQCHLQZmOWtMI9jvXDEsa-s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155675/6D11F5785E5C11ED9DDDD21DC4F9AE02/B8370F3A5E6011EDB5361D3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.144.0/22 IPv6: 2001:df0:8b::/48 Signature Algorithm: sha256WithRSAEncryption 29:04:3f:5d:ff:4d:44:dc:f2:c8:dd:62:e1:42:d6:ed:50:c6: be:05:2d:88:ba:53:19:2b:17:8a:45:cb:a9:a8:9e:e9:a3:d2: 85:2c:43:72:28:4f:96:2c:b4:fb:17:9b:54:84:b6:d0:8f:c7: e4:f3:7c:cd:f7:ef:73:97:24:3b:06:7a:8a:98:bb:db:a4:35: 4a:d1:1d:aa:d2:6e:0b:e8:62:42:7d:c6:10:49:a0:db:1d:75: e1:02:54:0e:d8:5a:d2:30:bd:9a:60:27:e2:09:80:d2:9f:9a: cc:ee:76:f8:b0:79:52:9d:a7:fc:81:34:e0:3a:10:e1:6e:07: 0a:01:36:6f:b7:84:1f:86:d8:ca:eb:88:68:d7:4a:56:51:34: 55:94:36:39:fe:79:f4:a2:1f:e1:7d:81:34:fd:77:fe:a0:46: 7d:ec:0a:03:3b:f0:3c:44:e8:18:6e:c0:d9:41:bd:83:b7:25: 52:ae:d5:1a:dd:3c:6d:ae:0a:98:c3:01:bd:ed:d5:c7:7f:e0: ee:82:75:49:9e:b5:7c:1e:da:8e:a9:a7:38:55:e5:ae:06:de: 6f:d6:f3:cd:c3:a4:49:70:51:f1:78:73:7c:06:d8:e9:6a:22: c7:d6:c4:15:98:66:c7:cc:22:32:13:ba:4a:71:de:24:aa:e8: a6:91:75:4d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICATgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU2NzUxMTAvBgNVBAUTKEM3QjEzMDlEMDA4NzJEMDY2NjM5NkI0QzIzRDhFRjVD MzEyQzZCRUIwHhcNMjQwNjI3MDQyNjI3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdjZTlmMy0yMmMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoiOSx553dAwgaAj8SuO3YTmP9y5TtFMaCVbK9tFK0OtHMCVahKi0snmYgZVa VV4O0cJKHAvg0Uu7Aw4HiEncAWzytWDME4RZHgQdH9MMaMeEgBRzMWU/VXbofREK 6RsAOtNoXYcO0tbZ/M+Gz+X4cw0KYZnJM5TH6zEjPi9WUbGVF1ktubynGMxsVoQF Ju6fBOO5HJQmi89xcY57Kt2BfaqGWOCvM41R6TcIdPNOCGj9bPKZNj62zVpxABA4 FvsSSLsOJNoloUAaBZhb2mZ6HwGji4pA/4ZOUueatYIYHDAQa9X4cYEuk8wn5rzv AOrwJZdTHldwpbzNWxjPC2602wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKF24i5k 4Q9Zq7bQBjFS05cCVMKfMB8GA1UdIwQYMBaAFMexMJ0Ahy0GZjlrTCPY71wxLGvr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTY3NS82RDExRjU3ODVF NUMxMUVEOUREREQyMURDNEY5QUUwMi94N0V3blFDSExRWm1PV3RNSTlqdlhERXNh LXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3g3RXduUUNITFFabU9XdE1JOWp2WERFc2Etcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU2NzUvNkQxMUY1Nzg1RTVDMTFFRDlEREREMjFEQzRGOUFFMDIvQjgzNzBGM0E1 RTYwMTFFREI1MzYxRDNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBALKLZAwDwQCAAIwCQMHACABDfAAizANBgkqhkiG9w0BAQsF AAOCAQEAKQQ/Xf9NRNzyyN1i4ULW7VDGvgUtiLpTGSsXikXLqaie6aPShSxDcihP liy0+xebVIS20I/H5PN8zffvc5ckOwZ6ipi726Q1StEdqtJuC+hiQn3GEEmg2x11 4QJUDtha0jC9mmAn4gmA0p+azO52+LB5Up2n/IE04DoQ4W4HCgE2b7eEH4bYyuuI aNdKVlE0VZQ2Of559KIf4X2BNP13/qBGfewKAzvwPEToGG7A2UG9g7clUq7VGt08 ba4KmMMBve3Vx3/g7oJ1SZ61fB7ajqmnOFXlrgbeb9bzzcOkSXBR8XhzfAbY6Woi x9bEFZhmx8wiMhO6SnHeJKroppF1TQ== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:39 2024 by rpki-client on console-ams.rpki-client.org