$ rpki-client -vvf rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/BBF0DD5216CD11EDBB046C79C4F9AE02.roa File: BBF0DD5216CD11EDBB046C79C4F9AE02.roa (raw, json) Hash identifier: axhlzcql8Um5s2iVqGj/BuPhDZVy8siOPCHeHdpqbOU= Subject key identifier: C9:A0:DC:2E:E4:D4:E7:BE:C4:15:58:DD:5C:D4:67:58:C2:EF:33:A1 Certificate issuer: /CN=A9156740/serialNumber=E2BBAD393158A0674C6949EC3B8A0B73F86029A2 Certificate serial: 01E2 Authority key identifier: E2:BB:AD:39:31:58:A0:67:4C:69:49:EC:3B:8A:0B:73:F8:60:29:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4rutOTFYoGdMaUnsO4oLc_hgKaI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/BBF0DD5216CD11EDBB046C79C4F9AE02.roa Signing time: Tue 03 Sep 2024 03:47:10 +0000 ROA not before: Tue 03 Sep 2024 03:47:10 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 4648 IP address blocks: 202.27.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4rutOTFYoGdMaUnsO4oLc_hgKaI.crl rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4rutOTFYoGdMaUnsO4oLc_hgKaI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4rutOTFYoGdMaUnsO4oLc_hgKaI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156740 Validity Not Before: Sep 3 03:47:10 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d686bd-cbe0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:9d:96:64:4f:0b:4f:a2:54:a9:e4:50:63:b6: 7e:6b:8d:b8:56:21:2a:0b:60:66:e6:e8:90:22:86: 49:8a:f8:1c:0c:f3:99:4d:00:c6:e3:c0:78:0a:cf: ba:88:1a:a8:30:ee:19:af:29:9c:09:f9:8f:5a:12: 22:34:5a:44:bc:a9:60:a9:ef:fe:d6:73:2d:ef:b1: 0f:33:9c:ae:02:78:12:75:ea:ec:12:0e:e4:55:25: 86:36:f7:99:fb:d7:33:4e:d9:63:a2:29:61:e3:8f: 66:56:e4:f5:f6:f1:ea:23:03:87:90:27:86:fb:e5: b4:8b:e8:b9:b2:fe:af:61:5a:44:b5:e8:c1:0e:9f: 2a:24:42:51:6b:5f:e1:c1:ff:24:d3:e3:22:4a:c3: 34:99:4d:90:03:78:af:71:ba:c3:8e:39:b6:6f:87: ce:6d:57:f1:32:43:cd:70:52:5f:51:a8:b5:46:a3: f8:ea:1b:2a:38:32:b5:0e:68:ff:ee:d2:73:e4:2c: 33:ce:ba:8c:1b:0e:73:27:5b:89:e5:2f:e1:2e:f0: 51:58:13:1e:d2:55:4e:d7:5d:40:cb:87:41:5e:b3: e8:c6:5d:cc:8f:d4:8d:20:c9:40:7d:77:f6:0c:b5: 06:34:ca:18:d0:ef:70:50:5c:75:e8:e7:7a:a1:04: 71:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A0:DC:2E:E4:D4:E7:BE:C4:15:58:DD:5C:D4:67:58:C2:EF:33:A1 X509v3 Authority Key Identifier: keyid:E2:BB:AD:39:31:58:A0:67:4C:69:49:EC:3B:8A:0B:73:F8:60:29:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4rutOTFYoGdMaUnsO4oLc_hgKaI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4rutOTFYoGdMaUnsO4oLc_hgKaI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/BBF0DD5216CD11EDBB046C79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.27.146.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:fe:e9:ff:06:28:c4:de:45:e8:b4:9a:87:db:f4:43:04:f9: 5f:cf:ad:dc:6a:bb:0b:bb:f8:20:76:95:a1:1c:0e:55:00:b8: 51:1f:a7:39:b9:f3:c0:10:5f:0c:39:a4:d5:d1:bb:b4:a1:6e: 98:08:cb:22:05:17:af:2c:e3:4d:e1:f3:ff:55:a3:af:4c:78: d6:f8:e1:66:dc:5b:9c:43:b3:6a:8e:0b:d9:dc:89:5d:84:b7: c5:e9:15:54:6e:9c:95:f9:2c:02:0c:dc:1b:85:7b:f1:56:15: 98:4f:05:29:1a:34:5e:72:12:5e:99:3c:e0:59:c2:0c:f0:06: cc:70:9c:3f:d2:e9:94:96:5b:9f:9a:8f:a9:71:76:72:bc:93: c8:fd:52:7d:76:3f:c5:05:94:6c:f6:f6:7e:fd:39:81:74:f7: b0:71:56:cb:9b:85:5b:0d:23:d2:99:68:a8:1e:96:62:f0:27: aa:01:a9:52:59:ee:be:71:33:d4:8d:fd:ca:5e:e8:d5:cd:5c: 37:f8:78:53:19:c6:51:29:7b:91:e8:b6:9a:ff:42:e5:8a:f0: 37:00:84:28:33:f2:90:ed:77:99:93:98:21:79:90:b7:4a:0d: 2a:b8:d4:13:43:68:01:aa:23:1e:f8:3b:d5:b2:87:4c:56:21: d1:be:e3:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY3NDAxMTAvBgNVBAUTKEUyQkJBRDM5MzE1OEEwNjc0QzY5NDlFQzNCOEEwQjcz Rjg2MDI5QTIwHhcNMjQwOTAzMDM0NzEwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2ODZiZC1jYmUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApJ2WZE8LT6JUqeRQY7Z+a424ViEqC2Bm5uiQIoZJivgcDPOZTQDG48B4Cs+6 iBqoMO4ZrymcCfmPWhIiNFpEvKlgqe/+1nMt77EPM5yuAngSdersEg7kVSWGNveZ +9czTtljoilh449mVuT19vHqIwOHkCeG++W0i+i5sv6vYVpEtejBDp8qJEJRa1/h wf8k0+MiSsM0mU2QA3ivcbrDjjm2b4fObVfxMkPNcFJfUai1RqP46hsqODK1Dmj/ 7tJz5CwzzrqMGw5zJ1uJ5S/hLvBRWBMe0lVO111Ay4dBXrPoxl3Mj9SNIMlAfXf2 DLUGNMoY0O9wUFx16Od6oQRxYwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMmg3C7k 1Oe+xBVY3VzUZ1jC7zOhMB8GA1UdIwQYMBaAFOK7rTkxWKBnTGlJ7DuKC3P4YCmi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njc0MC8zNTI4QjBDQzE2 QzAxMUVEODAwODlBMjFDNEY5QUUwMi80cnV0T1RGWW9HZE1hVW5zTzRvTGNfaGdL YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRydXRPVEZZb0dkTWFVbnNPNG9MY19oZ0thSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY3NDAvMzUyOEIwQ0MxNkMwMTFFRDgwMDg5QTIxQzRGOUFFMDIvQkJGMERENTIx NkNEMTFFREJCMDQ2Qzc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKG5IwDQYJKoZIhvcNAQELBQADggEBAHv+6f8GKMTeRei0 mofb9EME+V/Prdxquwu7+CB2laEcDlUAuFEfpzm588AQXww5pNXRu7ShbpgIyyIF F68s403h8/9Vo69MeNb44WbcW5xDs2qOC9nciV2Et8XpFVRunJX5LAIM3BuFe/FW FZhPBSkaNF5yEl6ZPOBZwgzwBsxwnD/S6ZSWW5+aj6lxdnK8k8j9Un12P8UFlGz2 9n79OYF097BxVsubhVsNI9KZaKgelmLwJ6oBqVJZ7r5xM9SN/cpe6NXNXDf4eFMZ xlEpe5Hotpr/QuWK8DcAhCgz8pDtd5mTmCF5kLdKDSq41BNDaAGqIx74O9Wyh0xW IdG+4+0= -----END CERTIFICATE-----Generated at Sun Feb 16 22:09:55 2025 by rpki-client