$ rpki-client -vvf rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/EC75126616CA11ED8E290A59C4F9AE02.roa File: EC75126616CA11ED8E290A59C4F9AE02.roa (raw, json) Hash identifier: ldX/DKDOg9xZhESj3T5OZ1Y87w44jU1f3a2RytTmEgo= Subject key identifier: 2D:E9:03:9F:9E:BA:FC:A2:D5:D5:6A:9B:F5:64:DF:7B:9D:8B:4F:B0 Certificate issuer: /CN=A9156740/serialNumber=E2BBAD393158A0674C6949EC3B8A0B73F86029A2 Certificate serial: 01E1 Authority key identifier: E2:BB:AD:39:31:58:A0:67:4C:69:49:EC:3B:8A:0B:73:F8:60:29:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4rutOTFYoGdMaUnsO4oLc_hgKaI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/EC75126616CA11ED8E290A59C4F9AE02.roa Signing time: Tue 03 Sep 2024 03:47:09 +0000 ROA not before: Tue 03 Sep 2024 03:47:09 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 24324 IP address blocks: 202.27.170.0/24 maxlen: 24 202.27.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4rutOTFYoGdMaUnsO4oLc_hgKaI.crl rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4rutOTFYoGdMaUnsO4oLc_hgKaI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4rutOTFYoGdMaUnsO4oLc_hgKaI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Mar 2025 01:29:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 481 (0x1e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9156740 Validity Not Before: Sep 3 03:47:09 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d686bd-8eb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:31:e3:a6:cf:f3:0e:ba:23:f7:e6:19:42:f6: aa:22:a4:90:27:15:d4:08:67:6c:b4:a3:50:20:d0: 86:f3:0d:0a:53:db:e3:d0:77:72:04:30:ec:b5:11: 9f:23:3c:42:fc:ed:47:66:59:fa:f6:70:03:0a:bc: 4e:aa:95:70:19:2a:74:18:0b:12:21:3b:8d:83:ca: c2:0e:76:60:69:b6:4a:6a:03:bc:39:3b:d7:41:24: 1e:c7:9a:8a:bb:20:2b:73:70:27:e9:7b:cd:44:b9: f8:ce:84:f1:2c:c0:78:b8:09:66:6e:f7:af:b0:f8: 06:2a:b8:32:2b:8c:15:22:7d:ee:43:01:01:35:b5: ee:34:e8:f6:52:8e:1c:3e:a7:c1:0e:6e:f6:7b:74: 79:07:ac:e5:d8:dc:70:52:6f:1a:28:60:d6:70:e7: 7d:7f:37:fa:70:ec:75:67:48:27:d6:cb:45:70:2a: 5e:bb:74:35:50:0d:3b:98:2b:e4:4a:2c:30:fa:d0: 47:1b:f7:59:a7:b3:43:f4:00:a7:b7:f7:65:b4:72: 5c:c8:c3:b2:dd:a6:ba:07:1a:0a:90:a3:0b:cf:00: e8:a2:db:ba:79:0d:cb:d5:6a:ec:53:e9:24:6a:51: 93:fb:dd:66:a8:23:d8:37:e1:a9:12:e7:b4:d9:aa: 03:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E9:03:9F:9E:BA:FC:A2:D5:D5:6A:9B:F5:64:DF:7B:9D:8B:4F:B0 X509v3 Authority Key Identifier: keyid:E2:BB:AD:39:31:58:A0:67:4C:69:49:EC:3B:8A:0B:73:F8:60:29:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/4rutOTFYoGdMaUnsO4oLc_hgKaI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4rutOTFYoGdMaUnsO4oLc_hgKaI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9156740/3528B0CC16C011ED80089A21C4F9AE02/EC75126616CA11ED8E290A59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.27.170.0/23 Signature Algorithm: sha256WithRSAEncryption 25:33:f6:52:06:89:01:96:e9:9a:ac:38:45:ad:25:1b:fb:36: 88:d2:50:e1:27:35:93:87:c8:ee:bf:57:86:c3:0a:fa:83:9e: 00:00:62:e5:90:d1:a6:63:64:6d:3e:9e:fa:ed:38:a5:f1:77: d5:72:af:e4:15:e0:7f:d0:3e:92:8f:e2:b6:2b:05:6c:13:45: 30:ea:84:0a:c1:dd:2c:7b:dc:8c:24:1e:e5:f7:a8:16:7c:e2: a8:d8:6f:9c:7d:d7:70:a4:19:99:96:66:0c:52:56:95:56:9b: af:3a:6f:fb:ad:3b:b4:9a:29:c1:44:e6:b8:62:57:60:3f:e8: 91:95:1a:33:29:f0:15:c2:a8:7f:73:52:3f:36:91:55:b8:60: dd:58:bc:44:a7:10:f4:ee:63:00:0a:3c:c4:b5:24:a5:9b:c2: 90:86:60:88:63:e0:a1:37:98:ba:ce:4b:cc:03:94:52:1c:6f: 64:61:d9:85:f9:ae:99:c0:f6:47:a8:f2:eb:cd:ee:cc:0d:74: 1d:4b:00:60:5d:57:68:fc:42:21:06:dd:90:a0:92:d0:86:a2: e2:25:5e:99:f7:90:a6:4d:11:5f:32:6e:56:bf:b0:04:01:62: c4:e5:5e:8a:67:c4:1b:89:03:1d:a6:cc:5f:28:5b:f0:e5:54: 2f:02:f9:60 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY3NDAxMTAvBgNVBAUTKEUyQkJBRDM5MzE1OEEwNjc0QzY5NDlFQzNCOEEwQjcz Rjg2MDI5QTIwHhcNMjQwOTAzMDM0NzA5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2ODZiZC04ZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyjHjps/zDroj9+YZQvaqIqSQJxXUCGdstKNQINCG8w0KU9vj0HdyBDDstRGf IzxC/O1HZln69nADCrxOqpVwGSp0GAsSITuNg8rCDnZgabZKagO8OTvXQSQex5qK uyArc3An6XvNRLn4zoTxLMB4uAlmbvevsPgGKrgyK4wVIn3uQwEBNbXuNOj2Uo4c PqfBDm72e3R5B6zl2NxwUm8aKGDWcOd9fzf6cOx1Z0gn1stFcCpeu3Q1UA07mCvk Siww+tBHG/dZp7ND9ACnt/dltHJcyMOy3aa6BxoKkKMLzwDootu6eQ3L1WrsU+kk alGT+91mqCPYN+GpEue02aoDuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFC3pA5+e uvyi1dVqm/Vk33udi0+wMB8GA1UdIwQYMBaAFOK7rTkxWKBnTGlJ7DuKC3P4YCmi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1Njc0MC8zNTI4QjBDQzE2 QzAxMUVEODAwODlBMjFDNEY5QUUwMi80cnV0T1RGWW9HZE1hVW5zTzRvTGNfaGdL YUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRydXRPVEZZb0dkTWFVbnNPNG9MY19oZ0thSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY3NDAvMzUyOEIwQ0MxNkMwMTFFRDgwMDg5QTIxQzRGOUFFMDIvRUM3NTEyNjYx NkNBMTFFRDhFMjkwQTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKG6owDQYJKoZIhvcNAQELBQADggEBACUz9lIGiQGW6Zqs OEWtJRv7NojSUOEnNZOHyO6/V4bDCvqDngAAYuWQ0aZjZG0+nvrtOKXxd9Vyr+QV 4H/QPpKP4rYrBWwTRTDqhArB3Sx73IwkHuX3qBZ84qjYb5x913CkGZmWZgxSVpVW m686b/utO7SaKcFE5rhiV2A/6JGVGjMp8BXCqH9zUj82kVW4YN1YvESnEPTuYwAK PMS1JKWbwpCGYIhj4KE3mLrOS8wDlFIcb2Rh2YX5rpnA9keo8uvN7swNdB1LAGBd V2j8QiEG3ZCgktCGouIlXpn3kKZNEV8ybla/sAQBYsTlXopnxBuJAx2mzF8oW/Dl VC8C+WA= -----END CERTIFICATE-----Generated at Thu Mar 13 21:48:56 2025 by rpki-client