$ rpki-client -vvf rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/9D181A24D78211EC944E227FC4F9AE02.roa File: 9D181A24D78211EC944E227FC4F9AE02.roa (raw, json) Hash identifier: yUMXKBsm+dh5a8mwbXbljjnmOf1V4J6P/dOjZa9dbcE= Subject key identifier: B3:0C:77:70:32:BD:A3:41:36:16:1A:CA:84:2E:3C:22:85:5E:3A:A4 Certificate issuer: /CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Certificate serial: 063D Authority key identifier: AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/9D181A24D78211EC944E227FC4F9AE02.roa Signing time: Sat 28 Sep 2024 22:42:00 +0000 ROA not before: Sat 28 Sep 2024 22:42:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 8576 IP address blocks: 202.89.20.0/23 maxlen: 23 202.89.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1597 (0x63d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915C07D/serialNumber=AADAA3C4411660DF5C3448A91C84AE5757A26E13 Validity Not Before: Sep 28 22:42:00 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66f88638-ddb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:53:93:e8:1e:5f:9b:0a:17:89:bc:d1:13:95: e2:1b:81:51:6a:ae:26:a4:8b:93:f6:7a:ae:54:04: 79:40:b9:95:88:c9:af:40:56:6b:87:44:16:d8:68: dc:3f:39:c4:d5:f2:9f:1c:c5:62:cf:96:7e:7e:ce: ec:ba:f4:d1:55:36:ef:1c:b0:a2:61:1d:6e:6d:10: 24:f2:10:01:1f:bf:11:a8:08:5c:55:22:dd:f8:bb: 03:58:d5:9e:78:2f:3c:32:f4:83:61:c7:d7:3f:4d: 07:f0:0a:b5:c9:b7:40:06:56:bd:0c:24:d4:a7:9e: 3e:9e:88:f0:72:9b:42:17:63:ab:40:9f:0a:83:42: f9:8c:2c:9b:09:0d:22:5d:1e:f5:d7:54:c6:b8:90: 78:85:12:18:23:49:7f:f4:e7:30:84:6d:5b:33:2f: e5:37:15:85:a1:3d:aa:17:5b:68:e4:98:86:b0:1e: 22:a9:39:22:63:fc:f4:c2:01:78:22:26:19:b3:a4: 1a:a9:d3:38:95:a6:b1:e2:fb:e9:a9:d1:bf:49:b2: 45:ac:5a:4f:c2:fd:07:40:8f:e2:1f:3b:f4:0c:16: fe:2f:36:4a:4b:b3:f4:25:09:b1:0d:a9:a3:d8:c9: b9:03:55:07:e5:1b:e4:00:31:3d:23:b7:5a:9f:58: e7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:0C:77:70:32:BD:A3:41:36:16:1A:CA:84:2E:3C:22:85:5E:3A:A4 X509v3 Authority Key Identifier: keyid:AA:DA:A3:C4:41:16:60:DF:5C:34:48:A9:1C:84:AE:57:57:A2:6E:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/qtqjxEEWYN9cNEipHISuV1eibhM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qtqjxEEWYN9cNEipHISuV1eibhM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915C07D/AB089F366B8711EBBD82661CC4F9AE02/9D181A24D78211EC944E227FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.89.20.0/23 202.89.23.0/24 Signature Algorithm: sha256WithRSAEncryption 37:bd:5c:2a:23:fd:76:7b:f4:a5:45:1a:57:3a:2d:10:d5:4d: d0:14:79:5c:de:e0:55:d0:77:b2:aa:5a:66:d7:f3:e5:c9:36: 66:32:f1:12:86:d0:4b:bb:c3:cb:52:97:e5:c7:1d:3e:bc:90: d8:54:42:9e:ff:00:d0:52:7b:9e:d5:db:f0:d3:2f:af:f0:f9: 33:76:20:bf:03:29:50:12:ce:f8:bd:cb:71:9b:05:3b:96:78: c4:ad:ca:5a:60:39:ab:9f:c4:43:f4:2b:22:15:b5:bd:41:46: 5b:54:09:27:fd:fc:6d:cd:ba:c0:7b:7f:97:68:30:57:aa:a1: 7a:d0:f7:20:34:10:57:f0:7c:4c:04:16:1e:3a:f2:bf:83:14: 11:19:10:91:36:0e:f4:f2:e4:a4:24:fa:e0:42:85:09:be:dc: f8:fc:9e:99:ac:53:8a:1b:0b:a2:84:ae:85:b3:6c:46:f8:eb: 4a:ce:e3:ab:78:b9:5c:f5:b4:77:c3:a0:4a:d9:0c:e3:d1:90: 65:15:a5:c7:d9:70:6e:ac:71:26:c4:be:3a:18:16:92:ca:42: 6b:c4:45:9e:35:78:a6:88:b0:9c:e2:c2:c5:42:48:7b:57:11: c0:34:52:84:ae:80:89:f9:a8:58:ef:54:09:4f:2b:bd:62:ea: 95:5e:9c:6c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBj0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NUMwN0QxMTAvBgNVBAUTKEFBREFBM0M0NDExNjYwREY1QzM0NDhBOTFDODRBRTU3 NTdBMjZFMTMwHhcNMjQwOTI4MjI0MjAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmY4ODYzOC1kZGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArFOT6B5fmwoXibzRE5XiG4FRaq4mpIuT9nquVAR5QLmViMmvQFZrh0QW2Gjc PznE1fKfHMViz5Z+fs7suvTRVTbvHLCiYR1ubRAk8hABH78RqAhcVSLd+LsDWNWe eC88MvSDYcfXP00H8Aq1ybdABla9DCTUp54+nojwcptCF2OrQJ8Kg0L5jCybCQ0i XR7111TGuJB4hRIYI0l/9OcwhG1bMy/lNxWFoT2qF1to5JiGsB4iqTkiY/z0wgF4 IiYZs6QaqdM4laax4vvpqdG/SbJFrFpPwv0HQI/iHzv0DBb+LzZKS7P0JQmxDamj 2Mm5A1UH5RvkADE9I7dan1jn9QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLMMd3Ay vaNBNhYayoQuPCKFXjqkMB8GA1UdIwQYMBaAFKrao8RBFmDfXDRIqRyErldXom4T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1QzA3RC9BQjA4OUYzNjZC ODcxMUVCQkQ4MjY2MUNDNEY5QUUwMi9xdHFqeEVFV1lOOWNORWlwSElTdVYxZWli aE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3F0cWp4RUVXWU45Y05FaXBISVN1VjFlaWJoTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NUMwN0QvQUIwODlGMzY2Qjg3MTFFQkJEODI2NjFDQzRGOUFFMDIvOUQxODFBMjRE NzgyMTFFQzk0NEUyMjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAHKWRQDBADKWRcwDQYJKoZIhvcNAQELBQADggEBADe9XCoj /XZ79KVFGlc6LRDVTdAUeVze4FXQd7KqWmbX8+XJNmYy8RKG0Eu7w8tSl+XHHT68 kNhUQp7/ANBSe57V2/DTL6/w+TN2IL8DKVASzvi9y3GbBTuWeMStylpgOaufxEP0 KyIVtb1BRltUCSf9/G3NusB7f5doMFeqoXrQ9yA0EFfwfEwEFh468r+DFBEZEJE2 DvTy5KQk+uBChQm+3Pj8npmsU4obC6KEroWzbEb460rO46t4uVz1tHfDoErZDOPR kGUVpcfZcG6scSbEvjoYFpLKQmvERZ41eKaIsJziwsVCSHtXEcA0UoSugIn5qFjv VAlPK71i6pVenGw= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:40 2024 by rpki-client on console-ams.rpki-client.org