$ rpki-client -vvf rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/B36E0BFAB8C511EE9C927072C4F9AE02.roa File: B36E0BFAB8C511EE9C927072C4F9AE02.roa (raw, json) Hash identifier: x9GRsqT1r4p+1r+DiQJUITI9RcFAyXCGhnRIsXkFNWg= Subject key identifier: 73:C5:31:19:D0:6D:AA:C0:E3:54:A1:74:17:EB:F2:98:DC:2D:29:14 Certificate issuer: /CN=A9168946/serialNumber=918CB67A0262238DEF78FF288A45D9281F95D2EB Certificate serial: 52 Authority key identifier: 91:8C:B6:7A:02:62:23:8D:EF:78:FF:28:8A:45:D9:28:1F:95:D2:EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYy2egJiI43veP8oikXZKB-V0us.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/B36E0BFAB8C511EE9C927072C4F9AE02.roa Signing time: Fri 21 Jun 2024 07:30:34 +0000 ROA not before: Fri 21 Jun 2024 07:30:34 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 131239 IP address blocks: 202.14.82.0/23 maxlen: 24 202.14.84.0/24 maxlen: 24 202.27.72.0/22 maxlen: 24 202.36.197.0/24 maxlen: 24 202.36.246.0/24 maxlen: 24 202.36.248.0/22 maxlen: 24 202.36.252.0/23 maxlen: 24 202.36.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/kYy2egJiI43veP8oikXZKB-V0us.crl rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/kYy2egJiI43veP8oikXZKB-V0us.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYy2egJiI43veP8oikXZKB-V0us.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82 (0x52) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168946/serialNumber=918CB67A0262238DEF78FF288A45D9281F95D2EB Validity Not Before: Jun 21 07:30:34 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66752c1a-ae7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3a:fb:59:c6:00:74:fd:b7:b5:4b:b8:7f:68: f3:ba:fc:0e:eb:77:51:a1:6c:1d:84:ae:b2:13:9f: c6:8a:31:f0:16:6e:5e:00:8e:f6:0e:8d:f3:0f:fa: 73:c5:74:72:eb:c7:ff:3f:4a:e4:e0:1a:85:e3:58: 64:87:05:54:c3:0e:99:90:bb:47:e1:3d:51:70:e3: 3e:28:25:6f:cf:48:3c:ea:d2:2e:56:a7:e8:59:97: f4:d6:48:0b:58:a6:b7:36:c0:37:48:62:8b:26:f4: 12:fc:27:c4:61:47:75:ff:a7:a1:9a:0a:98:37:e0: db:27:e3:c4:10:1c:c0:d0:44:e6:e9:4e:ae:68:96: c9:e2:24:3d:68:0b:20:bf:3a:bd:64:e6:2f:81:68: b2:99:80:50:cd:c7:f0:66:24:7f:e7:28:0f:9a:3e: cf:ce:f9:dc:b1:61:57:5d:60:2c:3f:a8:87:61:d3: 9f:fd:93:a6:ca:63:ff:cd:5b:b9:d5:64:22:be:45: 46:8d:a9:df:d9:26:a2:6f:1b:47:e4:23:d5:fe:98: 49:cc:9b:21:9d:d9:9a:5e:9c:9e:3c:51:14:9c:b2: c6:af:e4:76:11:c2:34:e7:e5:83:be:27:63:a8:8c: 74:78:2e:a9:39:1f:ea:51:86:2e:1c:db:ff:b2:82: 34:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:C5:31:19:D0:6D:AA:C0:E3:54:A1:74:17:EB:F2:98:DC:2D:29:14 X509v3 Authority Key Identifier: keyid:91:8C:B6:7A:02:62:23:8D:EF:78:FF:28:8A:45:D9:28:1F:95:D2:EB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/kYy2egJiI43veP8oikXZKB-V0us.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kYy2egJiI43veP8oikXZKB-V0us.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168946/C4006A88B8C211EEB5F72B6DC4F9AE02/B36E0BFAB8C511EE9C927072C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.14.82.0-202.14.84.255 202.27.72.0/22 202.36.197.0/24 202.36.246.0/24 202.36.248.0-202.36.254.255 Signature Algorithm: sha256WithRSAEncryption 7a:fd:10:3a:54:5b:bc:af:08:b0:d2:85:d5:e4:2f:22:40:27: 14:4b:8e:08:70:3e:fb:47:76:2e:25:05:23:4e:d6:e7:bf:b7: 6f:5d:07:22:1c:5c:0b:d3:c6:a3:ab:c8:15:2e:89:f0:f3:1e: 48:32:91:43:4d:08:d8:b2:09:6f:42:2c:8f:9f:b2:65:26:23: 17:88:69:9a:1c:11:10:19:0a:b5:75:3e:7b:0b:36:28:bd:25: fc:27:47:22:f6:67:cc:97:bc:67:5a:9f:78:b9:5b:92:5b:15: 19:2a:b0:98:54:d9:2d:f1:55:3c:d1:6d:58:c5:6c:cb:4c:ed: 32:d4:32:83:1b:53:dd:ca:aa:29:76:ba:a8:b1:f9:85:2a:45: 21:15:8c:92:9e:67:3c:de:d2:b8:a9:00:e6:5d:04:58:85:97: ff:78:ed:99:df:02:c0:21:53:65:aa:8c:93:c1:a2:2a:52:31: a1:a7:10:36:0c:c9:e6:99:2c:23:18:2e:1d:ac:40:c9:a8:e7: 74:13:71:49:0b:e4:cb:58:7f:ae:39:f7:7b:cf:1d:3a:a8:88: f6:81:ee:10:c3:84:d0:00:cb:4e:3d:c9:4f:26:48:a9:0c:a9: bf:b3:cc:e2:d5:a2:68:91:ac:dc:4c:48:3e:61:b0:06:82:0d: 5b:dc:07:50 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgIBUjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 ODk0NjExMC8GA1UEBRMoOTE4Q0I2N0EwMjYyMjM4REVGNzhGRjI4OEE0NUQ5Mjgx Rjk1RDJFQjAeFw0yNDA2MjEwNzMwMzRaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NzUyYzFhLWFlN2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5OvtZxgB0/be1S7h/aPO6/A7rd1GhbB2ErrITn8aKMfAWbl4AjvYOjfMP+nPF dHLrx/8/SuTgGoXjWGSHBVTDDpmQu0fhPVFw4z4oJW/PSDzq0i5Wp+hZl/TWSAtY prc2wDdIYosm9BL8J8RhR3X/p6GaCpg34Nsn48QQHMDQRObpTq5olsniJD1oCyC/ Or1k5i+BaLKZgFDNx/BmJH/nKA+aPs/O+dyxYVddYCw/qIdh05/9k6bKY//NW7nV ZCK+RUaNqd/ZJqJvG0fkI9X+mEnMmyGd2ZpenJ48URScssav5HYRwjTn5YO+J2Oo jHR4Lqk5H+pRhi4c2/+ygjRlAgMBAAGjggK9MIICuTAdBgNVHQ4EFgQUc8UxGdBt qsDjVKF0F+vymNwtKRQwHwYDVR0jBBgwFoAUkYy2egJiI43veP8oikXZKB+V0usw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY4OTQ2L0M0MDA2QTg4QjhD MjExRUVCNUY3MkI2REM0RjlBRTAyL2tZeTJlZ0ppSTQzdmVQOG9pa1haS0ItVjB1 cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva1l5MmVnSmlJNDN2ZVA4b2lrWFpLQi1WMHVzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 ODk0Ni9DNDAwNkE4OEI4QzIxMUVFQjVGNzJCNkRDNEY5QUUwMi9CMzZFMEJGQUI4 QzUxMUVFOUM5MjcwNzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDBHBggrBgEFBQcBBwEB/wQ4 MDYwNAQCAAEwLjAMAwQByg5SAwQAyg5UAwQCyhtIAwQAyiTFAwQAyiT2MAwDBAPK JPgDBADKJP4wDQYJKoZIhvcNAQELBQADggEBAHr9EDpUW7yvCLDShdXkLyJAJxRL jghwPvtHdi4lBSNO1ue/t29dByIcXAvTxqOryBUuifDzHkgykUNNCNiyCW9CLI+f smUmIxeIaZocERAZCrV1PnsLNii9JfwnRyL2Z8yXvGdan3i5W5JbFRkqsJhU2S3x VTzRbVjFbMtM7TLUMoMbU93Kqil2uqix+YUqRSEVjJKeZzze0ripAOZdBFiFl/94 7ZnfAsAhU2WqjJPBoipSMaGnEDYMyeaZLCMYLh2sQMmo53QTcUkL5MtYf64593vP HTqoiPaB7hDDhNAAy049yU8mSKkMqb+zzOLVomiRrNxMSD5hsAaCDVvcB1A= -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:08 2024 by rpki-client on console-ams.rpki-client.org