$ rpki-client -vvf rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa File: D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa (raw, json) Hash identifier: l8Gj0m9EkG6Fdaxl7SxKrM92rnUZHTkx+j8ukMd+sL0= Subject key identifier: 2A:A3:99:8C:36:C1:31:79:00:1F:18:05:00:98:0E:E1:17:C8:DC:5C Certificate issuer: /CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Certificate serial: D9 Authority key identifier: 0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa Signing time: Wed 01 May 2024 06:39:33 +0000 ROA not before: Wed 01 May 2024 06:39:33 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 38829 IP address blocks: 118.127.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 06:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 217 (0xd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9168C73/serialNumber=0A6152834E1299C11CF6E07865F765B238656389 Validity Not Before: May 1 06:39:33 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6631e3a4-1cb6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:6a:d9:89:85:3a:83:7c:fa:12:68:69:a0:83: 02:63:32:60:0e:c8:2a:b4:a5:8c:4c:3b:87:aa:7f: b3:8d:3c:4c:57:ee:3f:21:c5:38:f1:82:c1:4d:33: 01:b3:a0:85:38:c9:9d:d4:86:cb:cc:4a:6d:df:a5: e8:f6:d5:aa:b2:a2:1f:97:c8:54:e5:c3:21:01:53: af:76:40:f2:65:51:67:be:54:00:05:b5:49:53:0a: 9b:d2:7d:6c:ce:5b:cf:4a:e5:76:6e:ec:69:15:7c: 69:f7:a9:2c:61:49:9e:9f:3c:97:27:34:97:9f:81: 36:9e:c1:7f:a4:7d:53:c0:9a:92:48:59:cd:76:b4: 7f:fb:47:80:34:ca:c3:4c:42:fc:c7:fa:16:e7:d3: f2:29:ee:02:a7:4c:fd:0c:3f:c3:8d:8b:bf:54:ae: fb:1c:62:f2:b6:e8:83:c8:c5:11:4d:36:29:34:f1: b5:a9:39:e9:94:cf:5b:a1:9c:e4:c0:ea:50:15:2e: b2:45:ab:ae:16:09:0b:5f:b4:fc:fd:e1:cd:c2:18: db:4b:b5:2f:58:9e:62:28:84:75:eb:ea:82:01:8d: 35:11:79:2d:65:b1:15:61:9c:c8:02:ea:84:e1:4b: df:91:bb:8f:a6:13:aa:c4:8d:c3:c4:29:0c:d6:41: fb:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:A3:99:8C:36:C1:31:79:00:1F:18:05:00:98:0E:E1:17:C8:DC:5C X509v3 Authority Key Identifier: keyid:0A:61:52:83:4E:12:99:C1:1C:F6:E0:78:65:F7:65:B2:38:65:63:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/CmFSg04SmcEc9uB4ZfdlsjhlY4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CmFSg04SmcEc9uB4ZfdlsjhlY4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9168C73/8E5C9CC0C31411ED97A0A37FC4F9AE02/D8EC2D84C6FF11EDA93A1D43C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.127.160.0/21 Signature Algorithm: sha256WithRSAEncryption 5b:67:ef:ac:a4:09:ae:c7:be:95:14:60:b4:de:b6:5a:f8:66: 10:7b:3c:9c:21:ad:12:fc:a5:a3:c7:af:52:f1:4a:d4:cc:3b: ab:6b:c4:79:ca:d6:f5:ed:50:11:37:ab:32:dc:f4:3e:cb:bb: 73:04:c2:5e:9c:98:93:1b:4f:54:65:a4:59:8b:d5:d9:dc:b9: 70:21:95:30:34:b8:94:c3:f3:0d:ba:fc:b9:48:ed:42:69:f4: c1:fd:82:35:95:27:ab:e4:7e:e7:ba:3e:29:c2:6d:a1:4a:59: 3f:d4:1a:58:94:a4:ef:9f:c7:e4:63:15:11:54:a2:8d:8b:3a: 7a:7c:63:4d:22:64:c0:bd:5a:7f:e4:18:d6:36:32:29:db:e6: 35:74:90:78:67:a2:f3:28:6e:0d:c9:da:6a:fe:9a:e7:5a:8e: 61:d3:72:72:b1:1a:9e:98:5d:8c:19:b0:e4:af:6a:e8:46:8e: 34:1b:57:78:9d:f0:b5:39:d0:10:04:f5:26:5a:9e:7c:0e:17: d8:c9:82:73:b4:d8:c6:a5:6f:f3:a2:c7:97:ea:fd:eb:ed:1d: e4:7f:86:1d:11:ea:8c:6b:38:8d:58:b4:8f:62:c4:14:53:83: c9:a6:e1:e6:b9:dd:e3:1c:9c:0b:5f:37:a1:5b:5a:61:7a:c5: 34:56:e1:03 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICANkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjhDNzMxMTAvBgNVBAUTKDBBNjE1MjgzNEUxMjk5QzExQ0Y2RTA3ODY1Rjc2NUIy Mzg2NTYzODkwHhcNMjQwNTAxMDYzOTMzWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxZTNhNC0xY2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAomrZiYU6g3z6EmhpoIMCYzJgDsgqtKWMTDuHqn+zjTxMV+4/IcU48YLBTTMB s6CFOMmd1IbLzEpt36Xo9tWqsqIfl8hU5cMhAVOvdkDyZVFnvlQABbVJUwqb0n1s zlvPSuV2buxpFXxp96ksYUmenzyXJzSXn4E2nsF/pH1TwJqSSFnNdrR/+0eANMrD TEL8x/oW59PyKe4Cp0z9DD/DjYu/VK77HGLytuiDyMURTTYpNPG1qTnplM9boZzk wOpQFS6yRauuFgkLX7T8/eHNwhjbS7UvWJ5iKIR16+qCAY01EXktZbEVYZzIAuqE 4UvfkbuPphOqxI3DxCkM1kH7iwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCqjmYw2 wTF5AB8YBQCYDuEXyNxcMB8GA1UdIwQYMBaAFAphUoNOEpnBHPbgeGX3ZbI4ZWOJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OEM3My84RTVDOUNDMEMz MTQxMUVEOTdBMEEzN0ZDNEY5QUUwMi9DbUZTZzA0U21jRWM5dUI0WmZkbHNqaGxZ NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NtRlNnMDRTbWNFYzl1QjRaZmRsc2pobFk0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjhDNzMvOEU1QzlDQzBDMzE0MTFFRDk3QTBBMzdGQzRGOUFFMDIvRDhFQzJEODRD NkZGMTFFREE5M0ExRDQzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAN2f6AwDQYJKoZIhvcNAQELBQADggEBAFtn76ykCa7HvpUU YLTetlr4ZhB7PJwhrRL8paPHr1LxStTMO6trxHnK1vXtUBE3qzLc9D7Lu3MEwl6c mJMbT1RlpFmL1dncuXAhlTA0uJTD8w26/LlI7UJp9MH9gjWVJ6vkfue6PinCbaFK WT/UGliUpO+fx+RjFRFUoo2LOnp8Y00iZMC9Wn/kGNY2Minb5jV0kHhnovMobg3J 2mr+mudajmHTcnKxGp6YXYwZsOSvauhGjjQbV3id8LU50BAE9SZannwOF9jJgnO0 2Malb/Oix5fq/evtHeR/hh0R6oxrOI1YtI9ixBRTg8mm4ea53eMcnAtfN6FbWmF6 xTRW4QM= -----END CERTIFICATE-----Generated at Mon May 27 08:08:01 2024 by rpki-client on console-ams.rpki-client.org