$ rpki-client -vvf rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/3866993C6A6711EF929E6773C4F9AE02.roa File: 3866993C6A6711EF929E6773C4F9AE02.roa (raw, json) Hash identifier: hKAcM7PRtQuRPjx0tWfk/T7bUGTXZ0S7TBNS8XkVkg0= Subject key identifier: 0B:A5:40:61:97:7F:1E:E2:EF:F7:4D:28:FA:7A:34:D4:22:16:8B:4B Certificate issuer: /CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Certificate serial: 06 Authority key identifier: 6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/3866993C6A6711EF929E6773C4F9AE02.roa Signing time: Wed 04 Sep 2024 02:41:43 +0000 ROA not before: Wed 04 Sep 2024 02:41:43 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 4621 IP address blocks: 202.44.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9173CCA/serialNumber=6FD5B7431E7150ED650F7F27A3DCF8C5CEAC7764 Validity Not Before: Sep 4 02:41:43 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66d7c8e7-5999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:1e:70:c3:ba:41:1e:0e:66:57:36:6a:3c:c9: 07:da:14:f0:79:e2:a9:27:fc:ea:e9:60:e2:46:76: 05:75:78:48:ba:aa:29:21:da:f9:63:c0:c3:2c:1a: dc:37:89:b6:14:a3:e8:bc:cf:2f:b5:be:74:9f:3d: 6e:97:43:fa:07:08:dc:4a:81:75:5a:bd:ef:12:c7: ce:29:3e:08:90:2b:84:8e:fa:79:fe:d2:5f:a5:7b: a2:74:47:d8:d5:1f:0e:10:14:56:06:6e:be:43:69: f0:5f:31:6e:78:c9:39:6b:3b:7a:74:ff:06:3d:15: 33:5a:6f:62:97:d7:15:84:d9:9d:f8:e7:c3:12:46: e3:c1:f3:eb:80:26:e1:a8:18:42:ad:c9:fe:01:01: 86:9a:d7:32:64:53:b6:04:c6:3d:0e:1e:cd:0a:cd: 8f:ad:7a:21:4f:c5:1b:04:68:7b:fd:f8:c9:0f:d7: 49:f8:e3:c3:8b:8f:f7:7d:c3:16:10:90:69:66:d6: 06:21:91:0c:e2:60:49:4c:fe:08:46:6f:0a:7d:d1: 64:7b:ac:5e:89:c2:1f:a7:72:82:c8:fd:4e:97:2f: 7f:42:ab:8a:34:e5:e8:b7:b6:2e:6f:b6:62:18:ee: a0:21:dc:0e:0a:42:08:21:36:cb:6f:a1:9b:da:1c: 5a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A5:40:61:97:7F:1E:E2:EF:F7:4D:28:FA:7A:34:D4:22:16:8B:4B X509v3 Authority Key Identifier: keyid:6F:D5:B7:43:1E:71:50:ED:65:0F:7F:27:A3:DC:F8:C5:CE:AC:77:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/b9W3Qx5xUO1lD38no9z4xc6sd2Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b9W3Qx5xUO1lD38no9z4xc6sd2Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9173CCA/1CA9B824654D11EFB44B7B58C4F9AE02/3866993C6A6711EF929E6773C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.44.128.0/24 Signature Algorithm: sha256WithRSAEncryption 70:41:f5:d8:d3:5f:16:a8:3a:bf:0c:9e:a1:bc:15:cd:aa:18: 3c:ec:35:72:b9:b7:5e:d5:05:b8:d2:8a:47:0e:bd:9c:b4:8f: b0:32:df:c5:02:32:e4:f4:ab:7d:34:74:2e:1c:a4:c3:1d:75: 6b:9b:e1:07:2b:14:b4:43:fb:b1:65:c9:93:18:01:ec:87:ab: b0:83:44:b1:b2:f1:28:91:2e:90:2b:57:bd:b8:aa:ed:f6:e4: a9:06:fc:d1:a4:f8:b2:5b:3a:45:71:d2:9b:82:23:95:31:80: 15:0a:fc:e7:ff:6f:3b:20:e1:d9:3d:69:4a:74:9c:46:2d:51: 58:31:22:41:f3:68:13:e5:9e:48:c9:69:fa:34:3b:ec:c5:9d: 8c:db:de:88:9d:62:43:be:e3:76:57:4b:19:45:9c:8b:64:05: 29:c8:0d:01:f1:05:33:d1:11:d6:f1:28:e5:1d:4c:8a:ef:6c: e5:b0:d6:54:a4:4d:09:a3:88:3f:2b:31:db:4f:bb:12:b4:a0: 3d:c2:a3:0b:0b:1c:02:bf:fe:f9:a0:41:84:2d:f1:99:ca:96: 54:d6:ee:3d:f9:40:e5:c7:03:ae:e8:04:8e:97:b7:92:c2:6b: cb:40:1c:3d:78:6e:7a:fd:d1:d5:83:6b:65:36:e8:1f:6e:ba: 4b:2d:f7:a5 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 M0NDQTExMC8GA1UEBRMoNkZENUI3NDMxRTcxNTBFRDY1MEY3RjI3QTNEQ0Y4QzVD RUFDNzc2NDAeFw0yNDA5MDQwMjQxNDNaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDdjOGU3LTU5OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnHnDDukEeDmZXNmo8yQfaFPB54qkn/OrpYOJGdgV1eEi6qikh2vljwMMsGtw3 ibYUo+i8zy+1vnSfPW6XQ/oHCNxKgXVave8Sx84pPgiQK4SO+nn+0l+le6J0R9jV Hw4QFFYGbr5DafBfMW54yTlrO3p0/wY9FTNab2KX1xWE2Z3458MSRuPB8+uAJuGo GEKtyf4BAYaa1zJkU7YExj0OHs0KzY+teiFPxRsEaHv9+MkP10n448OLj/d9wxYQ kGlm1gYhkQziYElM/ghGbwp90WR7rF6Jwh+ncoLI/U6XL39Cq4o05ei3ti5vtmIY 7qAh3A4KQgghNstvoZvaHFprAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUC6VAYZd/ HuLv900o+no01CIWi0swHwYDVR0jBBgwFoAUb9W3Qx5xUO1lD38no9z4xc6sd2Qw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTczQ0NBLzFDQTlCODI0NjU0 RDExRUZCNDRCN0I1OEM0RjlBRTAyL2I5VzNReDV4VU8xbEQzOG5vOXo0eGM2c2Qy US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYjlXM1F4NXhVTzFsRDM4bm85ejR4YzZzZDJRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 M0NDQS8xQ0E5QjgyNDY1NEQxMUVGQjQ0QjdCNThDNEY5QUUwMi8zODY2OTkzQzZB NjcxMUVGOTI5RTY3NzNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMosgDANBgkqhkiG9w0BAQsFAAOCAQEAcEH12NNfFqg6vwye obwVzaoYPOw1crm3XtUFuNKKRw69nLSPsDLfxQIy5PSrfTR0Lhykwx11a5vhBysU tEP7sWXJkxgB7IersINEsbLxKJEukCtXvbiq7fbkqQb80aT4sls6RXHSm4IjlTGA FQr85/9vOyDh2T1pSnScRi1RWDEiQfNoE+WeSMlp+jQ77MWdjNveiJ1iQ77jdldL GUWci2QFKcgNAfEFM9ER1vEo5R1Miu9s5bDWVKRNCaOIPysx20+7ErSgPcKjCwsc Ar/++aBBhC3xmcqWVNbuPflA5ccDrugEjpe3ksJry0AcPXhuev3R1YNrZTboH266 Sy33pQ== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:26 2024 by rpki-client on console-fra.rpki-client.org