$ rpki-client -vvf rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/3B9F9ED8FE9811EC9965A444C4F9AE02.roa File: 3B9F9ED8FE9811EC9965A444C4F9AE02.roa (raw, json) Hash identifier: ouFtzZYfiljlKOGtN7Lx+V8FqeIl/9AyXBh/466AOWs= Subject key identifier: 83:63:E4:F8:A6:41:AC:F8:81:3C:03:11:F2:DF:77:E4:5D:65:97:7D Certificate issuer: /CN=A9175251/serialNumber=6E5B24811386AA4A82D81F72C5DD2499286FBFD4 Certificate serial: 0633 Authority key identifier: 6E:5B:24:81:13:86:AA:4A:82:D8:1F:72:C5:DD:24:99:28:6F:BF:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/blskgROGqkqC2B9yxd0kmShvv9Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/3B9F9ED8FE9811EC9965A444C4F9AE02.roa Signing time: Wed 12 Jun 2024 23:52:37 +0000 ROA not before: Wed 12 Jun 2024 23:52:36 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 24393 IP address blocks: 202.122.40.0/24 maxlen: 24 202.122.41.0/24 maxlen: 24 202.122.42.0/24 maxlen: 24 202.122.43.0/24 maxlen: 24 202.122.44.0/24 maxlen: 24 202.122.45.0/24 maxlen: 24 202.122.46.0/24 maxlen: 24 202.122.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/blskgROGqkqC2B9yxd0kmShvv9Q.crl rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/blskgROGqkqC2B9yxd0kmShvv9Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/blskgROGqkqC2B9yxd0kmShvv9Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1587 (0x633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175251/serialNumber=6E5B24811386AA4A82D81F72C5DD2499286FBFD4 Validity Not Before: Jun 12 23:52:36 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=666a34c4-7784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:06:41:25:c3:2d:cd:b4:e0:54:47:46:ad:4c: d2:00:c1:34:37:c7:8b:1d:ec:dc:7c:8f:f2:56:5f: 95:df:43:8a:59:3c:06:fb:b8:b3:d5:5d:7d:1a:35: 87:dc:91:ac:53:ff:a4:9e:92:a0:7c:54:f2:2a:0e: 2d:a3:74:01:bd:b3:38:11:be:3f:2a:90:38:10:3b: 91:f4:b2:de:fe:61:91:44:9d:b0:4d:66:39:a5:46: 55:c1:9d:17:3f:ed:cd:91:a4:c3:16:6b:27:86:6b: 29:47:a5:be:a0:c7:f3:83:40:78:c2:c3:97:39:13: 04:cd:0c:2b:a9:4e:cb:60:b7:6e:92:d1:2a:0a:88: d1:be:d8:93:8f:3b:38:ba:bf:43:18:ce:30:c4:b0: 30:4d:8d:d7:e0:8b:bf:ee:c5:2c:af:e2:09:6a:14: 47:2e:a9:75:5d:c5:b4:bf:79:bc:b8:32:5c:83:58: 46:75:f7:1d:6e:d3:5e:c5:ab:4e:e4:ba:66:13:f9: 70:c9:0c:71:ec:3e:23:ec:63:63:46:71:b6:a0:94: c5:24:3c:b6:f6:27:53:90:07:50:c3:36:05:0b:63: a0:4c:b0:57:a1:45:b1:87:d1:c8:00:8a:55:24:d6: 90:e3:0d:6e:9e:92:d5:d2:9c:d5:f6:1f:67:78:1e: dc:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:63:E4:F8:A6:41:AC:F8:81:3C:03:11:F2:DF:77:E4:5D:65:97:7D X509v3 Authority Key Identifier: keyid:6E:5B:24:81:13:86:AA:4A:82:D8:1F:72:C5:DD:24:99:28:6F:BF:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/blskgROGqkqC2B9yxd0kmShvv9Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/blskgROGqkqC2B9yxd0kmShvv9Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175251/81BFA32253EF11EB97D38C16C4F9AE02/3B9F9ED8FE9811EC9965A444C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.122.40.0/21 Signature Algorithm: sha256WithRSAEncryption 43:43:f7:91:0d:7c:d4:08:bb:d8:42:8f:f2:1c:a1:81:c3:57: 1c:81:8e:6f:46:00:77:5e:1d:35:ff:c7:4b:0b:52:84:64:76: 84:6b:18:5c:f0:11:06:2b:88:d1:f6:dc:b0:eb:cb:47:0f:cd: 6f:27:fb:b5:4b:46:83:d9:92:52:4a:79:ac:61:c4:1f:88:79: b8:0a:56:5c:e7:cf:4d:e2:06:6e:f3:5e:39:90:d2:7e:bd:ce: 32:7f:ff:c1:bd:39:d5:66:53:e0:af:97:fa:33:34:af:c7:e4: 79:d6:4e:49:70:00:b7:ed:07:5c:7d:e2:c8:82:99:e3:a7:11: 63:c3:d9:70:c3:02:c2:f7:b5:9e:11:30:d1:22:b0:83:18:75: 66:42:e8:bd:ec:21:17:75:37:f4:4e:d9:56:82:76:4b:ad:fa: 49:2e:89:a9:f4:2b:20:db:3f:5a:3a:a5:10:d0:99:87:d4:99: 3a:d5:cc:fa:bd:15:a6:7a:e2:ec:1a:dd:10:72:cc:b4:29:e8: 26:d8:a5:f6:5d:b7:0b:2e:6d:97:04:95:07:48:b6:fe:99:e6: ab:13:93:84:70:0c:fd:85:44:fc:36:ad:08:eb:49:69:98:a9: c0:00:e0:72:5e:0d:12:0f:53:55:ff:ab:43:4d:a6:4c:81:32: 9c:7f:b5:52 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzUyNTExMTAvBgNVBAUTKDZFNUIyNDgxMTM4NkFBNEE4MkQ4MUY3MkM1REQyNDk5 Mjg2RkJGRDQwHhcNMjQwNjEyMjM1MjM2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjZhMzRjNC03Nzg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtgZBJcMtzbTgVEdGrUzSAME0N8eLHezcfI/yVl+V30OKWTwG+7iz1V19GjWH 3JGsU/+knpKgfFTyKg4to3QBvbM4Eb4/KpA4EDuR9LLe/mGRRJ2wTWY5pUZVwZ0X P+3NkaTDFmsnhmspR6W+oMfzg0B4wsOXORMEzQwrqU7LYLduktEqCojRvtiTjzs4 ur9DGM4wxLAwTY3X4Iu/7sUsr+IJahRHLql1XcW0v3m8uDJcg1hGdfcdbtNexatO 5LpmE/lwyQxx7D4j7GNjRnG2oJTFJDy29idTkAdQwzYFC2OgTLBXoUWxh9HIAIpV JNaQ4w1unpLV0pzV9h9neB7cgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFINj5Pim Qaz4gTwDEfLfd+RdZZd9MB8GA1UdIwQYMBaAFG5bJIEThqpKgtgfcsXdJJkob7/U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTI1MS84MUJGQTMyMjUz RUYxMUVCOTdEMzhDMTZDNEY5QUUwMi9ibHNrZ1JPR3FrcUMyQjl5eGQwa21TaHZ2 OVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Jsc2tnUk9HcWtxQzJCOXl4ZDBrbVNodnY5US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzUyNTEvODFCRkEzMjI1M0VGMTFFQjk3RDM4QzE2QzRGOUFFMDIvM0I5RjlFRDhG RTk4MTFFQzk5NjVBNDQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPKeigwDQYJKoZIhvcNAQELBQADggEBAEND95ENfNQIu9hC j/IcoYHDVxyBjm9GAHdeHTX/x0sLUoRkdoRrGFzwEQYriNH23LDry0cPzW8n+7VL RoPZklJKeaxhxB+IebgKVlznz03iBm7zXjmQ0n69zjJ//8G9OdVmU+Cvl/ozNK/H 5HnWTklwALftB1x94siCmeOnEWPD2XDDAsL3tZ4RMNEisIMYdWZC6L3sIRd1N/RO 2VaCdkut+kkuian0KyDbP1o6pRDQmYfUmTrVzPq9FaZ64uwa3RByzLQp6CbYpfZd twsubZcElQdItv6Z5qsTk4RwDP2FRPw2rQjrSWmYqcAA4HJeDRIPU1X/q0NNpkyB Mpx/tVI= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org