$ rpki-client -vvf rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/2DFEDC68A39711ED936DC309C4F9AE02.roa File: 2DFEDC68A39711ED936DC309C4F9AE02.roa (raw, json) Hash identifier: XOo6dcp8eD4xyiMuPrhDZby3Mw2ti6J9G/lG82mZUMU= Subject key identifier: 88:23:92:84:9C:00:DE:0A:DE:6C:47:8D:64:FC:B8:DA:C3:E9:1A:01 Certificate issuer: /CN=A9176190/serialNumber=3DE7EFC046A67B9925BBBBDC6132B12975DB4A6D Certificate serial: 07CC Authority key identifier: 3D:E7:EF:C0:46:A6:7B:99:25:BB:BB:DC:61:32:B1:29:75:DB:4A:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PefvwEame5klu7vcYTKxKXXbSm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/2DFEDC68A39711ED936DC309C4F9AE02.roa Signing time: Thu 10 Aug 2023 21:18:32 +0000 ROA not before: Thu 10 Aug 2023 21:18:32 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 149282 IP address blocks: 202.43.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/PefvwEame5klu7vcYTKxKXXbSm0.crl rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/PefvwEame5klu7vcYTKxKXXbSm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PefvwEame5klu7vcYTKxKXXbSm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1996 (0x7cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176190/serialNumber=3DE7EFC046A67B9925BBBBDC6132B12975DB4A6D Validity Not Before: Aug 10 21:18:32 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64d55427-25fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:31:3e:78:1c:2a:6e:d5:70:5d:6b:af:b3:f8: 90:c5:cc:0b:eb:27:89:54:2c:10:5b:90:db:6b:aa: 00:3a:1f:95:c5:b4:87:5d:fa:5c:fd:52:34:b3:cb: 09:c0:5b:15:ce:3d:eb:cc:80:2b:88:f8:4e:8a:83: a8:4a:79:6b:97:f6:b1:07:35:68:6c:06:3a:54:5c: a0:bc:84:57:cd:2e:7c:90:de:d4:37:bd:0f:1e:d6: 48:80:e4:5d:83:72:da:97:d3:aa:d7:c3:e7:c3:7f: f9:11:8e:54:85:0d:57:4a:69:f8:b6:00:12:58:e4: 97:38:83:eb:cf:d0:3a:be:a8:b4:47:6d:7b:7c:05: fe:c5:ba:4e:37:c4:0f:bd:a5:d0:15:29:39:ca:14: 31:ce:19:e0:c2:64:ae:55:7e:3f:df:fa:f7:3c:79: 8d:9b:67:b0:35:b8:9e:03:b3:be:79:2d:1d:95:69: 44:bd:ec:81:8a:a4:bd:57:8e:3a:f7:32:8b:18:5e: 9f:7f:1c:47:a2:58:f2:71:d2:1d:6c:32:b6:58:75: 07:f8:b4:a9:3a:d4:72:81:ae:92:68:c0:e1:70:97: 6e:46:8c:dc:2f:45:71:51:a6:91:ee:ba:f9:87:e8: 9f:00:a5:12:3c:e3:5b:4a:1d:67:49:2f:10:11:ff: d1:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:23:92:84:9C:00:DE:0A:DE:6C:47:8D:64:FC:B8:DA:C3:E9:1A:01 X509v3 Authority Key Identifier: keyid:3D:E7:EF:C0:46:A6:7B:99:25:BB:BB:DC:61:32:B1:29:75:DB:4A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/PefvwEame5klu7vcYTKxKXXbSm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PefvwEame5klu7vcYTKxKXXbSm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/2DFEDC68A39711ED936DC309C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.227.0/24 Signature Algorithm: sha256WithRSAEncryption 25:ac:ee:51:72:00:ee:38:68:1b:30:41:f7:5e:c0:8b:25:0e: 5f:35:76:5c:df:66:e2:91:c9:a9:23:17:1f:70:0e:fd:f2:ad: 93:c6:b0:38:0c:70:a6:1e:73:94:65:1e:dc:02:b4:dc:a9:e5: 55:89:59:b7:8b:94:c4:0e:ae:1f:af:16:db:9b:13:86:68:c5: 54:e7:1b:0d:34:99:ec:b4:2f:c3:31:ca:68:d6:da:cd:4b:d8: b2:02:0e:a1:15:3f:d4:cb:71:f8:59:23:5a:9e:f9:5e:04:3f: 3f:73:d7:99:31:bc:d9:30:97:0f:8d:eb:61:7c:ee:c1:9c:a7: e7:3a:25:41:ef:2d:fb:70:e4:f2:53:ae:95:5b:0d:15:21:0a: b4:35:d9:a5:b0:c4:10:bb:3e:fe:27:99:9a:23:9f:d0:98:67: b5:2c:e0:12:4f:b1:93:53:4a:04:ec:79:d3:63:db:0d:b2:d0: bd:73:a3:86:63:c0:6b:c0:2a:ca:dc:09:ec:ef:16:eb:d6:e3: be:c9:c7:a4:f1:48:b6:7b:69:d4:13:c9:e2:68:21:63:35:76: 37:90:23:0f:29:9a:dc:1b:a8:c2:89:c2:14:09:07:12:8a:a6: 0c:99:6c:6c:b1:4d:d8:8e:12:c8:0a:4c:0a:2a:94:e8:3c:4e: 0c:95:2d:59 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB8wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYxOTAxMTAvBgNVBAUTKDNERTdFRkMwNDZBNjdCOTkyNUJCQkJEQzYxMzJCMTI5 NzVEQjRBNkQwHhcNMjMwODEwMjExODMyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ1NTQyNy0yNWZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAljE+eBwqbtVwXWuvs/iQxcwL6yeJVCwQW5Dba6oAOh+VxbSHXfpc/VI0s8sJ wFsVzj3rzIAriPhOioOoSnlrl/axBzVobAY6VFygvIRXzS58kN7UN70PHtZIgORd g3Lal9Oq18Pnw3/5EY5UhQ1XSmn4tgASWOSXOIPrz9A6vqi0R217fAX+xbpON8QP vaXQFSk5yhQxzhngwmSuVX4/3/r3PHmNm2ewNbieA7O+eS0dlWlEveyBiqS9V446 9zKLGF6ffxxHoljycdIdbDK2WHUH+LSpOtRyga6SaMDhcJduRozcL0VxUaaR7rr5 h+ifAKUSPONbSh1nSS8QEf/RSwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIgjkoSc AN4K3mxHjWT8uNrD6RoBMB8GA1UdIwQYMBaAFD3n78BGpnuZJbu73GEysSl120pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjE5MC9DMzczMDBFOEFF MTgxMUVBQTUwOTAwNzJDNEY5QUUwMi9QZWZ2d0VhbWU1a2x1N3ZjWVRLeEtYWGJT bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlZnZ3RWFtZTVrbHU3dmNZVEt4S1hYYlNtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzYxOTAvQzM3MzAwRThBRTE4MTFFQUE1MDkwMDcyQzRGOUFFMDIvMkRGRURDNjhB Mzk3MTFFRDkzNkRDMzA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKK+MwDQYJKoZIhvcNAQELBQADggEBACWs7lFyAO44aBsw QfdewIslDl81dlzfZuKRyakjFx9wDv3yrZPGsDgMcKYec5RlHtwCtNyp5VWJWbeL lMQOrh+vFtubE4ZoxVTnGw00mey0L8MxymjW2s1L2LICDqEVP9TLcfhZI1qe+V4E Pz9z15kxvNkwlw+N62F87sGcp+c6JUHvLftw5PJTrpVbDRUhCrQ12aWwxBC7Pv4n mZojn9CYZ7Us4BJPsZNTSgTsedNj2w2y0L1zo4ZjwGvAKsrcCezvFuvW477Jx6Tx SLZ7adQTyeJoIWM1djeQIw8pmtwbqMKJwhQJBxKKpgyZbGyxTdiOEsgKTAoqlOg8 TgyVLVk= -----END CERTIFICATE-----Generated at Sun May 26 22:43:31 2024 by rpki-client on console-fra.rpki-client.org