$ rpki-client -vvf rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/2DFEDC68A39711ED936DC309C4F9AE02.roa File: 2DFEDC68A39711ED936DC309C4F9AE02.roa (raw, json) Hash identifier: WXRoqSuJ7ylbw7K72AAOsaJLTW5zfW38lPIwxiTLRCE= Subject key identifier: B3:23:73:EC:F1:37:63:87:35:7E:22:BA:C0:E2:16:3E:E7:31:74:B9 Certificate issuer: /CN=A9176190/serialNumber=3DE7EFC046A67B9925BBBBDC6132B12975DB4A6D Certificate serial: 08A4 Authority key identifier: 3D:E7:EF:C0:46:A6:7B:99:25:BB:BB:DC:61:32:B1:29:75:DB:4A:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PefvwEame5klu7vcYTKxKXXbSm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/2DFEDC68A39711ED936DC309C4F9AE02.roa Signing time: Thu 22 Aug 2024 20:58:58 +0000 ROA not before: Thu 22 Aug 2024 20:58:58 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 149282 IP address blocks: 202.43.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/PefvwEame5klu7vcYTKxKXXbSm0.crl rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/PefvwEame5klu7vcYTKxKXXbSm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PefvwEame5klu7vcYTKxKXXbSm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2212 (0x8a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9176190 Validity Not Before: Aug 22 20:58:58 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66c7a692-c8c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9e:63:1c:a7:65:64:df:a7:89:4c:5c:a3:33: 1d:1b:fb:08:e4:7d:6b:b8:e5:8f:8a:85:34:52:2c: f0:8a:8d:49:89:dd:d2:a8:c5:55:b1:5c:9c:77:72: d6:18:d7:c0:cc:6a:7b:6c:3b:66:0a:3b:3f:0d:b1: 5a:f2:d4:0c:45:1b:42:89:c5:f5:79:c5:7f:bb:44: 20:29:fe:bd:79:ac:fc:59:4a:4b:7b:e8:a8:24:59: bf:1e:b3:9d:0e:53:9a:33:08:7f:27:f3:99:1f:39: 33:78:16:a6:fc:c7:f6:63:ef:a5:c5:09:6e:a8:db: 3a:f3:eb:45:66:2c:eb:5c:57:84:1a:d2:23:b5:16: bf:bf:6b:80:64:b8:b3:de:58:14:f8:a7:bd:e3:ff: ba:9b:93:32:82:f0:c5:9f:60:c2:dc:38:30:35:a5: e7:b4:de:79:db:6c:bf:e4:08:a1:db:07:21:90:b0: be:f9:1b:79:71:53:5b:be:7b:b2:04:56:94:a1:16: 9e:5b:81:71:36:20:0d:f5:79:91:5d:e1:74:d6:b4: a4:3d:60:1f:f7:53:a3:d9:22:06:c7:a5:dc:02:ce: ab:6f:fd:d3:b4:4a:32:94:30:d0:e3:16:25:5d:80: c6:3f:b1:2d:7f:c8:d5:0b:c9:4d:e5:fb:e0:02:90: 5c:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:23:73:EC:F1:37:63:87:35:7E:22:BA:C0:E2:16:3E:E7:31:74:B9 X509v3 Authority Key Identifier: keyid:3D:E7:EF:C0:46:A6:7B:99:25:BB:BB:DC:61:32:B1:29:75:DB:4A:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/PefvwEame5klu7vcYTKxKXXbSm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PefvwEame5klu7vcYTKxKXXbSm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9176190/C37300E8AE1811EAA5090072C4F9AE02/2DFEDC68A39711ED936DC309C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.43.227.0/24 Signature Algorithm: sha256WithRSAEncryption 18:25:f6:e0:c5:2a:f0:86:a6:58:f8:57:50:8f:b8:e6:a2:9b: b2:da:58:02:e0:f3:4f:a0:02:ab:1a:3c:d4:0e:3e:60:bd:b0: e8:62:8a:9e:4a:a2:2b:31:63:c3:7b:0b:3d:03:67:91:ad:cc: 98:7d:8f:92:5c:87:bc:d1:5f:9b:1b:cd:36:b4:62:c1:01:bf: ae:0f:3b:10:b3:3b:c6:c9:ac:56:3f:3d:2d:dc:8d:17:67:7a: 78:89:2b:c2:58:1c:f6:ed:2c:97:dd:7a:3f:05:ee:6f:f6:e4: 39:19:0b:5f:e2:fc:76:fb:a8:6b:57:ab:7d:0f:4a:2f:95:1f: 93:1b:ca:95:cd:85:a8:b5:2f:fe:f8:20:2e:f1:f3:09:ba:e7: 08:95:5c:8d:ed:b4:d4:aa:18:bc:00:8b:08:17:78:c2:a9:d3: 4e:68:9d:58:e2:cd:be:8d:8e:f5:33:3f:07:1e:79:f9:1e:6f: 8a:88:51:9f:38:f8:3c:a7:7e:fd:ea:a1:fe:5e:14:93:8e:ce: d4:20:14:59:eb:34:f4:de:e8:a1:fa:a1:e9:7f:33:55:24:4d: 63:c8:70:09:dc:f7:8d:68:3e:aa:96:34:3f:57:44:88:d4:95: 65:1a:7a:ff:20:d9:c2:6b:7a:40:44:eb:0d:7b:9c:32:e4:43: 9a:5f:4e:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCKQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzYxOTAxMTAvBgNVBAUTKDNERTdFRkMwNDZBNjdCOTkyNUJCQkJEQzYxMzJCMTI5 NzVEQjRBNkQwHhcNMjQwODIyMjA1ODU4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmM3YTY5Mi1jOGM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJ5jHKdlZN+niUxcozMdG/sI5H1ruOWPioU0Uizwio1Jid3SqMVVsVycd3LW GNfAzGp7bDtmCjs/DbFa8tQMRRtCicX1ecV/u0QgKf69eaz8WUpLe+ioJFm/HrOd DlOaMwh/J/OZHzkzeBam/Mf2Y++lxQluqNs68+tFZizrXFeEGtIjtRa/v2uAZLiz 3lgU+Ke94/+6m5MygvDFn2DC3DgwNaXntN5522y/5Aih2wchkLC++Rt5cVNbvnuy BFaUoRaeW4FxNiAN9XmRXeF01rSkPWAf91Oj2SIGx6XcAs6rb/3TtEoylDDQ4xYl XYDGP7Etf8jVC8lN5fvgApBcZwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLMjc+zx N2OHNX4iusDiFj7nMXS5MB8GA1UdIwQYMBaAFD3n78BGpnuZJbu73GEysSl120pt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NjE5MC9DMzczMDBFOEFF MTgxMUVBQTUwOTAwNzJDNEY5QUUwMi9QZWZ2d0VhbWU1a2x1N3ZjWVRLeEtYWGJT bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BlZnZ3RWFtZTVrbHU3dmNZVEt4S1hYYlNtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzYxOTAvQzM3MzAwRThBRTE4MTFFQUE1MDkwMDcyQzRGOUFFMDIvMkRGRURDNjhB Mzk3MTFFRDkzNkRDMzA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKK+MwDQYJKoZIhvcNAQELBQADggEBABgl9uDFKvCGplj4 V1CPuOaim7LaWALg80+gAqsaPNQOPmC9sOhiip5KoisxY8N7Cz0DZ5GtzJh9j5Jc h7zRX5sbzTa0YsEBv64POxCzO8bJrFY/PS3cjRdneniJK8JYHPbtLJfdej8F7m/2 5DkZC1/i/Hb7qGtXq30PSi+VH5MbypXNhai1L/74IC7x8wm65wiVXI3ttNSqGLwA iwgXeMKp005onVjizb6NjvUzPwceefkeb4qIUZ84+Dynfv3qof5eFJOOztQgFFnr NPTe6KH6oel/M1UkTWPIcAnc941oPqqWND9XRIjUlWUaev8g2cJrekBE6w17nDLk Q5pfTgg= -----END CERTIFICATE-----Generated at Mon Feb 17 07:16:01 2025 by rpki-client