$ rpki-client -vvf rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/1DD85DA2386311EFB10A6A1CC4F9AE02.roa File: 1DD85DA2386311EFB10A6A1CC4F9AE02.roa (raw, json) Hash identifier: m5kSGhrJRH6V+BSI/nDOijPwwgFXAlDgzZ+g7LzKVFQ= Subject key identifier: 58:DF:E1:A8:1B:B3:1F:35:D0:53:C5:17:A2:3F:E4:F9:77:BE:1E:5C Certificate issuer: /CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Certificate serial: 02 Authority key identifier: 22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/1DD85DA2386311EFB10A6A1CC4F9AE02.roa Signing time: Tue 02 Jul 2024 11:06:23 +0000 ROA not before: Tue 02 Jul 2024 11:06:23 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 9466 IP address blocks: 202.1.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:18:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178EA7/serialNumber=22A62C14D2BD32E3E596D8A3E62BBC3274468F99 Validity Not Before: Jul 2 11:06:23 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6683df2e-ccd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fe:2c:71:13:d3:50:09:e6:ea:eb:ec:fb:5c: 73:c1:92:97:eb:b0:1d:26:50:31:91:ae:27:96:1d: 27:82:5e:8b:7b:af:f3:a1:6e:d9:69:cf:c8:c2:ec: 40:5b:64:5a:d5:94:66:75:51:5f:64:1d:57:1d:f8: c1:ea:bc:10:50:d1:24:26:fe:fd:df:10:ff:46:68: b3:a5:f2:1b:5a:8d:b5:90:3e:ad:3c:7a:a6:a1:b5: 05:51:ff:16:a3:03:0d:29:c9:16:d4:8b:a4:63:cf: 16:97:97:b5:51:65:58:06:23:c2:34:65:2a:9a:71: d2:15:03:74:c1:88:c8:d2:da:49:3d:fc:28:da:3b: c8:fa:62:a0:24:0b:00:a8:56:37:ed:97:71:25:3a: 8b:78:ad:40:ff:22:f5:e8:2d:32:98:f6:bd:4a:75: 9c:59:ca:7c:c0:cb:a5:a5:14:05:68:85:03:06:0e: 93:3a:58:de:38:a0:02:93:ed:3d:34:ae:8c:d7:f4: 99:9e:2a:81:77:86:be:9c:3d:a4:09:ee:a6:01:ea: 6f:b2:30:a4:f7:7d:61:5e:b8:bf:20:e0:c2:18:b0: 67:0f:37:db:85:31:7b:e5:43:7b:9e:4f:e1:11:30: 1e:1d:67:98:09:e8:e4:0f:55:8a:f1:eb:3b:0c:39: e7:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:DF:E1:A8:1B:B3:1F:35:D0:53:C5:17:A2:3F:E4:F9:77:BE:1E:5C X509v3 Authority Key Identifier: keyid:22:A6:2C:14:D2:BD:32:E3:E5:96:D8:A3:E6:2B:BC:32:74:46:8F:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/IqYsFNK9MuPlltij5iu8MnRGj5k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IqYsFNK9MuPlltij5iu8MnRGj5k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178EA7/B1B3E2D6386211EF9E17E86FC4F9AE02/1DD85DA2386311EFB10A6A1CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.1.128.0/19 Signature Algorithm: sha256WithRSAEncryption 8d:30:d6:44:70:27:2a:5e:6b:f7:1a:26:43:a5:6a:aa:5a:ce: c9:91:f2:fe:6a:7a:3b:76:50:b7:84:50:84:87:ef:ae:fc:49: fb:ef:56:fb:24:f4:a9:80:be:32:c4:fd:fe:12:dd:ed:95:21: 37:92:9f:8c:23:40:28:29:8e:9d:08:e8:43:89:cb:5d:46:20: 55:65:81:6b:b9:60:f3:74:06:ad:f1:c9:73:8e:af:0e:5e:bf: a7:98:37:14:52:7a:5a:03:65:e5:6e:70:b3:4b:54:ae:4c:db: 0c:b3:43:f8:1d:5e:a1:41:0a:7c:1b:4f:e9:b2:60:bd:58:a6: 75:8a:12:cb:65:63:db:88:6d:a4:81:52:b1:79:24:34:9d:fc: bd:fe:fa:a3:12:e0:af:0f:b0:0c:1f:b3:b3:f3:d1:7e:22:a7: 69:62:dc:2c:b3:04:f9:2f:41:0b:47:4a:98:d1:bf:c1:e4:f4: cb:f5:8a:27:35:f3:fc:d8:55:08:3f:44:0a:43:90:b2:6b:9a: 15:e4:2e:96:7a:c7:a7:26:fd:18:fe:eb:62:5b:60:ee:4f:e2: ab:a5:6b:9b:53:4d:ee:49:98:02:c8:cc:0b:9d:f4:bf:ec:db: f1:28:a6:22:e6:40:5f:ba:35:93:c3:24:06:3e:41:59:f9:a0: f7:6a:ae:a6 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OEVBNzExMC8GA1UEBRMoMjJBNjJDMTREMkJEMzJFM0U1OTZEOEEzRTYyQkJDMzI3 NDQ2OEY5OTAeFw0yNDA3MDIxMTA2MjNaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODNkZjJlLWNjZDQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC9/ixxE9NQCebq6+z7XHPBkpfrsB0mUDGRrieWHSeCXot7r/Ohbtlpz8jC7EBb ZFrVlGZ1UV9kHVcd+MHqvBBQ0SQm/v3fEP9GaLOl8htajbWQPq08eqahtQVR/xaj Aw0pyRbUi6RjzxaXl7VRZVgGI8I0ZSqacdIVA3TBiMjS2kk9/CjaO8j6YqAkCwCo Vjftl3ElOot4rUD/IvXoLTKY9r1KdZxZynzAy6WlFAVohQMGDpM6WN44oAKT7T00 rozX9JmeKoF3hr6cPaQJ7qYB6m+yMKT3fWFeuL8g4MIYsGcPN9uFMXvlQ3ueT+ER MB4dZ5gJ6OQPVYrx6zsMOeeHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUWN/hqBuz HzXQU8UXoj/k+Xe+HlwwHwYDVR0jBBgwFoAUIqYsFNK9MuPlltij5iu8MnRGj5kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc4RUE3L0IxQjNFMkQ2Mzg2 MjExRUY5RTE3RTg2RkM0RjlBRTAyL0lxWXNGTks5TXVQbGx0aWo1aXU4TW5SR2o1 ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSXFZc0ZOSzlNdVBsbHRpajVpdThNblJHajVrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OEVBNy9CMUIzRTJENjM4NjIxMUVGOUUxN0U4NkZDNEY5QUUwMi8xREQ4NURBMjM4 NjMxMUVGQjEwQTZBMUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEBcoBgDANBgkqhkiG9w0BAQsFAAOCAQEAjTDWRHAnKl5r9xom Q6VqqlrOyZHy/mp6O3ZQt4RQhIfvrvxJ++9W+yT0qYC+MsT9/hLd7ZUhN5KfjCNA KCmOnQjoQ4nLXUYgVWWBa7lg83QGrfHJc46vDl6/p5g3FFJ6WgNl5W5ws0tUrkzb DLND+B1eoUEKfBtP6bJgvVimdYoSy2Vj24htpIFSsXkkNJ38vf76oxLgrw+wDB+z s/PRfiKnaWLcLLME+S9BC0dKmNG/weT0y/WKJzXz/NhVCD9ECkOQsmuaFeQulnrH pyb9GP7rYltg7k/iq6Vrm1NN7kmYAsjMC530v+zb8SimIuZAX7o1k8MkBj5BWfmg 92qupg== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org