$ rpki-client -vvf rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa File: 9E194914B3EC11EE8B2EE910C4F9AE02.roa (raw, json) Hash identifier: eBM1U0C9BAgz3z+X5mRsroakC5anBwEWYdlHygNX0ws= Subject key identifier: 0F:1C:90:F7:2A:31:61:41:7A:97:15:52:29:E8:D6:0A:80:4F:27:0E Certificate issuer: /CN=A91805CE/serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Certificate serial: 6E Authority key identifier: 72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa Signing time: Sat 29 Jun 2024 07:30:06 +0000 ROA not before: Sat 29 Jun 2024 07:30:06 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 9463 IP address blocks: 202.74.128.0/22 maxlen: 22 202.74.132.0/22 maxlen: 22 202.74.136.0/22 maxlen: 22 202.74.140.0/22 maxlen: 22 202.74.147.0/24 maxlen: 24 202.74.148.0/24 maxlen: 24 202.74.152.0/23 maxlen: 23 202.74.152.0/24 maxlen: 24 202.74.153.0/24 maxlen: 24 202.74.154.0/23 maxlen: 23 202.74.154.0/24 maxlen: 24 202.74.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91805CE/serialNumber=72926FC60F7C184A61D73BD094AA6A386B63002A Validity Not Before: Jun 29 07:30:06 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=667fb7fd-eeac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:1b:11:9d:ac:69:b6:5d:38:68:14:d5:f5:a4: 8e:d5:ca:61:16:77:57:7e:70:4d:1f:51:fe:d0:26: 48:a8:97:c3:9b:e5:8e:3c:2c:75:ba:87:45:40:db: ed:63:e4:a3:b5:07:4f:05:be:0b:42:01:f9:5e:43: 44:0c:3b:89:14:92:25:d9:61:c4:04:57:9e:f5:d8: b9:3c:5f:7d:16:93:13:3f:66:c1:b6:e8:5d:7b:b9: 6d:86:ac:57:ef:b3:06:57:ab:5d:ee:4d:e6:14:f6: 8e:2a:ff:e5:b2:d2:22:29:c8:7e:8f:28:ca:4e:c6: f6:46:a1:72:89:ab:73:85:9c:34:4d:6f:dd:6f:94: 9f:61:b7:d1:cc:13:21:ce:2a:03:c2:e7:6a:ad:e9: 66:7b:f6:0c:08:e5:a4:48:b2:85:06:dd:89:6e:c7: f6:99:7f:d4:f3:f3:2e:68:5a:fe:be:d3:ba:8c:d8: a6:1a:e8:8d:c8:81:3e:fe:98:94:1a:f3:76:73:71: fd:db:3a:85:e0:e6:5e:0e:4d:58:e0:c1:3e:d1:96: 24:c9:46:51:66:e0:52:e4:bd:38:f0:53:ad:f8:e2: d6:8b:b5:ba:56:55:64:41:f8:68:86:3a:00:ce:b2: 20:bf:14:13:2a:41:f7:80:a0:57:33:08:b9:a8:30: 24:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:1C:90:F7:2A:31:61:41:7A:97:15:52:29:E8:D6:0A:80:4F:27:0E X509v3 Authority Key Identifier: keyid:72:92:6F:C6:0F:7C:18:4A:61:D7:3B:D0:94:AA:6A:38:6B:63:00:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/cpJvxg98GEph1zvQlKpqOGtjACo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cpJvxg98GEph1zvQlKpqOGtjACo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91805CE/0EB09D36AE7411EE8CED235CC4F9AE02/9E194914B3EC11EE8B2EE910C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.74.128.0/20 202.74.147.0-202.74.148.255 202.74.152.0/22 Signature Algorithm: sha256WithRSAEncryption c4:f0:8c:c9:6d:f6:50:39:b1:3a:ea:54:19:d0:7f:b1:33:6c: 5b:01:32:b4:42:56:3e:72:c2:5d:14:08:4f:94:00:db:8e:de: 2d:23:8d:64:6e:50:52:07:81:a4:a9:8a:5b:61:23:83:56:c8: 11:15:3b:ad:52:80:72:c1:2c:57:75:9b:08:81:b7:3a:c3:92: ee:fd:e6:4b:e8:6e:18:84:3d:b2:8b:bb:7f:23:73:d5:c6:bc: 0e:cf:21:17:de:0b:73:04:91:51:ce:dd:7b:47:6e:97:1f:09: 9a:32:19:43:a4:e0:be:f5:49:19:56:a6:7d:db:7f:e4:b6:4b: 82:2f:b5:77:3d:65:34:d7:3e:d0:42:70:d2:c9:7d:3d:eb:7c: 20:f6:1f:ab:ac:2d:69:7b:7c:76:af:62:1f:90:bf:1a:c8:fd: a5:a8:6d:b1:c5:62:e9:5c:17:d2:89:ab:ce:8d:19:cd:e2:4a: f7:32:a1:70:37:27:c3:d2:2c:73:bd:01:2d:d9:0a:39:3d:70: b3:fa:a9:f5:d1:1c:87:de:7a:3c:7e:14:60:8c:9a:79:c1:e7: 57:d7:91:f9:08:65:66:43:42:43:b2:e0:dc:5a:2d:18:bf:19: fa:ad:b5:5f:8f:b9:ec:8d:f3:dc:33:a7:6b:bc:80:d9:b8:0b: 12:f9:84:30 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDVDRTExMC8GA1UEBRMoNzI5MjZGQzYwRjdDMTg0QTYxRDczQkQwOTRBQTZBMzg2 QjYzMDAyQTAeFw0yNDA2MjkwNzMwMDZaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2N2ZiN2ZkLWVlYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDZGxGdrGm2XThoFNX1pI7VymEWd1d+cE0fUf7QJkiol8Ob5Y48LHW6h0VA2+1j 5KO1B08FvgtCAfleQ0QMO4kUkiXZYcQEV5712Lk8X30WkxM/ZsG26F17uW2GrFfv swZXq13uTeYU9o4q/+Wy0iIpyH6PKMpOxvZGoXKJq3OFnDRNb91vlJ9ht9HMEyHO KgPC52qt6WZ79gwI5aRIsoUG3Ylux/aZf9Tz8y5oWv6+07qM2KYa6I3IgT7+mJQa 83Zzcf3bOoXg5l4OTVjgwT7RliTJRlFm4FLkvTjwU6344taLtbpWVWRB+GiGOgDO siC/FBMqQfeAoFczCLmoMCTNAgMBAAGjggKpMIICpTAdBgNVHQ4EFgQUDxyQ9yox YUF6lxVSKejWCoBPJw4wHwYDVR0jBBgwFoAUcpJvxg98GEph1zvQlKpqOGtjACow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwNUNFLzBFQjA5RDM2QUU3 NDExRUU4Q0VEMjM1Q0M0RjlBRTAyL2NwSnZ4Zzk4R0VwaDF6dlFsS3BxT0d0akFD by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvY3BKdnhnOThHRXBoMXp2UWxLcHFPR3RqQUNvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 MDVDRS8wRUIwOUQzNkFFNzQxMUVFOENFRDIzNUNDNEY5QUUwMi85RTE5NDkxNEIz RUMxMUVFOEIyRUU5MTBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAzBggrBgEFBQcBBwEB/wQk MCIwIAQCAAEwGgMEBMpKgDAMAwQAykqTAwQAykqUAwQCykqYMA0GCSqGSIb3DQEB CwUAA4IBAQDE8IzJbfZQObE66lQZ0H+xM2xbATK0QlY+csJdFAhPlADbjt4tI41k blBSB4GkqYpbYSODVsgRFTutUoBywSxXdZsIgbc6w5Lu/eZL6G4YhD2yi7t/I3PV xrwOzyEX3gtzBJFRzt17R26XHwmaMhlDpOC+9UkZVqZ923/ktkuCL7V3PWU01z7Q QnDSyX0963wg9h+rrC1pe3x2r2IfkL8ayP2lqG2xxWLpXBfSiavOjRnN4kr3MqFw NyfD0ixzvQEt2Qo5PXCz+qn10RyH3no8fhRgjJp5wedX15H5CGVmQ0JDsuDcWi0Y vxn6rbVfj7nsjfPcM6drvIDZuAsS+YQw -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:10 2024 by rpki-client on console-ams.rpki-client.org