$ rpki-client -vvf rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/9F0B162A252C11EFB58A7552C4F9AE02.roa File: 9F0B162A252C11EFB58A7552C4F9AE02.roa (raw, json) Hash identifier: HHoEjJtkFTBdrNU9U4PlS7w1Esr2CS45jVgLsGJvEos= Subject key identifier: FD:64:38:26:29:D0:97:8D:33:9B:0E:21:4F:9F:75:B5:F1:56:1C:2E Certificate issuer: /CN=A9184F65/serialNumber=DAD5E0D73D054A697B22839AF1FA4ACD94F50A1A Certificate serial: 08 Authority key identifier: DA:D5:E0:D7:3D:05:4A:69:7B:22:83:9A:F1:FA:4A:CD:94:F5:0A:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2tXg1z0FSml7IoOa8fpKzZT1Cho.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/9F0B162A252C11EFB58A7552C4F9AE02.roa Signing time: Sat 08 Jun 2024 00:24:35 +0000 ROA not before: Sat 08 Jun 2024 00:24:35 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 56106 IP address blocks: 119.252.189.0/24 maxlen: 24 119.252.190.0/24 maxlen: 24 119.252.191.0/24 maxlen: 24 203.98.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/2tXg1z0FSml7IoOa8fpKzZT1Cho.crl rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/2tXg1z0FSml7IoOa8fpKzZT1Cho.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2tXg1z0FSml7IoOa8fpKzZT1Cho.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 05:13:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8 (0x8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9184F65/serialNumber=DAD5E0D73D054A697B22839AF1FA4ACD94F50A1A Validity Not Before: Jun 8 00:24:35 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=6663a4c2-01c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:11:d1:06:b8:6e:a2:91:91:5f:75:e6:25:92: 8f:8e:47:ab:7b:75:dd:bc:25:13:8e:dc:af:03:e9: dc:d5:d1:fc:38:fe:61:98:f1:f8:22:2f:92:ae:38: 9f:6d:7d:0e:19:15:36:c4:68:8e:12:78:f1:4e:a4: d9:04:5e:18:d4:34:ba:e7:05:a7:99:ad:70:8b:7f: 36:91:18:66:6a:d0:93:47:56:65:ed:b6:5e:7b:ea: 84:d8:bc:33:03:0f:3a:ad:6a:14:b2:e5:63:fa:06: 69:c1:6a:62:06:cd:a4:10:11:34:57:41:77:ef:e2: 39:9a:c8:0f:da:79:94:90:43:9a:c3:13:1c:81:11: b0:43:61:57:ff:fd:4a:ba:8b:15:da:8c:2b:4d:98: 86:53:8d:23:08:fe:1e:c9:35:d4:6b:6f:46:69:4b: 22:5d:c4:83:f6:c8:8e:71:2a:99:31:02:a4:88:e8: 7b:af:e0:b2:6f:76:a2:f0:68:81:16:bb:cd:16:9a: 79:ac:79:7b:06:04:46:88:e1:99:75:21:d4:c2:ee: 2d:a2:00:81:ef:85:f4:a1:6e:c7:06:55:0a:c2:be: fc:a4:38:cc:ed:d8:e3:a9:6e:d4:56:6b:4a:c4:6b: 46:2e:1a:cd:57:9d:d1:c4:a9:86:16:b6:b3:35:ed: 5f:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:64:38:26:29:D0:97:8D:33:9B:0E:21:4F:9F:75:B5:F1:56:1C:2E X509v3 Authority Key Identifier: keyid:DA:D5:E0:D7:3D:05:4A:69:7B:22:83:9A:F1:FA:4A:CD:94:F5:0A:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/2tXg1z0FSml7IoOa8fpKzZT1Cho.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2tXg1z0FSml7IoOa8fpKzZT1Cho.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9184F65/AC63ADC6252411EF82A95B74C4F9AE02/9F0B162A252C11EFB58A7552C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 119.252.189.0-119.252.191.255 203.98.81.0/24 Signature Algorithm: sha256WithRSAEncryption 13:2a:bc:bc:7c:9f:79:30:99:af:83:b6:62:7d:5a:65:65:f9: a4:a0:bd:15:24:5b:d0:96:89:2f:aa:1b:7c:5c:80:f4:53:58: dd:9c:fc:8f:1a:e9:65:b5:05:3b:f5:80:df:e7:ae:91:e9:ac: 22:33:53:d8:e4:75:eb:e1:cb:28:67:50:f8:a8:11:6e:60:04: a8:42:a3:41:8f:fd:5e:50:ad:17:28:d9:c2:30:cd:12:85:1a: 3d:05:39:fd:d3:99:0c:9b:6b:4a:8f:83:1c:05:02:e2:9c:c8: 54:77:24:50:28:ba:c7:ca:98:59:42:62:ee:3c:dc:29:70:c4: ff:57:fe:f1:d9:f4:de:fb:33:80:ec:92:68:7e:bd:fd:33:fb: 98:18:48:49:a7:86:6f:7e:b4:aa:be:8c:1c:db:0e:5c:b3:ca: 37:db:56:25:61:b8:36:b5:b8:d3:ad:c9:8e:72:0f:12:84:01: e4:2e:01:29:e0:28:8e:c1:c5:8a:ea:94:03:c0:62:3f:ac:d0: 4c:dd:45:46:3a:91:3f:89:23:f3:39:e0:cc:10:c9:5e:1f:0f: b2:e7:bd:1e:13:54:8f:2c:1c:f2:3e:a8:5f:0f:50:36:21:cf: 3c:78:4d:62:32:5f:69:73:f4:e0:b9:c2:85:b8:71:0b:a2:8e: 32:0e:50:0c -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgIBCDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NEY2NTExMC8GA1UEBRMoREFENUUwRDczRDA1NEE2OTdCMjI4MzlBRjFGQTRBQ0Q5 NEY1MEExQTAeFw0yNDA2MDgwMDI0MzVaFw0yNTA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NjNhNGMyLTAxYzcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/EdEGuG6ikZFfdeYlko+OR6t7dd28JROO3K8D6dzV0fw4/mGY8fgiL5KuOJ9t fQ4ZFTbEaI4SePFOpNkEXhjUNLrnBaeZrXCLfzaRGGZq0JNHVmXttl576oTYvDMD DzqtahSy5WP6BmnBamIGzaQQETRXQXfv4jmayA/aeZSQQ5rDExyBEbBDYVf//Uq6 ixXajCtNmIZTjSMI/h7JNdRrb0ZpSyJdxIP2yI5xKpkxAqSI6Huv4LJvdqLwaIEW u80WmnmseXsGBEaI4Zl1IdTC7i2iAIHvhfShbscGVQrCvvykOMzt2OOpbtRWa0rE a0YuGs1XndHEqYYWtrM17V/rAgMBAAGjggKjMIICnzAdBgNVHQ4EFgQU/WQ4JinQ l40zmw4hT591tfFWHC4wHwYDVR0jBBgwFoAU2tXg1z0FSml7IoOa8fpKzZT1Chow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg0RjY1L0FDNjNBREM2MjUy NDExRUY4MkE5NUI3NEM0RjlBRTAyLzJ0WGcxejBGU21sN0lvT2E4ZnBLelpUMUNo by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMnRYZzF6MEZTbWw3SW9PYThmcEt6WlQxQ2hvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NEY2NS9BQzYzQURDNjI1MjQxMUVGODJBOTVCNzRDNEY5QUUwMi85RjBCMTYyQTI1 MkMxMUVGQjU4QTc1NTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAtBggrBgEFBQcBBwEB/wQe MBwwGgQCAAEwFDAMAwQAd/y9AwQGd/yAAwQAy2JRMA0GCSqGSIb3DQEBCwUAA4IB AQATKry8fJ95MJmvg7ZifVplZfmkoL0VJFvQlokvqht8XID0U1jdnPyPGulltQU7 9YDf566R6awiM1PY5HXr4csoZ1D4qBFuYASoQqNBj/1eUK0XKNnCMM0ShRo9BTn9 05kMm2tKj4McBQLinMhUdyRQKLrHyphZQmLuPNwpcMT/V/7x2fTe+zOA7JJofr39 M/uYGEhJp4ZvfrSqvowc2w5cs8o321YlYbg2tbjTrcmOcg8ShAHkLgEp4CiOwcWK 6pQDwGI/rNBM3UVGOpE/iSPzOeDMEMleHw+y570eE1SPLBzyPqhfD1A2Ic88eE1i Ml9pc/TgucKFuHELoo4yDlAM -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:18 2024 by rpki-client on console-fra.rpki-client.org