$ rpki-client -vvf rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/C098EF8E499811EFBB8C701EC4F9AE02.roa File: C098EF8E499811EFBB8C701EC4F9AE02.roa (raw, json) Hash identifier: n2LtZcCnjKDjvULCQv/IYK/HNffw4W/GSJ+m14j7DRk= Subject key identifier: 31:B8:89:A3:D1:EC:60:FC:B0:26:D8:E6:F9:76:B8:09:D6:A9:F5:7C Certificate issuer: /CN=A9186513/serialNumber=B6CCB5E431E45019150C4F3721F4F80A6F2ED7DB Certificate serial: 066D Authority key identifier: B6:CC:B5:E4:31:E4:50:19:15:0C:4F:37:21:F4:F8:0A:6F:2E:D7:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsy15DHkUBkVDE83IfT4Cm8u19s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/C098EF8E499811EFBB8C701EC4F9AE02.roa Signing time: Wed 24 Jul 2024 08:43:09 +0000 ROA not before: Wed 24 Jul 2024 08:43:09 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 142270 IP address blocks: 203.76.253.0/24 maxlen: 24 203.76.254.0/24 maxlen: 24 203.76.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/tsy15DHkUBkVDE83IfT4Cm8u19s.crl rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/tsy15DHkUBkVDE83IfT4Cm8u19s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsy15DHkUBkVDE83IfT4Cm8u19s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1645 (0x66d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9186513/serialNumber=B6CCB5E431E45019150C4F3721F4F80A6F2ED7DB Validity Not Before: Jul 24 08:43:09 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=66a0be9c-7d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:61:6b:0c:19:0b:6e:4f:df:44:ac:6e:16:4f: 63:04:d0:52:a1:69:18:76:3a:41:12:be:02:c5:c4: 92:3a:bf:5a:42:0c:7d:76:78:49:4e:08:86:1d:5c: 67:2f:41:a4:c4:1f:07:c2:6b:86:61:b7:6e:0d:44: 50:c4:16:cb:0c:a8:0e:34:35:22:d0:92:66:bf:9c: ca:bd:bf:5a:80:72:8b:78:3f:46:fa:80:8e:82:a3: 79:aa:7f:02:dd:0e:64:26:ba:b1:09:76:bc:31:9d: 2c:56:7c:e5:7d:8b:c4:d9:e3:cf:84:dc:66:ea:21: c2:e4:aa:ff:0f:8c:f9:91:a1:db:4b:a3:79:22:0c: b1:a7:9a:b9:a8:e3:c3:d8:6d:bd:11:cc:e4:21:d5: bc:41:73:78:31:f1:7a:48:33:9f:9c:24:4b:ec:30: 6f:37:6d:85:50:00:cc:ba:bd:55:55:c6:03:95:bb: 50:35:be:29:4a:ed:6e:07:d1:74:5d:dc:18:1c:83: 1c:a7:e0:99:6b:21:73:58:da:1e:23:38:19:dd:f6: 82:27:a8:e4:56:5d:a3:39:ab:3f:43:2e:e6:4f:e4: 5d:a3:3f:4f:35:a3:83:88:06:11:3a:9e:35:50:02: 18:64:ee:df:61:10:15:99:c5:8b:0f:b5:3a:d6:ed: 54:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:B8:89:A3:D1:EC:60:FC:B0:26:D8:E6:F9:76:B8:09:D6:A9:F5:7C X509v3 Authority Key Identifier: keyid:B6:CC:B5:E4:31:E4:50:19:15:0C:4F:37:21:F4:F8:0A:6F:2E:D7:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/tsy15DHkUBkVDE83IfT4Cm8u19s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tsy15DHkUBkVDE83IfT4Cm8u19s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9186513/C2BA6BF0420111EBABFD5E60C4F9AE02/C098EF8E499811EFBB8C701EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.76.253.0-203.76.255.255 Signature Algorithm: sha256WithRSAEncryption 95:47:05:63:56:85:c0:21:92:14:f4:89:1c:0c:38:78:d4:34: ae:27:fb:6b:87:79:8e:1d:f0:ac:89:4b:2c:50:aa:e0:f0:c0: 10:26:99:d4:45:ee:57:17:e6:00:bc:28:24:35:f3:92:54:98: 5d:6e:f4:af:1c:2d:f0:bd:61:5a:16:91:5f:bf:27:15:a6:80: 38:8c:da:ea:11:cd:51:be:75:5f:4e:4a:ab:7c:79:1f:5f:1a: ee:58:8e:75:45:e5:e9:2d:42:26:d6:49:3e:66:15:bd:3a:df: e9:06:72:dc:f9:fb:36:26:b4:64:2e:50:97:06:e7:c2:c5:f8: 7e:39:39:26:c2:d2:fa:68:62:fc:0b:d2:56:a4:a4:2d:0a:d4: 69:cd:5f:13:86:49:23:50:30:fd:d6:f4:fa:25:87:9b:9d:df: 48:c5:42:a7:4d:2e:0d:43:bd:17:03:f0:b4:78:e4:1c:9b:6a: 4d:6f:3c:ee:f5:f5:a1:68:e7:f2:4c:14:ef:00:cb:31:4d:4f: 4c:99:c6:76:13:25:87:5e:04:93:ce:79:7c:88:77:4a:c4:55: 88:ee:5f:7d:2a:68:08:8d:e4:45:5d:a8:d1:c3:fb:ba:6a:78: fa:7a:b4:be:aa:84:78:b7:08:f0:ae:52:1f:03:35:86:75:15: d1:be:06:b9 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgICBm0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODY1MTMxMTAvBgNVBAUTKEI2Q0NCNUU0MzFFNDUwMTkxNTBDNEYzNzIxRjRGODBB NkYyRUQ3REIwHhcNMjQwNzI0MDg0MzA5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEwYmU5Yy03ZDk1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyGFrDBkLbk/fRKxuFk9jBNBSoWkYdjpBEr4CxcSSOr9aQgx9dnhJTgiGHVxn L0GkxB8HwmuGYbduDURQxBbLDKgONDUi0JJmv5zKvb9agHKLeD9G+oCOgqN5qn8C 3Q5kJrqxCXa8MZ0sVnzlfYvE2ePPhNxm6iHC5Kr/D4z5kaHbS6N5Igyxp5q5qOPD 2G29EczkIdW8QXN4MfF6SDOfnCRL7DBvN22FUADMur1VVcYDlbtQNb4pSu1uB9F0 XdwYHIMcp+CZayFzWNoeIzgZ3faCJ6jkVl2jOas/Qy7mT+Rdoz9PNaODiAYROp41 UAIYZO7fYRAVmcWLD7U61u1UkQIDAQABo4ICnDCCApgwHQYDVR0OBBYEFDG4iaPR 7GD8sCbY5vl2uAnWqfV8MB8GA1UdIwQYMBaAFLbMteQx5FAZFQxPNyH0+ApvLtfb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NjUxMy9DMkJBNkJGMDQy MDExMUVCQUJGRDVFNjBDNEY5QUUwMi90c3kxNURIa1VCa1ZERTgzSWZUNENtOHUx OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RzeTE1REhrVUJrVkRFODNJZlQ0Q204dTE5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODY1MTMvQzJCQTZCRjA0MjAxMTFFQkFCRkQ1RTYwQzRGOUFFMDIvQzA5OEVGOEU0 OTk4MTFFRkJCOEM3MDFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJgYIKwYBBQUHAQcBAf8E FzAVMBMEAgABMA0wCwMEAMtM/QMDAMtMMA0GCSqGSIb3DQEBCwUAA4IBAQCVRwVj VoXAIZIU9IkcDDh41DSuJ/trh3mOHfCsiUssUKrg8MAQJpnURe5XF+YAvCgkNfOS VJhdbvSvHC3wvWFaFpFfvycVpoA4jNrqEc1RvnVfTkqrfHkfXxruWI51ReXpLUIm 1kk+ZhW9Ot/pBnLc+fs2JrRkLlCXBufCxfh+OTkmwtL6aGL8C9JWpKQtCtRpzV8T hkkjUDD91vT6JYebnd9IxUKnTS4NQ70XA/C0eOQcm2pNbzzu9fWhaOfyTBTvAMsx TU9MmcZ2EyWHXgSTznl8iHdKxFWI7l99KmgIjeRFXajRw/u6anj6erS+qoR4twjw rlIfAzWGdRXRvga5 -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:46 2024 by rpki-client on console-fra.rpki-client.org