$ rpki-client -vvf rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/DD726152945311EAB9A9B971C4F9AE02.roa File: DD726152945311EAB9A9B971C4F9AE02.roa (raw, json) Hash identifier: eARvkLPx4cJh+IeHG0XdxEw7zw/djQ5xDufaDbeB8VU= Subject key identifier: 51:02:20:62:4A:7E:63:A7:5B:F9:18:99:FF:65:DF:13:B2:D3:F9:B3 Certificate issuer: /CN=A918E76B/serialNumber=EE49E10DCA06B81637940482A8C48ACEFBA44D3F Certificate serial: 08C5 Authority key identifier: EE:49:E1:0D:CA:06:B8:16:37:94:04:82:A8:C4:8A:CE:FB:A4:4D:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7knhDcoGuBY3lASCqMSKzvukTT8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/DD726152945311EAB9A9B971C4F9AE02.roa Signing time: Tue 16 Jul 2024 21:18:34 +0000 ROA not before: Tue 16 Jul 2024 21:18:34 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 38264 IP address blocks: 202.45.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/7knhDcoGuBY3lASCqMSKzvukTT8.crl rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/7knhDcoGuBY3lASCqMSKzvukTT8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7knhDcoGuBY3lASCqMSKzvukTT8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:07:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2245 (0x8c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918E76B/serialNumber=EE49E10DCA06B81637940482A8C48ACEFBA44D3F Validity Not Before: Jul 16 21:18:34 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6696e3aa-634c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:f6:da:77:3f:68:72:03:25:6e:a2:e2:69:2d: 8a:06:9d:40:3f:f8:d9:2a:9e:04:fc:4a:6b:c9:ef: 02:f1:b4:91:66:21:e7:76:2d:98:4e:44:d8:17:ac: 15:60:3e:df:75:58:22:e4:68:67:89:29:75:02:9d: e9:d8:72:b3:f2:f6:e0:4b:d7:a6:1d:d6:60:1a:aa: 0d:52:c5:5d:54:0a:b7:bf:3a:6c:37:5c:ca:02:79: 11:c0:4a:8d:94:39:b8:18:bf:e2:08:83:76:92:05: 9c:b8:14:f1:b9:50:eb:c5:80:51:3d:3d:27:da:a9: 82:d4:83:22:42:ac:79:e2:51:50:c6:c3:c4:5a:dd: 1f:b6:6d:b2:91:4b:c1:0e:17:b6:63:4e:dc:ba:e9: d1:5f:0c:67:97:c0:eb:c8:46:ec:20:3e:4d:56:f4: 5f:ae:cd:2c:6f:05:16:9a:03:db:37:82:b9:6e:3d: 20:80:73:5a:65:06:64:04:92:b6:b5:a4:f5:98:fb: 30:e5:32:96:53:d6:9e:84:26:f7:c7:e7:10:f2:45: 2a:c5:41:60:ef:d0:43:60:b9:15:ee:02:f6:d4:4f: e7:49:11:40:f7:c7:75:cf:55:d2:ea:41:b1:64:f9: dc:fa:d0:52:47:b2:e9:5c:50:5d:8c:99:da:d1:07: c3:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:02:20:62:4A:7E:63:A7:5B:F9:18:99:FF:65:DF:13:B2:D3:F9:B3 X509v3 Authority Key Identifier: keyid:EE:49:E1:0D:CA:06:B8:16:37:94:04:82:A8:C4:8A:CE:FB:A4:4D:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/7knhDcoGuBY3lASCqMSKzvukTT8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7knhDcoGuBY3lASCqMSKzvukTT8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918E76B/BF183232945211EA806E6970C4F9AE02/DD726152945311EAB9A9B971C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.45.156.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:a3:40:06:71:20:7e:c9:33:e8:22:8b:68:c4:42:86:57:f3: f4:7b:1e:e5:97:2e:ab:51:f8:f7:0a:26:a2:33:b2:9e:3f:cf: 6e:df:64:0d:f3:78:92:11:04:0c:b6:29:93:2d:b9:1e:b4:69: 7e:25:75:ad:1f:81:3e:f4:01:0f:d5:28:da:71:8c:6f:2f:da: f2:81:d0:b1:6f:75:29:76:90:cf:50:1b:53:5f:ad:78:0c:6d: 89:cf:89:d1:67:27:ed:e8:16:44:6d:cb:dd:74:f2:dc:08:93: 3a:d4:93:a7:a1:0b:7c:58:3c:46:6c:5d:d2:a2:2e:da:af:0b: 28:c6:a9:02:64:fb:35:79:4d:a2:75:6a:79:82:ce:75:35:85: 71:8e:74:e7:be:7f:82:a7:3a:ea:51:61:6d:0f:27:46:6a:31: ce:36:7b:fe:e9:18:af:b5:c0:17:d6:e0:06:94:a1:3f:81:8e: 47:c1:54:f7:21:17:d4:b2:a1:18:7f:34:b6:1d:51:29:66:4b: 84:af:e6:c9:d4:e3:33:2c:e4:fb:cc:9a:c2:4c:73:1a:31:e6: f3:1e:b6:f8:5c:c0:66:f0:ad:6f:53:60:53:73:18:2e:30:58: 15:5e:3b:16:ea:5f:ba:93:0c:d9:9a:4f:f6:4f:d6:49:12:46: 99:34:ee:c7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OEU3NkIxMTAvBgNVBAUTKEVFNDlFMTBEQ0EwNkI4MTYzNzk0MDQ4MkE4QzQ4QUNF RkJBNDREM0YwHhcNMjQwNzE2MjExODM0WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njk2ZTNhYS02MzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfbadz9ocgMlbqLiaS2KBp1AP/jZKp4E/Eprye8C8bSRZiHndi2YTkTYF6wV YD7fdVgi5GhniSl1Ap3p2HKz8vbgS9emHdZgGqoNUsVdVAq3vzpsN1zKAnkRwEqN lDm4GL/iCIN2kgWcuBTxuVDrxYBRPT0n2qmC1IMiQqx54lFQxsPEWt0ftm2ykUvB Dhe2Y07cuunRXwxnl8DryEbsID5NVvRfrs0sbwUWmgPbN4K5bj0ggHNaZQZkBJK2 taT1mPsw5TKWU9aehCb3x+cQ8kUqxUFg79BDYLkV7gL21E/nSRFA98d1z1XS6kGx ZPnc+tBSR7LpXFBdjJna0QfDjwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFECIGJK fmOnW/kYmf9l3xOy0/mzMB8GA1UdIwQYMBaAFO5J4Q3KBrgWN5QEgqjEis77pE0/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4RTc2Qi9CRjE4MzIzMjk0 NTIxMUVBODA2RTY5NzBDNEY5QUUwMi83a25oRGNvR3VCWTNsQVNDcU1TS3p2dWtU VDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdrbmhEY29HdUJZM2xBU0NxTVNLenZ1a1RUOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OEU3NkIvQkYxODMyMzI5NDUyMTFFQTgwNkU2OTcwQzRGOUFFMDIvREQ3MjYxNTI5 NDUzMTFFQUI5QTlCOTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKLZwwDQYJKoZIhvcNAQELBQADggEBABqjQAZxIH7JM+gi i2jEQoZX8/R7HuWXLqtR+PcKJqIzsp4/z27fZA3zeJIRBAy2KZMtuR60aX4lda0f gT70AQ/VKNpxjG8v2vKB0LFvdSl2kM9QG1NfrXgMbYnPidFnJ+3oFkRty9108twI kzrUk6ehC3xYPEZsXdKiLtqvCyjGqQJk+zV5TaJ1anmCznU1hXGOdOe+f4KnOupR YW0PJ0ZqMc42e/7pGK+1wBfW4AaUoT+BjkfBVPchF9SyoRh/NLYdUSlmS4Sv5snU 4zMs5PvMmsJMcxox5vMetvhcwGbwrW9TYFNzGC4wWBVeOxbqX7qTDNmaT/ZP1kkS Rpk07sc= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:34 2024 by rpki-client on console-ams.rpki-client.org