$ rpki-client -vvf rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BEF9E93E3E6A11EDB58A2B41C4F9AE02.roa File: BEF9E93E3E6A11EDB58A2B41C4F9AE02.roa (raw, json) Hash identifier: SCt2F9uox62Kf9D4VVNpmz9NEAxDv38ba2lQGEdyN88= Subject key identifier: CA:13:0D:76:2A:02:BE:C7:E1:82:25:67:39:6F:29:13:71:4A:96:3B Certificate issuer: /CN=A9192C18/serialNumber=F1FE0C327E79E5AF43E15B0E6F8CD66C0329D138 Certificate serial: 01E2 Authority key identifier: F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BEF9E93E3E6A11EDB58A2B41C4F9AE02.roa Signing time: Sat 21 Sep 2024 02:36:12 +0000 ROA not before: Sat 21 Sep 2024 02:36:12 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 218.33.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 482 (0x1e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192C18 Validity Not Before: Sep 21 02:36:12 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66ee311c-c150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:5d:06:4b:c0:4f:c1:12:7f:fd:27:d6:75:db: 68:ba:75:86:94:17:83:03:ad:3d:ea:99:fe:fb:83: 33:32:1f:2d:ac:40:da:67:53:65:75:75:56:1a:81: 80:57:07:23:82:ff:3b:89:eb:42:bc:17:3b:39:f8: 37:36:b7:3b:f3:01:c9:8e:4b:ff:47:9a:16:8c:75: 97:c1:6d:2a:38:1b:22:39:22:98:66:ff:09:f8:e3: 90:1f:bd:e7:c6:6a:3a:be:ee:5a:63:c3:99:8a:62: 60:00:9b:da:60:e3:98:ab:19:2e:bb:e7:cf:55:bb: a0:f7:fc:92:1e:9e:e6:3e:06:d7:aa:0b:9e:de:b2: 00:5a:6a:57:b5:02:5a:7e:9b:86:59:ab:3a:e0:a5: 2f:59:11:e0:e7:e4:a2:64:47:2a:0b:43:5e:f6:fc: f1:0d:a1:a7:88:7c:46:16:f1:36:b4:27:16:3f:0b: 4b:2f:5c:73:fb:f6:dc:db:11:3a:f1:c5:a6:50:a3: e3:b6:44:96:e4:26:e1:88:a7:be:70:a6:e2:d3:e4: 05:77:e9:4d:14:37:c5:62:b2:d2:e2:a7:5b:89:2a: d1:6e:75:45:8c:41:3d:34:ac:e8:77:bd:a2:2b:76: 34:8f:1e:16:0c:dc:04:19:9d:18:26:07:51:d0:94: c4:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:13:0D:76:2A:02:BE:C7:E1:82:25:67:39:6F:29:13:71:4A:96:3B X509v3 Authority Key Identifier: keyid:F1:FE:0C:32:7E:79:E5:AF:43:E1:5B:0E:6F:8C:D6:6C:03:29:D1:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/8f4MMn555a9D4VsOb4zWbAMp0Tg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8f4MMn555a9D4VsOb4zWbAMp0Tg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192C18/9A5EEA8C3DF411ED8041F930C4F9AE02/BEF9E93E3E6A11EDB58A2B41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 218.33.0.0/18 Signature Algorithm: sha256WithRSAEncryption bc:e2:a4:51:e0:a1:9b:5b:06:46:3b:ac:a2:e5:34:eb:40:e5: 75:82:aa:5f:18:33:48:1e:b7:90:de:e9:77:2d:10:d2:5e:34: df:6a:f5:48:93:47:c6:65:0b:2d:0b:56:73:dc:d7:be:e4:d7: 60:70:62:c5:e6:77:3c:a9:b3:76:33:58:3f:ec:75:79:b4:3e: c6:17:f9:53:c9:5d:cb:09:5e:4b:bd:a0:0d:3c:43:d1:46:6a: 4b:80:aa:7f:e0:93:61:5b:5a:63:91:a9:11:62:2b:0e:22:da: 61:f7:b8:65:a4:35:44:f7:d1:11:fc:dd:9c:f7:0e:a5:cb:76: de:fd:38:dc:9a:00:d7:71:06:0a:92:e3:59:63:da:6c:de:9d: ed:19:0e:69:1c:e9:cb:d4:3f:26:ee:0d:a6:2e:8f:97:96:8d: a6:58:2b:a5:6a:40:b9:2b:8c:15:24:b2:0f:d4:8f:1e:96:50: fd:64:80:89:67:01:e3:ff:e3:47:e3:e7:90:de:6f:34:98:c0: 1a:c4:37:66:88:6e:4e:a1:8f:7e:32:5f:6d:31:d8:9b:21:a6: b1:b1:c7:ef:2f:54:64:4a:c9:18:80:49:02:78:75:7c:d0:57: c8:d0:e0:95:c8:86:19:7a:a2:65:a8:43:3b:87:bd:4e:f9:07: 58:76:1d:83 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAeIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTJDMTgxMTAvBgNVBAUTKEYxRkUwQzMyN0U3OUU1QUY0M0UxNUIwRTZGOENENjZD MDMyOUQxMzgwHhcNMjQwOTIxMDIzNjEyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVlMzExYy1jMTUwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1V0GS8BPwRJ//SfWddtounWGlBeDA6096pn++4MzMh8trEDaZ1NldXVWGoGA Vwcjgv87ietCvBc7Ofg3Nrc78wHJjkv/R5oWjHWXwW0qOBsiOSKYZv8J+OOQH73n xmo6vu5aY8OZimJgAJvaYOOYqxkuu+fPVbug9/ySHp7mPgbXqgue3rIAWmpXtQJa fpuGWas64KUvWRHg5+SiZEcqC0Ne9vzxDaGniHxGFvE2tCcWPwtLL1xz+/bc2xE6 8cWmUKPjtkSW5CbhiKe+cKbi0+QFd+lNFDfFYrLS4qdbiSrRbnVFjEE9NKzod72i K3Y0jx4WDNwEGZ0YJgdR0JTEcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMoTDXYq Ar7H4YIlZzlvKRNxSpY7MB8GA1UdIwQYMBaAFPH+DDJ+eeWvQ+FbDm+M1mwDKdE4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MkMxOC85QTVFRUE4QzNE RjQxMUVEODA0MUY5MzBDNEY5QUUwMi84ZjRNTW41NTVhOUQ0VnNPYjR6V2JBTXAw VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhmNE1NbjU1NWE5RDRWc09iNHpXYkFNcDBUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTJDMTgvOUE1RUVBOEMzREY0MTFFRDgwNDFGOTMwQzRGOUFFMDIvQkVGOUU5M0Uz RTZBMTFFREI1OEEyQjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAbaIQAwDQYJKoZIhvcNAQELBQADggEBALzipFHgoZtbBkY7 rKLlNOtA5XWCql8YM0get5De6XctENJeNN9q9UiTR8ZlCy0LVnPc177k12BwYsXm dzyps3YzWD/sdXm0PsYX+VPJXcsJXku9oA08Q9FGakuAqn/gk2FbWmORqRFiKw4i 2mH3uGWkNUT30RH83Zz3DqXLdt79ONyaANdxBgqS41lj2mzene0ZDmkc6cvUPybu DaYuj5eWjaZYK6VqQLkrjBUksg/Ujx6WUP1kgIlnAeP/40fj55DebzSYwBrEN2aI bk6hj34yX20x2JshprGxx+8vVGRKyRiASQJ4dXzQV8jQ4JXIhhl6omWoQzuHvU75 B1h2HYM= -----END CERTIFICATE-----Generated at Sun Feb 16 15:28:17 2025 by rpki-client