$ rpki-client -vvf rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/2EEE5DDCB88011EB9C88057CC4F9AE02.roa File: 2EEE5DDCB88011EB9C88057CC4F9AE02.roa (raw, json) Hash identifier: NR1SVCvj30A6pQwNp2dHbCZu3umNoMEReinsxF/kIrM= Subject key identifier: 07:61:5A:10:9B:FA:DC:80:86:F1:3E:23:E5:42:53:11:06:58:43:0C Certificate issuer: /CN=A912BCCF/serialNumber=8BD8799DCBA757C5B458D66E39C60C9CA3F79A6B Certificate serial: 0706 Authority key identifier: 8B:D8:79:9D:CB:A7:57:C5:B4:58:D6:6E:39:C6:0C:9C:A3:F7:9A:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9h5ncunV8W0WNZuOcYMnKP3mms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/2EEE5DDCB88011EB9C88057CC4F9AE02.roa Signing time: Sat 26 Oct 2024 21:33:04 +0000 ROA not before: Sat 26 Oct 2024 21:33:04 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 133096 IP address blocks: 43.249.200.0/22 maxlen: 22 43.249.203.0/24 maxlen: 24 103.242.244.0/22 maxlen: 22 103.242.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/i9h5ncunV8W0WNZuOcYMnKP3mms.crl rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/i9h5ncunV8W0WNZuOcYMnKP3mms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9h5ncunV8W0WNZuOcYMnKP3mms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1798 (0x706) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912BCCF/serialNumber=8BD8799DCBA757C5B458D66E39C60C9CA3F79A6B Validity Not Before: Oct 26 21:33:04 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671d6010-0aa6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:a9:94:05:24:e5:5b:c7:64:90:a1:be:a3:6a: 57:40:c9:6c:7b:4e:11:fd:ab:a7:46:b1:7f:f4:ee: 14:20:a9:fc:cc:ad:80:59:c9:b1:28:a2:70:f6:8d: 9c:e9:18:f9:95:44:7a:b3:96:91:37:98:ec:3a:4c: f3:f8:0d:11:ee:e8:b3:11:91:bf:81:92:14:ef:d3: 0d:67:a3:9a:31:4a:6e:0c:15:ba:87:41:0a:1b:6b: e8:eb:ca:53:b7:a0:e9:9a:d0:63:74:1d:75:16:0a: b1:c7:cf:a6:4e:f0:19:67:82:a5:1b:2e:6c:c8:07: 02:a2:d6:7e:76:0a:b4:c6:67:f6:2b:75:cd:da:51: 5a:03:bc:09:2f:fd:21:d1:af:5d:5e:30:4a:82:f3: f2:11:30:e8:61:37:e6:b3:d4:c7:32:81:7a:f2:87: 34:e1:ad:41:e8:c9:97:dc:f4:97:fa:49:5c:be:78: df:6f:11:57:a4:49:3a:37:36:6d:25:40:f3:72:97: 67:2a:91:4c:16:d6:02:8f:8e:7e:26:94:5d:89:61: 09:74:e8:c2:43:df:f6:ff:bb:1b:6a:7a:58:05:3a: d6:c9:d0:17:84:25:0e:f6:08:d4:9b:a8:cc:6f:16: 35:2d:f2:8c:23:84:29:14:67:65:ef:79:2a:96:07: 60:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:61:5A:10:9B:FA:DC:80:86:F1:3E:23:E5:42:53:11:06:58:43:0C X509v3 Authority Key Identifier: keyid:8B:D8:79:9D:CB:A7:57:C5:B4:58:D6:6E:39:C6:0C:9C:A3:F7:9A:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/i9h5ncunV8W0WNZuOcYMnKP3mms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i9h5ncunV8W0WNZuOcYMnKP3mms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912BCCF/6424E160190711EBAF468D2BC4F9AE02/2EEE5DDCB88011EB9C88057CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.200.0/22 103.242.244.0/22 Signature Algorithm: sha256WithRSAEncryption 75:60:88:25:de:df:62:f2:64:6d:34:a7:ae:ab:f2:25:fb:1e: b2:7a:81:19:81:29:de:03:12:64:83:ff:3f:c2:16:9f:63:e3: 05:6f:88:b0:ab:96:df:c0:1d:4e:1d:cc:69:8b:20:d0:06:32: 03:28:aa:a5:72:9e:45:16:c1:13:8f:0b:51:bf:d3:c6:c5:5e: f3:50:83:cd:96:8f:4d:7b:4b:09:e5:09:a3:bf:19:fa:d9:16: 05:fa:37:5c:cd:01:24:6b:2a:47:dd:5e:2e:45:40:9c:00:11: f1:e2:66:d4:d3:6a:b0:e9:85:98:37:65:09:08:32:e3:2d:8b: 08:11:ff:1a:c9:93:73:b3:1c:18:60:a4:74:2b:f8:72:96:bd: 90:ae:0b:fa:42:75:ee:a9:5d:05:58:18:e0:1e:3a:3e:ca:5e: 8f:65:9f:44:8b:c5:57:fd:dd:42:b9:47:bf:42:75:af:f9:e4: 09:6d:3b:e3:0f:a6:4c:f2:10:60:73:46:a8:95:70:ca:b1:40: 84:23:6f:6b:e8:2d:39:4e:ad:1b:83:f8:e2:c1:ee:3b:c6:85: 9d:d3:81:0b:06:ef:d3:fd:c4:b7:b7:b8:96:25:8b:1a:2e:76: 41:04:98:1d:89:36:65:c7:b0:05:7a:b8:43:a2:cb:83:27:39: d1:63:cf:d0 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBwYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkJDQ0YxMTAvBgNVBAUTKDhCRDg3OTlEQ0JBNzU3QzVCNDU4RDY2RTM5QzYwQzlD QTNGNzlBNkIwHhcNMjQxMDI2MjEzMzA0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFkNjAxMC0wYWE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu6mUBSTlW8dkkKG+o2pXQMlse04R/aunRrF/9O4UIKn8zK2AWcmxKKJw9o2c 6Rj5lUR6s5aRN5jsOkzz+A0R7uizEZG/gZIU79MNZ6OaMUpuDBW6h0EKG2vo68pT t6DpmtBjdB11Fgqxx8+mTvAZZ4KlGy5syAcCotZ+dgq0xmf2K3XN2lFaA7wJL/0h 0a9dXjBKgvPyETDoYTfms9THMoF68oc04a1B6MmX3PSX+klcvnjfbxFXpEk6NzZt JUDzcpdnKpFMFtYCj45+JpRdiWEJdOjCQ9/2/7sbanpYBTrWydAXhCUO9gjUm6jM bxY1LfKMI4QpFGdl73kqlgdgfQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAdhWhCb +tyAhvE+I+VCUxEGWEMMMB8GA1UdIwQYMBaAFIvYeZ3Lp1fFtFjWbjnGDJyj95pr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQkNDRi82NDI0RTE2MDE5 MDcxMUVCQUY0NjhEMkJDNEY5QUUwMi9pOWg1bmN1blY4VzBXTlp1T2NZTW5LUDNt bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2k5aDVuY3VuVjhXMFdOWnVPY1lNbktQM21tcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkJDQ0YvNjQyNEUxNjAxOTA3MTFFQkFGNDY4RDJCQzRGOUFFMDIvMkVFRTVERENC ODgwMTFFQjlDODgwNTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+cgDBAJn8vQwDQYJKoZIhvcNAQELBQADggEBAHVgiCXe 32LyZG00p66r8iX7HrJ6gRmBKd4DEmSD/z/CFp9j4wVviLCrlt/AHU4dzGmLINAG MgMoqqVynkUWwROPC1G/08bFXvNQg82Wj017SwnlCaO/GfrZFgX6N1zNASRrKkfd Xi5FQJwAEfHiZtTTarDphZg3ZQkIMuMtiwgR/xrJk3OzHBhgpHQr+HKWvZCuC/pC de6pXQVYGOAeOj7KXo9ln0SLxVf93UK5R79Cda/55AltO+MPpkzyEGBzRqiVcMqx QIQjb2voLTlOrRuD+OLB7jvGhZ3TgQsG79P9xLe3uJYlixoudkEEmB2JNmXHsAV6 uEOiy4MnOdFjz9A= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:36 2024 by rpki-client on console-ams.rpki-client.org