$ rpki-client -vvf rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/2012E112712611EB8BCB2B84C4F9AE02.roa File: 2012E112712611EB8BCB2B84C4F9AE02.roa (raw, json) Hash identifier: FJnt9KyNpovZVT4KgJ0xj8i7LSpu4gQ2ADTSkmcyTt0= Subject key identifier: 65:E8:54:FD:97:FA:A2:E5:B5:E8:0A:45:E6:3D:08:D8:07:F2:F2:02 Certificate issuer: /CN=A914275E/serialNumber=6284207D0D27A2E8BF4D2EB14FB129CAD4F6CC3F Certificate serial: 0DB9 Authority key identifier: 62:84:20:7D:0D:27:A2:E8:BF:4D:2E:B1:4F:B1:29:CA:D4:F6:CC:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/2012E112712611EB8BCB2B84C4F9AE02.roa Signing time: Sat 24 Feb 2024 18:36:53 +0000 ROA not before: Sat 24 Feb 2024 18:36:53 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 58955 IP address blocks: 116.206.124.0/22 maxlen: 22 116.206.124.0/24 maxlen: 24 116.206.125.0/24 maxlen: 24 116.206.126.0/24 maxlen: 24 116.206.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.crl rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3513 (0xdb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914275E/serialNumber=6284207D0D27A2E8BF4D2EB14FB129CAD4F6CC3F Validity Not Before: Feb 24 18:36:53 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65da3745-96b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:5f:e1:b4:5d:b6:81:bf:6f:24:2d:43:21:9f: fb:0f:27:c3:b1:24:f4:f9:15:93:c8:d8:49:76:f3: a5:7e:f6:c4:3d:72:7f:c3:fb:5e:c9:8d:55:28:9e: 1f:1c:81:64:cd:e8:96:64:bd:c9:df:20:3a:fb:bf: 4c:6e:0a:b5:ec:92:45:12:92:8b:72:e6:5e:fa:e5: 83:9c:32:6e:44:a2:75:15:32:f3:e7:9f:d7:e6:fc: 2e:3b:db:27:a3:78:6f:d6:01:87:0b:b8:7e:31:e9: f4:46:a7:8a:b6:ad:0c:ce:57:8d:d7:1e:0a:67:3a: a2:30:9d:8c:2e:5e:8b:c4:a4:c6:13:96:3c:bb:79: 79:23:9e:ee:6e:66:26:67:52:99:b5:8e:f9:e8:2e: 44:bf:3c:20:ac:2b:5c:04:89:3e:08:27:0c:fa:a2: be:c4:b8:0e:80:c0:4d:05:fd:5d:10:6f:81:77:61: 05:78:d2:87:17:a6:b7:02:48:cb:87:df:48:81:7d: 2e:45:f7:8a:a4:97:a0:5c:87:3f:e8:c4:5c:5a:4b: f5:bf:66:3d:67:f0:98:c4:44:7d:7f:6b:bc:17:42: ec:98:d9:c6:51:b6:1d:ca:7e:c4:72:19:85:a2:aa: 3f:e4:13:5a:c8:ce:dd:cb:d5:ec:6e:27:2b:ca:aa: c3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:E8:54:FD:97:FA:A2:E5:B5:E8:0A:45:E6:3D:08:D8:07:F2:F2:02 X509v3 Authority Key Identifier: keyid:62:84:20:7D:0D:27:A2:E8:BF:4D:2E:B1:4F:B1:29:CA:D4:F6:CC:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/YoQgfQ0noui_TS6xT7EpytT2zD8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YoQgfQ0noui_TS6xT7EpytT2zD8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914275E/4DF7DB04911811E994793C4DC4F9AE02/2012E112712611EB8BCB2B84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 116.206.124.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:44:26:f6:36:2a:fd:43:6d:c8:76:58:a2:57:fe:ff:38:55: 3d:db:7f:61:fe:9d:d0:bf:55:ba:04:82:27:f1:4b:b2:3f:23: ea:d3:c8:d7:a0:6e:0e:08:eb:a3:9d:7e:54:b7:f6:5b:dd:41: 88:d6:b3:44:24:04:db:85:4c:8c:d2:12:95:6d:14:16:ea:a3: 4b:93:c2:93:97:a3:45:79:41:14:29:1b:21:d3:27:d1:8b:f7: de:8f:b1:98:34:6e:ea:e7:8b:03:fe:b2:67:c4:30:34:41:88: 7d:05:19:63:86:4b:a5:00:5c:00:36:26:0c:7c:f9:de:44:e8: 68:44:a2:aa:22:2f:bb:3b:bd:77:4f:6f:2c:47:81:cc:d3:1b: d4:e9:cb:a1:6e:db:d6:87:f5:0c:67:d6:cb:7e:e1:71:85:68: ae:87:bd:b4:5e:08:aa:71:82:da:e3:45:fd:00:df:3a:5a:5f: 41:c5:33:ef:0a:b0:6d:29:01:d2:4e:4c:a4:ab:99:ee:5d:3d: 41:66:1a:d3:7d:94:96:5a:c7:c5:20:95:c3:b3:39:ec:bf:03: 86:4b:00:6c:5d:1d:3b:07:90:d0:c1:4f:83:90:cf:6d:11:03: 04:07:26:10:e5:46:4f:5d:d2:95:71:49:b6:20:a8:16:76:62: 81:83:69:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI3NUUxMTAvBgNVBAUTKDYyODQyMDdEMEQyN0EyRThCRjREMkVCMTRGQjEyOUNB RDRGNkNDM0YwHhcNMjQwMjI0MTgzNjUzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRhMzc0NS05NmI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw1/htF22gb9vJC1DIZ/7DyfDsST0+RWTyNhJdvOlfvbEPXJ/w/teyY1VKJ4f HIFkzeiWZL3J3yA6+79Mbgq17JJFEpKLcuZe+uWDnDJuRKJ1FTLz55/X5vwuO9sn o3hv1gGHC7h+Men0RqeKtq0MzleN1x4KZzqiMJ2MLl6LxKTGE5Y8u3l5I57ubmYm Z1KZtY756C5EvzwgrCtcBIk+CCcM+qK+xLgOgMBNBf1dEG+Bd2EFeNKHF6a3AkjL h99IgX0uRfeKpJegXIc/6MRcWkv1v2Y9Z/CYxER9f2u8F0LsmNnGUbYdyn7EchmF oqo/5BNayM7dy9XsbicryqrD5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGXoVP2X +qLltegKReY9CNgH8vICMB8GA1UdIwQYMBaAFGKEIH0NJ6Lov00usU+xKcrU9sw/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0Mjc1RS80REY3REIwNDkx MTgxMUU5OTQ3OTNDNERDNEY5QUUwMi9Zb1FnZlEwbm91aV9UUzZ4VDdFcHl0VDJ6 RDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lvUWdmUTBub3VpX1RTNnhUN0VweXRUMnpEOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI3NUUvNERGN0RCMDQ5MTE4MTFFOTk0NzkzQzREQzRGOUFFMDIvMjAxMkUxMTI3 MTI2MTFFQjhCQ0IyQjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ0znwwDQYJKoZIhvcNAQELBQADggEBAE1EJvY2Kv1Dbch2 WKJX/v84VT3bf2H+ndC/VboEgifxS7I/I+rTyNegbg4I66OdflS39lvdQYjWs0Qk BNuFTIzSEpVtFBbqo0uTwpOXo0V5QRQpGyHTJ9GL996PsZg0burniwP+smfEMDRB iH0FGWOGS6UAXAA2Jgx8+d5E6GhEoqoiL7s7vXdPbyxHgczTG9Tpy6Fu29aH9Qxn 1st+4XGFaK6HvbReCKpxgtrjRf0A3zpaX0HFM+8KsG0pAdJOTKSrme5dPUFmGtN9 lJZax8UglcOzOey/A4ZLAGxdHTsHkNDBT4OQz20RAwQHJhDlRk9d0pVxSbYgqBZ2 YoGDaRU= -----END CERTIFICATE-----Generated at Fri May 31 19:47:48 2024 by rpki-client on console-fra.rpki-client.org