$ rpki-client -vvf rpki.apnic.net/member_repository/A9196172/E867CB100F1B11E9A5DBDB1BC4F9AE02/2CE73CF20F1D11E991F4271EC4F9AE02.roa File: 2CE73CF20F1D11E991F4271EC4F9AE02.roa (raw, json) Hash identifier: fQktckL4j853d4MwLLoNQKlM58tMG0SvJli0T1FCa8U= Subject key identifier: 85:84:D2:AB:1B:FE:1F:D5:AE:D0:29:F2:23:EB:B1:87:FB:B5:A1:B2 Certificate issuer: /CN=A9196172/serialNumber=6C3A7E02ACBB73A6635BDAFE022D785D00C447DB Certificate serial: 104B Authority key identifier: 6C:3A:7E:02:AC:BB:73:A6:63:5B:DA:FE:02:2D:78:5D:00:C4:47:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDp-Aqy7c6ZjW9r-Ai14XQDER9s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9196172/E867CB100F1B11E9A5DBDB1BC4F9AE02/2CE73CF20F1D11E991F4271EC4F9AE02.roa Signing time: Fri 08 Mar 2024 17:56:09 +0000 ROA not before: Fri 08 Mar 2024 17:56:09 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 132132 IP address blocks: 101.100.187.0/24 maxlen: 24 101.100.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9196172/E867CB100F1B11E9A5DBDB1BC4F9AE02/bDp-Aqy7c6ZjW9r-Ai14XQDER9s.crl rsync://rpki.apnic.net/member_repository/A9196172/E867CB100F1B11E9A5DBDB1BC4F9AE02/bDp-Aqy7c6ZjW9r-Ai14XQDER9s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDp-Aqy7c6ZjW9r-Ai14XQDER9s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 17:18:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4171 (0x104b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9196172/serialNumber=6C3A7E02ACBB73A6635BDAFE022D785D00C447DB Validity Not Before: Mar 8 17:56:09 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65eb5138-91a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:59:0c:9f:67:76:8e:2b:66:57:3c:52:f4:bc: 72:81:e1:a4:dc:78:5c:ca:e0:9d:1d:31:43:4d:5a: 02:e3:85:a8:dd:47:69:13:cb:f8:64:7b:cc:9c:9c: b1:e2:6d:00:de:5e:28:ee:1c:57:86:bc:d0:a5:66: 5e:f0:92:83:f7:0b:e0:ff:bc:f5:f7:e5:78:d4:36: 9b:0f:c6:48:98:98:4a:07:65:c0:68:ac:f1:4f:9f: af:40:f3:0c:3d:78:c8:ca:68:c4:1b:09:98:9d:8a: a7:d4:70:69:74:e6:7e:ff:32:ed:90:ab:bd:6a:2f: c8:6b:d7:97:d2:26:28:6f:94:c2:48:30:f2:67:62: ba:a4:94:c0:82:bf:a8:f1:2a:1a:bd:b9:c5:9b:6a: 52:26:c0:d9:54:df:47:8b:c6:be:06:60:55:6b:bd: f0:0b:4d:46:93:5b:0e:36:9d:86:fd:0e:5a:d6:d6: 21:15:7c:43:56:84:76:9d:d5:31:f6:38:4a:e5:48: b8:fe:85:9c:96:78:50:a2:e7:96:ce:06:95:e0:44: 6d:f4:da:dc:40:8b:82:1f:d0:73:91:c4:17:d2:88: e4:d6:91:5f:12:73:28:66:21:cd:ee:2e:a5:d1:6e: ce:86:d4:83:7c:f2:61:7d:51:0e:19:47:6f:6f:c0: eb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:84:D2:AB:1B:FE:1F:D5:AE:D0:29:F2:23:EB:B1:87:FB:B5:A1:B2 X509v3 Authority Key Identifier: keyid:6C:3A:7E:02:AC:BB:73:A6:63:5B:DA:FE:02:2D:78:5D:00:C4:47:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9196172/E867CB100F1B11E9A5DBDB1BC4F9AE02/bDp-Aqy7c6ZjW9r-Ai14XQDER9s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDp-Aqy7c6ZjW9r-Ai14XQDER9s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9196172/E867CB100F1B11E9A5DBDB1BC4F9AE02/2CE73CF20F1D11E991F4271EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.100.187.0/24 101.100.191.0/24 Signature Algorithm: sha256WithRSAEncryption 53:dd:97:d4:14:ad:51:d6:9b:80:2a:f8:55:e2:4d:6d:86:33: 8c:16:f4:01:46:bb:17:db:9b:79:80:7d:cc:c6:4e:23:1e:dd: 61:ae:51:4a:a7:39:43:fb:6b:83:f8:62:2c:fc:f9:80:c0:85: 60:61:78:cd:57:96:e8:55:bf:de:5f:0a:68:7e:12:8f:fb:c3: cb:47:83:5c:42:52:a6:bf:d3:f7:58:c8:e7:0a:c3:b4:46:6e: 74:93:36:5c:d4:89:eb:1a:f7:d9:62:ed:53:1e:58:a0:1d:ed: f3:19:b6:58:7b:5e:c0:8d:68:05:b1:48:48:0e:ab:b8:c8:80: 5a:45:42:bc:ea:81:20:de:e7:28:69:cb:9c:df:59:91:bd:0a: 66:ab:21:dd:58:e7:9e:f8:db:df:dd:de:6e:13:ce:18:97:e3: 39:61:52:1a:70:72:46:b1:c6:10:71:e3:7c:54:0e:38:ae:5a: f3:9c:11:02:d6:4c:a8:85:d9:ff:d6:a9:8b:15:b0:48:18:43: ac:04:a3:3b:65:05:80:3f:c8:a6:4b:8c:d8:0a:c4:75:fb:bd: e6:e3:6e:ee:be:2f:67:64:a3:19:64:86:b8:4f:61:06:85:5b: bb:06:39:cb:49:03:ca:f5:81:23:23:67:75:03:f9:fc:85:66: 10:4a:d9:c2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEEswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTYxNzIxMTAvBgNVBAUTKDZDM0E3RTAyQUNCQjczQTY2MzVCREFGRTAyMkQ3ODVE MDBDNDQ3REIwHhcNMjQwMzA4MTc1NjA5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWViNTEzOC05MWE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4lkMn2d2jitmVzxS9LxygeGk3HhcyuCdHTFDTVoC44Wo3UdpE8v4ZHvMnJyx 4m0A3l4o7hxXhrzQpWZe8JKD9wvg/7z19+V41DabD8ZImJhKB2XAaKzxT5+vQPMM PXjIymjEGwmYnYqn1HBpdOZ+/zLtkKu9ai/Ia9eX0iYob5TCSDDyZ2K6pJTAgr+o 8SoavbnFm2pSJsDZVN9Hi8a+BmBVa73wC01Gk1sONp2G/Q5a1tYhFXxDVoR2ndUx 9jhK5Ui4/oWclnhQoueWzgaV4ERt9NrcQIuCH9BzkcQX0ojk1pFfEnMoZiHN7i6l 0W7OhtSDfPJhfVEOGUdvb8DrJQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIWE0qsb /h/VrtAp8iPrsYf7taGyMB8GA1UdIwQYMBaAFGw6fgKsu3OmY1va/gIteF0AxEfb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NjE3Mi9FODY3Q0IxMDBG MUIxMUU5QTVEQkRCMUJDNEY5QUUwMi9iRHAtQXF5N2M2WmpXOXItQWkxNFhRREVS OXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JEcC1BcXk3YzZaalc5ci1BaTE0WFFERVI5cy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTYxNzIvRTg2N0NCMTAwRjFCMTFFOUE1REJEQjFCQzRGOUFFMDIvMkNFNzNDRjIw RjFEMTFFOTkxRjQyNzFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABlZLsDBABlZL8wDQYJKoZIhvcNAQELBQADggEBAFPdl9QU rVHWm4Aq+FXiTW2GM4wW9AFGuxfbm3mAfczGTiMe3WGuUUqnOUP7a4P4Yiz8+YDA hWBheM1XluhVv95fCmh+Eo/7w8tHg1xCUqa/0/dYyOcKw7RGbnSTNlzUiesa99li 7VMeWKAd7fMZtlh7XsCNaAWxSEgOq7jIgFpFQrzqgSDe5yhpy5zfWZG9CmarId1Y 557429/d3m4TzhiX4zlhUhpwckaxxhBx43xUDjiuWvOcEQLWTKiF2f/WqYsVsEgY Q6wEoztlBYA/yKZLjNgKxHX7vebjbu6+L2dkoxlkhrhPYQaFW7sGOctJA8r1gSMj Z3UD+fyFZhBK2cI= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org