$ rpki-client -vvf rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/AF2CB5CE101E11ED9FA78415C4F9AE02.roa File: AF2CB5CE101E11ED9FA78415C4F9AE02.roa (raw, json) Hash identifier: A3euC+JMbFaWVx5aIIYMhJy2o8x3eQCdnzPijIO/OPI= Subject key identifier: 3F:FC:40:A0:C0:B4:BA:1C:79:73:1B:5C:68:6C:CC:6B:07:28:1C:32 Certificate issuer: /CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Certificate serial: 0C51 Authority key identifier: 80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/AF2CB5CE101E11ED9FA78415C4F9AE02.roa Signing time: Thu 02 May 2024 19:07:54 +0000 ROA not before: Thu 02 May 2024 19:07:54 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 210504 IP address blocks: 144.48.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:05:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3153 (0xc51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911AE8B/serialNumber=802C751FA984347DF9C93CEDB97ED951A9528286 Validity Not Before: May 2 19:07:54 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6633e48a-6df8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:18:d4:00:eb:7c:c4:87:43:3e:53:d3:d7:95: bf:ed:aa:08:05:06:72:23:39:90:17:8d:92:94:7c: db:28:ef:b5:9b:30:f6:1f:c0:0d:10:11:66:41:45: 51:b0:7c:27:81:cb:5a:5d:c7:3e:82:ed:2b:07:98: 3e:47:a1:7e:30:b1:7f:27:72:5b:42:ea:e0:dc:99: 61:a2:24:a2:64:71:96:ac:0d:3f:86:fa:c4:47:5e: d8:21:36:90:aa:e4:58:11:42:4b:3b:0b:ec:c7:f9: 47:16:c0:f5:d0:03:93:d3:85:f8:1d:5f:8c:40:8b: 9b:7c:03:e7:7b:4e:76:e2:16:9f:f3:7a:f1:be:5d: 7c:9f:69:7f:a3:6e:bf:eb:e0:a1:11:43:dc:8f:6b: cc:0d:c9:55:4e:fc:bc:b4:11:59:fe:75:c7:4b:c4: 92:5c:07:d0:73:e6:cf:1d:ac:19:10:85:b5:04:d2: 54:d5:2e:f6:c1:05:db:55:91:d8:ed:b9:d0:a1:74: 8f:c9:19:59:09:7c:35:6d:57:3f:a3:ee:93:30:f9: 4d:cf:c5:e7:9a:b2:ce:07:af:97:48:01:fe:fc:78: 13:8e:27:1c:65:3c:ae:db:d0:de:56:21:1e:68:58: b9:3b:dc:c5:f7:0f:ff:be:30:fd:fc:c6:1e:da:5f: a6:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:FC:40:A0:C0:B4:BA:1C:79:73:1B:5C:68:6C:CC:6B:07:28:1C:32 X509v3 Authority Key Identifier: keyid:80:2C:75:1F:A9:84:34:7D:F9:C9:3C:ED:B9:7E:D9:51:A9:52:82:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/gCx1H6mENH35yTztuX7ZUalSgoY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gCx1H6mENH35yTztuX7ZUalSgoY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911AE8B/EC257CC6E02511E991A9774DC4F9AE02/AF2CB5CE101E11ED9FA78415C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 144.48.35.0/24 Signature Algorithm: sha256WithRSAEncryption 22:99:ce:6f:b1:66:65:ec:a8:c0:1f:23:f8:de:8c:bd:68:42: 0a:1e:16:f7:c0:c1:ca:9c:4a:7c:c5:7e:e0:9c:51:09:14:7a: 82:2a:09:9d:cb:9f:ae:7e:4f:22:da:ae:6e:2b:2a:fd:a2:28: 18:67:bb:ac:e0:e7:46:62:7b:28:9c:d7:01:73:65:3b:57:7c: 50:30:2d:f9:ac:d7:43:57:db:a5:5e:6b:09:14:75:a7:64:bd: 7d:6d:ce:5e:ef:e4:75:76:90:40:89:f4:05:2d:22:8c:e6:15: ff:8e:8d:00:b1:ff:dc:fe:90:dd:43:2b:a2:0c:7c:56:db:a7: 73:9a:63:30:d0:25:95:fe:02:d4:af:ee:69:0c:2f:c3:58:ed: df:e3:88:11:69:4f:01:db:44:d1:ca:df:84:fe:ca:fc:3f:46: ae:84:7f:dc:5d:81:e1:0a:31:17:69:37:02:d6:44:13:06:cb: ab:ed:d5:ce:64:d8:45:21:3b:ea:34:87:5b:3c:74:c4:f0:7a: d4:34:49:aa:9e:92:02:3f:de:a4:ec:b8:e7:77:eb:07:98:c2: 02:11:df:c0:d1:52:28:b5:e8:a8:a6:22:f2:99:bb:92:d6:78: 08:d2:3e:8e:20:e1:e4:14:83:a8:75:18:19:e7:99:bc:a0:b9: ce:41:25:f5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDFEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFFOEIxMTAvBgNVBAUTKDgwMkM3NTFGQTk4NDM0N0RGOUM5M0NFREI5N0VEOTUx QTk1MjgyODYwHhcNMjQwNTAyMTkwNzU0WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzZTQ4YS02ZGY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnxjUAOt8xIdDPlPT15W/7aoIBQZyIzmQF42SlHzbKO+1mzD2H8ANEBFmQUVR sHwngctaXcc+gu0rB5g+R6F+MLF/J3JbQurg3JlhoiSiZHGWrA0/hvrER17YITaQ quRYEUJLOwvsx/lHFsD10AOT04X4HV+MQIubfAPne0524haf83rxvl18n2l/o26/ 6+ChEUPcj2vMDclVTvy8tBFZ/nXHS8SSXAfQc+bPHawZEIW1BNJU1S72wQXbVZHY 7bnQoXSPyRlZCXw1bVc/o+6TMPlNz8XnmrLOB6+XSAH+/HgTjiccZTyu29DeViEe aFi5O9zF9w//vjD9/MYe2l+mWwIDAQABo4IClTCCApEwHQYDVR0OBBYEFD/8QKDA tLoceXMbXGhszGsHKBwyMB8GA1UdIwQYMBaAFIAsdR+phDR9+ck87bl+2VGpUoKG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUU4Qi9FQzI1N0NDNkUw MjUxMUU5OTFBOTc3NERDNEY5QUUwMi9nQ3gxSDZtRU5IMzV5VHp0dVg3WlVhbFNn b1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dDeDFINm1FTkgzNXlUenR1WDdaVWFsU2dvWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFFOEIvRUMyNTdDQzZFMDI1MTFFOTkxQTk3NzREQzRGOUFFMDIvQUYyQ0I1Q0Ux MDFFMTFFRDlGQTc4NDE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACQMCMwDQYJKoZIhvcNAQELBQADggEBACKZzm+xZmXsqMAf I/jejL1oQgoeFvfAwcqcSnzFfuCcUQkUeoIqCZ3Ln65+TyLarm4rKv2iKBhnu6zg 50Zieyic1wFzZTtXfFAwLfms10NX26VeawkUdadkvX1tzl7v5HV2kECJ9AUtIozm Ff+OjQCx/9z+kN1DK6IMfFbbp3OaYzDQJZX+AtSv7mkML8NY7d/jiBFpTwHbRNHK 34T+yvw/Rq6Ef9xdgeEKMRdpNwLWRBMGy6vt1c5k2EUhO+o0h1s8dMTwetQ0Saqe kgI/3qTsuOd36weYwgIR38DRUii16KimIvKZu5LWeAjSPo4g4eQUg6h1GBnnmbyg uc5BJfU= -----END CERTIFICATE-----Generated at Fri Nov 22 19:44:56 2024 by rpki-client on console-fra.rpki-client.org