$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/2CC58A76368D11ED9458DD49C4F9AE02.roa File: 2CC58A76368D11ED9458DD49C4F9AE02.roa (raw, json) Hash identifier: HrtXqQz7yJcWZ7iy44DfqyNFehKQQCMk9qHFggKDn4A= Subject key identifier: 78:9C:D7:F8:D5:83:A7:C7:0E:38:34:48:17:92:77:F2:E6:BD:16:38 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2820 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/2CC58A76368D11ED9458DD49C4F9AE02.roa Signing time: Thu 28 Dec 2023 16:03:04 +0000 ROA not before: Thu 28 Dec 2023 16:03:04 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141692 IP address blocks: 202.80.224.0/24 maxlen: 24 2405:9800:c90c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 16:10:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10272 (0x2820) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Validity Not Before: Dec 28 16:03:04 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658d9c38-1376 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1f:69:40:70:12:d3:86:5b:e0:69:02:97:84: 98:c5:40:cd:2a:1c:d0:89:2b:12:c8:d1:7b:d2:90: 73:71:a4:d3:96:29:39:3c:cd:dc:30:b6:93:77:73: 6c:c8:e7:1e:f9:0a:bc:e0:d8:97:18:80:88:5b:a3: dc:dc:7e:58:18:82:46:16:2a:9d:e7:18:c6:a8:65: 66:16:e6:71:4f:1d:a5:90:52:47:60:f9:cc:33:64: 45:09:c3:19:1f:51:f8:e1:1f:44:ca:d3:cf:8b:1e: b1:71:49:51:ec:b1:39:88:be:77:b0:13:9a:b2:08: 62:a0:4f:60:52:0b:c5:2a:65:9e:b8:e6:ef:87:22: b6:95:d0:43:ec:cc:36:0a:34:3c:b8:c9:4f:41:8a: 30:a8:85:4f:12:2b:ee:85:6c:0d:7c:e0:db:88:f4: d2:fe:54:b8:85:0c:e3:1f:40:24:dc:bc:30:db:3d: 15:6f:0d:92:6a:67:e9:8d:d4:3a:3f:77:82:6e:fa: ed:ff:f7:3f:ad:aa:86:85:db:2c:37:7d:be:14:3b: bb:f5:15:ee:c8:76:6e:1f:a9:bc:10:c9:eb:20:94: e4:88:2a:a0:cc:9b:68:df:46:13:dc:57:cf:9e:9d: 0a:e9:c2:d1:25:93:e2:1b:fb:3b:7d:7b:76:04:b6: 85:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:9C:D7:F8:D5:83:A7:C7:0E:38:34:48:17:92:77:F2:E6:BD:16:38 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/2CC58A76368D11ED9458DD49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.80.224.0/24 IPv6: 2405:9800:c90c::/48 Signature Algorithm: sha256WithRSAEncryption 93:9c:35:95:71:7a:e3:4b:0f:00:85:3e:45:ad:ff:e8:4d:e6: 23:a8:9d:68:32:f7:5c:9e:90:64:d8:59:ae:d8:cf:51:a5:5c: b7:d2:19:64:33:a1:82:93:6f:8d:90:0d:6d:bf:83:30:6e:8f: c6:e3:5b:68:eb:ca:cf:75:3f:8e:ca:79:bb:46:67:89:fd:13: 03:f0:a1:7d:8b:97:e6:22:92:f4:95:62:9e:f6:4f:88:63:4c: 6c:5f:01:35:11:c6:85:48:73:86:38:58:d1:80:75:f7:89:f0: 3d:5e:f5:18:2d:b4:51:15:99:eb:5a:2d:aa:b6:a4:6e:e0:0b: b2:0d:61:1a:29:e3:e3:80:20:91:6c:8f:52:ab:42:6d:f1:7d: 14:c7:c2:a6:1d:85:b9:a2:d9:84:d5:ed:40:79:d6:f7:8c:f5: f5:8b:35:dc:79:e3:f2:87:12:9e:ab:1f:49:71:2a:ae:0c:b3: c7:1e:c7:1d:dc:d7:78:b2:1b:d0:08:eb:42:13:5e:69:2b:71: 3b:50:52:b2:71:a6:ec:90:72:76:d4:9a:6b:ce:6d:30:06:37: 13:dd:46:58:2c:24:ed:f8:d7:49:aa:6b:53:59:d4:6d:8e:0f: c2:b2:28:be:4f:01:8d:fc:85:60:5f:72:f5:85:cb:d4:68:ee: 15:66:44:cd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICKCAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjMxMjI4MTYwMzA0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkOWMzOC0xMzc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyR9pQHAS04Zb4GkCl4SYxUDNKhzQiSsSyNF70pBzcaTTlik5PM3cMLaTd3Ns yOce+Qq84NiXGICIW6Pc3H5YGIJGFiqd5xjGqGVmFuZxTx2lkFJHYPnMM2RFCcMZ H1H44R9EytPPix6xcUlR7LE5iL53sBOasghioE9gUgvFKmWeuObvhyK2ldBD7Mw2 CjQ8uMlPQYowqIVPEivuhWwNfODbiPTS/lS4hQzjH0Ak3Lww2z0Vbw2SamfpjdQ6 P3eCbvrt//c/raqGhdssN32+FDu79RXuyHZuH6m8EMnrIJTkiCqgzJto30YT3FfP np0K6cLRJZPiG/s7fXt2BLaF6wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHic1/jV g6fHDjg0SBeSd/LmvRY4MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvMkNDNThBNzYz NjhEMTFFRDk0NThERDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKUOAwDwQCAAIwCQMHACQFmADJDDANBgkqhkiG9w0BAQsF AAOCAQEAk5w1lXF640sPAIU+Ra3/6E3mI6idaDL3XJ6QZNhZrtjPUaVct9IZZDOh gpNvjZANbb+DMG6PxuNbaOvKz3U/jsp5u0Znif0TA/ChfYuX5iKS9JVinvZPiGNM bF8BNRHGhUhzhjhY0YB194nwPV71GC20URWZ61otqrakbuALsg1hGinj44AgkWyP UqtCbfF9FMfCph2FuaLZhNXtQHnW94z19Ys13Hnj8ocSnqsfSXEqrgyzxx7HHdzX eLIb0AjrQhNeaStxO1BSsnGm7JBydtSaa85tMAY3E91GWCwk7fjXSaprU1nUbY4P wrIovk8BjfyFYF9y9YXL1GjuFWZEzQ== -----END CERTIFICATE-----Generated at Thu Jun 6 18:47:43 2024 by rpki-client on console-fra.rpki-client.org