$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/2CC58A76368D11ED9458DD49C4F9AE02.roa File: 2CC58A76368D11ED9458DD49C4F9AE02.roa (raw, json) Hash identifier: Fe10zVA7rHrCMCOSaKOiibRFNwwElU/iQdscAcYAaJU= Subject key identifier: 6A:DA:B0:2F:71:AD:94:30:44:3F:48:7B:3C:B5:6B:2E:80:53:73:38 Certificate issuer: /CN=A911BD54/serialNumber=BCFAF8D33F18A8D3602029EBCEDE1E36AF20715C Certificate serial: 2978 Authority key identifier: BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/2CC58A76368D11ED9458DD49C4F9AE02.roa Signing time: Tue 31 Dec 2024 15:53:00 +0000 ROA not before: Tue 31 Dec 2024 15:53:00 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 141692 IP address blocks: 202.80.224.0/24 maxlen: 24 2405:9800:c90c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10616 (0x2978) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54 Validity Not Before: Dec 31 15:53:00 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=6774135c-13ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:76:2a:54:37:bf:0f:d6:c4:f9:3d:be:14:2f: 52:d7:6c:ae:86:30:f1:89:02:89:38:80:0d:f7:50: 59:66:79:40:b0:c1:7b:d6:14:c2:f9:68:72:a7:6e: 72:a0:88:5a:fe:c3:c2:2c:02:26:13:ce:84:a3:f0: 25:75:dc:6b:a9:54:d5:ef:72:41:48:97:aa:75:e8: ae:65:6e:ee:94:ed:82:60:34:ce:14:18:65:d8:94: 1c:e7:42:20:12:b9:ba:6c:9d:4d:48:11:d9:a4:82: 14:d1:2b:0d:5e:2a:64:69:1c:b5:b5:eb:23:60:47: ea:85:2c:d4:fc:b4:0b:e9:c3:6a:6a:65:b3:15:d8: 10:d9:09:d2:85:53:11:26:68:a7:50:12:2a:7a:5f: 6b:94:5a:f9:d5:34:c8:a2:73:e6:31:2f:83:5b:de: 17:08:56:d4:85:84:7b:33:f6:7a:ca:7c:74:c9:11: 5d:c8:9d:03:c4:07:7c:a4:9e:5c:64:05:f7:29:2a: 92:3b:0e:84:44:6b:50:63:c4:34:aa:7f:30:16:20: 8f:06:86:0d:af:93:3c:ab:ef:ad:a9:27:3b:c1:e3: ed:e7:c2:43:0c:1e:0f:16:ef:0d:01:55:9b:72:9f: 6f:34:bf:d1:cd:8f:96:f9:a0:df:6b:df:1b:bd:dc: b1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:DA:B0:2F:71:AD:94:30:44:3F:48:7B:3C:B5:6B:2E:80:53:73:38 X509v3 Authority Key Identifier: keyid:BC:FA:F8:D3:3F:18:A8:D3:60:20:29:EB:CE:DE:1E:36:AF:20:71:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/vPr40z8YqNNgICnrzt4eNq8gcVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vPr40z8YqNNgICnrzt4eNq8gcVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/3E281C98004911E5B4B64F63C4F9AE02/2CC58A76368D11ED9458DD49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.80.224.0/24 IPv6: 2405:9800:c90c::/48 Signature Algorithm: sha256WithRSAEncryption bf:97:98:56:84:e2:a7:4e:cc:da:3d:53:ca:1f:52:de:16:ad: 9a:8e:1f:b6:db:4f:74:79:16:b4:f7:03:64:f8:fe:12:71:b6: f0:45:09:fa:e1:77:e5:5c:29:25:2a:8c:9c:0b:06:36:66:1e: e8:07:f8:a7:82:21:62:02:9d:42:f0:a8:e3:80:66:b3:c7:0f: 2c:5d:6e:9c:ec:47:a8:3d:61:91:b2:75:30:48:1c:cc:18:df: 82:33:e7:7f:f2:94:4d:94:05:fc:ed:0f:f3:af:e4:a3:51:84: 98:b1:34:65:4a:49:d0:28:64:a3:0d:79:88:1d:ab:0c:78:b9: ca:21:44:47:65:96:d7:82:80:b5:14:64:d8:da:dd:0f:6d:70: 46:21:ee:26:2c:01:d2:02:b0:cb:8b:8b:5e:69:0a:5d:7b:4a: b7:b6:49:64:76:35:27:28:f8:f0:68:b6:1b:7e:c3:12:f3:f1: 9d:67:e3:15:b4:8d:53:e7:bf:f3:3c:04:34:ad:25:b0:b0:bd: 5c:5a:61:f9:ac:31:90:1c:0f:29:9c:cf:73:c4:e1:ed:b7:67: 35:9e:b6:d9:70:16:d9:25:4e:4b:ef:12:72:ae:b2:24:96:cd: 0e:61:bc:06:47:28:77:48:a9:b1:4e:c9:f2:5e:cb:c9:d5:94: 83:77:06:0f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICKXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKEJDRkFGOEQzM0YxOEE4RDM2MDIwMjlFQkNFREUxRTM2 QUYyMDcxNUMwHhcNMjQxMjMxMTU1MzAwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02Nzc0MTM1Yy0xM2VkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz3YqVDe/D9bE+T2+FC9S12yuhjDxiQKJOIAN91BZZnlAsMF71hTC+Whyp25y oIha/sPCLAImE86Eo/AlddxrqVTV73JBSJeqdeiuZW7ulO2CYDTOFBhl2JQc50Ig Erm6bJ1NSBHZpIIU0SsNXipkaRy1tesjYEfqhSzU/LQL6cNqamWzFdgQ2QnShVMR JminUBIqel9rlFr51TTIonPmMS+DW94XCFbUhYR7M/Z6ynx0yRFdyJ0DxAd8pJ5c ZAX3KSqSOw6ERGtQY8Q0qn8wFiCPBoYNr5M8q++tqSc7wePt58JDDB4PFu8NAVWb cp9vNL/RzY+W+aDfa98bvdyxawIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGrasC9x rZQwRD9Iezy1ay6AU3M4MB8GA1UdIwQYMBaAFLz6+NM/GKjTYCAp687eHjavIHFc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC8zRTI4MUM5ODAw NDkxMUU1QjRCNjRGNjNDNEY5QUUwMi92UHI0MHo4WXFOTmdJQ25yenQ0ZU5xOGdj VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZQcjQwejhZcU5OZ0lDbnJ6dDRlTnE4Z2NWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvM0UyODFDOTgwMDQ5MTFFNUI0QjY0RjYzQzRGOUFFMDIvMkNDNThBNzYz NjhEMTFFRDk0NThERDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBADKUOAwDwQCAAIwCQMHACQFmADJDDANBgkqhkiG9w0BAQsF AAOCAQEAv5eYVoTip07M2j1Tyh9S3hatmo4ftttPdHkWtPcDZPj+EnG28EUJ+uF3 5VwpJSqMnAsGNmYe6Af4p4IhYgKdQvCo44Bms8cPLF1unOxHqD1hkbJ1MEgczBjf gjPnf/KUTZQF/O0P86/ko1GEmLE0ZUpJ0Chkow15iB2rDHi5yiFER2WW14KAtRRk 2NrdD21wRiHuJiwB0gKwy4uLXmkKXXtKt7ZJZHY1Jyj48Gi2G37DEvPxnWfjFbSN U+e/8zwENK0lsLC9XFph+awxkBwPKZzPc8Th7bdnNZ622XAW2SVOS+8Scq6yJJbN DmG8Bkcod0ipsU7J8l7LydWUg3cGDw== -----END CERTIFICATE-----Generated at Sun Feb 16 20:13:46 2025 by rpki-client