$ rpki-client -vvf rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8EADC8C617DC11EE959DE671C4F9AE02.roa File: 8EADC8C617DC11EE959DE671C4F9AE02.roa (raw, json) Hash identifier: qWKBqzVZNaIWfle8O0qZvhFMlwqBUkUBmN22bjyzZlw= Subject key identifier: 2A:8F:D4:25:2E:3F:D3:45:E7:D2:42:95:12:68:6C:FD:38:6D:23:36 Certificate issuer: /CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Certificate serial: 0C1F Authority key identifier: 40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8EADC8C617DC11EE959DE671C4F9AE02.roa Signing time: Wed 06 Nov 2024 19:08:58 +0000 ROA not before: Wed 06 Nov 2024 19:08:58 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 65110 IP address blocks: 58.26.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:05:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3103 (0xc1f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911CA78/serialNumber=40562C143A29CB19C70FFC9B99B60BBECD1D73B6 Validity Not Before: Nov 6 19:08:58 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=672bbeca-dd2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:63:9b:12:d2:8e:8a:af:c1:cb:8b:20:79:70: fd:34:0e:34:e0:f1:e1:fe:5e:81:72:81:83:49:66: 9f:07:b1:91:e5:fc:a2:ec:c8:17:ff:41:46:13:2b: a8:52:cb:86:06:f6:1e:26:df:90:86:75:1e:d9:a1: be:de:2c:8f:18:fb:80:e5:7f:92:d0:42:e1:68:94: f5:66:b5:f6:75:ef:dc:c7:13:46:bc:1c:a5:0c:77: 5a:02:3d:44:92:c4:0d:df:44:02:13:54:37:37:61: 3f:39:ba:33:e9:11:12:78:dd:77:e7:2b:4d:d3:f0: 12:6c:1a:e9:6d:46:20:aa:d4:37:b8:ec:bb:ec:e3: ce:bc:44:c3:27:e2:15:84:ef:92:48:b6:de:f3:c5: dc:cb:0a:1e:2b:aa:3a:5d:ba:04:b8:3e:33:89:13: 53:b9:6a:b4:7f:07:8b:d4:05:9e:13:54:bd:0e:a3: 7e:95:a6:d6:86:42:79:01:93:7c:62:f7:c6:4a:83: 7f:94:87:c4:07:65:23:8e:25:16:a3:9e:f6:6e:d5: 01:5f:39:09:4a:14:1c:65:e2:91:ee:ab:50:02:3b: 01:ae:bd:8e:8c:d1:ed:9a:d1:b7:22:17:a9:ae:42: c0:63:58:5d:da:99:9e:98:5e:8b:4d:e9:6c:56:db: 34:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:8F:D4:25:2E:3F:D3:45:E7:D2:42:95:12:68:6C:FD:38:6D:23:36 X509v3 Authority Key Identifier: keyid:40:56:2C:14:3A:29:CB:19:C7:0F:FC:9B:99:B6:0B:BE:CD:1D:73:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/QFYsFDopyxnHD_ybmbYLvs0dc7Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QFYsFDopyxnHD_ybmbYLvs0dc7Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911CA78/BE8846D235D811EAA730EC46C4F9AE02/8EADC8C617DC11EE959DE671C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.26.224.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:0e:9f:08:f4:47:0d:a9:06:e4:d7:6a:e9:ea:b4:d7:46:92: 04:cc:28:4d:74:0e:2d:e5:a9:41:8e:16:c6:14:4f:66:3b:00: 4c:d8:db:7b:48:67:0e:0f:4b:9a:f6:8b:1b:19:13:6a:86:8d: 0e:e8:14:21:7a:11:df:88:15:31:66:54:dc:70:04:d4:16:85: 37:9c:75:24:fb:78:a1:94:f0:0b:3c:1c:fb:1a:a1:74:86:8e: 69:11:55:82:93:6f:92:cf:7b:f1:43:b6:93:32:fa:60:b2:0b: db:f0:a3:cb:58:b2:3c:0e:a5:10:a7:66:ce:0f:aa:a9:d4:11: d8:91:0f:a4:84:e8:e6:c8:bc:ae:4c:ec:0d:fb:d8:cc:03:59: 80:0a:75:b3:6c:86:47:4a:36:95:91:e2:c4:d5:a5:6c:f6:9f: fb:d9:f3:45:33:8a:9b:99:83:ad:25:68:fe:9d:af:7c:4a:1f: a5:ba:99:27:26:63:14:c2:81:f8:b6:22:9f:d0:a8:d8:4c:a7: 52:15:67:9d:01:9e:90:12:70:ef:19:ee:ad:83:a7:4d:62:a2: 19:49:4b:d8:c4:64:ac:ab:86:69:3f:ee:12:7e:45:ae:5c:d3: e3:90:fe:4c:31:c7:2d:58:4e:82:ba:c2:a3:3b:cd:86:52:31: 19:2a:30:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDB8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUNBNzgxMTAvBgNVBAUTKDQwNTYyQzE0M0EyOUNCMTlDNzBGRkM5Qjk5QjYwQkJF Q0QxRDczQjYwHhcNMjQxMTA2MTkwODU4WhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJiYmVjYS1kZDJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn2ObEtKOiq/By4sgeXD9NA404PHh/l6BcoGDSWafB7GR5fyi7MgX/0FGEyuo UsuGBvYeJt+QhnUe2aG+3iyPGPuA5X+S0ELhaJT1ZrX2de/cxxNGvBylDHdaAj1E ksQN30QCE1Q3N2E/Oboz6RESeN135ytN0/ASbBrpbUYgqtQ3uOy77OPOvETDJ+IV hO+SSLbe88XcywoeK6o6XboEuD4ziRNTuWq0fweL1AWeE1S9DqN+labWhkJ5AZN8 YvfGSoN/lIfEB2UjjiUWo572btUBXzkJShQcZeKR7qtQAjsBrr2OjNHtmtG3Ihep rkLAY1hd2pmemF6LTelsVts0fQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCqP1CUu P9NF59JClRJobP04bSM2MB8GA1UdIwQYMBaAFEBWLBQ6KcsZxw/8m5m2C77NHXO2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQ0E3OC9CRTg4NDZEMjM1 RDgxMUVBQTczMEVDNDZDNEY5QUUwMi9RRllzRkRvcHl4bkhEX3libWJZTHZzMGRj N1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FGWXNGRG9weXhuSERfeWJtYllMdnMwZGM3WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUNBNzgvQkU4ODQ2RDIzNUQ4MTFFQUE3MzBFQzQ2QzRGOUFFMDIvOEVBREM4QzYx N0RDMTFFRTk1OURFNjcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6GuAwDQYJKoZIhvcNAQELBQADggEBAIoOnwj0Rw2pBuTX aunqtNdGkgTMKE10Di3lqUGOFsYUT2Y7AEzY23tIZw4PS5r2ixsZE2qGjQ7oFCF6 Ed+IFTFmVNxwBNQWhTecdST7eKGU8As8HPsaoXSGjmkRVYKTb5LPe/FDtpMy+mCy C9vwo8tYsjwOpRCnZs4PqqnUEdiRD6SE6ObIvK5M7A372MwDWYAKdbNshkdKNpWR 4sTVpWz2n/vZ80UzipuZg60laP6dr3xKH6W6mScmYxTCgfi2Ip/QqNhMp1IVZ50B npAScO8Z7q2Dp01iohlJS9jEZKyrhmk/7hJ+Ra5c0+OQ/kwxxy1YToK6wqM7zYZS MRkqML0= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:26 2024 by rpki-client on console-fra.rpki-client.org