$ rpki-client -vvf rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/10581DEAC75D11EBB00EBD1AC4F9AE02.roa File: 10581DEAC75D11EBB00EBD1AC4F9AE02.roa (raw, json) Hash identifier: CQryStIKzl8Fb6AQfW/9ZNw5rOCplIX4niEUR1rZPu8= Subject key identifier: 82:72:42:A7:D6:7C:6C:A2:68:84:67:7F:D1:6C:F4:8D:85:86:C7:20 Certificate issuer: /CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Certificate serial: 04C0 Authority key identifier: 66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/10581DEAC75D11EBB00EBD1AC4F9AE02.roa Signing time: Thu 01 Feb 2024 01:13:36 +0000 ROA not before: Thu 01 Feb 2024 01:13:36 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 134555 IP address blocks: 203.2.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1216 (0x4c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912519D/serialNumber=66B9D84F4336A89D84D1E02E820A79686E1E52C4 Validity Not Before: Feb 1 01:13:36 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65baf040-b880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:2f:0b:f2:a9:00:65:fe:26:32:6f:f0:33:8d: eb:06:fc:0d:de:cd:d1:e9:e7:5b:54:c9:2b:78:d9: 64:85:a6:41:b9:54:47:14:27:53:c5:50:ad:31:61: a5:da:9a:2f:59:64:91:8b:ba:66:d2:63:09:90:93: dd:5a:78:bb:df:fd:cd:6d:85:e7:60:06:81:05:e7: be:9c:b8:f2:ef:2a:ed:0c:a5:47:69:0b:ba:eb:7a: f3:81:43:97:f1:9a:b9:34:fb:b1:7a:53:95:cd:18: e7:89:bf:e8:76:fb:20:25:4f:d6:b1:98:74:b9:af: 1e:e2:af:db:2e:0d:5d:98:69:d5:34:86:58:1c:f9: be:22:9b:98:e0:24:f5:b6:ad:b1:b1:40:f2:27:1c: 02:e8:ba:a6:11:36:b6:2b:92:a3:eb:d2:7e:9e:ff: 84:c4:3a:27:f5:d4:0f:d1:97:92:90:b7:75:ed:97: f9:64:60:ac:16:4f:f8:44:95:7e:c2:0c:73:8e:96: 85:88:11:25:a8:07:30:7e:31:cb:12:96:91:35:ff: a9:61:c2:f0:7f:11:92:3d:72:68:59:3a:f8:c8:0c: 56:8a:b2:41:12:19:29:e0:56:03:2d:50:1c:17:33: a9:19:ea:26:03:4e:dc:60:6c:60:5a:bf:4b:a5:04: b1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:72:42:A7:D6:7C:6C:A2:68:84:67:7F:D1:6C:F4:8D:85:86:C7:20 X509v3 Authority Key Identifier: keyid:66:B9:D8:4F:43:36:A8:9D:84:D1:E0:2E:82:0A:79:68:6E:1E:52:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZrnYT0M2qJ2E0eAuggp5aG4eUsQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912519D/B8280664C75A11EB81E99E19C4F9AE02/10581DEAC75D11EBB00EBD1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.2.224.0/24 Signature Algorithm: sha256WithRSAEncryption 47:d3:47:e1:3e:e3:4e:98:a4:84:68:3b:90:d1:67:c2:da:f1: 25:37:1a:ea:52:15:04:76:b7:49:53:a7:64:28:8a:a0:43:97: 23:f2:91:b9:ec:a7:c3:45:93:db:37:94:ee:59:3a:62:08:f2: e1:6e:1c:1f:3d:29:55:2e:53:d7:30:ff:f0:d4:b1:0d:d8:27: a3:21:d1:40:d1:1e:56:5b:ad:f7:20:e3:a5:ce:0e:ad:1d:43: e4:dd:f6:ff:30:e3:f5:0d:63:55:59:27:6e:96:14:5f:58:e3: 5c:62:ba:c1:df:c0:04:f8:e8:c8:cd:2e:27:b7:a6:9e:af:5d: a5:87:8a:f9:eb:7f:f0:e0:da:c0:fc:5d:6f:57:ac:e4:95:7c: a0:57:60:8e:cb:3e:fa:12:10:9b:34:ed:97:86:c0:78:55:18: da:04:d3:e7:be:08:31:39:c6:b4:1a:d1:88:9d:8c:1b:53:50: ce:14:48:72:bf:7c:5e:14:77:c1:55:61:75:5f:91:2b:06:70: 74:b7:c4:17:86:2b:e0:6c:04:63:57:c2:7c:91:24:b5:9d:4e: ad:9e:8f:fc:94:5d:02:fb:91:44:0b:e5:7a:d4:3e:e7:49:ad: 66:fc:92:b2:1f:64:31:41:9c:bd:b3:10:99:85:af:ee:be:6a: 1a:07:6b:a0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxOUQxMTAvBgNVBAUTKDY2QjlEODRGNDMzNkE4OUQ4NEQxRTAyRTgyMEE3OTY4 NkUxRTUyQzQwHhcNMjQwMjAxMDExMzM2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJhZjA0MC1iODgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvS8L8qkAZf4mMm/wM43rBvwN3s3R6edbVMkreNlkhaZBuVRHFCdTxVCtMWGl 2povWWSRi7pm0mMJkJPdWni73/3NbYXnYAaBBee+nLjy7yrtDKVHaQu663rzgUOX 8Zq5NPuxelOVzRjnib/odvsgJU/WsZh0ua8e4q/bLg1dmGnVNIZYHPm+IpuY4CT1 tq2xsUDyJxwC6LqmETa2K5Kj69J+nv+ExDon9dQP0ZeSkLd17Zf5ZGCsFk/4RJV+ wgxzjpaFiBElqAcwfjHLEpaRNf+pYcLwfxGSPXJoWTr4yAxWirJBEhkp4FYDLVAc FzOpGeomA07cYGxgWr9LpQSxGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIJyQqfW fGyiaIRnf9Fs9I2FhscgMB8GA1UdIwQYMBaAFGa52E9DNqidhNHgLoIKeWhuHlLE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTE5RC9CODI4MDY2NEM3 NUExMUVCODFFOTlFMTlDNEY5QUUwMi9acm5ZVDBNMnFKMkUwZUF1Z2dwNWFHNGVV c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pybllUME0ycUoyRTBlQXVnZ3A1YUc0ZVVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjUxOUQvQjgyODA2NjRDNzVBMTFFQjgxRTk5RTE5QzRGOUFFMDIvMTA1ODFERUFD NzVEMTFFQkIwMEVCRDFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADLAuAwDQYJKoZIhvcNAQELBQADggEBAEfTR+E+406YpIRo O5DRZ8La8SU3GupSFQR2t0lTp2QoiqBDlyPykbnsp8NFk9s3lO5ZOmII8uFuHB89 KVUuU9cw//DUsQ3YJ6Mh0UDRHlZbrfcg46XODq0dQ+Td9v8w4/UNY1VZJ26WFF9Y 41xiusHfwAT46MjNLie3pp6vXaWHivnrf/Dg2sD8XW9XrOSVfKBXYI7LPvoSEJs0 7ZeGwHhVGNoE0+e+CDE5xrQa0YidjBtTUM4USHK/fF4Ud8FVYXVfkSsGcHS3xBeG K+BsBGNXwnyRJLWdTq2ej/yUXQL7kUQL5XrUPudJrWb8krIfZDFBnL2zEJmFr+6+ ahoHa6A= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:36 2024 by rpki-client on console-ams.rpki-client.org