$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/2EF3EBF0E0CD11ECB03A892AC4F9AE02.roa File: 2EF3EBF0E0CD11ECB03A892AC4F9AE02.roa (raw, json) Hash identifier: EnYv52D4MGyHdBwxc2MO7Z/3S/5Xdkpt39mLBrbHYZg= Subject key identifier: CE:E3:89:D6:C5:B9:97:77:07:2D:CA:55:E1:D5:EE:F8:F5:E0:5D:DD Certificate issuer: /CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Certificate serial: 052C Authority key identifier: 77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/2EF3EBF0E0CD11ECB03A892AC4F9AE02.roa Signing time: Wed 31 Jul 2024 02:34:07 +0000 ROA not before: Wed 31 Jul 2024 02:34:07 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 7568 IP address blocks: 202.183.136.0/22 maxlen: 22 2404:b0:f::/48 maxlen: 48 2404:b0:10::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1324 (0x52c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=77A201C58EB3B4208C91BA7ECED936E595E61A19 Validity Not Before: Jul 31 02:34:07 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9a29f-da0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:da:b8:39:fc:3a:3b:d3:5c:76:f7:32:2c:c1: e0:d9:19:b3:31:de:8b:36:4a:db:28:bf:7b:68:d3: b8:6a:2f:15:27:95:02:ef:03:8f:27:7a:4f:fb:7c: 88:67:22:58:07:b8:c5:d2:a3:48:19:a6:da:7b:20: 01:e0:0e:6d:34:47:68:17:cb:31:1d:50:55:be:c7: 18:66:42:b1:b2:13:67:e6:f1:b1:77:fa:d1:9f:21: 58:97:e2:fc:af:11:e3:98:56:a7:89:db:66:91:ca: e4:dd:46:13:16:cf:2d:75:fa:0f:c8:19:8d:c9:8b: bf:4e:24:c9:1a:cc:80:a5:66:79:0f:03:0c:ce:7e: 08:6e:29:1e:98:d8:b6:5c:3c:b9:b3:20:7f:2e:c8: 8f:aa:81:5a:22:6e:d5:db:5b:9e:28:e7:83:c7:8e: dd:3a:ec:0e:3f:c5:a0:77:a4:87:90:3a:d6:89:27: 90:82:a6:e7:90:67:14:97:cf:08:f2:36:2a:d3:ff: 60:c6:5d:f6:24:08:dd:30:87:bb:fc:a5:4f:d9:dc: e7:d3:4f:31:d7:f0:c6:09:75:3e:b9:09:3e:b3:f4: ea:72:5d:b6:49:d7:53:ef:45:18:e6:8f:c9:d8:52: 99:41:46:24:6e:91:c7:bf:62:73:dc:9f:d3:09:3b: 36:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:E3:89:D6:C5:B9:97:77:07:2D:CA:55:E1:D5:EE:F8:F5:E0:5D:DD X509v3 Authority Key Identifier: keyid:77:A2:01:C5:8E:B3:B4:20:8C:91:BA:7E:CE:D9:36:E5:95:E6:1A:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/d6IBxY6ztCCMkbp-ztk25ZXmGhk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d6IBxY6ztCCMkbp-ztk25ZXmGhk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/F5EDC7FC8A5711EC96EBC014C4F9AE02/2EF3EBF0E0CD11ECB03A892AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.183.136.0/22 IPv6: 2404:b0:f::-2404:b0:10:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 62:75:b2:af:15:d3:1c:c6:49:d5:10:a3:77:82:0c:77:bc:f6: c6:4f:8a:d4:42:6e:60:ee:f2:32:82:ca:79:10:89:5b:17:2d: 27:f7:e0:08:ff:a9:e9:d0:25:7e:ee:3d:25:3f:f9:40:d7:2d: 78:36:4c:fa:0d:d7:91:37:89:29:24:06:e7:e8:14:e3:f3:59: 07:0b:b9:03:76:f7:7f:6c:d5:b5:d9:78:0f:46:c3:cb:51:30: 80:31:10:8c:86:da:43:38:66:05:bb:1b:83:7a:cc:67:00:2d: d2:51:22:1b:2d:9f:07:b0:db:49:ff:c8:56:51:90:ac:14:be: 88:f0:0a:55:9b:b9:a6:d2:b7:46:8d:8b:19:c2:48:ed:e1:af: 25:64:3a:7a:7f:9a:51:92:71:56:31:a6:76:e2:0d:45:c3:0d: 5a:09:f3:e0:a3:bf:94:e9:31:d7:53:7a:7e:70:95:5d:ea:58: b0:e3:29:86:fa:5f:14:a6:95:71:06:64:68:98:d8:1c:0f:96: d9:d5:71:b3:21:38:df:6f:95:ca:1f:99:dd:6b:e3:d6:ee:ec: 29:54:34:ae:0d:97:a7:58:8f:3e:8f:5a:f2:c4:58:91:06:7d: ee:33:2c:df:34:99:43:93:55:24:6a:13:f8:f1:19:23:b3:9b: bf:5f:2c:ae -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICBSwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKDc3QTIwMUM1OEVCM0I0MjA4QzkxQkE3RUNFRDkzNkU1 OTVFNjFBMTkwHhcNMjQwNzMxMDIzNDA3WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YTI5Zi1kYTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp9q4Ofw6O9NcdvcyLMHg2RmzMd6LNkrbKL97aNO4ai8VJ5UC7wOPJ3pP+3yI ZyJYB7jF0qNIGabaeyAB4A5tNEdoF8sxHVBVvscYZkKxshNn5vGxd/rRnyFYl+L8 rxHjmFanidtmkcrk3UYTFs8tdfoPyBmNyYu/TiTJGsyApWZ5DwMMzn4IbikemNi2 XDy5syB/LsiPqoFaIm7V21ueKOeDx47dOuwOP8Wgd6SHkDrWiSeQgqbnkGcUl88I 8jYq0/9gxl32JAjdMIe7/KVP2dzn008x1/DGCXU+uQk+s/Tqcl22SddT70UY5o/J 2FKZQUYkbpHHv2Jz3J/TCTs27QIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFM7jidbF uZd3By3KVeHV7vj14F3dMB8GA1UdIwQYMBaAFHeiAcWOs7QgjJG6fs7ZNuWV5hoZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9GNUVEQzdGQzhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi9kNklCeFk2enRDQ01rYnAtenRrMjVaWG1H aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Q2SUJ4WTZ6dENDTWticC16dGsyNVpYbUdoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRjVFREM3RkM4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvMkVGM0VCRjBF MENEMTFFQ0IwM0E4OTJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBALKt4gwGgQCAAIwFDASAwcAJAQAsAAPAwcAJAQAsAAQMA0G CSqGSIb3DQEBCwUAA4IBAQBidbKvFdMcxknVEKN3ggx3vPbGT4rUQm5g7vIygsp5 EIlbFy0n9+AI/6np0CV+7j0lP/lA1y14Nkz6DdeRN4kpJAbn6BTj81kHC7kDdvd/ bNW12XgPRsPLUTCAMRCMhtpDOGYFuxuDesxnAC3SUSIbLZ8HsNtJ/8hWUZCsFL6I 8ApVm7mm0rdGjYsZwkjt4a8lZDp6f5pRknFWMaZ24g1Fww1aCfPgo7+U6THXU3p+ cJVd6liw4ymG+l8UppVxBmRomNgcD5bZ1XGzITjfb5XKH5nda+PW7uwpVDSuDZen WI8+j1ryxFiRBn3uMyzfNJlDk1UkahP48Rkjs5u/Xyyu -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:20 2024 by rpki-client on console-ams.rpki-client.org