$ rpki-client -vvf rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/2BBE96C284FC11EEAA5EAA5DC4F9AE02.roa File: 2BBE96C284FC11EEAA5EAA5DC4F9AE02.roa (raw, json) Hash identifier: 1A/0rGLyMTQmgnyQaZkWrIknuMBOl+EJ36Nl+mEe2Fg= Subject key identifier: 36:8C:0D:17:2F:81:D7:6D:C1:A7:BB:1A:55:E6:27:0C:D7:E5:DF:86 Certificate issuer: /CN=A912809D/serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Certificate serial: 15 Authority key identifier: E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/2BBE96C284FC11EEAA5EAA5DC4F9AE02.roa Signing time: Tue 19 Dec 2023 07:18:55 +0000 ROA not before: Tue 19 Dec 2023 07:18:55 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 58723 IP address blocks: 203.27.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21 (0x15) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912809D/serialNumber=E475D442772151ACF0FAEA6B39B9012BD223D393 Validity Not Before: Dec 19 07:18:55 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=658143df-e824 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:67:93:33:ba:60:8d:ff:7c:6d:f7:99:23:8a: f0:1a:7f:5e:f3:34:91:c9:50:17:73:30:28:55:3a: ad:a3:57:cc:f8:8f:6e:71:c5:27:c9:3b:99:8c:ca: 91:ac:a8:f2:bb:6b:c5:5c:6b:ac:b0:e7:78:c8:46: aa:cc:50:33:cb:4a:24:10:68:3a:a3:47:14:de:57: a7:ee:c6:30:84:7c:22:3a:af:02:a1:e5:35:de:ff: c2:cf:8f:d6:ac:f4:bd:89:07:6f:f0:63:82:b5:1d: fe:be:e3:ad:80:60:48:48:94:4d:d4:0a:8e:7f:67: 08:a0:0b:3e:dc:2b:6b:f1:98:ad:6b:dc:7b:c5:b6: 06:f9:56:3e:cb:cd:a9:d9:ab:46:40:58:af:13:3d: dd:76:69:9e:46:03:ad:5f:ec:1b:20:68:0a:9b:a7: 3e:53:18:a9:53:fc:a8:87:38:02:c9:44:1a:d7:ce: f7:02:5b:68:0f:d1:e6:4f:03:38:1f:7c:da:33:2c: da:ab:d2:04:4c:ce:ef:0b:04:44:c5:af:8b:67:21: 20:c3:64:7d:4a:bc:ca:42:d4:6a:03:b4:d7:f2:8a: 47:f3:cb:bc:a7:ce:eb:aa:69:f8:0b:05:6c:3f:01: 3e:40:9d:30:a2:ac:36:67:f5:64:92:de:d6:85:21: 99:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:8C:0D:17:2F:81:D7:6D:C1:A7:BB:1A:55:E6:27:0C:D7:E5:DF:86 X509v3 Authority Key Identifier: keyid:E4:75:D4:42:77:21:51:AC:F0:FA:EA:6B:39:B9:01:2B:D2:23:D3:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/5HXUQnchUazw-uprObkBK9Ij05M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5HXUQnchUazw-uprObkBK9Ij05M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912809D/01FAC98A84F911EEA75C2F39C4F9AE02/2BBE96C284FC11EEAA5EAA5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.27.38.0/24 Signature Algorithm: sha256WithRSAEncryption 88:0f:f7:30:d4:18:37:c3:03:3e:45:8b:ec:b6:44:97:27:b2: 2c:17:eb:53:1a:06:17:a5:dc:c1:36:1f:03:91:a2:e4:14:76: 20:ce:9c:f9:41:db:7c:fe:ce:0f:70:ca:d0:64:f8:df:86:0a: c0:a5:a3:36:0e:c5:bd:98:c3:af:75:ef:ae:ed:eb:21:52:fc: 98:9c:ba:8b:4b:11:8b:92:77:2e:ec:85:4d:9c:6f:b1:04:79: a9:0e:02:5d:08:37:3e:85:b7:4e:bc:0c:62:36:ad:48:10:16: 16:81:c4:2d:00:04:31:e7:52:39:24:94:c5:f0:a8:92:31:09: 72:71:90:d2:5a:0b:00:ac:fd:1c:8b:4e:cf:bf:63:06:89:f8: cf:cc:fe:01:20:c3:1b:34:7e:1b:b6:e5:01:cc:a5:1a:5c:31: 75:95:45:09:92:95:dd:18:98:24:47:d0:4b:91:12:e7:5f:69: 22:2e:82:76:a8:6b:85:d0:f5:51:8e:15:6c:5a:e8:eb:64:4c: 54:d0:4a:f4:dd:23:89:f5:1e:42:48:8a:bd:bb:1e:00:7d:3e: 0f:08:3d:cf:d6:45:68:f4:1f:4c:cf:59:06:0a:aa:8c:ac:d0: 50:e0:c9:d9:2b:fb:11:80:2a:5d:99:74:49:52:81:b5:50:97: ec:c8:b1:b4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBFTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy ODA5RDExMC8GA1UEBRMoRTQ3NUQ0NDI3NzIxNTFBQ0YwRkFFQTZCMzlCOTAxMkJE MjIzRDM5MzAeFw0yMzEyMTkwNzE4NTVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ODE0M2RmLWU4MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC+Z5MzumCN/3xt95kjivAaf17zNJHJUBdzMChVOq2jV8z4j25xxSfJO5mMypGs qPK7a8Vca6yw53jIRqrMUDPLSiQQaDqjRxTeV6fuxjCEfCI6rwKh5TXe/8LPj9as 9L2JB2/wY4K1Hf6+462AYEhIlE3UCo5/ZwigCz7cK2vxmK1r3HvFtgb5Vj7LzanZ q0ZAWK8TPd12aZ5GA61f7BsgaAqbpz5TGKlT/KiHOALJRBrXzvcCW2gP0eZPAzgf fNozLNqr0gRMzu8LBETFr4tnISDDZH1KvMpC1GoDtNfyikfzy7ynzuuqafgLBWw/ AT5AnTCirDZn9WSS3taFIZntAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUNowNFy+B 123Bp7saVeYnDNfl34YwHwYDVR0jBBgwFoAU5HXUQnchUazw+uprObkBK9Ij05Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTI4MDlELzAxRkFDOThBODRG OTExRUVBNzVDMkYzOUM0RjlBRTAyLzVIWFVRbmNoVWF6dy11cHJPYmtCSzlJajA1 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNUhYVVFuY2hVYXp3LXVwck9ia0JLOUlqMDVNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy ODA5RC8wMUZBQzk4QTg0RjkxMUVFQTc1QzJGMzlDNEY5QUUwMi8yQkJFOTZDMjg0 RkMxMUVFQUE1RUFBNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAMsbJjANBgkqhkiG9w0BAQsFAAOCAQEAiA/3MNQYN8MDPkWL 7LZElyeyLBfrUxoGF6XcwTYfA5Gi5BR2IM6c+UHbfP7OD3DK0GT434YKwKWjNg7F vZjDr3Xvru3rIVL8mJy6i0sRi5J3LuyFTZxvsQR5qQ4CXQg3PoW3TrwMYjatSBAW FoHELQAEMedSOSSUxfCokjEJcnGQ0loLAKz9HItOz79jBon4z8z+ASDDGzR+G7bl AcylGlwxdZVFCZKV3RiYJEfQS5ES519pIi6CdqhrhdD1UY4VbFro62RMVNBK9N0j ifUeQkiKvbseAH0+Dwg9z9ZFaPQfTM9ZBgqqjKzQUODJ2Sv7EYAqXZl0SVKBtVCX 7MixtA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:13:01 2024 by rpki-client on console-ams.rpki-client.org