$ rpki-client -vvf rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/00B2998A576911EEA54BD978C4F9AE02.roa File: 00B2998A576911EEA54BD978C4F9AE02.roa (raw, json) Hash identifier: XKtfIdbBkbbZhVqdTVPeZN/8HUiKc9wUcBwDD9IX78k= Subject key identifier: 71:D6:C0:92:1B:A1:A8:37:EE:98:C2:B4:9B:2B:BB:72:9B:D3:87:1F Certificate issuer: /CN=A912A294/serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Certificate serial: DE Authority key identifier: 87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/00B2998A576911EEA54BD978C4F9AE02.roa Signing time: Mon 14 Oct 2024 02:50:56 +0000 ROA not before: Mon 14 Oct 2024 02:50:56 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 151326 IP address blocks: 101.1.5.0/24 maxlen: 24 101.1.6.0/24 maxlen: 24 101.101.98.0/24 maxlen: 24 101.101.99.0/24 maxlen: 24 2401:44c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912A294/serialNumber=87B5D853F6425215ADA7822F02A57483EE267C04 Validity Not Before: Oct 14 02:50:56 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=670c8710-4bca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:64:26:28:5a:71:5d:e0:1d:39:34:3f:f9:14: 2a:5a:8e:25:1a:52:a1:bd:af:e4:62:85:f0:57:84: ff:78:60:e6:99:eb:35:ed:52:9f:eb:a9:8c:c8:25: 4d:74:c4:27:0a:e1:5a:fa:4d:57:98:aa:40:18:46: 05:df:40:b3:12:5b:75:08:e6:0e:a9:9d:2b:f7:42: b4:2b:5d:23:bc:6b:84:7e:bb:94:c6:d7:c5:3a:cf: 3f:3b:e0:7c:fb:fc:47:09:cd:09:8d:d6:4b:6d:31: 5a:c9:fe:4a:31:c8:6f:c2:ad:83:e2:a2:13:e3:d3: 56:7c:9f:b2:e0:c2:f3:61:02:0f:bd:f7:92:8c:32: 7a:44:75:80:b6:5a:57:08:fc:06:6e:f7:ff:50:4d: f8:ee:a7:c6:73:5e:1a:bc:13:bf:79:28:05:04:ec: d6:36:e1:33:dd:87:3a:17:94:f4:4a:97:a7:80:28: a0:df:f1:e6:cb:75:9d:c4:c9:74:62:8a:7e:38:35: 43:a2:de:19:60:10:2b:ae:89:61:c0:7f:ea:69:ec: 64:ac:94:46:e9:0c:7b:51:71:2b:85:cc:c6:0d:f3: 58:14:ee:75:e4:ee:d4:58:06:cb:82:78:09:3c:94: f3:bf:99:a8:90:47:7b:1a:06:70:4c:6c:f1:87:7f: a0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D6:C0:92:1B:A1:A8:37:EE:98:C2:B4:9B:2B:BB:72:9B:D3:87:1F X509v3 Authority Key Identifier: keyid:87:B5:D8:53:F6:42:52:15:AD:A7:82:2F:02:A5:74:83:EE:26:7C:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/h7XYU_ZCUhWtp4IvAqV0g-4mfAQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912A294/992F1D0E4AD611EE97B53F72C4F9AE02/00B2998A576911EEA54BD978C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.1.5.0-101.1.6.255 101.101.98.0/23 IPv6: 2401:44c0::/32 Signature Algorithm: sha256WithRSAEncryption 26:4a:fb:ea:11:fd:16:1c:f4:30:a2:bc:9d:e2:d5:8a:52:41: 19:2b:26:9c:47:20:0f:0a:2c:57:be:98:5e:05:d3:0e:59:97: 64:59:18:07:8c:58:3f:15:14:7f:c8:4c:63:ef:c5:dd:d3:12: ce:2a:85:1a:75:70:a6:06:f8:42:3d:1a:fa:b2:d8:70:b1:dd: 15:f2:95:f2:3b:c5:32:c8:1c:25:b9:97:01:1f:ce:dc:76:97: 15:0b:28:69:1f:43:59:a9:f6:96:e3:0c:48:c9:c6:5d:01:47: ea:dd:80:31:36:f4:ee:d5:de:b5:ed:f7:30:f8:8b:3c:85:4d: 11:8c:ae:bf:4e:45:c8:6c:9f:eb:60:ee:93:76:68:34:7c:f2: 9e:2e:6b:ba:d8:e4:4f:b9:e2:82:71:0a:78:2b:a4:14:7d:b1: e6:f5:9d:b5:e6:e1:aa:5b:bc:92:76:62:81:9c:dc:01:53:87: 3f:3e:41:64:5c:6b:ec:a0:52:df:b1:5f:c6:1c:e5:b3:81:87: 50:92:ee:61:72:47:2e:c1:75:a0:7f:ff:b4:74:42:df:15:7c: 13:e4:22:58:f9:db:43:1d:c7:e6:33:3a:66:a9:1f:03:07:31: 5a:d4:30:29:66:03:79:67:d8:2e:f4:a1:e5:3c:54:f1:fc:d8: d6:63:46:8b -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkEyOTQxMTAvBgNVBAUTKDg3QjVEODUzRjY0MjUyMTVBREE3ODIyRjAyQTU3NDgz RUUyNjdDMDQwHhcNMjQxMDE0MDI1MDU2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBjODcxMC00YmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw2QmKFpxXeAdOTQ/+RQqWo4lGlKhva/kYoXwV4T/eGDmmes17VKf66mMyCVN dMQnCuFa+k1XmKpAGEYF30CzElt1COYOqZ0r90K0K10jvGuEfruUxtfFOs8/O+B8 +/xHCc0JjdZLbTFayf5KMchvwq2D4qIT49NWfJ+y4MLzYQIPvfeSjDJ6RHWAtlpX CPwGbvf/UE347qfGc14avBO/eSgFBOzWNuEz3Yc6F5T0SpengCig3/Hmy3WdxMl0 Yop+ODVDot4ZYBArrolhwH/qaexkrJRG6Qx7UXErhczGDfNYFO515O7UWAbLgngJ PJTzv5mokEd7GgZwTGzxh3+g4QIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFHHWwJIb oag37pjCtJsru3Kb04cfMB8GA1UdIwQYMBaAFIe12FP2QlIVraeCLwKldIPuJnwE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQTI5NC85OTJGMUQwRTRB RDYxMUVFOTdCNTNGNzJDNEY5QUUwMi9oN1hZVV9aQ1VoV3RwNEl2QXFWMGctNG1m QVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2g3WFlVX1pDVWhXdHA0SXZBcVYwZy00bWZBUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkEyOTQvOTkyRjFEMEU0QUQ2MTFFRTk3QjUzRjcyQzRGOUFFMDIvMDBCMjk5OEE1 NzY5MTFFRUE1NEJEOTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBoEAgABMBQwDAMEAGUBBQMEAGUBBgMEAWVlYjANBAIAAjAHAwUAJAFEwDAN BgkqhkiG9w0BAQsFAAOCAQEAJkr76hH9Fhz0MKK8neLVilJBGSsmnEcgDwosV76Y XgXTDlmXZFkYB4xYPxUUf8hMY+/F3dMSziqFGnVwpgb4Qj0a+rLYcLHdFfKV8jvF MsgcJbmXAR/O3HaXFQsoaR9DWan2luMMSMnGXQFH6t2AMTb07tXete33MPiLPIVN EYyuv05FyGyf62Duk3ZoNHzyni5rutjkT7nignEKeCukFH2x5vWdtebhqlu8knZi gZzcAVOHPz5BZFxr7KBS37Ffxhzls4GHUJLuYXJHLsF1oH//tHRC3xV8E+QiWPnb Qx3H5jM6ZqkfAwcxWtQwKWYDeWfYLvSh5TxU8fzY1mNGiw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:54 2024 by rpki-client on console-fra.rpki-client.org