$ rpki-client -vvf rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/2E1E405E712D11EDA8C64C3DC4F9AE02.roa File: 2E1E405E712D11EDA8C64C3DC4F9AE02.roa (raw, json) Hash identifier: 8IxMRzh5qaWGfk62iyhaPPZa1vR76AhV579NwWq7910= Subject key identifier: C2:68:B9:A0:60:FA:62:8A:E6:23:3D:DB:56:9F:F1:78:2C:DE:06:3D Certificate issuer: /CN=A912AED4/serialNumber=66F0C1DBCDF1ABC34ED11B46A90AE3201802A95C Certificate serial: 17B0 Authority key identifier: 66:F0:C1:DB:CD:F1:AB:C3:4E:D1:1B:46:A9:0A:E3:20:18:02:A9:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZvDB283xq8NO0RtGqQrjIBgCqVw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/2E1E405E712D11EDA8C64C3DC4F9AE02.roa Signing time: Sat 24 Aug 2024 17:04:33 +0000 ROA not before: Sat 24 Aug 2024 17:04:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45873 IP address blocks: 180.94.236.0/23 maxlen: 24 2401:e880::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/ZvDB283xq8NO0RtGqQrjIBgCqVw.crl rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/ZvDB283xq8NO0RtGqQrjIBgCqVw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZvDB283xq8NO0RtGqQrjIBgCqVw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6064 (0x17b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912AED4 Validity Not Before: Aug 24 17:04:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66ca12a1-211d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:21:c8:57:5d:80:91:7e:a4:68:40:51:ea:3a: fa:03:42:0d:7e:21:df:75:db:63:b1:c0:e9:22:bb: 17:12:5a:a3:78:b6:a8:0c:e1:72:16:5d:79:ed:c0: c0:22:ca:f0:d9:e9:6a:1c:51:2d:76:1c:43:4d:06: ad:91:34:de:a6:c8:51:a6:f5:10:56:06:89:dc:ee: a3:ee:a3:20:25:59:1a:e0:84:c1:ac:7d:b1:8a:16: e9:47:2a:55:4f:4c:98:6f:19:d8:26:9b:66:43:cd: 1c:da:b4:41:f9:7a:64:f0:62:03:f2:c4:32:d1:a5: 2f:1f:ab:6a:97:1b:d4:24:c3:73:b1:f8:5b:73:80: 69:77:85:58:5a:5d:f0:0f:c2:22:e6:b7:5d:21:4b: 92:2f:5c:26:31:2a:ce:75:ea:20:49:67:04:cf:75: 3f:18:4f:1d:2e:97:5e:3d:ff:99:2c:f4:e3:45:5a: 4a:56:41:06:9a:38:c7:59:74:8e:df:35:44:5d:fd: 91:db:84:b8:8a:a0:24:71:e7:ad:bd:82:35:5f:b5: 45:a1:a3:c4:f4:ad:36:66:a2:5d:8c:14:3a:9f:1b: 5e:ce:e2:02:7a:75:2d:f6:11:ea:e5:7c:dc:95:13: 23:cf:1f:6f:2c:db:f7:be:39:70:77:14:90:dc:bc: 95:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:68:B9:A0:60:FA:62:8A:E6:23:3D:DB:56:9F:F1:78:2C:DE:06:3D X509v3 Authority Key Identifier: keyid:66:F0:C1:DB:CD:F1:AB:C3:4E:D1:1B:46:A9:0A:E3:20:18:02:A9:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/ZvDB283xq8NO0RtGqQrjIBgCqVw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZvDB283xq8NO0RtGqQrjIBgCqVw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912AED4/BEC9AC82B0BD11E792A2BF30C4F9AE02/2E1E405E712D11EDA8C64C3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.94.236.0/23 IPv6: 2401:e880::/32 Signature Algorithm: sha256WithRSAEncryption 77:77:fb:d3:e8:7f:98:fd:d4:c5:6e:c6:52:63:09:62:3c:4b: d7:65:e9:44:4f:67:ce:fa:52:a9:3a:6f:6f:b7:9c:a2:ea:b0: 42:a9:16:ad:47:b4:6a:76:94:1a:32:32:75:3b:b0:79:0c:e4: e2:90:5b:d2:79:9e:08:7b:43:a9:72:8c:20:02:fe:02:bc:63: 3a:fe:83:8d:0b:ad:75:c5:39:ec:63:14:a3:4b:96:23:a0:bf: e1:c3:91:98:6f:f9:5f:88:23:a5:ec:86:32:a4:ee:95:5c:c0: cb:51:2c:8e:4f:46:e2:3a:5c:97:8c:45:cb:ae:cd:7d:e3:9e: 82:48:13:0b:17:d5:c3:ac:55:90:4f:85:4c:74:f9:2f:60:24: 92:41:53:f0:c5:22:a2:86:a7:db:4c:5b:4e:4e:75:c2:2c:d8: 0f:66:b6:18:13:35:5b:59:9d:6c:f0:ae:0e:30:ab:98:e0:51: dc:c4:8f:f7:95:48:fd:1f:be:7f:7e:fe:c3:52:3e:93:c1:56: 16:48:11:46:75:e2:ce:f9:73:2b:fa:0a:06:dd:f0:ef:b3:bd: fc:85:6b:26:c0:6c:95:3a:ca:ee:4a:9b:19:74:39:e7:23:f2: 61:e0:0d:07:2f:2a:a7:aa:d8:78:8c:12:96:2a:38:7e:ca:d6: 97:1b:ef:c2 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICF7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkFFRDQxMTAvBgNVBAUTKDY2RjBDMURCQ0RGMUFCQzM0RUQxMUI0NkE5MEFFMzIw MTgwMkE5NUMwHhcNMjQwODI0MTcwNDMzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmNhMTJhMS0yMTFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyyHIV12AkX6kaEBR6jr6A0INfiHfddtjscDpIrsXElqjeLaoDOFyFl157cDA Isrw2elqHFEtdhxDTQatkTTepshRpvUQVgaJ3O6j7qMgJVka4ITBrH2xihbpRypV T0yYbxnYJptmQ80c2rRB+Xpk8GID8sQy0aUvH6tqlxvUJMNzsfhbc4Bpd4VYWl3w D8Ii5rddIUuSL1wmMSrOdeogSWcEz3U/GE8dLpdePf+ZLPTjRVpKVkEGmjjHWXSO 3zVEXf2R24S4iqAkceetvYI1X7VFoaPE9K02ZqJdjBQ6nxtezuICenUt9hHq5Xzc lRMjzx9vLNv3vjlwdxSQ3LyVjwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFMJouaBg +mKK5iM921af8Xgs3gY9MB8GA1UdIwQYMBaAFGbwwdvN8avDTtEbRqkK4yAYAqlc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyQUVENC9CRUM5QUM4MkIw QkQxMUU3OTJBMkJGMzBDNEY5QUUwMi9adkRCMjgzeHE4Tk8wUnRHcVFyaklCZ0Nx VncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p2REIyODN4cThOTzBSdEdxUXJqSUJnQ3FWdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkFFRDQvQkVDOUFDODJCMEJEMTFFNzkyQTJCRjMwQzRGOUFFMDIvMkUxRTQwNUU3 MTJEMTFFREE4QzY0QzNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAG0XuwwDQQCAAIwBwMFACQB6IAwDQYJKoZIhvcNAQELBQAD ggEBAHd3+9Pof5j91MVuxlJjCWI8S9dl6URPZ876Uqk6b2+3nKLqsEKpFq1HtGp2 lBoyMnU7sHkM5OKQW9J5ngh7Q6lyjCAC/gK8Yzr+g40LrXXFOexjFKNLliOgv+HD kZhv+V+II6XshjKk7pVcwMtRLI5PRuI6XJeMRcuuzX3jnoJIEwsX1cOsVZBPhUx0 +S9gJJJBU/DFIqKGp9tMW05OdcIs2A9mthgTNVtZnWzwrg4wq5jgUdzEj/eVSP0f vn9+/sNSPpPBVhZIEUZ14s75cyv6Cgbd8O+zvfyFaybAbJU6yu5Kmxl0Oecj8mHg DQcvKqeq2HiMEpYqOH7K1pcb78I= -----END CERTIFICATE-----Generated at Sun Feb 16 20:42:34 2025 by rpki-client