$ rpki-client -vvf rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/CEA093C66CA311ED9DD6425CC4F9AE02.roa File: CEA093C66CA311ED9DD6425CC4F9AE02.roa (raw, json) Hash identifier: Iyw+3tj3IM+pBmHPCcr/UX2wQKedAFHetZW/mNvxVH0= Subject key identifier: D2:58:B9:51:73:B9:59:B5:77:4D:51:0D:6E:14:27:C5:2F:68:AD:89 Certificate issuer: /CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Certificate serial: 06DA Authority key identifier: AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/CEA093C66CA311ED9DD6425CC4F9AE02.roa Signing time: Thu 04 Apr 2024 23:32:25 +0000 ROA not before: Thu 04 Apr 2024 23:32:25 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132256 IP address blocks: 202.127.210.0/24 maxlen: 24 202.127.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912DFBA/serialNumber=AE4E30CC0D0501A5AE664ADB159053ACECF0ACFD Validity Not Before: Apr 4 23:32:25 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660f3889-c527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:4e:72:49:46:d2:e4:25:6c:b0:19:b5:ad:58: 15:14:8c:a0:e3:0e:4b:85:bd:ec:a6:25:dc:e0:7d: 01:0d:be:96:26:3a:d7:41:ee:79:7b:70:52:5a:0b: 3d:ae:1b:c3:85:f1:87:13:c4:a8:b6:77:a7:2e:e8: dc:ec:c4:db:63:06:ca:3e:25:1c:2f:12:80:a4:c7: 16:5e:e9:9c:5b:86:44:49:a0:fe:a3:45:75:d0:92: 13:d1:4b:72:3f:10:27:03:19:48:84:02:41:04:9a: 2a:5a:7d:45:f2:86:fb:0d:d9:b0:79:f9:03:c4:11: 76:03:f6:df:a7:f6:61:31:20:70:97:0f:3c:88:91: f5:30:0b:22:94:a2:43:66:0d:5a:38:58:08:a7:7a: 18:7e:f9:c4:7b:45:1d:6d:66:45:1a:7d:fe:3c:67: d8:82:b9:e8:f2:d9:4e:4e:56:52:d3:ac:51:6e:fd: ae:d1:51:c6:ec:94:59:fe:22:5f:bb:76:9a:a9:03: 80:7c:47:58:33:42:75:8a:bd:96:e0:dd:32:ae:a2: 04:01:7e:6c:86:83:ed:86:3d:b3:db:36:b9:bc:c5: 0d:a3:b7:72:7e:3f:a9:d3:5a:d1:29:d4:7a:5f:3f: f0:80:01:ce:a4:3a:78:1c:7c:de:fd:c3:f8:6b:db: a5:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:58:B9:51:73:B9:59:B5:77:4D:51:0D:6E:14:27:C5:2F:68:AD:89 X509v3 Authority Key Identifier: keyid:AE:4E:30:CC:0D:05:01:A5:AE:66:4A:DB:15:90:53:AC:EC:F0:AC:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/rk4wzA0FAaWuZkrbFZBTrOzwrP0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rk4wzA0FAaWuZkrbFZBTrOzwrP0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912DFBA/DB9CE678029811EB9823AE82C4F9AE02/CEA093C66CA311ED9DD6425CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.127.210.0/23 Signature Algorithm: sha256WithRSAEncryption 89:9a:0d:ad:89:99:a2:34:9c:fb:bf:c4:2d:d7:01:b5:de:95: d0:db:93:ec:5e:cf:27:4f:9e:d0:80:7c:5c:ca:70:08:af:fa: 03:30:96:32:44:13:d5:02:79:69:48:b2:dc:1b:ad:ee:6b:5b: 15:15:23:ba:33:8b:af:79:2f:71:85:35:f0:4f:08:2e:bd:cd: 8f:23:bc:3b:b5:e7:32:13:f0:46:f0:d8:36:e0:cc:9f:8e:3b: d2:fa:d0:cb:d6:31:ae:25:65:17:da:b2:21:22:7e:87:3e:6f: d1:8d:a7:7f:7f:b8:b0:81:43:27:19:79:c8:34:92:49:ba:53: d7:06:7c:c2:9e:0f:1d:5b:95:b5:a5:bd:cb:57:6c:b3:bc:ba: 86:e1:ec:28:ce:73:56:54:87:28:7b:a6:db:d4:91:30:a5:d8: cc:ef:1c:9c:00:76:ba:d8:98:61:c1:62:ce:f9:c5:df:f1:b9: 24:79:f8:61:3f:d5:53:b2:4f:2e:47:01:81:03:7a:6c:2d:75: a2:10:1b:08:a9:c3:5a:c4:76:b8:c5:ee:12:23:da:d2:29:f4: 99:f2:1c:03:25:b1:f8:c7:c2:cd:bc:85:8d:bf:49:53:99:6c: 26:24:5b:7a:58:bb:43:f8:6e:43:28:f8:8b:7e:a0:1c:ed:61: b2:e7:f3:bf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkRGQkExMTAvBgNVBAUTKEFFNEUzMENDMEQwNTAxQTVBRTY2NEFEQjE1OTA1M0FD RUNGMEFDRkQwHhcNMjQwNDA0MjMzMjI1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmMzg4OS1jNTI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuk5ySUbS5CVssBm1rVgVFIyg4w5Lhb3spiXc4H0BDb6WJjrXQe55e3BSWgs9 rhvDhfGHE8SotnenLujc7MTbYwbKPiUcLxKApMcWXumcW4ZESaD+o0V10JIT0Uty PxAnAxlIhAJBBJoqWn1F8ob7DdmwefkDxBF2A/bfp/ZhMSBwlw88iJH1MAsilKJD Zg1aOFgIp3oYfvnEe0UdbWZFGn3+PGfYgrno8tlOTlZS06xRbv2u0VHG7JRZ/iJf u3aaqQOAfEdYM0J1ir2W4N0yrqIEAX5shoPthj2z2za5vMUNo7dyfj+p01rRKdR6 Xz/wgAHOpDp4HHze/cP4a9ulGwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNJYuVFz uVm1d01RDW4UJ8UvaK2JMB8GA1UdIwQYMBaAFK5OMMwNBQGlrmZK2xWQU6zs8Kz9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyREZCQS9EQjlDRTY3ODAy OTgxMUVCOTgyM0FFODJDNEY5QUUwMi9yazR3ekEwRkFhV3Vaa3JiRlpCVHJPendy UDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JrNHd6QTBGQWFXdVprcmJGWkJUck96d3JQMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkRGQkEvREI5Q0U2NzgwMjk4MTFFQjk4MjNBRTgyQzRGOUFFMDIvQ0VBMDkzQzY2 Q0EzMTFFRDlERDY0MjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAHKf9IwDQYJKoZIhvcNAQELBQADggEBAImaDa2JmaI0nPu/ xC3XAbXeldDbk+xezydPntCAfFzKcAiv+gMwljJEE9UCeWlIstwbre5rWxUVI7oz i695L3GFNfBPCC69zY8jvDu15zIT8Ebw2DbgzJ+OO9L60MvWMa4lZRfasiEifoc+ b9GNp39/uLCBQycZecg0kkm6U9cGfMKeDx1blbWlvctXbLO8uobh7CjOc1ZUhyh7 ptvUkTCl2MzvHJwAdrrYmGHBYs75xd/xuSR5+GE/1VOyTy5HAYEDemwtdaIQGwip w1rEdrjF7hIj2tIp9JnyHAMlsfjHws28hY2/SVOZbCYkW3pYu0P4bkMo+It+oBzt YbLn878= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:06 2024 by rpki-client on console-fra.rpki-client.org