$ rpki-client -vvf rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/24241410E2A211EEBFC9412EC4F9AE02.roa File: 24241410E2A211EEBFC9412EC4F9AE02.roa (raw, json) Hash identifier: js9vpe12lmlRNYkEaZ6rykB6+CvjAADY23ufAT3PPlc= Subject key identifier: E9:7D:1F:A7:91:4B:1A:04:E9:61:21:72:2B:A1:6A:5A:74:63:C8:38 Certificate issuer: /CN=A912ECA4/serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Certificate serial: 2B Authority key identifier: 8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/24241410E2A211EEBFC9412EC4F9AE02.roa Signing time: Tue 21 May 2024 08:42:22 +0000 ROA not before: Tue 21 May 2024 08:42:22 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 63981 IP address blocks: 45.251.67.0/24 maxlen: 24 103.206.88.0/22 maxlen: 24 2401:3e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912ECA4/serialNumber=8C1C14DC1674DBB68B494301587B3D2F98ED701B Validity Not Before: May 21 08:42:22 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=664c5e6d-1dbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:32:30:da:9a:ae:cf:06:28:0d:97:dc:da:34: ad:fe:f8:42:08:75:5e:e5:63:4c:be:4d:18:8d:b8: 08:f3:78:4a:62:c7:27:d9:d9:b5:6a:40:b6:d6:78: 77:f1:05:36:9c:68:05:de:5e:20:b6:43:57:b0:67: 7d:e8:56:9b:11:a9:f1:8e:84:8a:e3:b9:3f:a5:90: 0c:6f:be:28:9c:04:6c:f3:ef:fc:a9:b1:27:dd:6b: 34:e8:2e:38:d3:e5:f7:bd:59:57:47:5c:8b:41:d8: 20:5f:7f:40:c0:6b:1b:a9:17:98:2e:c9:43:69:31: 8d:66:78:b4:90:d2:ce:9a:74:bf:1e:55:e4:a4:14: 48:12:4e:78:2b:fe:5a:45:93:13:5f:d9:df:2c:93: 22:c7:8b:65:6d:5c:dd:1a:27:fe:6d:9e:81:92:39: 38:3a:be:0a:07:3e:3d:1b:4c:fc:8e:89:77:f8:f2: e5:d1:7d:b2:a5:17:4c:0e:89:d1:0e:3a:65:19:43: 8c:b2:3f:84:8a:9e:d8:3d:40:64:22:96:5a:b8:de: fd:a4:48:54:b2:32:98:f6:ca:6e:9e:f2:3f:ce:c7: 5f:ad:36:d8:02:d0:46:7f:1e:0d:c0:28:74:4b:9b: fe:42:d2:22:07:31:35:fe:6a:11:e1:3f:bf:72:1b: 08:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:7D:1F:A7:91:4B:1A:04:E9:61:21:72:2B:A1:6A:5A:74:63:C8:38 X509v3 Authority Key Identifier: keyid:8C:1C:14:DC:16:74:DB:B6:8B:49:43:01:58:7B:3D:2F:98:ED:70:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/jBwU3BZ027aLSUMBWHs9L5jtcBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jBwU3BZ027aLSUMBWHs9L5jtcBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912ECA4/485F336ADCED11EEBBBF402FC4F9AE02/24241410E2A211EEBFC9412EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.251.67.0/24 103.206.88.0/22 IPv6: 2401:3e0::/32 Signature Algorithm: sha256WithRSAEncryption 40:8d:44:bd:b2:a3:8c:91:1e:b7:45:de:8e:c4:b7:1c:46:0f: f2:2e:fe:ac:0f:03:b9:f8:01:d6:43:61:1e:e9:1d:ff:16:ab: 31:b2:ee:fd:d1:09:cd:98:96:e8:1f:66:2a:af:2b:3b:4e:96: 04:b2:96:18:d4:ca:c9:10:73:c1:c4:98:e0:b9:f4:2d:5b:8f: a3:ea:97:d9:d4:28:c8:57:e7:ca:80:1e:dc:c7:ba:b0:85:c2: 1b:a4:28:1f:4c:ac:26:5c:d4:af:48:55:2d:87:31:a8:e9:3f: 1d:cf:e4:d4:7b:5f:33:85:d9:c8:d7:bd:ef:32:cc:f0:1d:0f: 98:4f:d5:5d:7a:8a:4c:54:5a:8b:ae:5f:24:3f:92:95:40:8a: 26:e1:3b:41:e8:86:82:1d:02:55:be:df:67:d9:c7:30:6b:20: 95:65:70:76:c6:91:70:e1:a9:5c:5c:10:8f:df:15:b8:67:74: ae:19:0a:83:bc:9b:41:24:2d:52:de:4a:7d:06:3a:fa:9c:81: d2:a6:e2:dc:93:67:e3:e6:68:0e:30:e8:f2:0c:e4:25:ed:78: 8e:f5:c2:03:b3:f2:c3:2d:95:b5:fa:f8:b5:14:45:d7:63:b3: c1:40:29:87:1b:4c:4e:2e:9a:3f:2e:8c:c2:be:c8:23:2c:52: f2:59:27:80 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy RUNBNDExMC8GA1UEBRMoOEMxQzE0REMxNjc0REJCNjhCNDk0MzAxNTg3QjNEMkY5 OEVENzAxQjAeFw0yNDA1MjEwODQyMjJaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NGM1ZTZkLTFkYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC6MjDamq7PBigNl9zaNK3++EIIdV7lY0y+TRiNuAjzeEpixyfZ2bVqQLbWeHfx BTacaAXeXiC2Q1ewZ33oVpsRqfGOhIrjuT+lkAxvviicBGzz7/ypsSfdazToLjjT 5fe9WVdHXItB2CBff0DAaxupF5guyUNpMY1meLSQ0s6adL8eVeSkFEgSTngr/lpF kxNf2d8skyLHi2VtXN0aJ/5tnoGSOTg6vgoHPj0bTPyOiXf48uXRfbKlF0wOidEO OmUZQ4yyP4SKntg9QGQillq43v2kSFSyMpj2ym6e8j/Ox1+tNtgC0EZ/Hg3AKHRL m/5C0iIHMTX+ahHhP79yGwhlAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQU6X0fp5FL GgTpYSFyK6FqWnRjyDgwHwYDVR0jBBgwFoAUjBwU3BZ027aLSUMBWHs9L5jtcBsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTJFQ0E0LzQ4NUYzMzZBRENF RDExRUVCQkJGNDAyRkM0RjlBRTAyL2pCd1UzQlowMjdhTFNVTUJXSHM5TDVqdGNC cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvakJ3VTNCWjAyN2FMU1VNQldIczlMNWp0Y0JzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy RUNBNC80ODVGMzM2QURDRUQxMUVFQkJCRjQwMkZDNEY5QUUwMi8yNDI0MTQxMEUy QTIxMUVFQkZDOTQxMkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEAC37QwMEAmfOWDANBAIAAjAHAwUAJAED4DANBgkqhkiG9w0B AQsFAAOCAQEAQI1EvbKjjJEet0XejsS3HEYP8i7+rA8DufgB1kNhHukd/xarMbLu /dEJzZiW6B9mKq8rO06WBLKWGNTKyRBzwcSY4Ln0LVuPo+qX2dQoyFfnyoAe3Me6 sIXCG6QoH0ysJlzUr0hVLYcxqOk/Hc/k1HtfM4XZyNe97zLM8B0PmE/VXXqKTFRa i65fJD+SlUCKJuE7QeiGgh0CVb7fZ9nHMGsglWVwdsaRcOGpXFwQj98VuGd0rhkK g7ybQSQtUt5KfQY6+pyB0qbi3JNn4+ZoDjDo8gzkJe14jvXCA7Pywy2Vtfr4tRRF 12OzwUAphxtMTi6aPy6Mwr7IIyxS8lkngA== -----END CERTIFICATE-----Generated at Sat Nov 23 06:21:22 2024 by rpki-client on console-fra.rpki-client.org