$ rpki-client -vvf rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/244B9D1874CB11EEB3C0267DC4F9AE02.roa File: 244B9D1874CB11EEB3C0267DC4F9AE02.roa (raw, json) Hash identifier: 58z0sDsYRtdYBAtwDhNvP7kyEQJboZJS4GpwJLh2ing= Subject key identifier: C7:04:4A:C8:52:71:BC:58:B7:E3:EC:B1:59:AB:99:B3:22:65:55:E7 Certificate issuer: /CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Certificate serial: 0732 Authority key identifier: E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/244B9D1874CB11EEB3C0267DC4F9AE02.roa Signing time: Mon 28 Oct 2024 21:52:34 +0000 ROA not before: Mon 28 Oct 2024 21:52:34 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 19970 IP address blocks: 61.245.10.0/24 maxlen: 24 61.245.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1842 (0x732) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913D1EA/serialNumber=E692C5B60B3EF1C2044439FC390AD56DC3CBCD63 Validity Not Before: Oct 28 21:52:34 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=672007a2-2e0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:41:f6:27:86:c9:e0:56:70:c3:16:39:1c:f9: 2b:92:08:ea:3e:55:e0:99:74:e3:fe:c6:18:1b:27: f7:08:67:a2:cb:b4:50:5e:21:b3:ec:3f:b0:57:57: 43:28:06:84:6c:22:67:ee:83:e2:08:db:a5:a9:6a: 8a:63:25:f5:d8:a1:6b:71:3e:cf:c5:ec:8d:ff:f8: f1:ee:a5:1c:03:ba:d5:57:76:19:d8:2f:de:09:1c: 34:e4:79:09:1f:d7:c8:e0:2d:2d:3e:39:3f:97:6c: 41:d4:44:08:41:b2:0f:5b:47:af:9c:b0:c1:8b:5c: 86:a5:3c:66:a7:9f:ba:51:58:0e:34:df:61:8e:09: 85:ef:df:7f:9a:9d:28:6d:f8:69:04:26:c8:52:75: 55:ff:09:ca:11:65:84:ef:36:af:b8:1e:cd:70:8f: e9:df:a1:8e:b6:d7:4c:3f:b0:fc:7b:44:bf:56:09: 59:0e:b9:1d:cb:cb:7a:47:c3:49:9d:46:05:4c:d5: d3:df:45:22:13:b4:8f:26:42:f6:87:c6:5e:af:0b: 72:ff:dc:b8:16:12:a1:bd:76:d5:4f:b2:56:25:cb: 22:0e:ec:c9:fa:83:15:2f:f1:4c:9e:41:ed:a4:02: 57:9b:a0:82:b0:5a:2c:4e:52:1b:39:41:ad:4a:83: e5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:04:4A:C8:52:71:BC:58:B7:E3:EC:B1:59:AB:99:B3:22:65:55:E7 X509v3 Authority Key Identifier: keyid:E6:92:C5:B6:0B:3E:F1:C2:04:44:39:FC:39:0A:D5:6D:C3:CB:CD:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/5pLFtgs-8cIERDn8OQrVbcPLzWM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5pLFtgs-8cIERDn8OQrVbcPLzWM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913D1EA/9C932B48173A11EBA3B97E7FC4F9AE02/244B9D1874CB11EEB3C0267DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.245.10.0/23 Signature Algorithm: sha256WithRSAEncryption 99:19:6c:7a:4d:83:64:62:f4:40:8e:64:97:72:bf:5c:36:23: 33:55:dd:33:c0:9e:c6:f9:9f:d7:b5:9c:cf:91:9e:74:1b:52: a7:40:bf:ed:bf:e5:56:7d:02:e0:d3:4b:30:ab:ff:ed:db:31: 7a:10:0f:cf:ec:c7:03:58:da:be:b2:e4:38:2a:e1:71:c6:9b: 1d:ae:fe:fa:eb:f8:c2:ed:8c:5d:81:a4:ab:0a:ba:c2:84:e9: 93:02:00:08:56:a2:ee:2d:8f:e5:ae:df:e3:19:95:d4:da:a9: 3f:4e:82:3b:ac:aa:b0:3c:e0:3e:16:53:d8:54:ea:e4:bc:04: b1:66:92:2d:4e:30:fa:f5:53:d1:a8:6f:87:51:fb:7d:9b:c7: af:44:c9:df:5f:64:42:32:01:f0:16:d5:89:3b:e2:fa:eb:89: b6:27:dc:42:8b:c1:42:7b:bb:0d:0f:96:bf:37:6d:0f:50:03: dc:c8:32:87:c3:1d:79:9d:8d:10:d2:d0:8c:bc:c0:5b:41:e7: fc:97:d3:45:4b:db:66:95:63:03:8d:63:34:e8:8d:3e:f8:00: 17:5c:ec:07:21:30:2c:30:7a:51:67:9a:8f:47:af:4a:a1:17: fd:1f:ba:06:1f:6c:0c:5a:82:f0:65:d2:7b:db:a7:0a:57:ce: a5:31:2c:5d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBzIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0QxRUExMTAvBgNVBAUTKEU2OTJDNUI2MEIzRUYxQzIwNDQ0MzlGQzM5MEFENTZE QzNDQkNENjMwHhcNMjQxMDI4MjE1MjM0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwMDdhMi0yZTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAskH2J4bJ4FZwwxY5HPkrkgjqPlXgmXTj/sYYGyf3CGeiy7RQXiGz7D+wV1dD KAaEbCJn7oPiCNulqWqKYyX12KFrcT7PxeyN//jx7qUcA7rVV3YZ2C/eCRw05HkJ H9fI4C0tPjk/l2xB1EQIQbIPW0evnLDBi1yGpTxmp5+6UVgONN9hjgmF799/mp0o bfhpBCbIUnVV/wnKEWWE7zavuB7NcI/p36GOttdMP7D8e0S/VglZDrkdy8t6R8NJ nUYFTNXT30UiE7SPJkL2h8Zerwty/9y4FhKhvXbVT7JWJcsiDuzJ+oMVL/FMnkHt pAJXm6CCsFosTlIbOUGtSoPlXQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMcESshS cbxYt+PssVmrmbMiZVXnMB8GA1UdIwQYMBaAFOaSxbYLPvHCBEQ5/DkK1W3Dy81j MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzRDFFQS85QzkzMkI0ODE3 M0ExMUVCQTNCOTdFN0ZDNEY5QUUwMi81cExGdGdzLThjSUVSRG44T1FyVmJjUEx6 V00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVwTEZ0Z3MtOGNJRVJEbjhPUXJWYmNQTHpXTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0QxRUEvOUM5MzJCNDgxNzNBMTFFQkEzQjk3RTdGQzRGOUFFMDIvMjQ0QjlEMTg3 NENCMTFFRUIzQzAyNjdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAE99QowDQYJKoZIhvcNAQELBQADggEBAJkZbHpNg2Ri9ECO ZJdyv1w2IzNV3TPAnsb5n9e1nM+RnnQbUqdAv+2/5VZ9AuDTSzCr/+3bMXoQD8/s xwNY2r6y5Dgq4XHGmx2u/vrr+MLtjF2BpKsKusKE6ZMCAAhWou4tj+Wu3+MZldTa qT9OgjusqrA84D4WU9hU6uS8BLFmki1OMPr1U9Gob4dR+32bx69Eyd9fZEIyAfAW 1Yk74vrribYn3EKLwUJ7uw0Plr83bQ9QA9zIMofDHXmdjRDS0Iy8wFtB5/yX00VL 22aVYwONYzTojT74ABdc7AchMCwwelFnmo9Hr0qhF/0fugYfbAxagvBl0nvbpwpX zqUxLF0= -----END CERTIFICATE-----Generated at Fri Nov 22 22:24:07 2024 by rpki-client on console-fra.rpki-client.org