$ rpki-client -vvf rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa File: 2FCB8FBA56DC11EA8D75187CC4F9AE02.roa (raw, json) Hash identifier: le6qjqCzgyimHjECGdiCiB7624kiepl1Husd+YnK6FA= Subject key identifier: CD:AF:42:1F:5F:EE:3A:26:A3:8A:DD:74:96:15:B7:5F:95:68:A3:AC Certificate issuer: /CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Certificate serial: 09D4 Authority key identifier: BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa Signing time: Tue 26 Mar 2024 20:39:48 +0000 ROA not before: Tue 26 Mar 2024 20:39:47 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 4049 IP address blocks: 188.125.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2516 (0x9d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9142127/serialNumber=BA4A3E34DD9AAD002D491D13C5C88CE5CDC993AA Validity Not Before: Mar 26 20:39:47 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66033293-32bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:82:51:65:1b:0f:f3:a5:3c:66:01:6b:16:10: 48:f7:de:8c:de:73:37:53:4b:41:81:a8:5b:2e:7f: 42:d5:a5:7b:05:1e:31:b2:d9:30:a8:c5:8c:e9:24: 22:11:44:90:aa:02:36:52:ea:fd:6b:f7:70:d3:6a: 40:2d:17:b6:3b:a4:3e:63:43:c5:05:df:d1:b2:53: d2:14:66:1b:95:88:df:88:81:ab:2f:b1:03:38:ac: e1:80:00:07:a3:27:26:25:f5:bc:b8:0a:97:ec:fd: 33:59:d5:5a:67:f9:84:ea:92:1c:45:b0:5a:ad:73: 78:eb:93:0a:bb:26:a2:5b:ea:ee:cd:30:4f:c3:19: f0:5b:a9:62:f3:8a:84:2a:c1:99:8b:fd:b1:c0:b0: f1:f2:45:36:ad:16:12:79:c5:90:0f:82:ef:f3:53: 69:2d:e7:55:34:98:45:5f:80:7e:8e:ea:89:9c:02: fc:80:49:57:c0:bb:25:d2:42:38:e6:00:8e:2a:96: 8d:b5:83:bb:5a:74:4a:b7:02:cc:51:e3:8c:d0:6b: 95:a2:5b:95:cb:66:da:f7:27:a2:14:02:b9:3c:8e: 07:a0:69:09:04:2a:16:f0:56:e3:17:be:ff:43:4d: ea:c8:53:18:83:1a:65:f9:7b:29:ce:09:54:0a:e0: 0d:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:AF:42:1F:5F:EE:3A:26:A3:8A:DD:74:96:15:B7:5F:95:68:A3:AC X509v3 Authority Key Identifier: keyid:BA:4A:3E:34:DD:9A:AD:00:2D:49:1D:13:C5:C8:8C:E5:CD:C9:93:AA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/uko-NN2arQAtSR0TxciM5c3Jk6o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/uko-NN2arQAtSR0TxciM5c3Jk6o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9142127/337FBA44546D11EABDD3C117C4F9AE02/2FCB8FBA56DC11EA8D75187CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 188.125.176.0/20 Signature Algorithm: sha256WithRSAEncryption 1e:70:94:df:63:dd:99:96:7a:1d:84:ce:13:64:e0:80:78:79: a4:2a:ff:64:9f:e5:e7:dc:2c:82:75:7c:13:54:1a:6c:40:6a: 5a:37:c2:5f:93:9c:7c:36:f8:61:d8:0c:3e:bd:a8:82:45:c0: f8:a9:d4:7c:a9:ed:5f:ec:de:c7:65:6b:da:40:d7:77:67:f0: 1b:11:67:55:00:23:b4:65:58:3d:0d:76:55:c9:ed:ff:d3:f3: f7:9f:1a:d7:fc:10:59:9b:e7:6c:2b:2e:63:82:42:d4:a5:0d: fd:12:7b:c8:b7:bd:b6:90:4a:b8:38:9d:a8:10:13:62:30:f5: a0:65:bd:9d:1b:7f:05:66:e9:19:a2:4c:c6:7e:ee:48:96:70: b6:64:14:fe:68:48:c2:3f:89:7e:dc:7c:e6:bf:8d:af:c0:a2: a6:4e:6a:a2:27:b4:c3:22:eb:78:86:54:06:7e:93:60:da:93: d0:84:b2:f1:37:b2:86:7c:a5:4d:16:22:6d:2e:3c:b0:db:91: bb:09:6f:47:01:1e:9f:bd:92:0e:a8:f6:00:39:49:24:df:4e: 98:2c:bf:d3:5e:66:70:3b:6d:fa:23:2d:bc:19:07:4d:7b:86: a8:83:45:79:bb:e4:4e:f6:7c:20:bc:86:d7:f0:9b:26:5e:bf: e9:a9:5e:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCdQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDIxMjcxMTAvBgNVBAUTKEJBNEEzRTM0REQ5QUFEMDAyRDQ5MUQxM0M1Qzg4Q0U1 Q0RDOTkzQUEwHhcNMjQwMzI2MjAzOTQ3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAzMzI5My0zMmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzYJRZRsP86U8ZgFrFhBI996M3nM3U0tBgahbLn9C1aV7BR4xstkwqMWM6SQi EUSQqgI2Uur9a/dw02pALRe2O6Q+Y0PFBd/RslPSFGYblYjfiIGrL7EDOKzhgAAH oycmJfW8uAqX7P0zWdVaZ/mE6pIcRbBarXN465MKuyaiW+ruzTBPwxnwW6li84qE KsGZi/2xwLDx8kU2rRYSecWQD4Lv81NpLedVNJhFX4B+juqJnAL8gElXwLsl0kI4 5gCOKpaNtYO7WnRKtwLMUeOM0GuVoluVy2ba9yeiFAK5PI4HoGkJBCoW8FbjF77/ Q03qyFMYgxpl+XspzglUCuANcQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM2vQh9f 7jomo4rddJYVt1+VaKOsMB8GA1UdIwQYMBaAFLpKPjTdmq0ALUkdE8XIjOXNyZOq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjEyNy8zMzdGQkE0NDU0 NkQxMUVBQkREM0MxMTdDNEY5QUUwMi91a28tTk4yYXJRQXRTUjBUeGNpTTVjM0pr Nm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3Vrby1OTjJhclFBdFNSMFR4Y2lNNWMzSms2by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDIxMjcvMzM3RkJBNDQ1NDZEMTFFQUJERDNDMTE3QzRGOUFFMDIvMkZDQjhGQkE1 NkRDMTFFQThENzUxODdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAS8fbAwDQYJKoZIhvcNAQELBQADggEBAB5wlN9j3ZmWeh2E zhNk4IB4eaQq/2Sf5efcLIJ1fBNUGmxAalo3wl+TnHw2+GHYDD69qIJFwPip1Hyp 7V/s3sdla9pA13dn8BsRZ1UAI7RlWD0NdlXJ7f/T8/efGtf8EFmb52wrLmOCQtSl Df0Se8i3vbaQSrg4nagQE2Iw9aBlvZ0bfwVm6RmiTMZ+7kiWcLZkFP5oSMI/iX7c fOa/ja/AoqZOaqIntMMi63iGVAZ+k2Dak9CEsvE3soZ8pU0WIm0uPLDbkbsJb0cB Hp+9kg6o9gA5SSTfTpgsv9NeZnA7bfojLbwZB017hqiDRXm75E72fCC8htfwmyZe v+mpXqI= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:27 2024 by rpki-client on console-fra.rpki-client.org