$ rpki-client -vvf rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/E2A6885AABA111EAB7C51982C4F9AE02.roa File: E2A6885AABA111EAB7C51982C4F9AE02.roa (raw, json) Hash identifier: iFCi6WD1Ee2W/w9mVYR65MihhiKOMnJaYvR7pR+MOrA= Subject key identifier: 1A:12:E6:AD:D1:03:81:F8:19:08:69:9E:58:BF:E5:35:0F:43:84:93 Certificate issuer: /CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D Certificate serial: 33E6 Authority key identifier: 4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/E2A6885AABA111EAB7C51982C4F9AE02.roa Signing time: Sat 02 Mar 2024 15:21:00 +0000 ROA not before: Sat 02 Mar 2024 15:21:00 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 45455 IP address blocks: 58.82.187.0/24 maxlen: 24 58.82.188.0/24 maxlen: 24 58.82.189.0/24 maxlen: 24 203.156.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:58:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13286 (0x33e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914781A/serialNumber=4D723955243AE88D552439AF8E4E0A09C8F6590D Validity Not Before: Mar 2 15:21:00 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e343dc-a1a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:22:9a:96:65:ad:7b:e5:7d:a4:eb:63:7c:fa: 5f:53:df:7b:68:33:3f:8c:b7:6b:cd:eb:43:76:ee: 35:c3:a7:5e:26:1b:ee:14:b5:44:f6:86:d0:5d:83: 43:e5:cd:b0:a6:01:3c:79:c5:bc:c0:c7:f4:bf:e6: b1:ab:3e:1c:49:c5:95:b7:fb:17:01:d0:92:a4:77: 7c:cb:b8:4f:41:93:68:b8:68:fe:b9:da:5b:03:1b: b4:b7:44:96:0d:ef:ef:09:4c:ec:9e:cb:2c:7e:2a: 62:2a:2c:fd:57:87:4e:32:2a:fc:0f:84:ab:6f:20: b6:e8:85:76:f4:5a:59:cf:9b:78:98:0d:db:9f:71: fd:0e:56:eb:5e:59:b7:40:68:bc:22:4c:dd:b0:9f: ba:d0:e9:50:bb:35:32:19:0f:74:90:32:a0:cb:7a: d5:01:ce:7b:97:ea:20:71:dc:be:a6:cc:0e:18:56: b7:6f:8d:00:2b:4e:3e:54:93:0a:49:07:be:7a:e5: 85:81:f1:18:d3:bd:cd:78:b3:9f:49:87:9a:fc:8f: 1f:c9:a5:1b:0e:74:36:20:f1:f4:43:62:76:52:75: 3b:4d:ea:23:4e:61:b7:cc:12:6e:2a:92:54:23:5a: 84:51:60:4a:55:31:6d:03:14:55:0b:cc:e4:9a:88: 15:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:12:E6:AD:D1:03:81:F8:19:08:69:9E:58:BF:E5:35:0F:43:84:93 X509v3 Authority Key Identifier: keyid:4D:72:39:55:24:3A:E8:8D:55:24:39:AF:8E:4E:0A:09:C8:F6:59:0D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TXI5VSQ66I1VJDmvjk4KCcj2WQ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914781A/D52142701D9B11E2B821FD8908B02CD2/E2A6885AABA111EAB7C51982C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.82.187.0-58.82.189.255 203.156.118.0/24 Signature Algorithm: sha256WithRSAEncryption 33:bc:a2:02:9e:d3:9a:fb:77:be:47:57:d7:a6:75:42:65:fe: 32:a0:79:c2:61:a2:12:0b:5d:e8:52:4f:29:09:bc:43:3c:80: 38:4a:35:1d:74:8f:43:f6:16:74:6d:26:27:89:d7:19:dd:24: b6:65:2c:fb:b4:ed:0e:f7:df:41:86:9d:a0:73:64:86:7f:b3: 61:3f:f7:e5:69:a3:21:79:b5:a9:49:a4:9f:5e:48:86:fb:94: 76:e9:41:ff:cd:d0:e3:9b:0e:f8:0a:91:7f:81:88:7e:23:76: 7b:6c:62:d6:07:56:70:d2:0d:ae:8c:ee:94:d1:6c:bf:ec:20: ec:b9:23:ca:91:e9:7e:b5:21:a9:cc:8e:70:30:c5:de:68:46: 03:b4:81:0f:4b:6e:aa:6e:c8:f1:71:1c:92:bf:41:f4:f2:df: c2:27:5a:50:82:1a:be:b0:8f:fb:6b:46:50:7f:1c:47:11:76: 93:b4:5c:6e:09:88:e6:6b:79:a1:e5:e1:aa:ce:30:81:33:67: 01:72:89:d4:df:fa:53:53:fc:1c:62:d4:2c:57:28:95:2f:04: d5:93:a9:18:bd:95:40:58:3e:c6:3b:da:0f:64:e7:0c:fd:28: 1e:ad:c2:fe:33:10:0c:4f:53:ea:88:c8:59:9f:06:dc:92:cc: 72:80:e4:0f -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICM+YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc4MUExMTAvBgNVBAUTKDRENzIzOTU1MjQzQUU4OEQ1NTI0MzlBRjhFNEUwQTA5 QzhGNjU5MEQwHhcNMjQwMzAyMTUyMTAwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNDNkYy1hMWEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArSKalmWte+V9pOtjfPpfU997aDM/jLdrzetDdu41w6deJhvuFLVE9obQXYND 5c2wpgE8ecW8wMf0v+axqz4cScWVt/sXAdCSpHd8y7hPQZNouGj+udpbAxu0t0SW De/vCUzsnsssfipiKiz9V4dOMir8D4SrbyC26IV29FpZz5t4mA3bn3H9DlbrXlm3 QGi8IkzdsJ+60OlQuzUyGQ90kDKgy3rVAc57l+ogcdy+pswOGFa3b40AK04+VJMK SQe+euWFgfEY073NeLOfSYea/I8fyaUbDnQ2IPH0Q2J2UnU7TeojTmG3zBJuKpJU I1qEUWBKVTFtAxRVC8zkmogVJQIDAQABo4ICozCCAp8wHQYDVR0OBBYEFBoS5q3R A4H4GQhpnli/5TUPQ4STMB8GA1UdIwQYMBaAFE1yOVUkOuiNVSQ5r45OCgnI9lkN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzgxQS9ENTIxNDI3MDFE OUIxMUUyQjgyMUZEODkwOEIwMkNEMi9UWEk1VlNRNjZJMVZKRG12ams0S0NjajJX UTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RYSTVWU1E2NkkxVkpEbXZqazRLQ2NqMldRMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc4MUEvRDUyMTQyNzAxRDlCMTFFMkI4MjFGRDg5MDhCMDJDRDIvRTJBNjg4NUFB QkExMTFFQUI3QzUxOTgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQwDAMEADpSuwMEATpSvAMEAMucdjANBgkqhkiG9w0BAQsFAAOC AQEAM7yiAp7Tmvt3vkdX16Z1QmX+MqB5wmGiEgtd6FJPKQm8QzyAOEo1HXSPQ/YW dG0mJ4nXGd0ktmUs+7TtDvffQYadoHNkhn+zYT/35WmjIXm1qUmkn15IhvuUdulB /83Q45sO+AqRf4GIfiN2e2xi1gdWcNINrozulNFsv+wg7LkjypHpfrUhqcyOcDDF 3mhGA7SBD0tuqm7I8XEckr9B9PLfwidaUIIavrCP+2tGUH8cRxF2k7RcbgmI5mt5 oeXhqs4wgTNnAXKJ1N/6U1P8HGLULFcolS8E1ZOpGL2VQFg+xjvaD2TnDP0oHq3C /jMQDE9T6ojIWZ8G3JLMcoDkDw== -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:18 2024 by rpki-client on console-ams.rpki-client.org