$ rpki-client -vvf rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/2F996DC6C77311EEBD6F2D2BC4F9AE02.roa File: 2F996DC6C77311EEBD6F2D2BC4F9AE02.roa (raw, json) Hash identifier: 8p5oyeJWoCkbAhlsrDLfWLW3ixfy6hkbFthdXEroMts= Subject key identifier: D0:B5:44:D6:27:F1:63:CD:54:17:FD:8C:9A:FA:D2:15:F3:FC:7C:E5 Certificate issuer: /CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Certificate serial: 2B Authority key identifier: 09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/2F996DC6C77311EEBD6F2D2BC4F9AE02.roa Signing time: Fri 09 Feb 2024 17:46:43 +0000 ROA not before: Fri 09 Feb 2024 17:46:43 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 141987 IP address blocks: 203.145.50.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43 (0x2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914CB22/serialNumber=09588614387210E8B69AD3C31A73619D755ED0C0 Validity Not Before: Feb 9 17:46:43 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65c66503-a856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8c:f5:21:b3:4d:6e:d6:af:ff:8a:de:fd:c8: 11:e6:a6:41:5e:22:f7:52:f4:bd:00:34:c4:81:28: eb:8d:14:c1:3f:5b:6f:7f:da:7b:f3:bc:5c:eb:f9: 14:15:50:a6:55:59:e7:86:10:f3:df:1a:f5:6d:e9: 84:7a:5b:d7:a9:38:10:2a:c7:67:c8:4a:c8:d2:77: fb:5c:a1:b6:c7:a3:27:ff:8a:61:be:87:f2:c2:bf: e2:c1:67:97:08:89:9f:b6:e6:62:63:56:2e:13:a0: ef:49:87:46:b1:88:68:cd:a7:bf:df:54:0a:27:b9: 70:61:6a:66:07:62:81:89:b8:59:91:a7:a0:bd:58: df:a7:09:a4:a0:97:37:20:11:7e:b6:21:a6:a6:78: 5b:8b:2b:92:0f:af:43:11:55:3c:9b:28:4a:06:bc: 17:a5:fd:62:25:dc:b0:61:bb:d5:59:57:63:85:e7: 1d:8d:31:cc:30:b0:73:b1:d0:e5:ef:01:ab:39:dd: 7c:53:6a:22:c3:b9:b0:ba:5e:48:9e:12:ab:a0:b3: 4b:4c:93:60:d6:c5:e7:a7:78:a1:c3:50:6e:bc:46: 0a:f4:9a:d1:2d:99:8d:5e:7a:1e:b2:b9:50:90:17: f9:91:1f:f6:5e:a0:e6:88:96:a7:86:54:ee:dd:86: d3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B5:44:D6:27:F1:63:CD:54:17:FD:8C:9A:FA:D2:15:F3:FC:7C:E5 X509v3 Authority Key Identifier: keyid:09:58:86:14:38:72:10:E8:B6:9A:D3:C3:1A:73:61:9D:75:5E:D0:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/CViGFDhyEOi2mtPDGnNhnXVe0MA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CViGFDhyEOi2mtPDGnNhnXVe0MA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914CB22/6602E9788CD111EEB61FC638C4F9AE02/2F996DC6C77311EEBD6F2D2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.145.50.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:c3:a7:6c:c9:bd:7a:5c:62:2d:d3:dc:3d:d1:4e:b3:08:0a: ac:58:8a:ac:2f:d4:d9:97:ac:f9:a3:86:fd:6b:92:85:fb:52: e5:27:74:d0:6b:e6:93:74:8a:d5:6e:e0:2d:e7:29:c9:c8:46: c7:f1:cf:cb:31:09:07:21:0b:59:29:dd:25:15:76:ce:27:6e: c9:84:e1:ad:3a:9e:3d:7a:74:71:99:e2:e1:25:8f:b3:3b:7d: 90:3a:54:73:db:f1:7b:5a:80:1e:25:30:fa:a8:4f:83:70:09: 0a:66:39:a6:28:aa:a8:41:f6:d0:cb:7f:b1:bc:eb:33:36:d3: 50:13:44:68:5d:09:74:90:35:cb:40:47:d7:55:5d:57:73:36: 8f:7e:67:09:04:9e:30:bc:3c:97:1b:c2:0a:be:72:0c:8d:fd: 00:67:6a:56:e6:85:d8:0c:a0:95:87:3b:1b:75:03:0e:ec:1c: f3:7e:8d:61:06:0c:6e:da:f0:9c:2c:87:1b:c1:30:73:0b:7b: 0c:c4:d9:0f:b8:3a:bd:6b:76:36:67:92:29:91:26:c7:91:35: 97:e8:d0:02:03:8c:6e:bc:a5:0c:7b:3c:4c:6c:03:80:5b:0e: 04:fb:d2:97:ed:14:5b:e1:d0:3b:03:9c:71:50:7d:ee:78:d7: fe:bb:0a:5e -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBKzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE0 Q0IyMjExMC8GA1UEBRMoMDk1ODg2MTQzODcyMTBFOEI2OUFEM0MzMUE3MzYxOUQ3 NTVFRDBDMDAeFw0yNDAyMDkxNzQ2NDNaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YzY2NTAzLWE4NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC7jPUhs01u1q//it79yBHmpkFeIvdS9L0ANMSBKOuNFME/W29/2nvzvFzr+RQV UKZVWeeGEPPfGvVt6YR6W9epOBAqx2fISsjSd/tcobbHoyf/imG+h/LCv+LBZ5cI iZ+25mJjVi4ToO9Jh0axiGjNp7/fVAonuXBhamYHYoGJuFmRp6C9WN+nCaSglzcg EX62IaameFuLK5IPr0MRVTybKEoGvBel/WIl3LBhu9VZV2OF5x2NMcwwsHOx0OXv Aas53XxTaiLDubC6XkieEqugs0tMk2DWxeeneKHDUG68Rgr0mtEtmY1eeh6yuVCQ F/mRH/ZeoOaIlqeGVO7dhtPHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU0LVE1ifx Y81UF/2MmvrSFfP8fOUwHwYDVR0jBBgwFoAUCViGFDhyEOi2mtPDGnNhnXVe0MAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTRDQjIyLzY2MDJFOTc4OENE MTExRUVCNjFGQzYzOEM0RjlBRTAyL0NWaUdGRGh5RU9pMm10UERHbk5oblhWZTBN QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQ1ZpR0ZEaHlFT2kybXRQREduTmhuWFZlME1BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0 Q0IyMi82NjAyRTk3ODhDRDExMUVFQjYxRkM2MzhDNEY5QUUwMi8yRjk5NkRDNkM3 NzMxMUVFQkQ2RjJEMkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcuRMjANBgkqhkiG9w0BAQsFAAOCAQEAW8OnbMm9elxiLdPc PdFOswgKrFiKrC/U2Zes+aOG/WuShftS5Sd00Gvmk3SK1W7gLecpychGx/HPyzEJ ByELWSndJRV2ziduyYThrTqePXp0cZni4SWPszt9kDpUc9vxe1qAHiUw+qhPg3AJ CmY5piiqqEH20Mt/sbzrMzbTUBNEaF0JdJA1y0BH11VdV3M2j35nCQSeMLw8lxvC Cr5yDI39AGdqVuaF2AyglYc7G3UDDuwc836NYQYMbtrwnCyHG8Ewcwt7DMTZD7g6 vWt2NmeSKZEmx5E1l+jQAgOMbrylDHs8TGwDgFsOBPvSl+0UW+HQOwOccVB97njX /rsKXg== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:47 2024 by rpki-client on console-fra.rpki-client.org