$ rpki-client -vvf rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/2C108BFA765311EF9FDB8175C4F9AE02.roa File: 2C108BFA765311EF9FDB8175C4F9AE02.roa (raw, json) Hash identifier: QPA7RcxiZk0uNPMYbxw3I0lhjK2b1HztmYt+4lBGT7U= Subject key identifier: 75:4E:B7:4E:6C:66:91:4B:BC:29:6C:5E:58:FA:E9:48:0F:D8:C2:97 Certificate issuer: /CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Certificate serial: 3570 Authority key identifier: E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/2C108BFA765311EF9FDB8175C4F9AE02.roa Signing time: Thu 10 Oct 2024 14:50:51 +0000 ROA not before: Thu 10 Oct 2024 14:50:51 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 214669 IP address blocks: 175.29.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:29:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13680 (0x3570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91510AD/serialNumber=E1E6908A16EC813DAA0BD64797AE9DBDEB092257 Validity Not Before: Oct 10 14:50:51 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6707e9cb-679d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:72:f9:7b:61:03:3a:fa:5b:d5:0c:d9:a6:7c: 72:af:75:fe:f1:67:9d:0d:85:fe:75:0e:74:a3:28: ca:07:bb:99:16:9e:4e:8b:97:c7:6e:04:4b:73:b0: 97:13:ac:c3:f0:0f:21:c3:84:6c:60:59:32:5f:ad: ba:25:76:de:74:fc:50:4f:cf:78:42:5a:de:7f:62: 7a:01:9f:3a:04:d7:53:96:8a:06:a0:56:ea:93:54: 97:6b:22:9b:80:74:3d:7b:de:5f:28:3e:d3:46:f6: 7a:85:5a:cb:58:28:5b:fd:b5:3d:1c:25:0d:96:d4: 44:8e:65:b7:83:53:a3:4b:1b:3f:b9:b3:6f:9e:e0: c2:62:a5:55:70:42:2d:74:0e:b9:d0:04:fb:36:86: 12:10:61:34:44:77:18:c7:1e:aa:ac:a2:80:95:92: 63:4f:11:6d:97:02:f6:21:df:5a:8d:52:b5:f8:48: 7e:62:7a:73:ab:34:15:fe:51:12:99:9c:32:9e:c4: 2c:2d:22:0c:3d:1e:67:5f:f3:25:1b:3c:a2:9f:f3: 51:c4:8d:2b:b4:3e:4c:c0:c9:cf:d3:42:71:a8:0a: 01:b7:80:b6:8f:cc:63:bb:01:19:04:90:83:94:c9: ec:0b:71:c0:75:38:e2:70:e0:e3:ac:c3:84:8a:91: 0d:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:4E:B7:4E:6C:66:91:4B:BC:29:6C:5E:58:FA:E9:48:0F:D8:C2:97 X509v3 Authority Key Identifier: keyid:E1:E6:90:8A:16:EC:81:3D:AA:0B:D6:47:97:AE:9D:BD:EB:09:22:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/4eaQihbsgT2qC9ZHl66dvesJIlc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4eaQihbsgT2qC9ZHl66dvesJIlc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91510AD/8B5E75FE1D8711E284B383DF08B02CD2/2C108BFA765311EF9FDB8175C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 175.29.16.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:06:c7:5f:43:d8:0f:77:23:c0:72:e2:1a:0b:38:d8:a0:b7: 22:bb:4c:61:74:08:5e:dc:7c:e5:af:6c:b0:3c:09:7d:4d:40: 43:05:61:0c:18:6e:37:e8:6d:fa:2a:57:ca:c4:52:25:f3:b6: 13:f6:95:2d:a2:bc:f0:91:b7:31:df:f0:29:6f:33:bd:54:a5: 7c:f9:68:56:be:f3:84:ce:18:a3:db:6f:ce:a4:d2:e4:f8:60: b9:ee:dc:0f:84:7a:7c:75:93:fd:3f:bd:2f:7c:f3:0b:0e:34: e3:b4:62:85:67:d7:7a:9b:ff:47:78:1c:22:6a:a9:52:cc:2a: 88:cb:d1:b0:21:3b:88:39:55:b0:07:47:0b:ce:3c:8d:ad:71: 40:37:a5:03:d4:6c:24:a0:31:b2:b9:f3:fc:04:c2:f8:63:89: cd:63:a8:d0:19:87:7b:df:2f:65:74:41:cd:fc:6f:fa:ee:b4: 85:7e:d0:ef:41:dc:4b:26:4e:a8:b1:fa:f2:22:07:ce:8a:b8: 5f:5a:75:37:dd:ae:1a:5f:6d:e3:7f:26:1c:be:c1:27:ff:5a: 37:a1:4d:2f:35:ac:15:6c:4c:4b:19:83:31:2a:53:2d:4f:db: cc:d3:d3:bc:7d:05:13:1e:db:fa:60:7a:9b:2a:46:d5:6b:e2: 6f:3e:fe:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNXAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTEwQUQxMTAvBgNVBAUTKEUxRTY5MDhBMTZFQzgxM0RBQTBCRDY0Nzk3QUU5REJE RUIwOTIyNTcwHhcNMjQxMDEwMTQ1MDUxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3ZTljYi02NzlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA03L5e2EDOvpb1QzZpnxyr3X+8WedDYX+dQ50oyjKB7uZFp5Oi5fHbgRLc7CX E6zD8A8hw4RsYFkyX626JXbedPxQT894Qlref2J6AZ86BNdTlooGoFbqk1SXayKb gHQ9e95fKD7TRvZ6hVrLWChb/bU9HCUNltREjmW3g1OjSxs/ubNvnuDCYqVVcEIt dA650AT7NoYSEGE0RHcYxx6qrKKAlZJjTxFtlwL2Id9ajVK1+Eh+YnpzqzQV/lES mZwynsQsLSIMPR5nX/MlGzyin/NRxI0rtD5MwMnP00JxqAoBt4C2j8xjuwEZBJCD lMnsC3HAdTjicODjrMOEipENnwIDAQABo4IClTCCApEwHQYDVR0OBBYEFHVOt05s ZpFLvClsXlj66UgP2MKXMB8GA1UdIwQYMBaAFOHmkIoW7IE9qgvWR5eunb3rCSJX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MTBBRC84QjVFNzVGRTFE ODcxMUUyODRCMzgzREYwOEIwMkNEMi80ZWFRaWhic2dUMnFDOVpIbDY2ZHZlc0pJ bGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRlYVFpaGJzZ1QycUM5WkhsNjZkdmVzSklsYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTEwQUQvOEI1RTc1RkUxRDg3MTFFMjg0QjM4M0RGMDhCMDJDRDIvMkMxMDhCRkE3 NjUzMTFFRjlGREI4MTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACvHRAwDQYJKoZIhvcNAQELBQADggEBAA0Gx19D2A93I8By 4hoLONigtyK7TGF0CF7cfOWvbLA8CX1NQEMFYQwYbjfobfoqV8rEUiXzthP2lS2i vPCRtzHf8ClvM71UpXz5aFa+84TOGKPbb86k0uT4YLnu3A+Eenx1k/0/vS988wsO NOO0YoVn13qb/0d4HCJqqVLMKojL0bAhO4g5VbAHRwvOPI2tcUA3pQPUbCSgMbK5 8/wEwvhjic1jqNAZh3vfL2V0Qc38b/rutIV+0O9B3EsmTqix+vIiB86KuF9adTfd rhpfbeN/Jhy+wSf/WjehTS81rBVsTEsZgzEqUy1P28zT07x9BRMe2/pgepsqRtVr 4m8+/qw= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:08 2024 by rpki-client on console-ams.rpki-client.org