$ rpki-client -vvf rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/22C2A76E854811EFA776AC73C4F9AE02.roa File: 22C2A76E854811EFA776AC73C4F9AE02.roa (raw, json) Hash identifier: 6GwSaRQGnjgTRlnwH4C1KZF+EfK76a1huc0miG4Eyd4= Subject key identifier: AC:3F:9A:A8:A0:63:07:48:62:32:39:7D:D8:40:0A:80:C9:BB:4A:DE Certificate issuer: /CN=A915370F/serialNumber=BB5B8156B037E5D22263EAC7F6A11C052FDF633F Certificate serial: 33E8 Authority key identifier: BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/22C2A76E854811EFA776AC73C4F9AE02.roa Signing time: Tue 08 Oct 2024 07:37:14 +0000 ROA not before: Tue 08 Oct 2024 07:37:14 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 174 IP address blocks: 122.8.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13288 (0x33e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A915370F Validity Not Before: Oct 8 07:37:14 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6704e12a-ece5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:e4:91:09:6d:f4:1b:4f:a6:33:1d:b6:8f: 07:49:ff:33:68:70:6a:6f:14:6f:03:7e:7e:b5:0a: 90:c0:d3:0f:2e:d9:71:03:7b:b4:00:83:c3:4f:a9: 58:eb:10:c2:32:b1:13:23:9b:3b:a6:23:89:cf:36: 87:aa:d7:c4:e8:18:6b:c0:bd:07:f5:c4:04:23:9e: 8f:b0:34:ce:46:6c:1c:1d:a7:58:b7:3f:77:5f:d4: f0:59:c9:bb:86:51:7d:f6:5e:d3:a7:cc:b1:c7:a5: 04:24:5e:93:73:43:6b:c5:d2:a2:a7:35:ad:27:74: 90:29:d3:b2:2d:3b:c6:14:db:56:ba:8e:8a:05:ea: a4:1b:d5:15:7f:12:a1:60:02:b4:50:2d:a3:75:11: 61:3f:b4:cd:e8:79:66:08:94:1a:5f:75:02:5f:43: 6e:23:6d:6a:45:12:54:a8:d2:8d:4d:a4:7c:48:4d: 1f:46:d2:04:76:6d:75:0a:37:4f:77:66:72:74:3f: a5:2b:78:ed:9a:93:1c:f8:0f:f1:a8:fd:f1:86:a5: 77:aa:27:aa:9d:f3:02:ca:ce:f4:0b:68:02:1c:cd: 6a:15:db:fc:5e:0d:04:e0:c3:6b:97:d0:8e:1f:ca: c9:7f:52:fe:7a:32:fc:90:9d:b5:a7:f3:5c:10:cc: 92:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:3F:9A:A8:A0:63:07:48:62:32:39:7D:D8:40:0A:80:C9:BB:4A:DE X509v3 Authority Key Identifier: keyid:BB:5B:81:56:B0:37:E5:D2:22:63:EA:C7:F6:A1:1C:05:2F:DF:63:3F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/u1uBVrA35dIiY-rH9qEcBS_fYz8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u1uBVrA35dIiY-rH9qEcBS_fYz8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915370F/7346E8A2604911E2A307578D2979BB20/22C2A76E854811EFA776AC73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.8.56.0/22 Signature Algorithm: sha256WithRSAEncryption bf:09:0f:55:0d:0b:8d:51:db:82:3a:bd:49:62:6c:a1:2f:71: 9a:5c:d0:6c:7f:c1:9f:9f:67:d1:41:ac:11:8e:1b:70:35:24: b0:90:e1:fd:00:46:ba:c6:53:f4:d3:b9:cf:69:fd:c2:86:ac: 09:28:24:ca:79:ab:d7:26:ad:16:3b:70:69:0c:5c:f4:e0:5b: df:a4:fd:6c:04:23:f5:c4:e0:1e:7d:99:11:4f:56:fa:5c:07: 20:15:7b:46:a9:d1:b6:4d:b3:91:fb:f7:c7:8f:5a:f4:0a:2d: 5c:a3:f0:8b:12:16:c1:f3:7a:21:a2:d6:b0:72:94:24:07:c9: 5b:de:6e:77:b8:59:78:62:36:3f:0c:53:63:2d:e0:89:be:3d: fe:61:f8:41:40:cb:7e:5d:78:76:2b:46:e0:9c:e1:4d:73:9d: 1c:ec:dd:78:2f:8d:be:59:43:2e:36:4c:0d:90:2f:11:60:30: 59:04:59:13:80:7c:c5:8c:4c:10:c7:cc:52:09:99:5e:f5:5d: 0e:80:3f:39:3b:37:e9:db:9c:4a:be:37:9b:db:1b:12:63:24: 5d:a5:88:c7:06:1b:2b:da:0a:28:98:61:e3:c0:ee:fc:05:9b: 15:12:e6:98:17:ac:90:03:77:7c:25:ad:38:7e:a4:76:77:8b: b9:91:7b:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM+gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTM3MEYxMTAvBgNVBAUTKEJCNUI4MTU2QjAzN0U1RDIyMjYzRUFDN0Y2QTExQzA1 MkZERjYzM0YwHhcNMjQxMDA4MDczNzE0WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzA0ZTEyYS1lY2U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzhPkkQlt9BtPpjMdto8HSf8zaHBqbxRvA35+tQqQwNMPLtlxA3u0AIPDT6lY 6xDCMrETI5s7piOJzzaHqtfE6BhrwL0H9cQEI56PsDTORmwcHadYtz93X9TwWcm7 hlF99l7Tp8yxx6UEJF6Tc0NrxdKipzWtJ3SQKdOyLTvGFNtWuo6KBeqkG9UVfxKh YAK0UC2jdRFhP7TN6HlmCJQaX3UCX0NuI21qRRJUqNKNTaR8SE0fRtIEdm11CjdP d2ZydD+lK3jtmpMc+A/xqP3xhqV3qieqnfMCys70C2gCHM1qFdv8Xg0E4MNrl9CO H8rJf1L+ejL8kJ21p/NcEMySIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFKw/mqig YwdIYjI5fdhACoDJu0reMB8GA1UdIwQYMBaAFLtbgVawN+XSImPqx/ahHAUv32M/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MzcwRi83MzQ2RThBMjYw NDkxMUUyQTMwNzU3OEQyOTc5QkIyMC91MXVCVnJBMzVkSWlZLXJIOXFFY0JTX2ZZ ejguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3UxdUJWckEzNWRJaVktckg5cUVjQlNfZll6OC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTM3MEYvNzM0NkU4QTI2MDQ5MTFFMkEzMDc1NzhEMjk3OUJCMjAvMjJDMkE3NkU4 NTQ4MTFFRkE3NzZBQzczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJ6CDgwDQYJKoZIhvcNAQELBQADggEBAL8JD1UNC41R24I6 vUlibKEvcZpc0Gx/wZ+fZ9FBrBGOG3A1JLCQ4f0ARrrGU/TTuc9p/cKGrAkoJMp5 q9cmrRY7cGkMXPTgW9+k/WwEI/XE4B59mRFPVvpcByAVe0ap0bZNs5H798ePWvQK LVyj8IsSFsHzeiGi1rBylCQHyVvebne4WXhiNj8MU2Mt4Im+Pf5h+EFAy35deHYr RuCc4U1znRzs3Xgvjb5ZQy42TA2QLxFgMFkEWROAfMWMTBDHzFIJmV71XQ6APzk7 N+nbnEq+N5vbGxJjJF2liMcGGyvaCiiYYePA7vwFmxUS5pgXrJADd3wlrTh+pHZ3 i7mRe8Q= -----END CERTIFICATE-----Generated at Sun Feb 16 15:17:00 2025 by rpki-client