$ rpki-client -vvf rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/2C1ADE1A35C811EEB06D6E4FC4F9AE02.roa File: 2C1ADE1A35C811EEB06D6E4FC4F9AE02.roa (raw, json) Hash identifier: 8MCpRJoVltVeERBQ0ugdqfN0oewrw0+O6EZ3go6tPiI= Subject key identifier: F1:6E:43:52:DC:59:78:7E:95:B1:55:67:15:52:19:6C:44:98:1E:4C Certificate issuer: /CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Certificate serial: 3615 Authority key identifier: E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/2C1ADE1A35C811EEB06D6E4FC4F9AE02.roa Signing time: Fri 26 Apr 2024 15:00:40 +0000 ROA not before: Fri 26 Apr 2024 15:00:40 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141023 IP address blocks: 115.186.44.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:30:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13845 (0x3615) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C83B/serialNumber=E76EB256C0FCB07E2907978343E9AD9DD21FE206 Validity Not Before: Apr 26 15:00:40 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662bc197-5e9f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a4:a1:e3:11:08:ce:bc:21:27:a8:a3:fc:96: f1:f5:04:63:e1:c5:cd:be:c4:63:f7:ec:5e:a7:1e: 87:20:30:e9:a4:ca:85:64:ea:50:73:f6:40:df:5e: 92:8d:59:52:76:ad:bb:42:42:96:f4:9b:42:6c:98: 2d:f4:5f:f9:26:3d:2d:f7:a5:21:a1:bc:10:7d:23: 20:22:ce:d5:01:e0:3f:c1:fe:fe:21:d7:95:fe:5c: 4b:b6:cb:aa:3e:cb:23:ca:7f:db:df:28:f5:08:06: fd:d5:15:26:84:85:34:d2:71:fe:2a:84:44:48:0a: 25:d5:04:5d:ad:cc:c8:a3:ce:dc:9e:f9:10:2f:8e: af:02:98:9c:95:49:37:0f:e8:3a:d0:89:93:77:bc: 70:92:25:ac:40:e3:b4:af:aa:24:9a:69:5a:b9:47: ab:ef:6f:4a:c0:07:a6:35:1e:26:16:42:fd:5a:7f: 4c:c0:d9:81:fc:00:d3:f0:53:88:86:f0:7b:5c:01: ba:98:a6:4a:12:2e:42:aa:00:87:0e:c8:41:d8:74: c2:82:d6:7b:41:ae:88:94:17:70:ff:d6:57:29:8d: c9:68:b5:ea:01:da:79:4d:84:31:7c:cc:7e:b2:e0: 5a:9f:b4:3f:00:49:e6:6e:08:fa:44:bd:5f:87:6d: 61:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:6E:43:52:DC:59:78:7E:95:B1:55:67:15:52:19:6C:44:98:1E:4C X509v3 Authority Key Identifier: keyid:E7:6E:B2:56:C0:FC:B0:7E:29:07:97:83:43:E9:AD:9D:D2:1F:E2:06 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/526yVsD8sH4pB5eDQ-mtndIf4gY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/526yVsD8sH4pB5eDQ-mtndIf4gY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C83B/E4E10B4A1D8811E2A012CBE108B02CD2/2C1ADE1A35C811EEB06D6E4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.186.44.0/22 Signature Algorithm: sha256WithRSAEncryption a1:28:fd:85:17:5a:aa:ad:72:98:aa:ef:4d:13:cd:9c:dd:5d: 81:f5:5c:89:ad:69:39:a2:ff:c0:f5:0c:ad:ca:34:d1:7b:b3: fa:06:a1:9a:06:a5:a3:cd:ef:43:4c:77:29:a9:46:85:f4:25: fe:c9:23:bf:4d:fd:c6:69:ff:46:d9:ad:07:27:69:f8:0a:ab: 1e:90:12:9c:0d:ee:22:9e:da:ef:9f:16:8b:92:08:90:e1:35: ff:8f:04:55:2a:85:6c:8f:08:ff:b8:15:9c:9e:c4:78:d5:ed: 2c:ef:43:34:ba:9e:77:da:58:0b:f5:9a:11:bb:de:cd:c4:76: d8:2c:39:a0:5b:14:5d:a7:0b:9f:6f:92:f0:89:af:ca:07:5e: 95:97:a5:71:73:90:87:49:66:b0:43:ef:be:33:c0:ae:ae:b4: 36:84:6e:c4:5d:33:95:b6:40:f3:07:d3:00:34:05:42:15:02: 29:d9:ed:37:88:26:b8:dd:5e:2f:dc:72:3d:4f:af:f4:32:88: 51:cc:b2:06:20:c3:ff:46:39:23:74:b8:08:eb:06:4b:2a:62: b4:90:e6:03:8a:1d:fc:8b:d8:61:d0:80:e3:36:83:00:98:db: 05:8a:b4:43:6b:80:47:c7:8b:e8:0f:f7:3b:99:d2:70:12:43: d5:74:46:43 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNhUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkM4M0IxMTAvBgNVBAUTKEU3NkVCMjU2QzBGQ0IwN0UyOTA3OTc4MzQzRTlBRDlE RDIxRkUyMDYwHhcNMjQwNDI2MTUwMDQwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjJiYzE5Ny01ZTlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KSh4xEIzrwhJ6ij/Jbx9QRj4cXNvsRj9+xepx6HIDDppMqFZOpQc/ZA316S jVlSdq27QkKW9JtCbJgt9F/5Jj0t96UhobwQfSMgIs7VAeA/wf7+IdeV/lxLtsuq Pssjyn/b3yj1CAb91RUmhIU00nH+KoRESAol1QRdrczIo87cnvkQL46vApiclUk3 D+g60ImTd7xwkiWsQOO0r6okmmlauUer729KwAemNR4mFkL9Wn9MwNmB/ADT8FOI hvB7XAG6mKZKEi5CqgCHDshB2HTCgtZ7Qa6IlBdw/9ZXKY3JaLXqAdp5TYQxfMx+ suBan7Q/AEnmbgj6RL1fh21hEwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPFuQ1Lc WXh+lbFVZxVSGWxEmB5MMB8GA1UdIwQYMBaAFOduslbA/LB+KQeXg0PprZ3SH+IG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzgzQi9FNEUxMEI0QTFE ODgxMUUyQTAxMkNCRTEwOEIwMkNEMi81MjZ5VnNEOHNINHBCNWVEUS1tdG5kSWY0 Z1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzUyNnlWc0Q4c0g0cEI1ZURRLW10bmRJZjRnWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkM4M0IvRTRFMTBCNEExRDg4MTFFMkEwMTJDQkUxMDhCMDJDRDIvMkMxQURFMUEz NUM4MTFFRUIwNkQ2RTRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJzuiwwDQYJKoZIhvcNAQELBQADggEBAKEo/YUXWqqtcpiq 700TzZzdXYH1XImtaTmi/8D1DK3KNNF7s/oGoZoGpaPN70NMdympRoX0Jf7JI79N /cZp/0bZrQcnafgKqx6QEpwN7iKe2u+fFouSCJDhNf+PBFUqhWyPCP+4FZyexHjV 7SzvQzS6nnfaWAv1mhG73s3EdtgsOaBbFF2nC59vkvCJr8oHXpWXpXFzkIdJZrBD 774zwK6utDaEbsRdM5W2QPMH0wA0BUIVAinZ7TeIJrjdXi/ccj1Pr/QyiFHMsgYg w/9GOSN0uAjrBksqYrSQ5gOKHfyL2GHQgOM2gwCY2wWKtENrgEfHi+gP9zuZ0nAS Q9V0RkM= -----END CERTIFICATE-----Generated at Fri Nov 22 15:25:37 2024 by rpki-client on console-fra.rpki-client.org