$ rpki-client -vvf rpki.apnic.net/member_repository/A916E44B/6350694C4E0C11EF9218747EC4F9AE02/B02CCB344E0C11EF9175067FC4F9AE02.roa File: B02CCB344E0C11EF9175067FC4F9AE02.roa (raw, json) Hash identifier: cG4bHCwSBKH1chVLOqeULJS86kAJ2XDxlWDeiDKP3Os= Subject key identifier: A7:B3:99:94:5F:C8:E4:5C:6A:7A:93:E0:68:D2:01:95:C3:CF:04:CC Certificate issuer: /CN=A916E44B/serialNumber=812243E6B5D0DE11AE70C727B39D1F21E3AEAC03 Certificate serial: 02 Authority key identifier: 81:22:43:E6:B5:D0:DE:11:AE:70:C7:27:B3:9D:1F:21:E3:AE:AC:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gSJD5rXQ3hGucMcns50fIeOurAM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916E44B/6350694C4E0C11EF9218747EC4F9AE02/B02CCB344E0C11EF9175067FC4F9AE02.roa Signing time: Tue 30 Jul 2024 00:43:08 +0000 ROA not before: Tue 30 Jul 2024 00:43:08 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 16509 IP address blocks: 122.252.145.0/24 maxlen: 24 122.252.146.0/24 maxlen: 24 122.252.147.0/24 maxlen: 24 122.252.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916E44B/6350694C4E0C11EF9218747EC4F9AE02/gSJD5rXQ3hGucMcns50fIeOurAM.crl rsync://rpki.apnic.net/member_repository/A916E44B/6350694C4E0C11EF9218747EC4F9AE02/gSJD5rXQ3hGucMcns50fIeOurAM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gSJD5rXQ3hGucMcns50fIeOurAM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Oct 2024 05:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916E44B/serialNumber=812243E6B5D0DE11AE70C727B39D1F21E3AEAC03 Validity Not Before: Jul 30 00:43:08 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66a8371b-9d6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:20:78:30:e5:02:05:5a:c7:5b:c3:33:a8:dc: 30:26:ce:9c:8b:b5:87:f6:e8:23:18:3c:83:35:34: 77:7c:fd:0c:ca:3a:c5:67:66:15:82:0e:ae:5b:f0: a3:5b:35:aa:80:e1:99:6c:4a:a0:61:7b:42:e9:09: 56:1a:ac:af:a9:6c:d3:3a:25:64:6e:da:f9:bb:0d: 65:c7:50:0e:30:0b:70:c3:dd:b7:ce:4f:f8:d8:d1: ff:d2:94:07:28:8b:b3:de:63:a0:0e:e8:44:7d:61: 4c:aa:e2:aa:7f:fb:07:56:89:e9:78:4f:0a:91:51: e2:5f:ff:26:8e:24:89:b7:7a:af:27:79:7b:45:09: 04:fc:d8:59:c3:96:61:e4:6c:93:8b:77:21:7a:77: 78:fe:05:c1:c5:b5:21:02:90:ba:bc:cf:92:65:32: 47:42:80:ff:37:da:7e:7b:ce:90:0b:24:06:26:ce: 83:83:56:b8:38:7f:16:1d:13:a1:ab:b5:99:49:ec: 2e:3a:6e:22:25:44:01:5d:1d:24:cc:e1:5a:7d:96: 61:da:ce:83:02:18:15:3b:f0:e6:02:40:11:03:6a: f5:47:92:38:a6:8e:b6:ba:c9:9a:b7:be:16:40:fd: 69:7e:64:43:60:73:c7:7a:30:f5:59:cd:7f:96:2b: 8a:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:B3:99:94:5F:C8:E4:5C:6A:7A:93:E0:68:D2:01:95:C3:CF:04:CC X509v3 Authority Key Identifier: keyid:81:22:43:E6:B5:D0:DE:11:AE:70:C7:27:B3:9D:1F:21:E3:AE:AC:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916E44B/6350694C4E0C11EF9218747EC4F9AE02/gSJD5rXQ3hGucMcns50fIeOurAM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gSJD5rXQ3hGucMcns50fIeOurAM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916E44B/6350694C4E0C11EF9218747EC4F9AE02/B02CCB344E0C11EF9175067FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 122.252.145.0-122.252.151.255 Signature Algorithm: sha256WithRSAEncryption 65:69:e0:d3:b4:2f:fd:b2:2d:4d:36:bb:70:75:01:36:96:06: c5:88:0b:f1:cf:54:e1:35:5b:ad:e9:94:43:d4:30:54:fd:fb: be:b6:bc:c3:86:bd:73:04:61:16:0b:c2:80:f9:43:48:88:69: 94:6c:12:ac:de:08:2a:34:00:cb:42:c2:91:8b:00:5b:96:3b: 8e:1c:9d:03:48:23:4c:61:74:b5:b9:f4:61:02:0a:59:cf:1b: 15:42:4c:00:31:17:60:c8:94:51:65:2f:37:5c:f3:1d:47:d1: 34:6e:99:df:16:25:a1:c4:0e:a5:9f:b0:22:11:c0:44:e0:99: e4:9c:fe:6f:5b:ec:19:02:0c:90:0f:a1:1c:f4:b8:8d:90:24: de:8f:32:30:30:e3:b4:45:04:c1:05:a9:27:7d:dc:ce:ca:7c: 08:a1:25:99:71:86:ef:b3:c2:a2:9d:e7:c4:18:98:44:44:38: c1:b1:2a:d4:0a:c7:88:e1:5c:6c:69:e6:bd:03:cf:19:7a:a3: 2c:27:e4:f7:a2:f7:0e:8e:62:28:85:26:d3:84:bc:19:09:2d: 58:fb:c1:9a:55:10:01:13:a2:5f:8f:22:4e:7e:15:76:bf:13: 35:c3:ec:60:0f:d1:65:9f:40:f5:1f:6e:48:7c:5e:8f:d7:ef: 46:b5:e4:95 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 RTQ0QjExMC8GA1UEBRMoODEyMjQzRTZCNUQwREUxMUFFNzBDNzI3QjM5RDFGMjFF M0FFQUMwMzAeFw0yNDA3MzAwMDQzMDhaFw0yNTEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTgzNzFiLTlkNmEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEIHgw5QIFWsdbwzOo3DAmzpyLtYf26CMYPIM1NHd8/QzKOsVnZhWCDq5b8KNb NaqA4ZlsSqBhe0LpCVYarK+pbNM6JWRu2vm7DWXHUA4wC3DD3bfOT/jY0f/SlAco i7PeY6AO6ER9YUyq4qp/+wdWiel4TwqRUeJf/yaOJIm3eq8neXtFCQT82FnDlmHk bJOLdyF6d3j+BcHFtSECkLq8z5JlMkdCgP832n57zpALJAYmzoODVrg4fxYdE6Gr tZlJ7C46biIlRAFdHSTM4Vp9lmHazoMCGBU78OYCQBEDavVHkjimjra6yZq3vhZA /Wl+ZENgc8d6MPVZzX+WK4plAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUp7OZlF/I 5FxqepPgaNIBlcPPBMwwHwYDVR0jBBgwFoAUgSJD5rXQ3hGucMcns50fIeOurAMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTZFNDRCLzYzNTA2OTRDNEUw QzExRUY5MjE4NzQ3RUM0RjlBRTAyL2dTSkQ1clhRM2hHdWNNY25zNTBmSWVPdXJB TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZ1NKRDVyWFEzaEd1Y01jbnM1MGZJZU91ckFNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 RTQ0Qi82MzUwNjk0QzRFMEMxMUVGOTIxODc0N0VDNEY5QUUwMi9CMDJDQ0IzNDRF MEMxMUVGOTE3NTA2N0ZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQAevyRAwQDevyQMA0GCSqGSIb3DQEBCwUAA4IBAQBlaeDT tC/9si1NNrtwdQE2lgbFiAvxz1ThNVut6ZRD1DBU/fu+trzDhr1zBGEWC8KA+UNI iGmUbBKs3ggqNADLQsKRiwBbljuOHJ0DSCNMYXS1ufRhAgpZzxsVQkwAMRdgyJRR ZS83XPMdR9E0bpnfFiWhxA6ln7AiEcBE4JnknP5vW+wZAgyQD6Ec9LiNkCTejzIw MOO0RQTBBaknfdzOynwIoSWZcYbvs8KinefEGJhERDjBsSrUCseI4Vxsaea9A88Z eqMsJ+T3ovcOjmIohSbThLwZCS1Y+8GaVRABE6JfjyJOfhV2vxM1w+xgD9Fln0D1 H25IfF6P1+9GteSV -----END CERTIFICATE-----Generated at Mon Oct 21 06:55:35 2024 by rpki-client on console-fra.rpki-client.org