$ rpki-client -vvf rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/2C24CB26CECC11EEAFCD520AC4F9AE02.roa File: 2C24CB26CECC11EEAFCD520AC4F9AE02.roa (raw, json) Hash identifier: wIfhQ+g9F9NVqk8nq5n90WhcuB/KJzwzyp/RW8x0Uho= Subject key identifier: AC:89:DE:4A:67:14:81:49:E5:28:A2:00:36:30:AE:47:CC:DF:77:DB Certificate issuer: /CN=A917AC3B/serialNumber=008F2CC864241DE8635E93A57440F9C2EB258BB3 Certificate serial: 02 Authority key identifier: 00:8F:2C:C8:64:24:1D:E8:63:5E:93:A5:74:40:F9:C2:EB:25:8B:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/2C24CB26CECC11EEAFCD520AC4F9AE02.roa Signing time: Mon 19 Feb 2024 02:11:20 +0000 ROA not before: Mon 19 Feb 2024 02:11:20 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 4049 IP address blocks: 202.49.112.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.crl rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917AC3B/serialNumber=008F2CC864241DE8635E93A57440F9C2EB258BB3 Validity Not Before: Feb 19 02:11:20 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65d2b8c8-683d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:82:86:b8:33:09:00:f5:61:5a:a8:2b:d9:ce: 15:7e:78:d5:74:1a:30:ff:29:32:73:5a:e9:5f:51: 4b:84:91:0d:69:37:cf:f6:e7:41:f7:eb:2f:a7:da: 81:47:71:9b:63:de:e7:43:bc:8d:87:a4:2d:d7:cb: 8c:e4:e8:8e:82:2b:d4:bb:40:ec:62:10:b8:d7:1f: 42:b3:b8:a1:82:0c:94:85:ae:b5:e5:35:b3:e2:d0: 8c:05:7b:e5:60:bc:bf:f7:dd:49:cf:3e:05:0c:18: 49:f4:84:ec:c0:40:8f:8d:67:ab:75:a3:43:50:08: 54:e0:d5:f3:6f:c8:87:ff:2a:c4:70:58:3b:08:13: 5e:f0:61:50:95:d9:44:62:cc:4f:8d:be:8d:c5:6c: 95:e6:33:5c:95:8e:ab:84:9b:0b:55:67:2a:89:e4: 2c:05:35:7e:77:3f:1d:5f:ab:14:a9:df:87:b0:c4: 7b:b9:4b:14:5b:44:09:1e:bd:21:d8:ea:ae:2a:c2: a8:6b:ce:c9:1c:eb:20:92:a3:0e:14:0f:de:bb:3f: ae:c8:76:24:d2:0f:a0:bf:1e:88:e2:ce:6d:5b:6f: 90:37:e3:e6:ff:b8:04:33:29:d0:a4:ed:65:ab:ca: 2b:cf:29:dc:bc:ea:da:0f:85:ed:46:01:d0:56:83: f5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:89:DE:4A:67:14:81:49:E5:28:A2:00:36:30:AE:47:CC:DF:77:DB X509v3 Authority Key Identifier: keyid:00:8F:2C:C8:64:24:1D:E8:63:5E:93:A5:74:40:F9:C2:EB:25:8B:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/AI8syGQkHehjXpOldED5wusli7M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AI8syGQkHehjXpOldED5wusli7M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917AC3B/957B2440CECB11EEB0305587C4F9AE02/2C24CB26CECC11EEAFCD520AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.49.112.0/23 Signature Algorithm: sha256WithRSAEncryption 65:91:6e:5f:b3:65:d3:a5:14:12:62:58:e4:f1:27:a3:64:70: 05:6b:85:d8:6a:a7:26:4d:1b:ea:78:1c:3e:fd:20:01:79:f9: d9:f3:7b:b1:d4:e6:3c:b1:08:7c:e6:2d:5a:11:8f:46:f1:77: 10:6b:3b:05:4e:fc:05:8b:b4:90:c1:b7:94:b0:51:bd:84:c5: a9:28:da:51:8f:1b:eb:ae:36:a8:9f:bd:08:4f:86:a1:98:13: 51:13:6b:2c:79:39:a5:1d:5e:9c:6e:0c:fc:80:8b:30:66:c3: d5:82:23:44:28:2c:dd:7e:fc:b5:a9:0c:28:2e:92:35:a1:76: f9:34:54:64:8b:2b:1c:0a:e9:2f:c3:79:b5:87:a8:7c:05:1a: 3f:3f:11:18:dc:0e:e1:bb:47:25:46:a6:f7:27:94:d5:4c:68: 1b:a1:5c:80:7f:ad:02:54:40:4c:9e:bb:be:8b:50:a4:ef:d3: c8:b3:7f:d0:c5:69:8e:72:83:84:56:5d:d6:13:4e:49:b7:95: 13:3e:ec:26:3f:dd:86:0d:c3:e2:ff:9a:6c:0b:b2:ab:af:dc: d0:06:3b:91:43:b3:da:30:95:76:37:cc:77:e7:d9:80:0b:76: ef:bc:8a:60:59:01:f6:7d:02:f5:12:34:87:99:c7:22:e0:ae: d4:72:6e:14 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 QUMzQjExMC8GA1UEBRMoMDA4RjJDQzg2NDI0MURFODYzNUU5M0E1NzQ0MEY5QzJF QjI1OEJCMzAeFw0yNDAyMTkwMjExMjBaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZDJiOGM4LTY4M2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwgoa4MwkA9WFaqCvZzhV+eNV0GjD/KTJzWulfUUuEkQ1pN8/250H36y+n2oFH cZtj3udDvI2HpC3Xy4zk6I6CK9S7QOxiELjXH0KzuKGCDJSFrrXlNbPi0IwFe+Vg vL/33UnPPgUMGEn0hOzAQI+NZ6t1o0NQCFTg1fNvyIf/KsRwWDsIE17wYVCV2URi zE+Nvo3FbJXmM1yVjquEmwtVZyqJ5CwFNX53Px1fqxSp34ewxHu5SxRbRAkevSHY 6q4qwqhrzskc6yCSow4UD967P67IdiTSD6C/Hojizm1bb5A34+b/uAQzKdCk7WWr yivPKdy86toPhe1GAdBWg/XVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUrIneSmcU gUnlKKIANjCuR8zfd9swHwYDVR0jBBgwFoAUAI8syGQkHehjXpOldED5wusli7Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdBQzNCLzk1N0IyNDQwQ0VD QjExRUVCMDMwNTU4N0M0RjlBRTAyL0FJOHN5R1FrSGVoalhwT2xkRUQ1d3VzbGk3 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQUk4c3lHUWtIZWhqWHBPbGRFRDV3dXNsaTdNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 QUMzQi85NTdCMjQ0MENFQ0IxMUVFQjAzMDU1ODdDNEY5QUUwMi8yQzI0Q0IyNkNF Q0MxMUVFQUZDRDUyMEFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcoxcDANBgkqhkiG9w0BAQsFAAOCAQEAZZFuX7Nl06UUEmJY 5PEno2RwBWuF2GqnJk0b6ngcPv0gAXn52fN7sdTmPLEIfOYtWhGPRvF3EGs7BU78 BYu0kMG3lLBRvYTFqSjaUY8b6642qJ+9CE+GoZgTURNrLHk5pR1enG4M/ICLMGbD 1YIjRCgs3X78takMKC6SNaF2+TRUZIsrHArpL8N5tYeofAUaPz8RGNwO4btHJUam 9yeU1UxoG6FcgH+tAlRATJ67votQpO/TyLN/0MVpjnKDhFZd1hNOSbeVEz7sJj/d hg3D4v+abAuyq6/c0AY7kUOz2jCVdjfMd+fZgAt277yKYFkB9n0C9RI0h5nHIuCu 1HJuFA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:29 2024 by rpki-client on console-fra.rpki-client.org