$ rpki-client -vvf rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/C2EECBA0E85C11EBA2171A25C4F9AE02.roa File: C2EECBA0E85C11EBA2171A25C4F9AE02.roa (raw, json) Hash identifier: 8Yo8XmtHUC1h3z2u1AbgBb+SfApNI9FQPc+WFfWHlN4= Subject key identifier: D2:84:57:DB:1C:F7:85:F5:ED:87:64:A8:94:C3:9F:EC:10:54:27:D7 Certificate issuer: /CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Certificate serial: 1C3B Authority key identifier: 1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/C2EECBA0E85C11EBA2171A25C4F9AE02.roa Signing time: Fri 16 Feb 2024 17:04:11 +0000 ROA not before: Fri 16 Feb 2024 17:04:11 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 42962 IP address blocks: 103.81.184.0/22 maxlen: 24 202.144.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:05:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7227 (0x1c3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DBF2/serialNumber=1B17AC3DC96CA234525023EFD3627E92CD884748 Validity Not Before: Feb 16 17:04:11 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cf958b-b2d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:36:76:e0:ea:46:61:5e:ec:fd:eb:17:db: 3e:1d:f1:fc:f3:d6:9c:5b:43:c7:4e:b3:39:dd:7c: 68:f8:2f:fa:4b:6f:1a:fe:09:cb:1a:20:20:21:98: 0c:50:23:c4:ef:dd:a2:74:00:18:44:3f:89:3c:25: e0:d5:62:3c:99:52:be:df:4b:7d:89:45:1d:52:ea: 7b:70:e4:bf:1f:4a:66:a9:fe:3b:a2:6c:c2:9c:28: be:6a:0c:bd:d0:a6:5a:5f:99:0f:dc:ca:58:3c:90: ef:9b:51:e1:ad:f3:0c:94:b8:c9:dc:17:9d:11:5b: b7:79:24:ef:37:99:0a:3b:8a:f7:a7:fe:f8:0c:76: 23:ee:3c:f0:55:11:07:0c:b9:9b:4b:94:0d:6b:5b: bd:b8:26:0f:67:4b:4d:9a:18:79:26:00:11:b4:97: 2f:b3:a4:13:d2:5e:30:4d:8f:02:7f:d4:ef:e2:5f: fe:c0:d0:7a:ad:71:f9:1c:bf:e4:8f:d2:f4:0a:1f: c0:80:22:b6:76:c7:d5:a0:cf:43:f0:0e:fe:54:f9: 7b:8b:e8:0e:d4:27:a2:a4:d5:a7:96:cc:f0:2f:64: 4c:fc:69:22:9d:b4:09:2f:4e:0c:21:7b:c1:06:55: a9:22:41:18:8a:2f:b5:bc:72:e2:8f:ef:85:6c:f7: dc:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:84:57:DB:1C:F7:85:F5:ED:87:64:A8:94:C3:9F:EC:10:54:27:D7 X509v3 Authority Key Identifier: keyid:1B:17:AC:3D:C9:6C:A2:34:52:50:23:EF:D3:62:7E:92:CD:88:47:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/GxesPclsojRSUCPv02J-ks2IR0g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GxesPclsojRSUCPv02J-ks2IR0g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DBF2/E3445016C2F811E6997AEB6BC4F9AE02/C2EECBA0E85C11EBA2171A25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.184.0/22 202.144.196.0/22 Signature Algorithm: sha256WithRSAEncryption 36:b4:aa:fd:67:35:de:1e:21:26:32:06:91:18:df:1f:0a:b1: e1:41:9e:88:f6:46:9e:0d:5c:6b:f3:0c:c0:7e:f2:a1:5b:4f: b2:08:b0:aa:f1:a3:80:6b:79:76:7e:72:c7:aa:ab:47:9f:0b: 48:de:44:e1:9e:37:a2:0d:da:51:ce:d2:ee:c4:be:d4:84:7a: d4:3a:2c:d4:8f:05:ea:d9:d2:6e:f4:a7:63:d1:81:61:b9:ac: df:5e:cb:29:f9:56:91:ad:0f:7b:78:5d:0b:30:f0:ba:cc:46: 5a:ff:45:cf:83:02:0f:79:3a:21:8d:4b:ec:52:d4:76:30:e4: 37:73:4b:fe:dd:b9:78:19:e4:43:83:a6:83:a2:fd:ca:44:14: 81:35:2d:09:76:db:79:2f:fe:d2:4f:c6:2e:f2:82:ea:0f:ee: a2:4c:71:93:c5:11:16:16:3b:b9:70:a1:24:71:49:f6:dd:91: c1:7c:34:e9:c7:bb:ea:01:14:2b:bc:fd:67:2a:ce:ec:f2:ce: 27:99:de:44:60:3b:17:6d:2b:6a:47:0c:e6:ef:ca:7f:ef:cc: 16:19:7f:fe:c0:2f:85:f4:f2:e1:36:29:09:a0:72:83:0d:a0: d5:60:56:64:e7:dd:70:b7:8a:9f:15:48:16:7f:56:77:3c:c0: b6:ec:4d:58 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICHDswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RCRjIxMTAvBgNVBAUTKDFCMTdBQzNEQzk2Q0EyMzQ1MjUwMjNFRkQzNjI3RTky Q0Q4ODQ3NDgwHhcNMjQwMjE2MTcwNDExWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmOTU4Yi1iMmQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCU2duDqRmFe7P3rF9s+HfH889acW0PHTrM53Xxo+C/6S28a/gnLGiAgIZgM UCPE792idAAYRD+JPCXg1WI8mVK+30t9iUUdUup7cOS/H0pmqf47omzCnCi+agy9 0KZaX5kP3MpYPJDvm1HhrfMMlLjJ3BedEVu3eSTvN5kKO4r3p/74DHYj7jzwVREH DLmbS5QNa1u9uCYPZ0tNmhh5JgARtJcvs6QT0l4wTY8Cf9Tv4l/+wNB6rXH5HL/k j9L0Ch/AgCK2dsfVoM9D8A7+VPl7i+gO1CeipNWnlszwL2RM/GkinbQJL04MIXvB BlWpIkEYii+1vHLij++FbPfcwwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNKEV9sc 94X17YdkqJTDn+wQVCfXMB8GA1UdIwQYMBaAFBsXrD3JbKI0UlAj79NifpLNiEdI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REJGMi9FMzQ0NTAxNkMy RjgxMUU2OTk3QUVCNkJDNEY5QUUwMi9HeGVzUGNsc29qUlNVQ1B2MDJKLWtzMklS MGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d4ZXNQY2xzb2pSU1VDUHYwMkota3MySVIwZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RCRjIvRTM0NDUwMTZDMkY4MTFFNjk5N0FFQjZCQzRGOUFFMDIvQzJFRUNCQTBF ODVDMTFFQkEyMTcxQTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUbgDBALKkMQwDQYJKoZIhvcNAQELBQADggEBADa0qv1n Nd4eISYyBpEY3x8KseFBnoj2Rp4NXGvzDMB+8qFbT7IIsKrxo4BreXZ+cseqq0ef C0jeROGeN6IN2lHO0u7EvtSEetQ6LNSPBerZ0m70p2PRgWG5rN9eyyn5VpGtD3t4 XQsw8LrMRlr/Rc+DAg95OiGNS+xS1HYw5DdzS/7duXgZ5EODpoOi/cpEFIE1LQl2 23kv/tJPxi7yguoP7qJMcZPFERYWO7lwoSRxSfbdkcF8NOnHu+oBFCu8/Wcqzuzy zieZ3kRgOxdtK2pHDObvyn/vzBYZf/7AL4X08uE2KQmgcoMNoNVgVmTn3XC3ip8V SBZ/Vnc8wLbsTVg= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:17 2024 by rpki-client on console-ams.rpki-client.org