$ rpki-client -vvf rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/2D08F32A110011EFBF50D06AC4F9AE02.roa File: 2D08F32A110011EFBF50D06AC4F9AE02.roa (raw, json) Hash identifier: EYuBGSt59mzabuux0r47h3t0WJIfTPPbhtSLivdtd1s= Subject key identifier: 94:EE:04:28:9D:87:58:24:E5:45:57:82:2E:61:01:72:76:98:D1:4B Certificate issuer: /CN=A917E0BB/serialNumber=11AB37DC654150C493C8AFC7E86D669C20AE5386 Certificate serial: 1E Authority key identifier: 11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/2D08F32A110011EFBF50D06AC4F9AE02.roa Signing time: Mon 13 May 2024 08:09:53 +0000 ROA not before: Mon 13 May 2024 08:09:53 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 140687 IP address blocks: 115.84.170.0/23 maxlen: 23 115.84.170.0/24 maxlen: 24 115.84.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.crl rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E0BB/serialNumber=11AB37DC654150C493C8AFC7E86D669C20AE5386 Validity Not Before: May 13 08:09:53 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6641cad0-9158 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:8c:ba:3b:0c:fd:2c:fa:a6:bb:fd:47:e3:91: 08:ea:ca:e4:99:fd:5d:80:5f:8a:74:30:57:ac:11: 61:74:54:d8:cc:72:85:6f:49:39:27:b8:93:a0:d5: 00:eb:b0:d7:cb:d5:d5:a0:f2:46:16:bf:5b:cd:37: 80:6c:8b:17:34:5a:68:01:23:59:b4:5f:e2:a7:16: 2f:6f:83:07:5c:aa:e4:b1:d2:9e:a1:44:53:46:b3: 00:1a:8f:af:b2:5a:c2:4a:51:76:71:fc:9f:14:3e: 9a:fb:19:30:8a:b5:1f:cb:96:30:bc:93:b1:f0:6f: a6:17:e2:85:db:02:f4:5f:6c:aa:1c:93:2c:70:9c: e0:71:36:21:1c:24:a0:c8:83:89:3f:c9:a5:d4:55: b9:62:8e:c1:65:81:d9:cf:12:1c:51:20:7e:35:d9: b6:64:e1:7c:3e:2b:5c:b9:9a:45:eb:ae:94:9a:97: a1:28:9e:ed:5e:2c:f6:83:39:80:b3:d7:ac:75:98: 5b:e8:9e:63:16:ab:bb:a3:a0:47:f9:d2:b2:68:44: d0:de:bc:d1:7f:1c:64:31:85:f9:20:56:43:96:e8: cc:fc:80:6e:80:7c:5e:da:e9:60:b5:72:7d:3d:d7: 22:03:39:4d:8d:dd:a4:57:b9:e0:49:e6:a7:f8:ae: 00:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:EE:04:28:9D:87:58:24:E5:45:57:82:2E:61:01:72:76:98:D1:4B X509v3 Authority Key Identifier: keyid:11:AB:37:DC:65:41:50:C4:93:C8:AF:C7:E8:6D:66:9C:20:AE:53:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/Eas33GVBUMSTyK_H6G1mnCCuU4Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Eas33GVBUMSTyK_H6G1mnCCuU4Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E0BB/68431FA2E8E611EE9CABE06AC4F9AE02/2D08F32A110011EFBF50D06AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.84.170.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:21:41:8c:d5:a0:28:4a:1e:1f:a7:36:24:cf:ae:db:08:7b: d5:13:0b:02:a0:03:f2:cd:ed:52:f5:51:6f:0a:f3:16:0b:99: 2b:4e:e0:85:43:c4:55:1d:67:67:4e:99:c1:3b:d0:f3:9c:dd: 9a:21:33:f5:b2:a5:51:64:65:e3:29:4e:27:bd:35:09:e3:c6: 79:5f:4c:48:d8:27:d3:ed:88:bf:fd:2d:5e:f5:37:3e:1b:b1: 15:04:e1:43:04:d7:e4:af:1c:cf:e0:1a:29:d8:68:22:3c:3f: d9:05:67:53:41:5e:21:f8:b0:bf:a4:30:8f:22:9d:ba:19:94: 77:c3:e7:7e:c6:9a:dc:07:67:a6:8a:e9:14:76:e9:3f:36:0d: 67:b3:a2:b7:c0:e6:c7:f6:75:8f:9b:e0:f3:01:fb:16:19:f4: f8:36:8b:0f:ca:d0:65:8c:a7:dc:02:56:1b:c1:f4:94:c8:26: 01:7b:38:60:10:e5:a7:01:f3:e5:28:d8:a1:6a:92:96:3f:5f: e0:fd:80:84:03:9a:8c:fd:8b:da:5f:28:09:d1:e9:8b:fc:9a: d9:d2:47:57:d0:99:27:23:76:7c:7c:07:59:88:29:18:63:10: 3a:44:2d:d7:e3:19:cb:eb:28:2c:b0:5b:7b:13:cd:e9:60:17: e2:45:87:b2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 RTBCQjExMC8GA1UEBRMoMTFBQjM3REM2NTQxNTBDNDkzQzhBRkM3RTg2RDY2OUMy MEFFNTM4NjAeFw0yNDA1MTMwODA5NTNaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDFjYWQwLTkxNTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDmjLo7DP0s+qa7/UfjkQjqyuSZ/V2AX4p0MFesEWF0VNjMcoVvSTknuJOg1QDr sNfL1dWg8kYWv1vNN4Bsixc0WmgBI1m0X+KnFi9vgwdcquSx0p6hRFNGswAaj6+y WsJKUXZx/J8UPpr7GTCKtR/LljC8k7Hwb6YX4oXbAvRfbKockyxwnOBxNiEcJKDI g4k/yaXUVblijsFlgdnPEhxRIH412bZk4Xw+K1y5mkXrrpSal6Eonu1eLPaDOYCz 16x1mFvonmMWq7ujoEf50rJoRNDevNF/HGQxhfkgVkOW6Mz8gG6AfF7a6WC1cn09 1yIDOU2N3aRXueBJ5qf4rgA1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUlO4EKJ2H WCTlRVeCLmEBcnaY0UswHwYDVR0jBBgwFoAUEas33GVBUMSTyK/H6G1mnCCuU4Yw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTdFMEJCLzY4NDMxRkEyRThF NjExRUU5Q0FCRTA2QUM0RjlBRTAyL0VhczMzR1ZCVU1TVHlLX0g2RzFtbkNDdVU0 WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRWFzMzNHVkJVTVNUeUtfSDZHMW1uQ0N1VTRZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 RTBCQi82ODQzMUZBMkU4RTYxMUVFOUNBQkUwNkFDNEY5QUUwMi8yRDA4RjMyQTEx MDAxMUVGQkY1MEQwNkFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAXNUqjANBgkqhkiG9w0BAQsFAAOCAQEAWyFBjNWgKEoeH6c2 JM+u2wh71RMLAqAD8s3tUvVRbwrzFguZK07ghUPEVR1nZ06ZwTvQ85zdmiEz9bKl UWRl4ylOJ701CePGeV9MSNgn0+2Iv/0tXvU3PhuxFQThQwTX5K8cz+AaKdhoIjw/ 2QVnU0FeIfiwv6QwjyKduhmUd8Pnfsaa3AdnporpFHbpPzYNZ7Oit8Dmx/Z1j5vg 8wH7Fhn0+DaLD8rQZYyn3AJWG8H0lMgmAXs4YBDlpwHz5SjYoWqSlj9f4P2AhAOa jP2L2l8oCdHpi/ya2dJHV9CZJyN2fHwHWYgpGGMQOkQt1+MZy+soLLBbexPN6WAX 4kWHsg== -----END CERTIFICATE-----Generated at Fri Jun 7 11:02:23 2024 by rpki-client on console-fra.rpki-client.org