$ rpki-client -vvf rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/2512D04C22BE11EC9240097DC4F9AE02.roa File: 2512D04C22BE11EC9240097DC4F9AE02.roa (raw, json) Hash identifier: /Y6lIt9MMjzPd7oqbEM3bpWnNkzrAJqUKj5To40fFxs= Subject key identifier: 1B:C9:3B:9E:99:7A:CB:42:62:8D:AD:E0:C3:64:4D:4C:1B:15:88:67 Certificate issuer: /CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Certificate serial: 09B9 Authority key identifier: AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/2512D04C22BE11EC9240097DC4F9AE02.roa Signing time: Sat 02 Dec 2023 20:47:44 +0000 ROA not before: Sat 02 Dec 2023 20:47:44 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 9650 IP address blocks: 45.64.68.0/22 maxlen: 22 45.64.68.0/24 maxlen: 24 45.64.69.0/24 maxlen: 24 45.64.70.0/24 maxlen: 24 103.233.236.0/22 maxlen: 22 203.5.10.0/24 maxlen: 24 203.9.184.0/22 maxlen: 22 203.15.124.0/22 maxlen: 22 203.15.125.0/24 maxlen: 24 203.18.108.0/23 maxlen: 23 203.21.12.0/24 maxlen: 24 203.62.216.0/22 maxlen: 22 2406:3c00::/32 maxlen: 32 2406:3c00:6000::/43 maxlen: 43 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2489 (0x9b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917E4BA/serialNumber=AA436AAFC688045BF5148861546FA3FDCA98408E Validity Not Before: Dec 2 20:47:44 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656b97f0-dd84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bb:ee:75:99:d7:34:37:49:89:0f:82:d4:b1: 97:6f:a3:51:fa:03:7c:64:a8:9f:04:6d:e5:82:cf: 9e:3c:c4:34:ef:d8:56:e9:ab:cb:3a:77:ad:dc:4a: 2b:04:eb:54:2c:fe:8a:4d:1d:48:b0:c9:f0:27:40: 48:39:61:a3:65:7b:de:2e:71:57:23:61:4e:0f:ab: 52:bc:cc:64:b3:f1:c2:f7:64:27:cb:5c:65:39:88: f0:d3:3d:ea:d4:a0:dd:20:3f:83:4e:1d:32:ee:17: 3c:6a:b4:d4:65:59:1a:ae:41:97:ca:4c:a0:a7:cf: 2c:35:b6:ed:1c:07:3f:94:ae:82:e2:df:6d:35:96: 86:71:c9:81:66:a1:82:04:ac:62:ae:e9:16:40:93: f3:62:4c:d1:0c:74:f2:4e:07:49:e7:07:f7:d1:f0: 28:5a:55:ce:5e:98:39:13:a9:53:e7:7e:a3:a7:96: d3:51:71:ff:8c:88:6c:7a:21:3f:2c:c6:9d:a4:af: 2d:07:ab:61:16:ea:79:4e:ab:25:d3:c0:41:e2:cc: b7:2b:4f:96:0f:38:15:7d:ac:2d:78:77:51:73:1a: d4:d4:e3:5f:53:8d:f4:09:1b:16:f9:3c:7e:b2:9c: ba:64:01:52:53:90:81:cb:ed:05:66:7a:ef:ef:b6: d6:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C9:3B:9E:99:7A:CB:42:62:8D:AD:E0:C3:64:4D:4C:1B:15:88:67 X509v3 Authority Key Identifier: keyid:AA:43:6A:AF:C6:88:04:5B:F5:14:88:61:54:6F:A3:FD:CA:98:40:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/qkNqr8aIBFv1FIhhVG-j_cqYQI4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qkNqr8aIBFv1FIhhVG-j_cqYQI4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917E4BA/D06BF32852DC11EA82601B0FC4F9AE02/2512D04C22BE11EC9240097DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.68.0/22 103.233.236.0/22 203.5.10.0/24 203.9.184.0/22 203.15.124.0/22 203.18.108.0/23 203.21.12.0/24 203.62.216.0/22 IPv6: 2406:3c00::/32 Signature Algorithm: sha256WithRSAEncryption 4a:95:c2:be:85:54:6c:25:8c:99:73:ae:ac:82:11:38:d0:73: 2a:2d:19:78:a5:4b:0a:30:87:11:c5:be:10:09:11:95:92:6f: a0:a4:0c:4d:9d:f4:3e:e5:30:f7:44:cf:8e:c4:df:65:94:7a: 70:79:16:b2:f4:20:f8:12:20:d3:3b:b1:14:78:e3:55:21:6a: 60:d8:cb:9e:1c:02:15:3d:ff:c9:1a:d3:99:14:db:37:1b:f4: c9:16:64:ab:74:fd:5d:5d:a9:e6:81:f3:1b:8d:89:95:aa:ad: cc:e2:f8:44:ce:f0:6e:11:28:2f:4e:33:7d:d8:a1:f3:53:72: a4:0a:80:ff:78:4c:6b:c5:c2:72:60:e6:44:3b:e5:04:e2:2d: d0:39:e4:5f:a3:ac:99:c0:b9:86:dc:70:eb:da:51:8e:7e:bd: 8e:90:b6:7e:10:27:23:51:07:45:39:4f:f0:f7:bf:27:6c:7e: 57:b3:f6:a4:da:cb:a7:d9:dd:f3:a2:74:a8:a8:b0:1a:09:2d: 7b:3b:c9:c6:5c:14:1f:6c:f4:03:1c:eb:65:71:6f:9e:bf:7b: 1c:87:c9:df:69:09:7f:9b:29:00:c7:91:67:86:9c:76:68:1c: cb:30:c6:01:52:c0:c6:b4:fa:51:cb:15:df:e1:26:86:10:46: 51:d0:09:3a -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgICCbkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0U0QkExMTAvBgNVBAUTKEFBNDM2QUFGQzY4ODA0NUJGNTE0ODg2MTU0NkZBM0ZE Q0E5ODQwOEUwHhcNMjMxMjAyMjA0NzQ0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZiOTdmMC1kZDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7vudZnXNDdJiQ+C1LGXb6NR+gN8ZKifBG3lgs+ePMQ079hW6avLOnet3Eor BOtULP6KTR1IsMnwJ0BIOWGjZXveLnFXI2FOD6tSvMxks/HC92Qny1xlOYjw0z3q 1KDdID+DTh0y7hc8arTUZVkarkGXykygp88sNbbtHAc/lK6C4t9tNZaGccmBZqGC BKxirukWQJPzYkzRDHTyTgdJ5wf30fAoWlXOXpg5E6lT536jp5bTUXH/jIhseiE/ LMadpK8tB6thFup5Tqsl08BB4sy3K0+WDzgVfawteHdRcxrU1ONfU430CRsW+Tx+ spy6ZAFSU5CBy+0FZnrv77bWqQIDAQABo4ICzjCCAsowHQYDVR0OBBYEFBvJO56Z estCYo2t4MNkTUwbFYhnMB8GA1UdIwQYMBaAFKpDaq/GiARb9RSIYVRvo/3KmECO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3RTRCQS9EMDZCRjMyODUy REMxMUVBODI2MDFCMEZDNEY5QUUwMi9xa05xcjhhSUJGdjFGSWhoVkctal9jcVlR STQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FrTnFyOGFJQkZ2MUZJaGhWRy1qX2NxWVFJNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0U0QkEvRDA2QkYzMjg1MkRDMTFFQTgyNjAxQjBGQzRGOUFFMDIvMjUxMkQwNEMy MkJFMTFFQzkyNDAwOTdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWAYIKwYBBQUHAQcBAf8E STBHMDYEAgABMDADBAItQEQDBAJn6ewDBADLBQoDBALLCbgDBALLD3wDBAHLEmwD BADLFQwDBALLPtgwDQQCAAIwBwMFACQGPAAwDQYJKoZIhvcNAQELBQADggEBAEqV wr6FVGwljJlzrqyCETjQcyotGXilSwowhxHFvhAJEZWSb6CkDE2d9D7lMPdEz47E 32WUenB5FrL0IPgSINM7sRR441UhamDYy54cAhU9/8ka05kU2zcb9MkWZKt0/V1d qeaB8xuNiZWqrczi+ETO8G4RKC9OM33YofNTcqQKgP94TGvFwnJg5kQ75QTiLdA5 5F+jrJnAuYbccOvaUY5+vY6Qtn4QJyNRB0U5T/D3vydsflez9qTay6fZ3fOidKio sBoJLXs7ycZcFB9s9AMc62Vxb56/exyHyd9pCX+bKQDHkWeGnHZoHMswxgFSwMa0 +lHLFd/hJoYQRlHQCTo= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:25 2024 by rpki-client on console-fra.rpki-client.org