$ rpki-client -vvf rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa File: 2DCC0688B57211EEBB68526DC4F9AE02.roa (raw, json) Hash identifier: ISi9gMsFzLmCrnxNv9LX4WndyIlBo1W9bMj3vV8OrvU= Subject key identifier: BF:F7:3E:C7:74:6B:AC:0B:3A:D9:F3:39:0F:7B:A9:83:59:31:EF:B5 Certificate issuer: /CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Certificate serial: 6A Authority key identifier: D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa Signing time: Sat 27 Jul 2024 06:56:52 +0000 ROA not before: Sat 27 Jul 2024 06:56:52 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 22003 IP address blocks: 216.200.189.0/24 maxlen: 24 216.200.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 106 (0x6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9197277/serialNumber=D83B93E31E939937D8CB15FE39CA5E6E8FEAFA9B Validity Not Before: Jul 27 06:56:52 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66a49a33-2f4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6a:bb:57:76:07:63:f5:70:ef:eb:b4:be:9a: 0f:f1:08:99:0c:ab:28:7d:6a:43:0b:44:af:f6:f9: ac:e4:35:d2:3b:20:93:dc:05:a4:69:07:83:7b:10: 4a:c4:5d:b7:4b:fd:53:dd:43:aa:ba:95:4b:61:04: 07:b4:83:bf:60:b0:9c:b1:42:85:80:bc:94:99:48: 5d:06:c8:63:fe:99:1d:4c:61:47:e4:3e:06:cf:2a: bc:4c:82:ec:19:76:36:ea:09:65:b6:bb:22:8b:06: d8:31:49:26:0b:c7:68:69:fb:4b:37:89:95:3b:98: d0:da:d5:83:c9:a4:33:1d:ed:e5:47:51:d7:50:a1: 18:57:63:de:06:0c:4c:0b:86:2c:93:0a:89:5d:1b: b2:73:cf:b5:82:69:58:87:dc:f8:1b:fb:a5:a2:91: 1e:05:eb:6b:b7:5b:c8:8d:ad:9c:9f:93:25:de:45: f3:4e:ad:b8:e4:f8:c0:07:1a:45:3c:41:97:23:89: 53:e2:41:5c:c3:84:67:b6:21:0d:58:7a:8b:24:04: 41:4c:e8:2d:ed:3f:91:e1:5d:47:6b:5c:9f:e1:7a: af:da:54:a4:72:3e:d7:59:8e:0f:b7:9f:95:69:83: b7:3b:32:86:f6:20:59:fa:0f:17:f5:0e:e9:6b:d9: a5:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:F7:3E:C7:74:6B:AC:0B:3A:D9:F3:39:0F:7B:A9:83:59:31:EF:B5 X509v3 Authority Key Identifier: keyid:D8:3B:93:E3:1E:93:99:37:D8:CB:15:FE:39:CA:5E:6E:8F:EA:FA:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DuT4x6TmTfYyxX-Ocpebo_q-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2DuT4x6TmTfYyxX-Ocpebo_q-ps.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9197277/43A7E894B56011EE911C5D4FC4F9AE02/2DCC0688B57211EEBB68526DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 216.200.189.0-216.200.190.255 Signature Algorithm: sha256WithRSAEncryption 35:dd:55:0c:63:7d:43:82:8e:58:af:11:23:1d:f5:91:1a:24: 22:f3:5f:77:33:7d:6e:bc:9e:b4:9c:ef:5d:6e:b0:ae:85:2b: cd:a0:5c:44:7b:b2:75:65:dc:f5:b4:4a:4f:ee:6d:d5:78:16: 3c:c4:2e:5c:40:8d:69:f9:f6:25:36:0d:9d:df:85:22:45:e6: 2b:09:d1:c4:ad:36:65:97:37:7e:65:70:07:c4:b4:3a:18:9d: ae:e3:19:f5:2a:1c:dc:be:9e:c2:16:a2:38:78:d9:33:d8:ff: 14:aa:05:0f:d7:ad:a2:59:f1:f0:c1:b1:3e:a1:ec:62:6c:f2: c0:b9:90:ca:83:a1:aa:0f:73:35:c4:a5:75:49:e1:b5:e5:63: 06:6a:24:e5:0b:6f:28:d2:4b:4e:81:c3:0b:e8:50:74:5e:e5: 4c:2b:e9:09:13:8a:1e:0d:f5:ed:83:89:00:98:d8:bf:62:20: 76:ad:f7:18:69:e7:6d:5d:b8:71:b2:75:0b:3c:25:de:39:5b: 94:12:b7:d4:38:0c:02:bf:ad:1b:b6:17:30:b0:c9:f3:52:83: e5:04:43:15:b8:b7:eb:e9:f1:c8:bb:91:33:ac:6a:fe:d0:12: 27:ed:73:8e:ce:44:2d:35:25:7e:a1:8a:06:3e:62:6c:30:66: 43:6e:30:97 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBajANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzI3NzExMC8GA1UEBRMoRDgzQjkzRTMxRTkzOTkzN0Q4Q0IxNUZFMzlDQTVFNkU4 RkVBRkE5QjAeFw0yNDA3MjcwNjU2NTJaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2YTQ5YTMzLTJmNGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDAartXdgdj9XDv67S+mg/xCJkMqyh9akMLRK/2+azkNdI7IJPcBaRpB4N7EErE XbdL/VPdQ6q6lUthBAe0g79gsJyxQoWAvJSZSF0GyGP+mR1MYUfkPgbPKrxMguwZ djbqCWW2uyKLBtgxSSYLx2hp+0s3iZU7mNDa1YPJpDMd7eVHUddQoRhXY94GDEwL hiyTColdG7Jzz7WCaViH3Pgb+6WikR4F62u3W8iNrZyfkyXeRfNOrbjk+MAHGkU8 QZcjiVPiQVzDhGe2IQ1YeoskBEFM6C3tP5HhXUdrXJ/heq/aVKRyPtdZjg+3n5Vp g7c7Mob2IFn6Dxf1Dulr2aWhAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUv/c+x3Rr rAs62fM5D3upg1kx77UwHwYDVR0jBBgwFoAU2DuT4x6TmTfYyxX+Ocpebo/q+psw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3Mjc3LzQzQTdFODk0QjU2 MDExRUU5MTFDNUQ0RkM0RjlBRTAyLzJEdVQ0eDZUbVRmWXl4WC1PY3BlYm9fcS1w cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvMkR1VDR4NlRtVGZZeXhYLU9jcGVib19xLXBzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzI3Ny80M0E3RTg5NEI1NjAxMUVFOTExQzVENEZDNEY5QUUwMi8yRENDMDY4OEI1 NzIxMUVFQkI2ODUyNkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQA2Mi9AwQA2Mi+MA0GCSqGSIb3DQEBCwUAA4IBAQA13VUM Y31Dgo5YrxEjHfWRGiQi8193M31uvJ60nO9dbrCuhSvNoFxEe7J1Zdz1tEpP7m3V eBY8xC5cQI1p+fYlNg2d34UiReYrCdHErTZllzd+ZXAHxLQ6GJ2u4xn1Khzcvp7C FqI4eNkz2P8UqgUP162iWfHwwbE+oexibPLAuZDKg6GqD3M1xKV1SeG15WMGaiTl C28o0ktOgcML6FB0XuVMK+kJE4oeDfXtg4kAmNi/YiB2rfcYaedtXbhxsnULPCXe OVuUErfUOAwCv60bthcwsMnzUoPlBEMVuLfr6fHIu5EzrGr+0BIn7XOOzkQtNSV+ oYoGPmJsMGZDbjCX -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:01 2024 by rpki-client on console-fra.rpki-client.org