$ rpki-client -vvf rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/2C00BB1239EF11EFB6EE4687C4F9AE02.roa File: 2C00BB1239EF11EFB6EE4687C4F9AE02.roa (raw, json) Hash identifier: Oc2GQXIqmMlslfVaKJ/oBsTF1uhwqc79kyqv7lPwXrc= Subject key identifier: 1A:D0:F8:3A:79:41:35:41:04:5D:0A:45:1F:19:6F:D7:CD:4C:8E:26 Certificate issuer: /CN=A919BC3B/serialNumber=E8F755E71F5ED7F913452CFFCE3ED42088121A68 Certificate serial: 02 Authority key identifier: E8:F7:55:E7:1F:5E:D7:F9:13:45:2C:FF:CE:3E:D4:20:88:12:1A:68 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6PdV5x9e1_kTRSz_zj7UIIgSGmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/2C00BB1239EF11EFB6EE4687C4F9AE02.roa Signing time: Thu 04 Jul 2024 10:21:27 +0000 ROA not before: Thu 04 Jul 2024 10:21:27 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 152890 IP address blocks: 160.22.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/6PdV5x9e1_kTRSz_zj7UIIgSGmg.crl rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/6PdV5x9e1_kTRSz_zj7UIIgSGmg.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6PdV5x9e1_kTRSz_zj7UIIgSGmg.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919BC3B/serialNumber=E8F755E71F5ED7F913452CFFCE3ED42088121A68 Validity Not Before: Jul 4 10:21:27 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=668677a7-6faa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c1:f4:a5:5f:a5:29:b2:e2:65:9f:04:e4:75: da:21:b7:c7:ce:08:57:a8:f2:a7:90:26:4f:90:19: 5e:75:06:17:d5:21:42:d3:99:56:c5:a3:6f:3c:a4: 8b:1f:f1:83:45:96:25:75:43:41:a3:f6:79:39:f6: d6:42:b8:9d:27:19:ae:11:99:5a:08:89:cb:c9:22: f7:4a:13:b1:4b:8b:eb:3d:bc:12:10:48:a3:ef:d2: 11:04:62:a0:1f:d5:7f:2a:d7:ed:4c:cb:67:16:2a: 04:67:9c:b6:4b:e3:47:51:d2:61:38:cb:08:41:de: 46:70:db:fc:cf:20:df:18:1f:48:0b:ec:58:88:f6: 66:85:98:c8:72:84:93:da:5c:dd:48:7d:9a:b5:5b: fb:01:53:8e:88:fb:7c:92:9d:28:1d:44:36:f8:a3: 89:bd:f8:8b:77:79:2d:b2:5d:a2:4e:c7:d7:71:42: 9e:52:25:d1:05:a1:c6:c1:44:dc:88:ef:66:ba:28: 5f:73:6b:da:0c:df:a3:48:21:49:e3:06:e1:86:0e: 67:4f:55:99:a1:3a:5b:6c:3a:8b:40:54:bb:03:83: 0a:70:af:38:b9:ad:29:de:76:96:bd:c8:a8:95:75: 8d:95:4b:12:56:9d:a1:d5:f3:2c:ff:44:0e:ce:13: 80:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:D0:F8:3A:79:41:35:41:04:5D:0A:45:1F:19:6F:D7:CD:4C:8E:26 X509v3 Authority Key Identifier: keyid:E8:F7:55:E7:1F:5E:D7:F9:13:45:2C:FF:CE:3E:D4:20:88:12:1A:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/6PdV5x9e1_kTRSz_zj7UIIgSGmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/6PdV5x9e1_kTRSz_zj7UIIgSGmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919BC3B/C6BD547C39EE11EFA43D6586C4F9AE02/2C00BB1239EF11EFB6EE4687C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 160.22.38.0/24 Signature Algorithm: sha256WithRSAEncryption 14:96:99:af:f0:6f:9a:0b:ed:22:f4:1a:c5:47:f1:e0:0b:60: d7:95:41:5f:75:23:c9:21:10:b7:4e:ef:dd:53:56:a8:94:e6: d9:54:84:42:ab:c7:8f:56:c1:ec:6a:d2:d9:38:15:4c:ec:63: 89:b3:c9:8b:2c:48:15:80:2c:8d:ff:09:9e:c8:78:50:05:a0: 94:d6:68:2a:21:4c:98:54:cb:4c:50:50:c8:d4:c8:70:db:37: fa:5a:fc:1c:6e:b7:0d:d7:f1:79:47:31:7a:27:c6:e4:f3:79: 77:ce:f2:ed:a8:46:a4:b5:c2:ab:d0:7a:33:87:16:dd:5b:34: 8e:da:a6:bd:85:9a:ff:ae:49:44:0b:18:ed:7a:97:db:3b:21: 35:b9:be:b5:9e:4b:19:d6:04:8c:05:b6:f4:3e:1f:b5:14:ae: 04:85:fb:61:57:cb:53:24:5f:2a:3a:93:63:30:db:27:1d:79: 6d:0f:67:ea:cd:22:ad:3e:80:db:70:7b:30:c0:09:ab:6a:3c: 55:bd:75:40:8b:66:b1:8e:33:55:04:c8:27:d1:d9:aa:27:1b: 30:27:1e:e5:6b:3e:ce:ff:07:bb:d8:6d:37:48:03:8c:0b:79: d0:53:ed:27:66:5e:34:69:10:0d:34:bb:8d:d3:e4:8e:6d:00: 58:ed:11:1d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 QkMzQjExMC8GA1UEBRMoRThGNzU1RTcxRjVFRDdGOTEzNDUyQ0ZGQ0UzRUQ0MjA4 ODEyMUE2ODAeFw0yNDA3MDQxMDIxMjdaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ODY3N2E3LTZmYWEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5wfSlX6UpsuJlnwTkddoht8fOCFeo8qeQJk+QGV51BhfVIULTmVbFo288pIsf 8YNFliV1Q0Gj9nk59tZCuJ0nGa4RmVoIicvJIvdKE7FLi+s9vBIQSKPv0hEEYqAf 1X8q1+1My2cWKgRnnLZL40dR0mE4ywhB3kZw2/zPIN8YH0gL7FiI9maFmMhyhJPa XN1IfZq1W/sBU46I+3ySnSgdRDb4o4m9+It3eS2yXaJOx9dxQp5SJdEFocbBRNyI 72a6KF9za9oM36NIIUnjBuGGDmdPVZmhOltsOotAVLsDgwpwrzi5rSnedpa9yKiV dY2VSxJWnaHV8yz/RA7OE4BzAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUGtD4OnlB NUEEXQpFHxlv181MjiYwHwYDVR0jBBgwFoAU6PdV5x9e1/kTRSz/zj7UIIgSGmgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTlCQzNCL0M2QkQ1NDdDMzlF RTExRUZBNDNENjU4NkM0RjlBRTAyLzZQZFY1eDllMV9rVFJTel96ajdVSUlnU0dt Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvNlBkVjV4OWUxX2tUUlN6X3pqN1VJSWdTR21nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 QkMzQi9DNkJENTQ3QzM5RUUxMUVGQTQzRDY1ODZDNEY5QUUwMi8yQzAwQkIxMjM5 RUYxMUVGQjZFRTQ2ODdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAKAWJjANBgkqhkiG9w0BAQsFAAOCAQEAFJaZr/BvmgvtIvQa xUfx4Atg15VBX3UjySEQt07v3VNWqJTm2VSEQqvHj1bB7GrS2TgVTOxjibPJiyxI FYAsjf8Jnsh4UAWglNZoKiFMmFTLTFBQyNTIcNs3+lr8HG63DdfxeUcxeifG5PN5 d87y7ahGpLXCq9B6M4cW3Vs0jtqmvYWa/65JRAsY7XqX2zshNbm+tZ5LGdYEjAW2 9D4ftRSuBIX7YVfLUyRfKjqTYzDbJx15bQ9n6s0irT6A23B7MMAJq2o8Vb11QItm sY4zVQTIJ9HZqicbMCce5Ws+zv8Hu9htN0gDjAt50FPtJ2ZeNGkQDTS7jdPkjm0A WO0RHQ== -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:47 2024 by rpki-client on console-fra.rpki-client.org