$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2B9FBCB0DEC911EBA828524CC4F9AE02.roa File: 2B9FBCB0DEC911EBA828524CC4F9AE02.roa (raw, json) Hash identifier: 82U9PEBppNYTLTnVZfk76Z3820ETIwuj4FadkxaLsM8= Subject key identifier: 6F:76:50:99:76:7F:6C:74:6F:6D:FE:7D:50:9F:E6:51:A9:07:00:7A Certificate issuer: /CN=A91ACBB7/serialNumber=746241ADA77DDBDFEA0FE144EFE21391E3FC4FD9 Certificate serial: 0C10 Authority key identifier: 74:62:41:AD:A7:7D:DB:DF:EA:0F:E1:44:EF:E2:13:91:E3:FC:4F:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2B9FBCB0DEC911EBA828524CC4F9AE02.roa Signing time: Fri 07 Jun 2024 12:09:26 +0000 ROA not before: Fri 07 Jun 2024 12:09:26 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 58715 IP address blocks: 45.114.84.0/22 maxlen: 24 103.54.36.0/22 maxlen: 24 2403:41c0::/32 maxlen: 36 2403:41c0:fc00::/48 maxlen: 48 2403:41c0:fc05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.crl rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:11:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3088 (0xc10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACBB7/serialNumber=746241ADA77DDBDFEA0FE144EFE21391E3FC4FD9 Validity Not Before: Jun 7 12:09:26 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6662f876-f662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:63:7b:66:f6:c2:63:13:2b:56:a2:fa:db:8d: af:12:07:38:4d:e2:e9:35:a4:25:9b:1c:8d:2e:9d: 7b:36:a3:e1:e6:bc:32:2b:26:e2:17:63:06:2d:0e: 19:d1:38:e8:b9:8a:89:f7:4b:06:52:65:53:f0:b9: 71:26:1d:39:65:ab:3f:59:e2:c5:1d:2f:3f:9d:cf: 9a:86:68:9a:13:71:97:be:d7:5a:6e:38:d6:32:57: 48:13:3f:b0:86:55:fc:18:12:6b:e9:e6:27:d2:17: 72:81:e8:e0:5a:0b:9e:a3:8f:16:f2:ac:c5:50:1d: 03:8b:b1:c2:88:0c:44:42:47:08:50:e3:fe:fb:1f: 5a:da:85:65:c5:da:54:cf:2e:4a:77:4f:af:e6:aa: 0f:32:07:24:26:53:e7:93:28:23:ae:50:b9:a0:af: 89:0f:1b:b8:da:02:06:a1:92:0d:c3:e0:e2:d4:6a: 4c:42:b7:46:7c:47:da:73:87:47:2b:02:03:43:ff: da:6d:a1:59:1e:03:bd:e3:d2:37:ce:18:7a:49:91: 37:72:af:fe:0d:1f:55:85:2d:50:2b:f4:ea:77:f0: ac:b6:ba:a2:e4:d3:99:21:bf:b5:11:e9:f9:fe:bd: ae:e3:4f:f5:ab:47:01:55:b8:6f:72:24:a8:20:1a: b5:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:76:50:99:76:7F:6C:74:6F:6D:FE:7D:50:9F:E6:51:A9:07:00:7A X509v3 Authority Key Identifier: keyid:74:62:41:AD:A7:7D:DB:DF:EA:0F:E1:44:EF:E2:13:91:E3:FC:4F:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/dGJBrad929_qD-FE7-ITkeP8T9k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dGJBrad929_qD-FE7-ITkeP8T9k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACBB7/5E1FCEBCF3F911E9B8A8310AC4F9AE02/2B9FBCB0DEC911EBA828524CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.84.0/22 103.54.36.0/22 IPv6: 2403:41c0::/32 Signature Algorithm: sha256WithRSAEncryption 2b:95:2b:52:7d:e3:97:2d:fa:e3:c0:c2:b2:27:c3:17:14:c1: 89:9b:a6:a8:25:b8:29:d3:b8:e5:5e:90:78:89:ad:fe:b9:47: 3b:02:39:70:44:f0:4f:d7:dd:03:24:44:4a:6d:6a:5b:e3:27: 35:12:bc:d3:a8:a4:2c:41:e6:7c:a8:3f:09:65:88:d4:f5:15: 4a:d2:27:28:dd:26:36:25:d0:cb:ad:3d:25:97:50:6c:dc:27: fe:90:b1:7b:13:ed:90:d8:e1:11:52:10:57:be:86:dc:af:3b: 34:13:ad:5a:5a:69:9f:24:25:15:de:e0:80:d3:c5:a3:83:6a: cd:07:b2:71:de:e8:c4:65:98:97:0f:ff:d1:ba:1e:3d:71:a2: 10:1c:82:c7:41:1e:a4:28:2b:d6:b3:17:03:74:93:2b:af:f3: 66:13:98:f4:af:dd:e2:d1:a2:b5:d8:ae:a6:4e:e8:f8:93:36: 55:26:53:88:bb:18:c3:83:1d:ff:27:72:f9:e2:43:99:6e:06: 66:69:60:09:75:fd:d7:dc:ff:35:3b:25:ad:6f:88:87:d4:f3: 78:82:d9:24:6d:2b:d2:75:05:c6:22:b1:19:0b:ec:51:a0:65: ec:42:14:32:e1:a8:c6:7a:c2:63:a1:13:12:f9:fa:b2:ca:40: 98:87:57:4c -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNCQjcxMTAvBgNVBAUTKDc0NjI0MUFEQTc3RERCREZFQTBGRTE0NEVGRTIxMzkx RTNGQzRGRDkwHhcNMjQwNjA3MTIwOTI2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyZjg3Ni1mNjYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvGN7ZvbCYxMrVqL6242vEgc4TeLpNaQlmxyNLp17NqPh5rwyKybiF2MGLQ4Z 0TjouYqJ90sGUmVT8LlxJh05Zas/WeLFHS8/nc+ahmiaE3GXvtdabjjWMldIEz+w hlX8GBJr6eYn0hdygejgWgueo48W8qzFUB0Di7HCiAxEQkcIUOP++x9a2oVlxdpU zy5Kd0+v5qoPMgckJlPnkygjrlC5oK+JDxu42gIGoZINw+Di1GpMQrdGfEfac4dH KwIDQ//abaFZHgO949I3zhh6SZE3cq/+DR9VhS1QK/Tqd/Cstrqi5NOZIb+1Een5 /r2u40/1q0cBVbhvciSoIBq1cQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFG92UJl2 f2x0b23+fVCf5lGpBwB6MB8GA1UdIwQYMBaAFHRiQa2nfdvf6g/hRO/iE5Hj/E/Z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0JCNy81RTFGQ0VCQ0Yz RjkxMUU5QjhBODMxMEFDNEY5QUUwMi9kR0pCcmFkOTI5X3FELUZFNy1JVGtlUDhU OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2RHSkJyYWQ5MjlfcUQtRkU3LUlUa2VQOFQ5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNCQjcvNUUxRkNFQkNGM0Y5MTFFOUI4QTgzMTBBQzRGOUFFMDIvMkI5RkJDQjBE RUM5MTFFQkE4Mjg1MjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItclQDBAJnNiQwDQQCAAIwBwMFACQDQcAwDQYJKoZIhvcN AQELBQADggEBACuVK1J945ct+uPAwrInwxcUwYmbpqgluCnTuOVekHiJrf65RzsC OXBE8E/X3QMkREptalvjJzUSvNOopCxB5nyoPwlliNT1FUrSJyjdJjYl0MutPSWX UGzcJ/6QsXsT7ZDY4RFSEFe+htyvOzQTrVpaaZ8kJRXe4IDTxaODas0HsnHe6MRl mJcP/9G6Hj1xohAcgsdBHqQoK9azFwN0kyuv82YTmPSv3eLRorXYrqZO6PiTNlUm U4i7GMODHf8ncvniQ5luBmZpYAl1/dfc/zU7Ja1viIfU83iC2SRtK9J1BcYisRkL 7FGgZexCFDLhqMZ6wmOhExL5+rLKQJiHV0w= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org