$ rpki-client -vvf rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa File: 2ED1150C561D11E7B003DF26C4F9AE02.roa (raw, json) Hash identifier: VWQv/IH7NsqTcNchTqEWHo8sER9hJVbk+Ml69dI7l0g= Subject key identifier: D0:B0:ED:31:B0:52:EF:80:25:B0:21:2A:E3:92:4D:82:1A:23:00:8D Certificate issuer: /CN=A91C83EA/serialNumber=F76750515BB762D1800C5AE6C6C2DB24FE952D02 Certificate serial: 29F4 Authority key identifier: F7:67:50:51:5B:B7:62:D1:80:0C:5A:E6:C6:C2:DB:24:FE:95:2D:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa Signing time: Tue 06 Aug 2024 15:52:06 +0000 ROA not before: Tue 06 Aug 2024 15:52:06 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 45177 IP address blocks: 45.64.48.0/22 maxlen: 24 103.233.220.0/22 maxlen: 24 2401:1880::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.crl rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:35:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10740 (0x29f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C83EA/serialNumber=F76750515BB762D1800C5AE6C6C2DB24FE952D02 Validity Not Before: Aug 6 15:52:06 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b246a5-de91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:52:18:34:55:1f:c9:35:e3:5c:91:c3:c1:a4: df:d2:3f:86:c1:0b:35:f8:0c:55:87:55:80:d1:39: c9:4d:c3:3f:27:e2:fd:60:ce:58:21:53:67:c2:bb: e5:8a:63:be:a9:65:86:f3:92:ec:89:c5:db:ab:c5: bc:77:9e:1c:59:5f:68:34:5c:d3:3f:d4:06:86:9f: 47:31:65:64:47:a0:89:78:11:0c:e0:75:34:5c:69: fa:8e:79:7c:fd:cf:c2:0e:f2:bb:8a:1b:99:65:75: d2:b5:8f:b1:eb:e6:6c:56:b5:21:1d:fd:46:60:ae: c4:f1:1f:94:35:d2:b6:7c:c1:bc:8d:11:00:f6:09: 37:91:96:c5:b5:af:ff:84:a7:56:e9:5f:f9:84:c9: c6:42:79:8f:d1:b8:cf:58:22:1e:1c:a6:3d:32:04: 28:38:2f:e6:17:41:2d:a0:4e:db:86:0a:fd:7a:c6: 75:b3:24:05:b1:22:dc:60:d7:09:39:b1:1e:48:01: 26:e8:ee:d6:1b:cb:fd:d7:66:34:3f:be:3a:70:c8: 57:b3:99:4f:9b:da:05:21:b9:3b:27:54:98:7a:bb: d4:1f:de:d3:a7:0d:4d:9e:36:ac:d4:00:81:59:68: 04:7a:b5:42:ab:a1:bc:10:8f:4e:ae:87:ed:26:e8: 7c:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:B0:ED:31:B0:52:EF:80:25:B0:21:2A:E3:92:4D:82:1A:23:00:8D X509v3 Authority Key Identifier: keyid:F7:67:50:51:5B:B7:62:D1:80:0C:5A:E6:C6:C2:DB:24:FE:95:2D:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/92dQUVu3YtGADFrmxsLbJP6VLQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/92dQUVu3YtGADFrmxsLbJP6VLQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C83EA/D82C61E81C4511E494A76F1BC4F9AE02/2ED1150C561D11E7B003DF26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.64.48.0/22 103.233.220.0/22 IPv6: 2401:1880::/32 Signature Algorithm: sha256WithRSAEncryption 10:08:f9:f0:41:33:f1:c8:9c:fc:fa:03:53:7e:4a:46:42:c1: 33:96:74:45:3e:bd:b2:06:31:37:15:32:aa:59:76:6d:a9:ad: e1:26:00:98:99:75:ea:6c:bb:a3:25:25:c9:e8:ef:db:44:1e: ea:13:00:37:4e:8d:f9:53:97:f8:31:66:cf:40:d9:85:e4:77: 76:ed:aa:65:2d:cc:d3:b5:2d:1c:5b:22:d7:0a:ca:a8:3c:77: 30:ba:ed:08:32:54:77:5c:b9:91:6f:2f:de:68:68:ee:8e:76: 07:67:3b:8b:7a:a3:07:4c:f7:ea:38:e5:b0:e0:82:db:a4:09: 63:f7:3a:c7:9b:00:c0:2d:78:b3:14:0f:31:5e:31:35:75:e1: aa:54:df:e6:26:9c:da:be:4f:25:1f:a5:04:05:4b:5b:5d:7c: fd:0b:67:31:d3:b1:c0:7c:88:cf:88:e0:8b:1e:c5:7e:3b:fb: f1:7d:fd:6a:9d:18:07:a3:41:d5:41:ff:ea:98:4f:61:86:96: c8:d4:13:b2:15:11:15:af:f5:a9:09:ff:b7:29:42:0b:51:91: 48:b7:2f:91:a3:65:ae:37:26:43:0c:3b:8a:25:a7:1b:c0:6e: 34:2a:02:73:d2:0c:a6:d9:b9:22:b8:a2:ce:e0:42:b4:30:3a: 32:55:94:0f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICKfQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzgzRUExMTAvBgNVBAUTKEY3Njc1MDUxNUJCNzYyRDE4MDBDNUFFNkM2QzJEQjI0 RkU5NTJEMDIwHhcNMjQwODA2MTU1MjA2WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyNDZhNS1kZTkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVIYNFUfyTXjXJHDwaTf0j+GwQs1+AxVh1WA0TnJTcM/J+L9YM5YIVNnwrvl imO+qWWG85LsicXbq8W8d54cWV9oNFzTP9QGhp9HMWVkR6CJeBEM4HU0XGn6jnl8 /c/CDvK7ihuZZXXStY+x6+ZsVrUhHf1GYK7E8R+UNdK2fMG8jREA9gk3kZbFta// hKdW6V/5hMnGQnmP0bjPWCIeHKY9MgQoOC/mF0EtoE7bhgr9esZ1syQFsSLcYNcJ ObEeSAEm6O7WG8v912Y0P746cMhXs5lPm9oFIbk7J1SYervUH97Tpw1Nnjas1ACB WWgEerVCq6G8EI9OroftJuh8wQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFNCw7TGw Uu+AJbAhKuOSTYIaIwCNMB8GA1UdIwQYMBaAFPdnUFFbt2LRgAxa5sbC2yT+lS0C MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODNFQS9EODJDNjFFODFD NDUxMUU0OTRBNzZGMUJDNEY5QUUwMi85MmRRVVZ1M1l0R0FERnJteHNMYkpQNlZM UUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzkyZFFVVnUzWXRHQURGcm14c0xiSlA2VkxRSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzgzRUEvRDgyQzYxRTgxQzQ1MTFFNDk0QTc2RjFCQzRGOUFFMDIvMkVEMTE1MEM1 NjFEMTFFN0IwMDNERjI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAItQDADBAJn6dwwDQQCAAIwBwMFACQBGIAwDQYJKoZIhvcN AQELBQADggEBABAI+fBBM/HInPz6A1N+SkZCwTOWdEU+vbIGMTcVMqpZdm2preEm AJiZdepsu6MlJcno79tEHuoTADdOjflTl/gxZs9A2YXkd3btqmUtzNO1LRxbItcK yqg8dzC67QgyVHdcuZFvL95oaO6OdgdnO4t6owdM9+o45bDggtukCWP3OsebAMAt eLMUDzFeMTV14apU3+YmnNq+TyUfpQQFS1tdfP0LZzHTscB8iM+I4IsexX47+/F9 /WqdGAejQdVB/+qYT2GGlsjUE7IVERWv9akJ/7cpQgtRkUi3L5GjZa43JkMMO4ol pxvAbjQqAnPSDKbZuSK4os7gQrQwOjJVlA8= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:20 2024 by rpki-client on console-fra.rpki-client.org