$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/2DDB3932FF4711EDA9459E3DC4F9AE02.roa File: 2DDB3932FF4711EDA9459E3DC4F9AE02.roa (raw, json) Hash identifier: 43u6VU4uVf/bt9Gf14qd7/mI+N905JTL9noJWyloshU= Subject key identifier: 5C:9E:DA:97:DF:A2:18:8B:53:A2:3D:1C:69:3C:F8:4A:1F:91:48:44 Certificate issuer: /CN=A91DD5EC/serialNumber=26B2C8462FEA1DA514166B5B1390AD0CC277A5A8 Certificate serial: 0112 Authority key identifier: 26:B2:C8:46:2F:EA:1D:A5:14:16:6B:5B:13:90:AD:0C:C2:77:A5:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JrLIRi_qHaUUFmtbE5CtDMJ3pag.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/2DDB3932FF4711EDA9459E3DC4F9AE02.roa Signing time: Tue 29 Oct 2024 04:00:23 +0000 ROA not before: Tue 29 Oct 2024 04:00:23 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 131201 IP address blocks: 202.50.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/JrLIRi_qHaUUFmtbE5CtDMJ3pag.crl rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/JrLIRi_qHaUUFmtbE5CtDMJ3pag.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JrLIRi_qHaUUFmtbE5CtDMJ3pag.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 274 (0x112) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD5EC/serialNumber=26B2C8462FEA1DA514166B5B1390AD0CC277A5A8 Validity Not Before: Oct 29 04:00:23 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67205dd7-e4f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:de:1d:f4:19:97:bc:a9:0d:45:9d:58:80:1c: 89:d6:96:a2:7b:9a:04:a0:46:fd:cc:82:be:6b:5c: 22:4d:85:94:9a:9d:31:79:69:5a:c0:01:a7:e2:81: 42:62:06:0d:99:45:e0:7d:e1:2b:5a:c7:cc:b7:3d: b2:be:53:48:a0:07:c3:46:b7:53:55:ff:ef:86:75: d0:0f:ff:f3:1f:7a:92:01:95:97:f2:28:de:e8:68: 65:e2:d1:59:dc:59:85:16:29:31:66:33:74:0f:6e: 2e:0d:16:5b:72:44:cd:13:a4:f2:89:bc:81:b6:40: 04:b4:11:42:b7:e4:f2:9b:d5:31:20:45:2d:a3:4b: 59:d7:e0:7d:31:36:3c:27:08:e6:79:62:b8:30:6f: fc:ae:af:88:0e:55:07:5c:2c:a2:4c:a7:a6:4b:f1: 6d:ca:5e:2c:c7:74:9e:99:d0:9c:c6:9c:b9:a1:1e: d3:f8:40:96:c5:1e:3a:70:2f:72:ae:b7:5a:c8:3d: e1:a7:5a:2f:df:19:01:fc:43:f2:2b:93:21:2d:6b: 0d:79:df:c0:61:7b:c0:15:b5:b4:10:59:d7:ec:30: 35:31:f7:ec:7f:36:f1:d2:86:97:3c:da:b7:a0:15: 02:71:f4:28:eb:57:a5:3f:97:9a:5b:43:39:64:95: 5b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:9E:DA:97:DF:A2:18:8B:53:A2:3D:1C:69:3C:F8:4A:1F:91:48:44 X509v3 Authority Key Identifier: keyid:26:B2:C8:46:2F:EA:1D:A5:14:16:6B:5B:13:90:AD:0C:C2:77:A5:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/JrLIRi_qHaUUFmtbE5CtDMJ3pag.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JrLIRi_qHaUUFmtbE5CtDMJ3pag.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD5EC/05315DEEFDDB11EDA032BF42C4F9AE02/2DDB3932FF4711EDA9459E3DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.50.117.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:71:9b:7e:84:47:01:1f:a5:6e:39:0c:50:0c:85:4a:2e:44: fd:65:28:86:61:ee:9b:df:26:a6:b2:97:2d:9e:b3:6b:43:2c: be:ec:63:17:a2:bd:d1:66:d2:90:00:db:2d:9b:10:7c:bd:fd: d4:76:5b:6a:6e:f1:b1:f3:82:59:97:85:12:34:9e:31:6c:35: 4f:86:e0:9a:b7:73:15:8c:9b:15:a7:5a:1a:ba:7a:d3:6a:1c: f7:d7:b6:9d:52:23:fd:b3:86:a3:68:be:c8:0c:e7:f5:25:db: a3:78:15:22:43:c3:4c:38:a0:ad:69:3e:25:f1:12:91:29:80: bb:0c:76:14:3a:b7:e6:bc:cf:a5:aa:cf:ea:2d:44:3d:20:96: a9:ac:61:5b:fc:cc:6f:e1:50:89:6e:80:e0:bf:8c:6d:a1:61: e6:09:85:5e:dc:96:56:9f:97:0c:08:0a:79:58:bd:9c:48:1e: 88:7e:77:8f:39:aa:99:aa:08:56:2a:0e:26:5d:b0:16:6a:07: b0:9f:d2:ae:9a:df:0d:3b:a7:6d:aa:2c:74:15:56:89:02:14: b3:26:60:c7:47:7f:3c:98:1f:7d:3f:bb:2d:7a:66:cd:7b:80: dd:e0:c6:11:83:c8:91:de:6f:8d:4d:6f:b8:c1:34:2a:2d:27: 89:d8:72:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ1RUMxMTAvBgNVBAUTKDI2QjJDODQ2MkZFQTFEQTUxNDE2NkI1QjEzOTBBRDBD QzI3N0E1QTgwHhcNMjQxMDI5MDQwMDIzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIwNWRkNy1lNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0t4d9BmXvKkNRZ1YgByJ1paie5oEoEb9zIK+a1wiTYWUmp0xeWlawAGn4oFC YgYNmUXgfeErWsfMtz2yvlNIoAfDRrdTVf/vhnXQD//zH3qSAZWX8ije6Ghl4tFZ 3FmFFikxZjN0D24uDRZbckTNE6TyibyBtkAEtBFCt+Tym9UxIEUto0tZ1+B9MTY8 JwjmeWK4MG/8rq+IDlUHXCyiTKemS/Ftyl4sx3SemdCcxpy5oR7T+ECWxR46cC9y rrdayD3hp1ov3xkB/EPyK5MhLWsNed/AYXvAFbW0EFnX7DA1Mffsfzbx0oaXPNq3 oBUCcfQo61elP5eaW0M5ZJVbhwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFye2pff ohiLU6I9HGk8+EofkUhEMB8GA1UdIwQYMBaAFCayyEYv6h2lFBZrWxOQrQzCd6Wo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDVFQy8wNTMxNURFRUZE REIxMUVEQTAzMkJGNDJDNEY5QUUwMi9KckxJUmlfcUhhVVVGbXRiRTVDdERNSjNw YWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pyTElSaV9xSGFVVUZtdGJFNUN0RE1KM3BhZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ1RUMvMDUzMTVERUVGRERCMTFFREEwMzJCRjQyQzRGOUFFMDIvMkREQjM5MzJG RjQ3MTFFREE5NDU5RTNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADKMnUwDQYJKoZIhvcNAQELBQADggEBAFpxm36ERwEfpW45 DFAMhUouRP1lKIZh7pvfJqayly2es2tDLL7sYxeivdFm0pAA2y2bEHy9/dR2W2pu 8bHzglmXhRI0njFsNU+G4Jq3cxWMmxWnWhq6etNqHPfXtp1SI/2zhqNovsgM5/Ul 26N4FSJDw0w4oK1pPiXxEpEpgLsMdhQ6t+a8z6Wqz+otRD0glqmsYVv8zG/hUIlu gOC/jG2hYeYJhV7cllaflwwICnlYvZxIHoh+d485qpmqCFYqDiZdsBZqB7Cf0q6a 3w07p22qLHQVVokCFLMmYMdHfzyYH30/uy16Zs17gN3gxhGDyJHeb41Nb7jBNCot J4nYclw= -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:59 2024 by rpki-client on console-fra.rpki-client.org