$ rpki-client -vvf rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/D2A2964A0CAE11EDA6E8C661C4F9AE02.roa File: D2A2964A0CAE11EDA6E8C661C4F9AE02.roa (raw, json) Hash identifier: CABbTp6UNgoFkAnkzoRiqNqMk0AS+9bRSopXP3S0HFg= Subject key identifier: 25:1C:89:8F:74:18:B6:34:67:F9:6E:D2:09:F6:F6:FD:D5:69:DC:52 Certificate issuer: /CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Certificate serial: 0A8B Authority key identifier: 6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/D2A2964A0CAE11EDA6E8C661C4F9AE02.roa Signing time: Tue 22 Oct 2024 19:59:00 +0000 ROA not before: Tue 22 Oct 2024 19:59:00 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 141419 IP address blocks: 223.119.52.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:31:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2699 (0xa8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EECAF/serialNumber=6EBD3A269785123ADC3F496639AEDFB10F30D618 Validity Not Before: Oct 22 19:59:00 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67180404-004a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:22:b8:3a:33:67:ad:d6:59:85:56:61:37:49: 49:2d:44:fc:a4:45:9f:4b:4e:5e:db:29:82:43:d9: 5f:df:53:b4:7c:3a:6c:ed:f2:4f:53:1c:54:53:ee: 60:ea:68:63:df:f5:c2:8d:74:d7:db:2e:2a:ab:74: bf:bc:e4:53:c5:8b:51:5f:be:f6:da:db:13:cc:9c: c4:f2:27:e0:3a:da:f8:33:1c:eb:e2:5e:7b:55:f2: 11:8c:03:ad:50:06:a8:e4:35:2d:e5:6a:02:92:4e: 5a:28:5f:13:17:d7:74:09:28:1c:0e:a0:c3:87:3b: 91:1e:58:89:bd:86:7f:7e:fd:df:10:8a:a7:d3:c8: 94:b2:11:a3:b5:19:e2:2d:40:a3:fd:22:8c:5b:0c: e6:fa:79:53:e4:cb:24:dc:02:77:76:3e:6d:9d:25: ea:ca:db:ab:9c:2a:02:ad:54:e3:2b:57:99:f4:17: 8b:62:0e:ff:42:38:dc:90:c2:0d:ca:56:eb:de:91: 20:ab:9f:95:02:40:a3:b3:8f:f0:35:50:bf:be:18: c9:b7:98:de:a1:d6:12:a6:b9:fc:4a:fd:49:19:88: f6:11:86:22:0f:c3:de:68:5c:65:aa:61:5d:a4:f4: e0:38:91:9b:17:fd:2e:8f:ef:4f:ef:eb:75:54:f3: fb:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:1C:89:8F:74:18:B6:34:67:F9:6E:D2:09:F6:F6:FD:D5:69:DC:52 X509v3 Authority Key Identifier: keyid:6E:BD:3A:26:97:85:12:3A:DC:3F:49:66:39:AE:DF:B1:0F:30:D6:18 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/br06JpeFEjrcP0lmOa7fsQ8w1hg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/br06JpeFEjrcP0lmOa7fsQ8w1hg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EECAF/EEFDFEA45EA711EAA5E83184C4F9AE02/D2A2964A0CAE11EDA6E8C661C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 223.119.52.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:41:71:63:5f:79:7f:74:d6:65:83:25:52:79:57:09:28:49: 26:bf:b5:3b:6d:e7:33:38:6b:8b:61:4b:23:30:fc:50:98:d5: 6d:5d:1e:a3:f4:5d:7b:18:25:2a:b4:c6:94:79:84:03:cf:5b: 50:b5:d9:f7:ff:e6:86:8a:6f:5d:83:07:26:b3:37:59:2d:94: 40:25:d2:ef:cf:dc:2c:1f:e5:5e:60:42:4b:9f:e2:0c:e1:f6: f4:bb:76:40:53:00:ca:67:25:4e:6e:1a:4a:9c:33:0e:ab:cd: 1e:1b:48:bf:a4:45:bf:2e:e5:51:f7:79:9b:2b:37:01:05:13: 46:42:d5:c3:ee:e9:8b:a4:98:c5:5a:f9:f3:3b:b6:ab:98:1e: cd:df:ad:75:20:9e:59:3e:c2:01:61:59:ff:d3:18:c6:16:6a: d4:61:55:4f:12:2a:d6:7f:08:72:b0:97:d3:50:cb:39:f9:98: b5:3e:03:56:b2:f4:d8:6b:51:5e:92:25:9b:51:a7:f9:87:f0: 8e:24:c8:7c:48:10:5e:2f:f6:b7:61:d1:f8:ee:43:4c:17:a2: 64:94:e9:f0:5d:a7:89:83:e1:75:84:26:c5:52:22:9a:1f:f1: ec:be:ac:44:49:3e:6a:d1:0c:6b:fa:9e:05:8c:00:90:b0:fd: 5f:ea:11:c9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCoswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUVDQUYxMTAvBgNVBAUTKDZFQkQzQTI2OTc4NTEyM0FEQzNGNDk2NjM5QUVERkIx MEYzMEQ2MTgwHhcNMjQxMDIyMTk1OTAwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MDQwNC0wMDRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCK4OjNnrdZZhVZhN0lJLUT8pEWfS05e2ymCQ9lf31O0fDps7fJPUxxUU+5g 6mhj3/XCjXTX2y4qq3S/vORTxYtRX7722tsTzJzE8ifgOtr4Mxzr4l57VfIRjAOt UAao5DUt5WoCkk5aKF8TF9d0CSgcDqDDhzuRHliJvYZ/fv3fEIqn08iUshGjtRni LUCj/SKMWwzm+nlT5Msk3AJ3dj5tnSXqyturnCoCrVTjK1eZ9BeLYg7/QjjckMIN ylbr3pEgq5+VAkCjs4/wNVC/vhjJt5jeodYSprn8Sv1JGYj2EYYiD8PeaFxlqmFd pPTgOJGbF/0uj+9P7+t1VPP7tQIDAQABo4IClTCCApEwHQYDVR0OBBYEFCUciY90 GLY0Z/lu0gn29v3VadxSMB8GA1UdIwQYMBaAFG69OiaXhRI63D9JZjmu37EPMNYY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRUNBRi9FRUZERkVBNDVF QTcxMUVBQTVFODMxODRDNEY5QUUwMi9icjA2SnBlRkVqcmNQMGxtT2E3ZnNROHcx aGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JyMDZKcGVGRWpyY1AwbG1PYTdmc1E4dzFoZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUVDQUYvRUVGREZFQTQ1RUE3MTFFQUE1RTgzMTg0QzRGOUFFMDIvRDJBMjk2NEEw Q0FFMTFFREE2RThDNjYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADfdzQwDQYJKoZIhvcNAQELBQADggEBAF9BcWNfeX901mWD JVJ5VwkoSSa/tTtt5zM4a4thSyMw/FCY1W1dHqP0XXsYJSq0xpR5hAPPW1C12ff/ 5oaKb12DByazN1ktlEAl0u/P3Cwf5V5gQkuf4gzh9vS7dkBTAMpnJU5uGkqcMw6r zR4bSL+kRb8u5VH3eZsrNwEFE0ZC1cPu6YukmMVa+fM7tquYHs3frXUgnlk+wgFh Wf/TGMYWatRhVU8SKtZ/CHKwl9NQyzn5mLU+A1ay9NhrUV6SJZtRp/mH8I4kyHxI EF4v9rdh0fjuQ0wXomSU6fBdp4mD4XWEJsVSIpof8ey+rERJPmrRDGv6ngWMAJCw /V/qEck= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:48 2024 by rpki-client on console-fra.rpki-client.org