$ rpki-client -vvf rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/EE1EA292EA6A11E98F16FE30C4F9AE02.roa File: EE1EA292EA6A11E98F16FE30C4F9AE02.roa (raw, json) Hash identifier: RWtW5P7p414JLcFk6+JAjnouIgQrqMzkOTyPl+YDn7k= Subject key identifier: D5:C6:46:27:DB:05:3E:4B:39:79:CB:4A:17:F1:E4:02:1E:EE:10:47 Certificate issuer: /CN=A911BC62/serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Certificate serial: 0CB0 Authority key identifier: 2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/EE1EA292EA6A11E98F16FE30C4F9AE02.roa Signing time: Wed 04 Oct 2023 15:52:12 +0000 ROA not before: Wed 04 Oct 2023 15:52:12 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45356 IP address blocks: 194.140.200.0/21 maxlen: 24 212.104.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:50:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3248 (0xcb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BC62/serialNumber=2B4F323C58A776B4E75386DEE83722E0456232C6 Validity Not Before: Oct 4 15:52:12 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651d8a2c-71e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b2:10:12:51:5a:07:6a:89:6e:a7:b6:ae:c5: 3c:bd:55:e5:09:d7:cb:49:25:fa:71:36:90:7c:82: a6:46:c2:c0:ce:84:f0:0f:e2:93:8f:d7:4f:57:b4: ae:e4:c8:05:24:da:a3:13:d7:64:72:25:52:6e:72: 40:a5:bc:c1:f1:35:40:c2:1c:87:11:97:8f:db:c3: a3:e2:a0:8c:90:f2:16:3f:14:ac:65:fd:f3:cc:db: 32:d3:03:46:a6:51:c8:b1:2c:7d:9b:0f:d3:7d:a0: 9f:b1:35:40:b7:d7:62:38:70:89:73:d0:a0:76:21: 7c:a9:59:08:ba:fb:08:69:aa:8d:8b:86:d7:14:07: 41:57:b3:a5:5e:8b:ff:5a:cd:da:d5:c2:53:50:07: 56:dc:31:03:45:4b:4e:6c:4d:ef:ea:d4:d7:4e:22: 7e:ee:7b:a4:88:93:8c:b4:15:66:e3:22:e4:15:47: 38:ba:30:b1:cf:c5:2e:6e:e4:3c:fc:07:41:ca:08: 5e:fb:c1:c1:93:2b:92:d7:f4:b8:18:07:ff:13:cf: c9:fd:75:39:a1:d2:04:55:23:86:c1:38:46:e5:d9: 22:60:13:25:14:20:75:e1:cf:6e:20:0c:0e:ad:a3: d6:32:1a:9d:b3:70:94:86:1e:d0:04:12:60:54:33: 33:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:C6:46:27:DB:05:3E:4B:39:79:CB:4A:17:F1:E4:02:1E:EE:10:47 X509v3 Authority Key Identifier: keyid:2B:4F:32:3C:58:A7:76:B4:E7:53:86:DE:E8:37:22:E0:45:62:32:C6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/K08yPFindrTnU4be6Dci4EViMsY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/K08yPFindrTnU4be6Dci4EViMsY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BC62/EE95FD42B76611E986C0E514C4F9AE02/EE1EA292EA6A11E98F16FE30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 194.140.200.0/21 212.104.224.0/20 Signature Algorithm: sha256WithRSAEncryption 7e:cd:a5:58:e4:c0:b5:40:32:3e:1d:ef:ff:3f:bd:9f:ab:f3: a3:ff:c0:90:de:10:04:d1:2c:a1:8f:26:23:7e:b8:3f:97:68: ec:74:a5:fe:8a:5f:f2:89:8f:fe:ca:93:e8:e7:6a:70:99:b2: 88:25:d8:f5:5b:b7:6a:7a:e3:36:59:36:7c:07:45:fd:e6:a6: 34:a1:8c:17:9a:44:b2:ba:0b:69:2b:cf:79:27:1d:24:8f:fc: a9:1d:59:e3:25:a4:de:a9:74:90:41:a4:48:b5:ba:9d:ee:61: 2e:cc:12:d0:52:88:1c:74:01:53:cb:d3:f8:c0:e6:64:8a:15: ca:b3:d4:e0:c7:22:f6:06:01:b1:25:28:a9:24:b1:cc:ed:1b: 96:7b:e9:db:86:bb:9f:82:bd:0e:ad:56:83:63:b5:31:0e:16: d0:9b:be:e7:89:c5:80:41:a0:c8:56:2c:3b:a0:d4:3d:66:99: d1:e4:7d:be:6f:72:d1:56:d4:8d:13:75:9a:8b:ea:56:bf:83: b1:ba:27:50:38:64:a7:ba:f2:dd:4f:68:1f:ca:05:b8:33:cd: 74:f7:53:1b:30:cd:74:2f:f4:5b:2d:ac:63:9f:58:86:d2:32: 1d:12:63:39:3d:1e:b2:92:56:96:8f:ef:33:dd:01:0a:b0:fd: 49:ac:ad:8e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJDNjIxMTAvBgNVBAUTKDJCNEYzMjNDNThBNzc2QjRFNzUzODZERUU4MzcyMkUw NDU2MjMyQzYwHhcNMjMxMDA0MTU1MjEyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkOGEyYy03MWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsbIQElFaB2qJbqe2rsU8vVXlCdfLSSX6cTaQfIKmRsLAzoTwD+KTj9dPV7Su 5MgFJNqjE9dkciVSbnJApbzB8TVAwhyHEZeP28Oj4qCMkPIWPxSsZf3zzNsy0wNG plHIsSx9mw/TfaCfsTVAt9diOHCJc9CgdiF8qVkIuvsIaaqNi4bXFAdBV7OlXov/ Ws3a1cJTUAdW3DEDRUtObE3v6tTXTiJ+7nukiJOMtBVm4yLkFUc4ujCxz8UubuQ8 /AdByghe+8HBkyuS1/S4GAf/E8/J/XU5odIEVSOGwThG5dkiYBMlFCB14c9uIAwO raPWMhqds3CUhh7QBBJgVDMzBwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNXGRifb BT5LOXnLShfx5AIe7hBHMB8GA1UdIwQYMBaAFCtPMjxYp3a051OG3ug3IuBFYjLG MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkM2Mi9FRTk1RkQ0MkI3 NjYxMUU5ODZDMEU1MTRDNEY5QUUwMi9LMDh5UEZpbmRyVG5VNGJlNkRjaTRFVmlN c1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0swOHlQRmluZHJUblU0YmU2RGNpNEVWaU1zWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJDNjIvRUU5NUZENDJCNzY2MTFFOTg2QzBFNTE0QzRGOUFFMDIvRUUxRUEyOTJF QTZBMTFFOThGMTZGRTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAPCjMgDBATUaOAwDQYJKoZIhvcNAQELBQADggEBAH7NpVjk wLVAMj4d7/8/vZ+r86P/wJDeEATRLKGPJiN+uD+XaOx0pf6KX/KJj/7Kk+jnanCZ sogl2PVbt2p64zZZNnwHRf3mpjShjBeaRLK6C2krz3knHSSP/KkdWeMlpN6pdJBB pEi1up3uYS7MEtBSiBx0AVPL0/jA5mSKFcqz1ODHIvYGAbElKKkkscztG5Z76duG u5+CvQ6tVoNjtTEOFtCbvueJxYBBoMhWLDug1D1mmdHkfb5vctFW1I0TdZqL6la/ g7G6J1A4ZKe68t1PaB/KBbgzzXT3UxswzXQv9FstrGOfWIbSMh0SYzk9HrKSVpaP 7zPdAQqw/UmsrY4= -----END CERTIFICATE-----Generated at Thu Jun 6 21:10:30 2024 by rpki-client on console-ams.rpki-client.org