$ rpki-client -vvf rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/EAB11C569E7A11EF9C2A9E09C4F9AE02.roa File: EAB11C569E7A11EF9C2A9E09C4F9AE02.roa (raw, json) Hash identifier: S4ikhB4wQjYJoUuGIHYvTR4A3rR63MmfA1fRonhKGKU= Subject key identifier: 41:C4:BB:92:08:51:25:6C:FE:ED:A1:E1:C7:8A:89:58:63:1B:7B:E3 Certificate issuer: /CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Certificate serial: 2D1C Authority key identifier: 8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/EAB11C569E7A11EF9C2A9E09C4F9AE02.roa Signing time: Sat 09 Nov 2024 09:15:18 +0000 ROA not before: Sat 09 Nov 2024 09:15:18 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 150389 IP address blocks: 118.179.10.0/24 maxlen: 24 118.179.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:22:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11548 (0x2d1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127523/serialNumber=8A681DD0C43731D0F4763A4DBDD5D4CC01FD64C2 Validity Not Before: Nov 9 09:15:18 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=672f2825-19f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9b:7b:64:d6:ba:f0:59:36:25:56:cf:74:fa: 55:7f:11:c3:47:36:1c:dd:da:79:da:23:09:b7:98: 07:9b:cc:f7:09:dc:b5:70:c9:48:5e:16:f7:fb:c5: 3a:c4:2f:af:9d:a6:21:77:18:df:84:52:76:2e:88: 48:0e:f0:56:96:5a:a1:c4:b6:3f:e4:b5:e6:78:70: 43:d6:ff:fd:27:73:b3:5f:fe:6d:1d:05:8f:4d:d9: 7a:43:ad:b0:af:e7:9f:6d:82:d4:66:a7:93:93:0e: 3f:26:0f:4d:6d:72:d6:8e:bc:4e:bb:5e:11:e7:ba: bc:6d:a0:60:e1:87:1b:ce:e3:f2:3a:fd:78:75:b8: 7f:05:a3:b6:cb:ec:d2:6e:b0:37:f5:df:d4:36:57: 79:08:e7:ea:9f:01:d4:23:e6:94:1d:84:cc:08:e9: 66:45:40:26:6d:88:48:13:c5:a3:d3:fd:b1:08:c6: 7f:02:60:e3:90:6d:eb:c3:81:0b:ee:50:12:7e:f1: 95:f2:9c:35:c9:94:ef:0d:2e:4a:c3:c4:42:93:df: de:ea:11:0d:10:d6:e6:6c:c0:67:3d:c6:e1:84:5e: 38:2d:d3:c8:75:7b:e8:93:29:3f:eb:1b:92:2e:83: dd:d1:7f:b2:bf:fc:7b:a4:16:aa:b1:d0:e5:f1:dc: b8:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:C4:BB:92:08:51:25:6C:FE:ED:A1:E1:C7:8A:89:58:63:1B:7B:E3 X509v3 Authority Key Identifier: keyid:8A:68:1D:D0:C4:37:31:D0:F4:76:3A:4D:BD:D5:D4:CC:01:FD:64:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/imgd0MQ3MdD0djpNvdXUzAH9ZMI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/imgd0MQ3MdD0djpNvdXUzAH9ZMI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127523/12B997E89AE311E3A5A257A75911EA32/EAB11C569E7A11EF9C2A9E09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 118.179.10.0/23 Signature Algorithm: sha256WithRSAEncryption a3:32:92:ce:58:eb:7c:58:9d:5d:69:21:79:4c:e1:aa:6b:6b: e7:a4:c4:46:ab:f0:97:87:8b:fc:e5:f1:36:c2:bd:a4:2b:b2: aa:f6:6d:66:6d:06:1f:92:ea:1a:46:fe:96:44:f7:42:68:37: 25:35:8b:b9:36:23:d0:77:f9:fc:8c:a4:a1:aa:65:20:c7:96: 1f:83:83:43:7e:49:18:ad:46:69:c2:a8:34:c3:78:d4:79:7f: 77:7e:16:39:92:12:a9:24:50:e2:1e:df:07:b2:bd:cc:ac:d8: be:4c:3e:04:ea:3a:27:22:cc:be:ee:9e:1a:54:e7:22:ae:b0: 2c:d7:a0:ac:8c:14:d7:11:5b:56:4d:9a:20:92:30:f5:94:ca: d3:c3:6a:a7:a7:40:a7:6f:15:4d:fd:06:53:da:2f:9a:c5:63: 7c:45:a8:22:b3:f5:d4:ae:1d:28:c7:74:2e:a6:53:d8:5e:9a: b5:0e:d0:f6:64:a8:60:7d:ae:1c:ff:f8:e5:7c:cb:f6:70:61: 85:c7:58:d9:af:c9:f7:27:1e:a3:39:16:43:be:72:80:f2:bf: 86:08:3c:f7:c1:b8:3b:90:58:04:39:73:22:64:1a:86:a7:63: b0:92:34:97:a6:ae:e0:84:6a:84:45:c6:f8:c8:07:b4:6c:b1: 5c:5a:80:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICLRwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc1MjMxMTAvBgNVBAUTKDhBNjgxREQwQzQzNzMxRDBGNDc2M0E0REJERDVENEND MDFGRDY0QzIwHhcNMjQxMTA5MDkxNTE4WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJmMjgyNS0xOWYzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAupt7ZNa68Fk2JVbPdPpVfxHDRzYc3dp52iMJt5gHm8z3Cdy1cMlIXhb3+8U6 xC+vnaYhdxjfhFJ2LohIDvBWllqhxLY/5LXmeHBD1v/9J3OzX/5tHQWPTdl6Q62w r+efbYLUZqeTkw4/Jg9NbXLWjrxOu14R57q8baBg4YcbzuPyOv14dbh/BaO2y+zS brA39d/UNld5COfqnwHUI+aUHYTMCOlmRUAmbYhIE8Wj0/2xCMZ/AmDjkG3rw4EL 7lASfvGV8pw1yZTvDS5Kw8RCk9/e6hENENbmbMBnPcbhhF44LdPIdXvokyk/6xuS LoPd0X+yv/x7pBaqsdDl8dy45wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEHEu5II USVs/u2h4ceKiVhjG3vjMB8GA1UdIwQYMBaAFIpoHdDENzHQ9HY6Tb3V1MwB/WTC MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzUyMy8xMkI5OTdFODlB RTMxMUUzQTVBMjU3QTc1OTExRUEzMi9pbWdkME1RM01kRDBkanBOdmRYVXpBSDla TUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ltZ2QwTVEzTWREMGRqcE52ZFhVekFIOVpNSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc1MjMvMTJCOTk3RTg5QUUzMTFFM0E1QTI1N0E3NTkxMUVBMzIvRUFCMTFDNTY5 RTdBMTFFRjlDMkE5RTA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAF2swowDQYJKoZIhvcNAQELBQADggEBAKMyks5Y63xYnV1p IXlM4apra+ekxEar8JeHi/zl8TbCvaQrsqr2bWZtBh+S6hpG/pZE90JoNyU1i7k2 I9B3+fyMpKGqZSDHlh+Dg0N+SRitRmnCqDTDeNR5f3d+FjmSEqkkUOIe3weyvcys 2L5MPgTqOicizL7unhpU5yKusCzXoKyMFNcRW1ZNmiCSMPWUytPDaqenQKdvFU39 BlPaL5rFY3xFqCKz9dSuHSjHdC6mU9hemrUO0PZkqGB9rhz/+OV8y/ZwYYXHWNmv yfcnHqM5FkO+coDyv4YIPPfBuDuQWAQ5cyJkGoanY7CSNJemruCEaoRFxvjIB7Rs sVxagDc= -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:15 2024 by rpki-client on console-ams.rpki-client.org