$ rpki-client -vvf rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/EE8EAEDC377F11EE92674430C4F9AE02.roa File: EE8EAEDC377F11EE92674430C4F9AE02.roa (raw, json) Hash identifier: XUINDcHIDNHHzShIR5UbuMY4rtr/62wcaswBNnwgnig= Subject key identifier: 78:C1:28:52:89:94:AC:FC:6F:9F:78:07:ED:4F:37:54:46:C2:E3:8A Certificate issuer: /CN=A9170982/serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Certificate serial: 032C Authority key identifier: 41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/EE8EAEDC377F11EE92674430C4F9AE02.roa Signing time: Thu 05 Dec 2024 00:54:11 +0000 ROA not before: Thu 05 Dec 2024 00:54:11 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 16839 IP address blocks: 167.208.0.0/16 maxlen: 16 167.208.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 22:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9170982, serialNumber=41BFBEBE63521FB04ED8123C68E5C0CDAF5D05CD Validity Not Before: Dec 5 00:54:11 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=6750f9b2-88d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:7d:61:1f:4b:e0:5b:e7:15:a5:62:7a:9e:6b: 7c:77:0f:e6:d4:54:4b:47:63:97:b4:c6:2c:36:8f: 65:d7:56:00:f2:9a:37:7e:f4:19:41:84:82:7d:7a: 76:89:d0:3f:f2:f6:8a:58:52:cd:40:77:7d:56:e4: ea:7d:d4:36:b1:59:05:66:ae:07:79:d4:2c:c8:15: 70:3d:6a:40:88:4c:35:0e:97:87:43:66:63:fc:0e: d6:2c:0f:5c:8b:23:52:f7:b7:9f:10:4d:09:bf:2a: 8e:9e:6a:cc:bf:eb:44:90:55:75:c4:df:70:c1:0b: 5a:79:ba:c9:63:ce:20:50:87:f1:f2:33:e6:b5:cf: 27:90:43:fb:98:e4:fb:43:49:0f:58:7c:0d:09:b6: a1:44:37:cd:b1:65:c5:1e:4d:92:cc:d9:67:ff:3e: 19:e4:7b:b4:47:16:a8:58:91:bc:a9:f1:91:2a:c7: 60:17:bc:81:9a:2e:86:c7:15:3e:0b:a6:fc:13:a3: 53:ad:b9:74:0c:53:a3:f8:46:71:1e:19:2e:94:b7: 7e:16:32:db:9e:3e:4f:28:f8:ad:ea:10:2d:fc:e1: 0a:0b:9d:40:54:5f:99:da:24:73:71:45:04:6e:c3: 46:19:82:1c:dc:c1:93:d0:fe:ca:1b:1a:48:94:13: a3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C1:28:52:89:94:AC:FC:6F:9F:78:07:ED:4F:37:54:46:C2:E3:8A X509v3 Authority Key Identifier: keyid:41:BF:BE:BE:63:52:1F:B0:4E:D8:12:3C:68:E5:C0:CD:AF:5D:05:CD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/Qb--vmNSH7BO2BI8aOXAza9dBc0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/Qb--vmNSH7BO2BI8aOXAza9dBc0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9170982/CF205C60AC1311ECB776B209C4F9AE02/EE8EAEDC377F11EE92674430C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9c:ec:7c:07:c2:f7:ce:ce:12:fd:01:74:99:cd:b9:8b:9d:ae: 5e:ae:ea:28:14:89:20:cb:85:e7:40:a7:9f:20:0f:15:a2:97: b4:ca:f9:21:e1:b1:47:31:e2:f7:34:8e:78:45:d2:5b:2f:51: 4c:e2:74:ae:36:ef:05:f1:d6:67:89:8d:1c:d9:e0:c1:ef:0c: 06:e6:4c:b4:14:28:d4:a9:e9:a1:f4:77:52:d4:92:7f:07:72: 87:e3:32:f6:83:3e:e9:5a:54:2d:6a:dc:61:ad:f5:db:fe:10: 5c:9f:1f:04:98:84:d2:ed:4d:aa:01:05:99:a8:65:9c:d2:c5: 1c:bc:b4:e8:38:41:e7:1f:c3:1f:85:ec:0f:5d:0f:ff:3f:b5: dc:67:a7:be:f5:a6:54:50:80:9d:f4:8f:43:32:a8:40:31:da: 27:af:58:07:a3:a6:1b:4f:86:83:be:13:ec:c1:a2:38:f1:5b: f6:bc:b1:37:c8:9b:b7:63:49:bd:48:74:71:ac:07:f2:dc:c9: fd:1b:4e:22:7d:28:cf:9a:06:e9:1a:c2:5a:ad:d6:2f:3b:62: 64:bd:68:3a:fd:54:5c:1f:29:63:fd:02:67:20:75:b4:8e:f2: 47:27:c8:c0:04:2b:7b:63:cd:fc:bc:bb:02:a7:f8:46:51:32: d1:e8:8a:4b -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzA5ODIxMTAvBgNVBAUTKDQxQkZCRUJFNjM1MjFGQjA0RUQ4MTIzQzY4RTVDMENE QUY1RDA1Q0QwHhcNMjQxMjA1MDA1NDExWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzUwZjliMi04OGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA031hH0vgW+cVpWJ6nmt8dw/m1FRLR2OXtMYsNo9l11YA8po3fvQZQYSCfXp2 idA/8vaKWFLNQHd9VuTqfdQ2sVkFZq4HedQsyBVwPWpAiEw1DpeHQ2Zj/A7WLA9c iyNS97efEE0JvyqOnmrMv+tEkFV1xN9wwQtaebrJY84gUIfx8jPmtc8nkEP7mOT7 Q0kPWHwNCbahRDfNsWXFHk2SzNln/z4Z5Hu0RxaoWJG8qfGRKsdgF7yBmi6GxxU+ C6b8E6NTrbl0DFOj+EZxHhkulLd+FjLbnj5PKPit6hAt/OEKC51AVF+Z2iRzcUUE bsNGGYIc3MGT0P7KGxpIlBOjCQIDAQABo4IClDCCApAwHQYDVR0OBBYEFHjBKFKJ lKz8b594B+1PN1RGwuOKMB8GA1UdIwQYMBaAFEG/vr5jUh+wTtgSPGjlwM2vXQXN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MDk4Mi9DRjIwNUM2MEFD MTMxMUVDQjc3NkIyMDlDNEY5QUUwMi9RYi0tdm1OU0g3Qk8yQkk4YU9YQXphOWRC YzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FiLS12bU5TSDdCTzJCSThhT1hBemE5ZEJjMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzA5ODIvQ0YyMDVDNjBBQzEzMTFFQ0I3NzZCMjA5QzRGOUFFMDIvRUU4RUFFREMz NzdGMTFFRTkyNjc0NDMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHgYIKwYBBQUHAQcBAf8E DzANMAsEAgABMAUDAwCn0DANBgkqhkiG9w0BAQsFAAOCAQEAnOx8B8L3zs4S/QF0 mc25i52uXq7qKBSJIMuF50CnnyAPFaKXtMr5IeGxRzHi9zSOeEXSWy9RTOJ0rjbv BfHWZ4mNHNngwe8MBuZMtBQo1KnpofR3UtSSfwdyh+My9oM+6VpULWrcYa312/4Q XJ8fBJiE0u1NqgEFmahlnNLFHLy06DhB5x/DH4XsD10P/z+13GenvvWmVFCAnfSP QzKoQDHaJ69YB6OmG0+Gg74T7MGiOPFb9ryxN8ibt2NJvUh0cawH8tzJ/RtOIn0o z5oG6RrCWq3WLztiZL1oOv1UXB8pY/0CZyB1tI7yRyfIwAQre2PN/Ly7Aqf4RlEy 0eiKSw== -----END CERTIFICATE-----Generated at Tue Apr 15 05:22:39 2025 by rpki-client