$ rpki-client -vvf rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/EEECC55A8C3611EFA07E612DC4F9AE02.roa File: EEECC55A8C3611EFA07E612DC4F9AE02.roa (raw, json) Hash identifier: S448nKM+pkzyKAVAq+QLZ6c2Rwj7lMGOSqjzi17yKYo= Subject key identifier: 5C:D4:8B:3B:EA:F0:95:10:65:DF:7F:09:5A:10:60:78:B4:F3:74:7C Certificate issuer: /CN=A91DEB81/serialNumber=7776612A43C22D0A66B8F13680B3058BED5D9892 Certificate serial: 03F3 Authority key identifier: 77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/EEECC55A8C3611EFA07E612DC4F9AE02.roa Signing time: Sun 15 Dec 2024 00:33:30 +0000 ROA not before: Sun 15 Dec 2024 00:33:30 +0000 ROA not after: Mon 02 Mar 2026 00:00:00 +0000 asID: 214785 IP address blocks: 204.52.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Apr 2025 00:31:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1011 (0x3f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DEB81 Validity Not Before: Dec 15 00:33:30 2024 GMT Not After : Mar 2 00:00:00 2026 GMT Subject: CN=675e23da-9d83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:c1:d9:df:48:2b:a7:41:32:0f:e3:cd:3d:23: 39:91:09:43:b0:70:fe:1e:41:7f:56:66:c8:7e:28: a3:32:ac:8b:2c:54:a4:e7:fd:7a:d5:1c:df:b3:32: 7f:1e:3a:ae:6a:99:0b:a6:43:78:5c:45:c7:cd:08: 9f:ca:98:98:66:cc:d7:b8:f7:0b:61:af:f7:4f:50: cd:91:08:a6:47:d8:31:ce:02:bd:8a:b5:be:44:31: c4:21:3c:9a:5c:f8:1e:9a:65:51:c1:d9:7c:2e:b3: 30:0f:b4:cf:a0:2a:61:97:d9:a7:c7:90:5e:38:6d: b9:87:dc:ea:50:a4:2c:9a:86:a3:a9:47:2a:e0:7d: 31:e7:bb:18:de:04:27:30:29:fd:fd:75:97:05:87: 8c:00:18:ab:03:15:18:f2:ec:da:c1:19:e6:48:7a: 0c:85:19:38:96:68:02:42:79:c5:3d:8e:3b:b4:8a: 93:a0:2b:f5:5d:1c:7a:bc:13:2a:4d:a0:29:c3:5f: bf:a2:67:b0:14:04:71:90:98:d9:cf:ba:30:11:78: b2:b7:32:de:e4:5d:44:05:48:c7:d5:f0:14:dd:1e: b6:46:0a:8d:84:75:b4:1a:5d:b2:72:43:83:e4:d6: b4:0a:b0:ca:c4:01:8f:fc:01:5d:b1:05:bb:f0:45: 8a:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D4:8B:3B:EA:F0:95:10:65:DF:7F:09:5A:10:60:78:B4:F3:74:7C X509v3 Authority Key Identifier: keyid:77:76:61:2A:43:C2:2D:0A:66:B8:F1:36:80:B3:05:8B:ED:5D:98:92 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/d3ZhKkPCLQpmuPE2gLMFi-1dmJI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DEB81/CF9663C670F711ECB318E43AC4F9AE02/EEECC55A8C3611EFA07E612DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 204.52.191.0/24 Signature Algorithm: sha256WithRSAEncryption b5:92:b0:6e:84:2a:a2:40:2b:74:90:72:81:d1:2c:41:92:4b: a7:45:1b:9f:c6:1b:ca:d3:95:82:c4:61:b4:c5:dc:27:30:e6: b6:42:f3:56:2d:56:37:c6:0e:03:4e:11:3b:1d:c0:d9:a2:b2: 91:1f:cd:1d:12:14:a6:9e:43:4d:74:60:05:bc:02:74:2d:55: 7f:7e:c7:d6:c3:72:e5:87:05:50:1d:fc:68:32:f5:e8:1c:ff: b4:62:cc:b8:b4:b4:c8:b8:07:0a:55:f3:02:10:b1:52:83:0e: 44:cc:1e:86:ba:5f:54:48:8a:87:59:72:af:65:19:84:a5:dc: a8:a7:64:0b:37:38:76:7d:35:b5:7a:b9:4a:b6:9e:1d:a0:5f: 84:18:f2:4f:52:c5:e2:9b:5e:4b:66:0d:4d:a2:af:3e:06:4c: 3b:0d:45:de:d6:a8:f9:1e:dc:83:ac:7b:66:0e:43:62:d4:5d: be:6d:80:aa:44:52:29:4e:0c:8d:39:87:5f:57:9c:61:73:e5: 96:d0:ec:d7:9e:6e:27:a2:c9:ae:e4:23:b8:46:46:e3:13:58: 61:f1:d1:29:6d:49:39:63:1a:3f:32:f2:91:68:4c:46:7c:59: 01:02:8a:b4:70:27:cd:0e:d0:d6:ab:55:20:a4:e5:8e:fb:fd: c4:b3:64:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA/MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REVCODExMTAvBgNVBAUTKDc3NzY2MTJBNDNDMjJEMEE2NkI4RjEzNjgwQjMwNThC RUQ1RDk4OTIwHhcNMjQxMjE1MDAzMzMwWhcNMjYwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzVlMjNkYS05ZDgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvMHZ30grp0EyD+PNPSM5kQlDsHD+HkF/VmbIfiijMqyLLFSk5/161RzfszJ/ HjquapkLpkN4XEXHzQifypiYZszXuPcLYa/3T1DNkQimR9gxzgK9irW+RDHEITya XPgemmVRwdl8LrMwD7TPoCphl9mnx5BeOG25h9zqUKQsmoajqUcq4H0x57sY3gQn MCn9/XWXBYeMABirAxUY8uzawRnmSHoMhRk4lmgCQnnFPY47tIqToCv1XRx6vBMq TaApw1+/omewFARxkJjZz7owEXiytzLe5F1EBUjH1fAU3R62RgqNhHW0Gl2yckOD 5Na0CrDKxAGP/AFdsQW78EWKVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFzUizvq 8JUQZd9/CVoQYHi083R8MB8GA1UdIwQYMBaAFHd2YSpDwi0KZrjxNoCzBYvtXZiS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERUI4MS9DRjk2NjNDNjcw RjcxMUVDQjMxOEU0M0FDNEY5QUUwMi9kM1poS2tQQ0xRcG11UEUyZ0xNRmktMWRt SkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2QzWmhLa1BDTFFwbXVQRTJnTE1GaS0xZG1KSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REVCODEvQ0Y5NjYzQzY3MEY3MTFFQ0IzMThFNDNBQzRGOUFFMDIvRUVFQ0M1NUE4 QzM2MTFFRkEwN0U2MTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADMNL8wDQYJKoZIhvcNAQELBQADggEBALWSsG6EKqJAK3SQ coHRLEGSS6dFG5/GG8rTlYLEYbTF3Ccw5rZC81YtVjfGDgNOETsdwNmispEfzR0S FKaeQ010YAW8AnQtVX9+x9bDcuWHBVAd/Ggy9egc/7RizLi0tMi4BwpV8wIQsVKD DkTMHoa6X1RIiodZcq9lGYSl3KinZAs3OHZ9NbV6uUq2nh2gX4QY8k9SxeKbXktm DU2irz4GTDsNRd7WqPke3IOse2YOQ2LUXb5tgKpEUilODI05h19XnGFz5ZbQ7Nee bieiya7kI7hGRuMTWGHx0SltSTljGj8y8pFoTEZ8WQECirRwJ80O0NarVSCk5Y77 /cSzZC8= -----END CERTIFICATE-----Generated at Sat Apr 5 01:22:56 2025 by rpki-client