$ rpki-client -vvf rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/E9ECC32008C611EDBC862E48C4F9AE02.roa File: E9ECC32008C611EDBC862E48C4F9AE02.roa (raw, json) Hash identifier: 53gHj/OrKFXtL8aMTpoTUjSuuGCGwdKOy6cQhgB55pc= Subject key identifier: 17:A7:0E:84:8B:3B:1A:BB:8F:23:B2:19:D9:84:B5:15:64:38:8A:10 Certificate issuer: /CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Certificate serial: 06DA Authority key identifier: D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/E9ECC32008C611EDBC862E48C4F9AE02.roa Signing time: Tue 22 Oct 2024 22:32:02 +0000 ROA not before: Tue 22 Oct 2024 22:32:02 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 9289 IP address blocks: 123.1.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1754 (0x6da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911DF1F/serialNumber=D37179CBB97D680E6A80DC12EE422FE8B6E363F5 Validity Not Before: Oct 22 22:32:02 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671827e1-09ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:2f:60:c9:6d:6a:dd:0c:b8:80:7b:4a:a0:06: 2f:d7:bd:7e:af:f7:36:6f:3f:67:c2:04:d0:42:e9: 0a:6f:e1:3f:70:15:08:d0:02:ba:5d:bf:64:b6:fa: e2:5f:ea:3e:71:6b:61:82:f5:db:73:b3:69:d1:eb: 84:57:3c:ce:d6:ff:b6:24:5b:27:db:b4:dc:3f:3b: 60:ab:13:bc:b2:cf:0b:05:1d:5b:f6:1c:f6:0c:ad: 10:88:95:fd:4e:55:23:40:e8:ca:16:e5:8f:67:cb: a0:f3:c5:b3:9e:5e:7e:86:c8:13:46:13:97:c9:67: f9:44:bf:da:f1:ef:63:b8:73:60:6d:c4:81:f2:68: 2a:cc:95:f1:9f:c9:61:36:de:94:3a:69:96:5e:e8: c6:e1:4c:5a:a1:9d:c4:79:01:57:da:b5:b1:58:d9: 87:55:5e:92:78:59:4d:7e:19:1c:4d:f1:4c:82:4b: 43:c4:59:81:a4:69:85:e3:39:c8:9c:78:22:ed:18: 13:ee:b7:c0:b1:c6:39:d1:08:c6:9f:14:2a:df:e4: 7c:82:e1:ad:37:36:c0:d9:3e:97:2a:24:7b:59:b4: 5b:16:a2:cc:0e:9e:81:2d:f8:17:3c:2e:4e:21:79: 01:a4:05:3a:7a:7a:20:75:5f:3a:d2:48:f9:a0:21: a4:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A7:0E:84:8B:3B:1A:BB:8F:23:B2:19:D9:84:B5:15:64:38:8A:10 X509v3 Authority Key Identifier: keyid:D3:71:79:CB:B9:7D:68:0E:6A:80:DC:12:EE:42:2F:E8:B6:E3:63:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/03F5y7l9aA5qgNwS7kIv6LbjY_U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/03F5y7l9aA5qgNwS7kIv6LbjY_U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911DF1F/F5CB6E6A5C5311EBB6627853C4F9AE02/E9ECC32008C611EDBC862E48C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 123.1.151.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:67:cd:c7:8f:b6:ea:2e:0c:eb:29:59:53:b8:28:6f:d2:e0: 96:da:44:bd:b8:7f:38:6c:b9:3b:02:eb:38:34:1c:a5:f0:5f: 65:d7:df:fd:13:e2:82:13:2d:1f:8d:ea:08:a6:e4:00:c0:19: 2d:d3:81:b3:54:c1:1c:aa:f3:8b:73:9e:5a:65:11:c7:e7:bf: db:6a:fe:45:16:20:70:ed:50:bc:11:33:7d:2b:6f:29:ac:52: 48:c7:08:33:98:4c:10:10:1e:90:18:50:45:3f:c9:17:fd:9c: 1e:89:3e:4c:00:08:98:25:ba:52:f4:ea:66:4f:ef:2d:ac:7d: 4f:ee:d1:a4:a1:96:dc:04:2d:ee:6d:4b:8b:9b:33:0a:c4:46: 06:d6:a1:40:2c:b3:f8:99:07:8f:b9:4e:9a:a3:9e:71:35:b0: d2:e5:fc:9e:ea:eb:f4:16:f5:42:04:c9:f9:be:47:0d:27:90: 3c:73:da:8c:47:22:dd:2e:2e:3e:45:e9:1a:5d:cc:f4:55:ac: ad:11:95:05:1e:79:78:ef:b4:f5:fd:ab:c1:4f:86:ea:83:35: 4c:cc:f8:05:d5:4a:54:75:f0:88:35:a2:e0:ce:3a:e7:ba:9b: de:14:e1:bd:1a:70:d3:63:67:b8:65:c3:d0:0e:a4:a0:ce:05: 88:3c:66:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MURGMUYxMTAvBgNVBAUTKEQzNzE3OUNCQjk3RDY4MEU2QTgwREMxMkVFNDIyRkU4 QjZFMzYzRjUwHhcNMjQxMDIyMjIzMjAyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE4MjdlMS0wOWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6S9gyW1q3Qy4gHtKoAYv171+r/c2bz9nwgTQQukKb+E/cBUI0AK6Xb9ktvri X+o+cWthgvXbc7Np0euEVzzO1v+2JFsn27TcPztgqxO8ss8LBR1b9hz2DK0QiJX9 TlUjQOjKFuWPZ8ug88Wznl5+hsgTRhOXyWf5RL/a8e9juHNgbcSB8mgqzJXxn8lh Nt6UOmmWXujG4UxaoZ3EeQFX2rWxWNmHVV6SeFlNfhkcTfFMgktDxFmBpGmF4znI nHgi7RgT7rfAscY50QjGnxQq3+R8guGtNzbA2T6XKiR7WbRbFqLMDp6BLfgXPC5O IXkBpAU6enogdV860kj5oCGkBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBenDoSL Oxq7jyOyGdmEtRVkOIoQMB8GA1UdIwQYMBaAFNNxecu5fWgOaoDcEu5CL+i242P1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExREYxRi9GNUNCNkU2QTVD NTMxMUVCQjY2Mjc4NTNDNEY5QUUwMi8wM0Y1eTdsOWFBNXFnTndTN2tJdjZMYmpZ X1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzAzRjV5N2w5YUE1cWdOd1M3a0l2NkxiallfVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MURGMUYvRjVDQjZFNkE1QzUzMTFFQkI2NjI3ODUzQzRGOUFFMDIvRTlFQ0MzMjAw OEM2MTFFREJDODYyRTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB7AZcwDQYJKoZIhvcNAQELBQADggEBAC9nzcePtuouDOsp WVO4KG/S4JbaRL24fzhsuTsC6zg0HKXwX2XX3/0T4oITLR+N6gim5ADAGS3TgbNU wRyq84tznlplEcfnv9tq/kUWIHDtULwRM30rbymsUkjHCDOYTBAQHpAYUEU/yRf9 nB6JPkwACJglulL06mZP7y2sfU/u0aShltwELe5tS4ubMwrERgbWoUAss/iZB4+5 TpqjnnE1sNLl/J7q6/QW9UIEyfm+Rw0nkDxz2oxHIt0uLj5F6RpdzPRVrK0RlQUe eXjvtPX9q8FPhuqDNUzM+AXVSlR18Ig1ouDOOue6m94U4b0acNNjZ7hlw9AOpKDO BYg8Zm4= -----END CERTIFICATE-----Generated at Sat Nov 23 00:08:35 2024 by rpki-client on console-ams.rpki-client.org