$ rpki-client -vvf rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/EFC0CAB2F81111EEB4681B75C4F9AE02.roa File: EFC0CAB2F81111EEB4681B75C4F9AE02.roa (raw, json) Hash identifier: 85B0TnnfgM6Q+BLismdsB8Gb/c7sbiOxxQThWa5UTaE= Subject key identifier: B2:43:C5:5B:C2:ED:9A:59:A0:0C:C9:72:4C:A7:F2:0E:49:E5:ED:76 Certificate issuer: /CN=A9123072/serialNumber=B658EF6B27929C7B7F5FB26CB9EE6A412CE85DD4 Certificate serial: 06D5 Authority key identifier: B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/EFC0CAB2F81111EEB4681B75C4F9AE02.roa Signing time: Thu 11 Apr 2024 14:44:02 +0000 ROA not before: Thu 11 Apr 2024 14:44:02 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 55720 IP address blocks: 185.189.240.0/24 maxlen: 24 185.189.241.0/24 maxlen: 24 185.189.242.0/24 maxlen: 24 185.189.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.crl rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:46:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123072/serialNumber=B658EF6B27929C7B7F5FB26CB9EE6A412CE85DD4 Validity Not Before: Apr 11 14:44:02 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6617f731-2ec9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:26:9e:34:9a:82:09:6e:a4:e2:b3:a4:74:4f: dd:da:aa:67:27:73:03:87:1a:a9:70:86:af:6d:01: 6b:f1:5c:3e:d5:3c:b2:2d:ad:62:f6:4f:a5:c4:4a: 35:66:b3:25:87:e7:d9:30:5e:69:86:39:69:9b:eb: 9d:41:ec:d8:7e:39:1f:f6:eb:70:57:34:0b:76:b5: a0:02:50:6c:f6:43:1e:ad:4c:35:c2:0a:59:c4:02: c8:71:fa:92:4a:62:18:70:01:f8:47:e6:7a:b5:b8: 24:55:15:1b:49:ec:50:4b:13:52:80:7d:24:83:24: 90:16:88:6f:e5:cb:91:8a:c6:7d:ad:ce:73:11:62: 78:20:a3:a4:93:c9:cf:0c:7c:d0:c7:d0:f3:5c:16: 18:fb:1f:f5:fd:df:74:b7:80:ef:22:47:f0:d5:3f: ed:3a:65:8f:aa:0d:eb:8e:4e:5a:ec:f4:8a:e1:29: aa:fd:4d:dc:5e:33:d5:c6:97:85:6c:fa:22:9a:50: 10:9b:cf:14:91:29:20:99:fa:ba:dd:a1:55:ee:82: 69:8b:3d:47:e6:4b:a8:97:03:75:c6:0f:f3:af:63: a2:91:cc:37:4a:eb:25:c9:4f:29:a6:f6:b0:4f:00: f2:ed:69:02:0a:b8:d7:4c:73:e6:af:b1:5a:10:a0: 7e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:43:C5:5B:C2:ED:9A:59:A0:0C:C9:72:4C:A7:F2:0E:49:E5:ED:76 X509v3 Authority Key Identifier: keyid:B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/EFC0CAB2F81111EEB4681B75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.189.240.0/22 Signature Algorithm: sha256WithRSAEncryption 86:42:b8:b7:69:9c:b6:42:36:4d:ca:f9:88:df:7e:b1:03:33: e9:69:8f:2f:73:93:d8:77:04:3a:e4:d3:53:ed:69:d7:e7:ab: 37:93:02:04:eb:f5:51:e9:99:ce:21:25:61:d4:c7:bf:48:29: 81:3b:63:8f:4f:bb:0b:f2:5d:99:7f:2b:82:d6:e0:5c:57:54: ac:ce:de:83:c5:9a:b8:fd:0d:f2:0e:47:4f:3e:32:4e:f1:b5: 17:e4:84:d0:b6:58:70:ec:41:af:50:a5:6d:17:ef:aa:93:bb: f1:b9:eb:23:8b:a8:9c:0e:95:b0:45:86:96:8a:e3:64:d2:9b: 86:d5:2a:fe:81:41:1d:8c:d4:0f:c9:29:53:75:f3:87:41:4e: 1b:45:4a:fc:8e:e2:d5:ab:92:20:9d:e2:36:86:e7:31:91:25: 17:d1:c0:97:04:42:6d:c0:7e:12:e4:d2:e2:38:e7:81:e9:c8: 5d:e8:f7:93:a3:ba:ae:4f:e2:2b:18:e9:d4:31:4a:1e:7c:a5: 08:53:f6:94:3e:8a:e1:a8:c7:c1:c9:fc:61:38:34:f4:69:c0: f3:d8:da:29:c8:46:7d:c9:26:3b:47:20:5a:ea:63:8b:e5:d9: 6c:7a:49:fa:21:ab:ed:20:2f:1e:ae:8d:de:36:db:8f:31:4c: ef:e1:05:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMwNzIxMTAvBgNVBAUTKEI2NThFRjZCMjc5MjlDN0I3RjVGQjI2Q0I5RUU2QTQx MkNFODVERDQwHhcNMjQwNDExMTQ0NDAyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE3ZjczMS0yZWM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxyaeNJqCCW6k4rOkdE/d2qpnJ3MDhxqpcIavbQFr8Vw+1TyyLa1i9k+lxEo1 ZrMlh+fZMF5phjlpm+udQezYfjkf9utwVzQLdrWgAlBs9kMerUw1wgpZxALIcfqS SmIYcAH4R+Z6tbgkVRUbSexQSxNSgH0kgySQFohv5cuRisZ9rc5zEWJ4IKOkk8nP DHzQx9DzXBYY+x/1/d90t4DvIkfw1T/tOmWPqg3rjk5a7PSK4Smq/U3cXjPVxpeF bPoimlAQm88UkSkgmfq63aFV7oJpiz1H5kuolwN1xg/zr2Oikcw3SuslyU8ppvaw TwDy7WkCCrjXTHPmr7FaEKB+JwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLJDxVvC 7ZpZoAzJckyn8g5J5e12MB8GA1UdIwQYMBaAFLZY72snkpx7f1+ybLnuakEs6F3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzA3Mi8wNjlBMDZFNjBC NUMxMUVCOTlBMTc1NjJDNEY5QUUwMi90bGp2YXllU25IdF9YN0pzdWU1cVFTem9Y ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3RsanZheWVTbkh0X1g3SnN1ZTVxUVN6b1hkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMwNzIvMDY5QTA2RTYwQjVDMTFFQjk5QTE3NTYyQzRGOUFFMDIvRUZDMENBQjJG ODExMTFFRUI0NjgxQjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5vfAwDQYJKoZIhvcNAQELBQADggEBAIZCuLdpnLZCNk3K +YjffrEDM+lpjy9zk9h3BDrk01PtadfnqzeTAgTr9VHpmc4hJWHUx79IKYE7Y49P uwvyXZl/K4LW4FxXVKzO3oPFmrj9DfIOR08+Mk7xtRfkhNC2WHDsQa9QpW0X76qT u/G56yOLqJwOlbBFhpaK42TSm4bVKv6BQR2M1A/JKVN184dBThtFSvyO4tWrkiCd 4jaG5zGRJRfRwJcEQm3AfhLk0uI454HpyF3o95Ojuq5P4isY6dQxSh58pQhT9pQ+ iuGox8HJ/GE4NPRpwPPY2inIRn3JJjtHIFrqY4vl2Wx6Sfohq+0gLx6ujd42248x TO/hBUk= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:36 2024 by rpki-client on console-fra.rpki-client.org