$ rpki-client -vvf rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/EFC0CAB2F81111EEB4681B75C4F9AE02.roa File: EFC0CAB2F81111EEB4681B75C4F9AE02.roa (raw, json) Hash identifier: HLeHhf7z+DQd8E9vrX8KAr3EM5GCzgmJjqLeg2zSKbM= Subject key identifier: B3:57:AF:71:9E:8F:66:6B:20:CF:FF:EA:BD:22:A3:2F:AB:17:A4:50 Certificate issuer: /CN=A9123072/serialNumber=B658EF6B27929C7B7F5FB26CB9EE6A412CE85DD4 Certificate serial: 0753 Authority key identifier: B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/EFC0CAB2F81111EEB4681B75C4F9AE02.roa Signing time: Mon 02 Dec 2024 21:40:28 +0000 ROA not before: Mon 02 Dec 2024 21:40:28 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55720 IP address blocks: 185.189.240.0/24 maxlen: 24 185.189.241.0/24 maxlen: 24 185.189.242.0/24 maxlen: 24 185.189.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.crl rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 21:34:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1875 (0x753) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9123072 Validity Not Before: Dec 2 21:40:28 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=674e294c-e8c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:19:3e:e9:c1:50:87:bc:75:15:fa:6c:9c:f2: 9e:ef:8a:dd:f1:2f:6d:d0:ac:bb:08:d8:7e:92:a3: 37:83:c9:30:89:bd:ab:6e:c1:3e:67:55:a7:98:9d: ec:99:37:13:57:9e:3c:81:ae:27:c2:15:d5:be:18: 45:8d:4a:d8:88:34:a0:6c:bf:81:a0:5f:52:68:94: d1:04:bd:b3:4a:fb:b6:b4:34:06:c0:e9:59:e6:5e: 39:83:54:a0:ba:9a:dd:86:f1:54:36:0b:37:6c:6d: 1d:bb:ac:86:f8:61:70:2d:dd:c1:6f:98:0f:44:3e: 47:48:23:e2:2a:cc:fd:3b:df:72:a4:1d:75:26:0d: 1e:af:68:17:b9:bd:00:5b:29:ab:5d:cb:d1:ae:d5: 96:8a:63:22:5f:c3:71:a3:2f:57:ed:22:79:c6:5e: 5b:74:2d:6f:99:7a:d9:a8:96:87:d7:1f:ee:f0:e6: 66:09:dd:3e:7d:42:c3:db:53:64:1a:57:52:6e:b7: 09:39:19:b9:3f:0d:01:fe:b2:cb:cc:cf:2d:ab:6e: c1:36:d4:2e:7c:95:e4:ca:66:ab:f8:9a:9b:c4:97: c7:90:c1:31:3f:2f:df:57:dc:7e:e2:23:60:d0:c7: 75:bb:29:c2:01:17:bc:1a:cd:0a:ae:72:bd:ca:5f: 9d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:57:AF:71:9E:8F:66:6B:20:CF:FF:EA:BD:22:A3:2F:AB:17:A4:50 X509v3 Authority Key Identifier: keyid:B6:58:EF:6B:27:92:9C:7B:7F:5F:B2:6C:B9:EE:6A:41:2C:E8:5D:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/tljvayeSnHt_X7Jsue5qQSzoXdQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/tljvayeSnHt_X7Jsue5qQSzoXdQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9123072/069A06E60B5C11EB99A17562C4F9AE02/EFC0CAB2F81111EEB4681B75C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 185.189.240.0/22 Signature Algorithm: sha256WithRSAEncryption 73:b4:1b:c3:62:c3:f9:9a:92:ff:7e:99:ff:13:79:77:b2:1b: 5f:5a:50:81:81:fe:d4:73:89:a0:3e:b9:75:2b:0f:ab:59:f8: f9:c1:c3:11:59:84:df:29:02:92:5e:00:f6:d0:72:80:88:75: e4:0d:f3:b6:6d:be:87:0e:11:be:5c:60:b8:cf:e5:e9:de:94: 73:40:7b:59:ab:32:2c:d7:1e:82:51:bd:93:ea:c7:ed:6a:07: 45:cd:c5:73:4e:02:d2:ed:9d:7f:ac:32:2f:20:d9:f7:56:55: 19:43:03:c5:a6:b9:6c:50:dc:ae:c7:2b:59:03:02:2e:3b:13: 49:7d:f5:4a:77:bd:25:6a:fd:24:6b:50:6b:03:20:c8:30:8c: 71:f6:db:23:57:cd:09:b1:ab:08:a4:b7:be:cd:cd:f5:64:3f: ea:e4:f2:6e:c1:62:3f:0b:d0:3f:31:a8:61:63:bf:95:54:49: e2:36:d1:a5:3d:5b:fb:31:40:d9:ac:2b:cc:2c:1f:e4:c6:19: 72:29:97:f0:07:2c:58:16:67:c3:71:71:57:55:78:4f:94:e7: b9:c8:2c:3d:11:ba:c7:27:7f:e8:20:1d:58:06:e0:fe:76:ee: 34:6e:e4:e5:f1:78:ca:fc:2c:6c:7c:a1:ca:85:6d:80:24:0a: 7b:d0:22:ac -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB1MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjMwNzIxMTAvBgNVBAUTKEI2NThFRjZCMjc5MjlDN0I3RjVGQjI2Q0I5RUU2QTQx MkNFODVERDQwHhcNMjQxMjAyMjE0MDI4WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzRlMjk0Yy1lOGMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRk+6cFQh7x1FfpsnPKe74rd8S9t0Ky7CNh+kqM3g8kwib2rbsE+Z1WnmJ3s mTcTV548ga4nwhXVvhhFjUrYiDSgbL+BoF9SaJTRBL2zSvu2tDQGwOlZ5l45g1Sg uprdhvFUNgs3bG0du6yG+GFwLd3Bb5gPRD5HSCPiKsz9O99ypB11Jg0er2gXub0A WymrXcvRrtWWimMiX8Nxoy9X7SJ5xl5bdC1vmXrZqJaH1x/u8OZmCd0+fULD21Nk GldSbrcJORm5Pw0B/rLLzM8tq27BNtQufJXkymar+JqbxJfHkMExPy/fV9x+4iNg 0Md1uynCARe8Gs0KrnK9yl+dQwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLNXr3Ge j2ZrIM//6r0ioy+rF6RQMB8GA1UdIwQYMBaAFLZY72snkpx7f1+ybLnuakEs6F3U MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMzA3Mi8wNjlBMDZFNjBC NUMxMUVCOTlBMTc1NjJDNEY5QUUwMi90bGp2YXllU25IdF9YN0pzdWU1cVFTem9Y ZFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL3RsanZheWVTbkh0X1g3SnN1ZTVxUVN6b1hkUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjMwNzIvMDY5QTA2RTYwQjVDMTFFQjk5QTE3NTYyQzRGOUFFMDIvRUZDMENBQjJG ODExMTFFRUI0NjgxQjc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAK5vfAwDQYJKoZIhvcNAQELBQADggEBAHO0G8Niw/makv9+ mf8TeXeyG19aUIGB/tRziaA+uXUrD6tZ+PnBwxFZhN8pApJeAPbQcoCIdeQN87Zt vocOEb5cYLjP5enelHNAe1mrMizXHoJRvZPqx+1qB0XNxXNOAtLtnX+sMi8g2fdW VRlDA8WmuWxQ3K7HK1kDAi47E0l99Up3vSVq/SRrUGsDIMgwjHH22yNXzQmxqwik t77NzfVkP+rk8m7BYj8L0D8xqGFjv5VUSeI20aU9W/sxQNmsK8wsH+TGGXIpl/AH LFgWZ8NxcVdVeE+U57nILD0Ruscnf+ggHVgG4P527jRu5OXxeMr8LGx8ocqFbYAk CnvQIqw= -----END CERTIFICATE-----Generated at Sat Apr 5 08:14:22 2025 by rpki-client