$ rpki-client -vvf rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/E6EBBE4A64CA11EE97188C5DC4F9AE02.roa File: E6EBBE4A64CA11EE97188C5DC4F9AE02.roa (raw, json) Hash identifier: FPmK/ZWN45BRsvOMGslxfKU8yKPfXq+QEtu+U3CAeqM= Subject key identifier: 64:EA:A3:DC:3B:C8:7D:48:D9:F9:AE:27:63:12:CE:17:6C:FE:9E:C5 Certificate issuer: /CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Certificate serial: 087C Authority key identifier: 70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/E6EBBE4A64CA11EE97188C5DC4F9AE02.roa Signing time: Mon 28 Oct 2024 20:51:00 +0000 ROA not before: Mon 28 Oct 2024 20:51:00 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 55745 IP address blocks: 117.55.192.0/24 maxlen: 24 117.55.193.0/24 maxlen: 24 2400:5180::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:28:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2172 (0x87c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913CA4B/serialNumber=709210CF761EC67FB394EA5896A5C647B305EEF1 Validity Not Before: Oct 28 20:51:00 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671ff934-5a05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4a:cd:6e:8a:96:ec:f7:e0:94:3d:e9:f1:d1: cf:cc:67:56:b1:10:67:40:0f:96:e1:bb:cc:75:18: 6d:08:9c:65:ce:d1:8c:c0:e6:ed:e4:af:02:bf:17: 4b:1a:89:6f:3c:75:7a:c0:7b:61:1d:16:e4:53:01: a1:f9:72:8e:84:aa:e1:f8:cb:ec:7c:17:cc:d3:39: 95:3e:78:1f:1f:f2:19:00:6b:60:4f:84:e2:50:e6: 13:20:e5:31:59:50:07:ca:c4:2c:ed:0e:bb:23:55: e1:5f:6e:62:66:27:de:81:5f:d0:aa:e0:12:44:7e: 60:86:c4:57:aa:fa:0c:4e:c8:d3:f2:54:74:24:44: 7f:15:96:c4:5b:be:da:a7:cb:65:e7:e4:ae:d8:41: ba:c9:84:45:ea:9f:95:6e:4d:4c:e2:09:79:40:42: 5e:a7:6d:dc:0c:eb:57:80:30:e6:34:4f:9d:b9:c0: 34:6d:73:de:70:68:ce:02:7b:24:12:2e:5b:2b:7c: 4d:36:c2:13:9c:ed:3a:6e:28:35:ac:05:10:ef:a5: 01:dc:98:c5:d2:a7:51:a1:ed:21:ba:b3:14:7b:14: 8e:c2:b4:a0:44:d0:b8:d0:1f:80:fe:5a:e6:03:91: ab:b2:c0:71:5f:52:09:96:4b:82:7e:05:e2:a9:04: 9b:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:EA:A3:DC:3B:C8:7D:48:D9:F9:AE:27:63:12:CE:17:6C:FE:9E:C5 X509v3 Authority Key Identifier: keyid:70:92:10:CF:76:1E:C6:7F:B3:94:EA:58:96:A5:C6:47:B3:05:EE:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/cJIQz3Yexn-zlOpYlqXGR7MF7vE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cJIQz3Yexn-zlOpYlqXGR7MF7vE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913CA4B/DC2F0432BF8011EA96FE4A68C4F9AE02/E6EBBE4A64CA11EE97188C5DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.55.192.0/23 IPv6: 2400:5180::/32 Signature Algorithm: sha256WithRSAEncryption 98:7a:a7:c1:26:f3:a0:16:40:bc:d7:6b:ee:22:da:d4:cf:33: 3f:51:8a:2a:ab:d8:39:db:69:41:d3:d5:c4:1c:0c:3d:15:86: 9b:05:f5:43:4f:88:16:43:1e:21:7a:67:6f:6f:d5:16:31:be: af:a1:86:d5:25:40:0b:bc:1d:dd:9f:ed:1f:ed:cd:02:79:c4: 77:65:88:e2:69:f0:84:27:19:f6:f2:e2:06:9e:f9:ce:5e:c4: d3:45:06:89:3d:68:a6:9b:1e:a8:b5:05:f0:ff:25:92:04:81: f7:06:96:6e:00:c7:82:ea:b5:bc:cf:94:78:13:c9:dd:30:ac: d6:5a:7d:21:4c:b7:79:de:21:0b:28:81:b1:bc:4d:a1:a4:94: 88:3f:ac:be:7a:78:02:6b:12:4a:90:d0:22:78:a0:8f:65:c4: 64:eb:77:45:1a:6d:65:50:5f:40:13:7a:0a:ea:7d:cd:f0:95: c2:a5:61:73:18:d4:60:e3:68:22:be:0b:38:75:a7:16:92:3a: aa:f3:d3:8f:7c:e1:d1:f3:54:7b:c4:0e:f3:7c:b7:10:2c:b1: 84:05:30:11:26:de:7f:08:0d:7b:a8:b7:1d:dd:7e:b0:95:7d: 44:45:03:f3:13:88:a5:d8:36:8b:fc:c8:68:47:25:72:b3:c6: a8:75:59:fa -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCHwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0NBNEIxMTAvBgNVBAUTKDcwOTIxMENGNzYxRUM2N0ZCMzk0RUE1ODk2QTVDNjQ3 QjMwNUVFRjEwHhcNMjQxMDI4MjA1MTAwWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFmZjkzNC01YTA1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv0rNboqW7PfglD3p8dHPzGdWsRBnQA+W4bvMdRhtCJxlztGMwObt5K8CvxdL GolvPHV6wHthHRbkUwGh+XKOhKrh+MvsfBfM0zmVPngfH/IZAGtgT4TiUOYTIOUx WVAHysQs7Q67I1XhX25iZifegV/QquASRH5ghsRXqvoMTsjT8lR0JER/FZbEW77a p8tl5+Su2EG6yYRF6p+Vbk1M4gl5QEJep23cDOtXgDDmNE+ducA0bXPecGjOAnsk Ei5bK3xNNsITnO06big1rAUQ76UB3JjF0qdRoe0hurMUexSOwrSgRNC40B+A/lrm A5GrssBxX1IJlkuCfgXiqQSb2QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFGTqo9w7 yH1I2fmuJ2MSzhds/p7FMB8GA1UdIwQYMBaAFHCSEM92HsZ/s5TqWJalxkezBe7x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQ0E0Qi9EQzJGMDQzMkJG ODAxMUVBOTZGRTRBNjhDNEY5QUUwMi9jSklRejNZZXhuLXpsT3BZbHFYR1I3TUY3 dkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NKSVF6M1lleG4temxPcFlscVhHUjdNRjd2RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0NBNEIvREMyRjA0MzJCRjgwMTFFQTk2RkU0QTY4QzRGOUFFMDIvRTZFQkJFNEE2 NENBMTFFRTk3MTg4QzVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAF1N8AwDQQCAAIwBwMFACQAUYAwDQYJKoZIhvcNAQELBQAD ggEBAJh6p8Em86AWQLzXa+4i2tTPMz9Riiqr2DnbaUHT1cQcDD0VhpsF9UNPiBZD HiF6Z29v1RYxvq+hhtUlQAu8Hd2f7R/tzQJ5xHdliOJp8IQnGfby4gae+c5exNNF Bok9aKabHqi1BfD/JZIEgfcGlm4Ax4LqtbzPlHgTyd0wrNZafSFMt3neIQsogbG8 TaGklIg/rL56eAJrEkqQ0CJ4oI9lxGTrd0UabWVQX0ATegrqfc3wlcKlYXMY1GDj aCK+Czh1pxaSOqrz04984dHzVHvEDvN8txAssYQFMBEm3n8IDXuotx3dfrCVfURF A/MTiKXYNov8yGhHJXKzxqh1Wfo= -----END CERTIFICATE-----Generated at Wed Nov 20 21:52:37 2024 by rpki-client on console-fra.rpki-client.org