$ rpki-client -vvf rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EDA092C2A72B11EDAC3DA56CC4F9AE02.roa File: EDA092C2A72B11EDAC3DA56CC4F9AE02.roa (raw, json) Hash identifier: 9LXbAzt0/EsGKbz7o7F/OwWTWmMVBzVo73DTWxXTguw= Subject key identifier: 11:34:A3:9E:53:CE:BB:2A:8E:23:7D:19:5B:87:28:FB:70:80:D7:8B Certificate issuer: /CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Certificate serial: 0622 Authority key identifier: 21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EDA092C2A72B11EDAC3DA56CC4F9AE02.roa Signing time: Mon 14 Oct 2024 22:52:32 +0000 ROA not before: Mon 14 Oct 2024 22:52:32 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 56304 IP address blocks: 131.203.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1570 (0x622) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91406AA/serialNumber=218A8AA050267B0805E3FDC8A939BF8FBCB00101 Validity Not Before: Oct 14 22:52:32 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=670da0b0-f614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:85:f5:7d:83:87:76:ac:2d:a0:e3:21:ac:eb: 27:c2:17:16:a1:5d:4b:f7:18:eb:76:e8:74:82:d5: 2e:96:0c:c4:bf:23:7e:b3:6e:89:10:f3:e2:73:c7: 4a:ba:8f:f3:60:46:6d:3c:96:42:3c:0b:14:4a:5f: 92:9b:e0:35:ba:f6:99:5e:7c:2c:19:21:a6:2b:3c: 58:ce:f8:2e:46:f3:1e:9c:df:10:dc:8f:d4:41:a4: 20:7f:9f:8f:8d:ae:21:b0:8b:46:be:55:e0:4b:c1: 1b:60:42:91:b8:d8:24:c4:3f:c2:a9:ce:0c:6b:a4: 17:f6:5d:ea:d8:57:18:60:af:af:31:4c:d9:fc:58: 16:ee:49:12:a1:41:c4:e7:50:d6:23:ee:74:1c:16: 28:4d:9f:a3:0a:7c:93:f1:da:33:f5:50:7a:4a:5e: 5b:1e:69:8c:4e:38:ba:8b:3c:de:9f:bd:1c:95:e2: 4a:8f:71:35:ca:59:b9:0a:14:ff:01:8d:10:da:8a: 08:12:9b:d2:5b:bf:76:6f:38:cf:18:ab:9d:d5:9e: 81:f6:b6:5e:20:21:e1:c8:17:72:fb:ad:22:92:36: 38:e3:8c:1e:3c:a6:c8:ad:ed:ba:8d:7b:9e:4a:b7: d5:f4:6d:25:a2:e3:d2:6c:48:f6:93:52:02:4f:cb: c0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:34:A3:9E:53:CE:BB:2A:8E:23:7D:19:5B:87:28:FB:70:80:D7:8B X509v3 Authority Key Identifier: keyid:21:8A:8A:A0:50:26:7B:08:05:E3:FD:C8:A9:39:BF:8F:BC:B0:01:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/IYqKoFAmewgF4_3IqTm_j7ywAQE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/IYqKoFAmewgF4_3IqTm_j7ywAQE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91406AA/8658E46686C111EBBAB3184BC4F9AE02/EDA092C2A72B11EDAC3DA56CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 131.203.63.0/24 Signature Algorithm: sha256WithRSAEncryption 93:a0:2c:09:95:88:e8:15:88:25:94:62:43:21:b2:d3:f5:e4: 54:36:94:ad:b3:ed:5d:32:80:68:7c:58:a0:cf:0e:f4:c6:80: 4a:8c:2a:3b:d9:33:9e:ff:bc:64:16:df:10:15:a4:9a:79:88: 69:c5:16:bc:f5:8c:43:d0:46:c1:37:b1:9d:51:00:86:32:67: f7:df:ea:07:3a:9e:89:94:57:3a:0b:00:82:d1:15:7e:e3:7d: 8b:56:18:fd:ac:1d:11:96:e7:47:29:bd:a7:9d:e4:2b:48:6e: 1a:c2:78:cb:8a:11:4a:00:7c:ae:0b:16:83:88:53:38:8b:41: 47:cc:60:79:65:3a:53:d8:78:7c:35:a5:bf:81:fb:a1:c2:69: 95:b3:e0:b9:01:6f:c2:a1:39:d8:7b:5a:1a:d2:c3:04:c9:a0: 27:46:4a:f6:aa:4d:3b:45:ad:df:09:af:21:5f:26:45:9d:49: 9c:20:a9:a7:0c:79:bf:6d:80:db:08:bc:01:31:9c:9d:b9:88: 06:b8:7a:35:24:7c:d0:9f:ed:ed:19:68:d8:f3:0d:ef:a4:1f: 73:19:49:35:e2:ce:26:4b:4b:b9:8d:b9:aa:e7:a8:1e:b6:70: f1:d5:cd:78:30:e6:05:61:71:78:a1:c0:e8:86:75:f6:34:a1: a3:44:80:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA2QUExMTAvBgNVBAUTKDIxOEE4QUEwNTAyNjdCMDgwNUUzRkRDOEE5MzlCRjhG QkNCMDAxMDEwHhcNMjQxMDE0MjI1MjMyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzBkYTBiMC1mNjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6oX1fYOHdqwtoOMhrOsnwhcWoV1L9xjrduh0gtUulgzEvyN+s26JEPPic8dK uo/zYEZtPJZCPAsUSl+Sm+A1uvaZXnwsGSGmKzxYzvguRvMenN8Q3I/UQaQgf5+P ja4hsItGvlXgS8EbYEKRuNgkxD/Cqc4Ma6QX9l3q2FcYYK+vMUzZ/FgW7kkSoUHE 51DWI+50HBYoTZ+jCnyT8doz9VB6Sl5bHmmMTji6izzen70cleJKj3E1ylm5ChT/ AY0Q2ooIEpvSW792bzjPGKud1Z6B9rZeICHhyBdy+60ikjY444wePKbIre26jXue SrfV9G0louPSbEj2k1ICT8vAxwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBE0o55T zrsqjiN9GVuHKPtwgNeLMB8GA1UdIwQYMBaAFCGKiqBQJnsIBeP9yKk5v4+8sAEB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDZBQS84NjU4RTQ2Njg2 QzExMUVCQkFCMzE4NEJDNEY5QUUwMi9JWXFLb0ZBbWV3Z0Y0XzNJcVRtX2o3eXdB UUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0lZcUtvRkFtZXdnRjRfM0lxVG1fajd5d0FRRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA2QUEvODY1OEU0NjY4NkMxMTFFQkJBQjMxODRCQzRGOUFFMDIvRURBMDkyQzJB NzJCMTFFREFDM0RBNTZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACDyz8wDQYJKoZIhvcNAQELBQADggEBAJOgLAmViOgViCWU YkMhstP15FQ2lK2z7V0ygGh8WKDPDvTGgEqMKjvZM57/vGQW3xAVpJp5iGnFFrz1 jEPQRsE3sZ1RAIYyZ/ff6gc6nomUVzoLAILRFX7jfYtWGP2sHRGW50cpvaed5CtI bhrCeMuKEUoAfK4LFoOIUziLQUfMYHllOlPYeHw1pb+B+6HCaZWz4LkBb8KhOdh7 WhrSwwTJoCdGSvaqTTtFrd8JryFfJkWdSZwgqacMeb9tgNsIvAExnJ25iAa4ejUk fNCf7e0ZaNjzDe+kH3MZSTXiziZLS7mNuarnqB62cPHVzXgw5gVhcXihwOiGdfY0 oaNEgCA= -----END CERTIFICATE-----Generated at Wed Nov 20 23:11:44 2024 by rpki-client on console-fra.rpki-client.org