$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa File: 1DCB662A3DF211EB81F4CE73C4F9AE02.roa (raw, json) Hash identifier: 4XthOzAgW9UsDg6fNNOwnO8eVqVTNxUxGbGHX+Su5Ds= Subject key identifier: B4:01:8E:8A:FC:08:E5:1B:46:74:8A:79:CD:0B:FA:CE:80:26:7F:A8 Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Certificate serial: 157F Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa Signing time: Fri 24 May 2024 17:25:58 +0000 ROA not before: Fri 24 May 2024 17:25:58 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 0 IP address blocks: 27.111.228.0/22 maxlen: 24 202.79.198.0/24 maxlen: 24 202.79.199.0/24 maxlen: 24 202.79.200.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5503 (0x157f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Validity Not Before: May 24 17:25:58 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6650cda6-5bd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:53:40:d7:ad:35:bb:34:fa:ef:0c:77:d2:2c: 66:2b:55:fe:66:c8:32:b9:74:de:68:f3:66:68:8c: d9:bb:48:a7:ee:30:ec:33:08:bf:4c:8d:c4:a6:f6: 6a:05:49:27:28:28:42:40:00:c1:67:2f:11:76:d7: 98:02:a5:97:c3:1b:03:aa:5a:5c:ec:17:40:d0:e7: df:e4:19:42:60:e6:8f:f2:41:d3:91:2e:89:57:f5: 58:fd:25:14:ba:ba:a6:6c:34:18:46:80:76:9b:99: 77:dd:b5:be:80:b2:ef:57:93:f3:f1:ac:fe:22:7d: 6c:e2:32:68:0c:cc:cc:c6:b9:76:5f:75:bb:75:d2: 22:ee:f2:0f:3f:a5:c3:31:5b:ba:7d:71:6d:37:93: ef:d3:ee:be:2b:a7:3b:08:cf:c7:87:f9:55:b1:04: 48:9e:2e:de:cb:c6:e8:e5:9f:23:be:3c:54:37:40: 69:4f:4d:08:92:c2:48:7e:c8:32:c3:b0:82:f0:7b: 1d:28:72:5c:d8:1d:9b:3d:8f:c9:e2:4d:7f:2e:41: 38:f3:7e:47:ec:59:74:1f:0e:40:da:76:1d:79:8a: bb:13:d8:ad:da:47:d3:d4:50:04:1c:69:42:33:bd: ff:bc:95:f6:51:d4:e6:40:d9:b9:bb:95:76:24:e2: 0b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:01:8E:8A:FC:08:E5:1B:46:74:8A:79:CD:0B:FA:CE:80:26:7F:A8 X509v3 Authority Key Identifier: keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/1DCB662A3DF211EB81F4CE73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.228.0/22 202.79.198.0-202.79.200.255 Signature Algorithm: sha256WithRSAEncryption bb:cc:a6:1a:ad:09:7a:e4:15:b4:76:2b:9d:6f:6a:bd:1a:a0: 26:9c:4e:7c:0a:4c:71:04:d7:35:33:dc:b0:94:14:73:d5:97: 99:f2:c6:c6:21:1f:0e:65:e4:85:67:93:1d:b0:0f:59:d3:df: 6a:8e:f7:14:6e:40:30:5d:dd:a2:1a:7c:0c:3e:7d:61:0f:78: 05:a6:8f:af:6b:d8:d9:1f:4f:a5:32:2a:2c:8e:47:5a:25:03: bc:9d:c9:65:72:36:e4:d6:e7:8f:dc:8f:a0:32:a4:82:cc:49: 29:4a:4c:21:c3:c1:c2:a4:c7:91:43:71:56:98:78:e9:ae:7a: d8:fa:5c:5e:6a:6e:f0:4a:10:63:81:9d:b1:76:8e:d4:90:cc: 57:ba:48:18:5d:fc:f3:b7:f8:f7:f6:49:6f:04:05:59:23:6e: cd:90:cf:c1:35:4e:5f:04:26:71:be:65:ec:df:5b:0f:d5:d7: e6:8f:4b:cc:69:d6:6a:78:4d:d5:28:8d:74:5b:b7:30:44:96: 50:a9:8f:ad:dd:48:34:7d:06:29:62:ec:47:61:b5:73:c8:cd: 25:f2:e4:ae:1f:0d:25:ce:ce:a2:ed:62:e6:26:7d:43:aa:c6: c2:b4:ae:23:92:13:05:59:0b:99:81:e3:10:a3:ff:c3:ac:ba: 71:c2:d8:a2 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICFX8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1NEMxMTAvBgNVBAUTKDdCM0Y2MEQ5QjFBMjgwMDJBMDc4NzVDQUI1OEEyMTQ1 NzA3M0UxN0YwHhcNMjQwNTI0MTcyNTU4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUwY2RhNi01YmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFNA1601uzT67wx30ixmK1X+ZsgyuXTeaPNmaIzZu0in7jDsMwi/TI3EpvZq BUknKChCQADBZy8RdteYAqWXwxsDqlpc7BdA0Off5BlCYOaP8kHTkS6JV/VY/SUU urqmbDQYRoB2m5l33bW+gLLvV5Pz8az+In1s4jJoDMzMxrl2X3W7ddIi7vIPP6XD MVu6fXFtN5Pv0+6+K6c7CM/Hh/lVsQRIni7ey8bo5Z8jvjxUN0BpT00IksJIfsgy w7CC8HsdKHJc2B2bPY/J4k1/LkE4835H7Fl0Hw5A2nYdeYq7E9it2kfT1FAEHGlC M73/vJX2UdTmQNm5u5V2JOILhwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFLQBjor8 COUbRnSKec0L+s6AJn+oMB8GA1UdIwQYMBaAFHs/YNmxooACoHh1yrWKIUVwc+F/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjU0Qy81QTU2NEQ0ODE5 RTgxMUU4Qjk2NTBDN0VDNEY5QUUwMi9lejlnMmJHaWdBS2dlSFhLdFlvaFJYQno0 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V6OWcyYkdpZ0FLZ2VIWEt0WW9oUlhCejRYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI1NEMvNUE1NjRENDgxOUU4MTFFOEI5NjUwQzdFQzRGOUFFMDIvMURDQjY2MkEz REYyMTFFQjgxRjRDRTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAIbb+QwDAMEAcpPxgMEAMpPyDANBgkqhkiG9w0BAQsFAAOC AQEAu8ymGq0JeuQVtHYrnW9qvRqgJpxOfApMcQTXNTPcsJQUc9WXmfLGxiEfDmXk hWeTHbAPWdPfao73FG5AMF3dohp8DD59YQ94BaaPr2vY2R9PpTIqLI5HWiUDvJ3J ZXI25Nbnj9yPoDKkgsxJKUpMIcPBwqTHkUNxVph46a562PpcXmpu8EoQY4GdsXaO 1JDMV7pIGF3887f49/ZJbwQFWSNuzZDPwTVOXwQmcb5l7N9bD9XX5o9LzGnWanhN 1SiNdFu3MESWUKmPrd1INH0GKWLsR2G1c8jNJfLkrh8NJc7Oou1i5iZ9Q6rGwrSu I5ITBVkLmYHjEKP/w6y6ccLYog== -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:16 2024 by rpki-client on console-ams.rpki-client.org