$ rpki-client -vvf rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/EE2F10889B4911EFBBAB9381C4F9AE02.roa File: EE2F10889B4911EFBBAB9381C4F9AE02.roa (raw, json) Hash identifier: YS8WNuWxStKa74t2bwPuweXXnEIkc2Ue/phDde2b0sM= Subject key identifier: 6A:01:38:BD:AB:9C:4E:E3:1E:95:B1:A5:72:17:DD:A6:C0:97:40:D2 Certificate issuer: /CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Certificate serial: 161B Authority key identifier: 7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/EE2F10889B4911EFBBAB9381C4F9AE02.roa Signing time: Tue 05 Nov 2024 07:45:30 +0000 ROA not before: Tue 05 Nov 2024 07:45:30 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 9989 IP address blocks: 27.111.220.0/24 maxlen: 24 118.103.183.0/24 maxlen: 24 2403:b100::/33 maxlen: 33 2403:b100:7f00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:45:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5659 (0x161b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914254C/serialNumber=7B3F60D9B1A28002A07875CAB58A21457073E17F Validity Not Before: Nov 5 07:45:30 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6729cd1a-a62f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:0b:2e:dd:74:33:68:9b:72:8e:aa:cb:61:0d: 73:f0:38:8f:c6:14:43:c8:75:47:7b:ac:d9:fe:3b: 9b:d4:cf:d9:9a:ce:15:e8:49:c8:7f:ce:73:9f:9f: 72:08:59:27:85:36:f8:7d:28:ba:fe:f9:c7:6e:22: b1:ba:b7:bf:24:5a:98:bb:42:ea:92:29:3a:8c:8b: db:75:68:21:db:cc:ce:24:80:37:b0:cd:ae:51:f5: fb:11:d2:44:13:27:e7:d4:d9:eb:69:c3:30:25:99: 52:b7:95:5b:89:ee:61:2f:98:9c:4c:38:2e:49:9e: 77:34:cf:09:4d:a3:b8:a2:c0:72:a3:e0:62:80:cd: 10:16:9c:5c:b3:95:6b:b9:34:a3:ce:54:8d:94:a6: 24:9f:72:40:ea:3d:b8:80:5b:a9:8b:aa:9f:da:29: ff:14:3c:40:8b:3a:6e:ac:42:98:ba:8d:d4:2a:6f: 70:ba:f1:09:7f:fb:dd:03:9b:f6:cf:ef:46:72:2b: 04:8c:0e:4f:32:95:6b:54:e0:9a:f5:26:cc:26:5b: 5d:11:a2:5e:8b:bd:5b:b6:d2:87:c1:01:6a:22:c0: 50:74:6d:c8:83:72:3c:b8:a7:f2:1b:0d:f9:b8:52: e4:1e:ba:ef:e4:3b:e5:20:37:db:fb:1e:fa:d9:e8: 66:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:01:38:BD:AB:9C:4E:E3:1E:95:B1:A5:72:17:DD:A6:C0:97:40:D2 X509v3 Authority Key Identifier: keyid:7B:3F:60:D9:B1:A2:80:02:A0:78:75:CA:B5:8A:21:45:70:73:E1:7F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/ez9g2bGigAKgeHXKtYohRXBz4X8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ez9g2bGigAKgeHXKtYohRXBz4X8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914254C/5A564D4819E811E8B9650C7EC4F9AE02/EE2F10889B4911EFBBAB9381C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 27.111.220.0/24 118.103.183.0/24 IPv6: 2403:b100::/33 Signature Algorithm: sha256WithRSAEncryption 5f:ac:20:56:3c:2c:2d:99:b1:65:af:ea:66:f9:04:79:4b:16: 13:b2:8b:bc:a7:dc:ec:bf:e6:e9:96:fe:cf:e9:59:98:50:e2: d4:20:d3:1a:b1:86:0e:4a:28:88:d9:95:13:17:70:2a:14:3c: c7:ad:e5:44:e1:04:e6:bf:58:5e:c5:f9:fd:0e:71:8e:33:4d: 84:41:28:56:56:4c:4a:15:c0:e0:1c:d4:4a:54:ff:7b:98:52: 32:45:5c:6d:d9:b7:47:5b:52:8b:3d:f5:59:d7:4a:95:83:b8: 0f:ec:5c:20:aa:8a:f0:da:14:26:b2:20:6d:d8:cb:12:29:06: a9:de:26:06:f8:16:fc:c9:3b:eb:b6:5b:16:be:d7:b9:57:3a: 2d:53:d0:ba:47:bf:0e:d6:d0:ca:0f:2e:0e:96:95:01:10:57: 43:0e:42:d9:f1:69:09:6a:5b:ac:b5:5d:38:15:88:4d:83:50: 96:da:0b:90:6b:a7:d2:65:1a:0f:ae:ab:85:6b:c2:60:08:75: 04:2f:99:f6:f2:a8:ce:b3:3e:9d:39:f5:0b:9b:30:c9:88:38: 38:89:e6:66:13:9c:bc:41:6b:f2:a0:3f:e4:7f:9c:c1:43:7c: 0e:43:75:a7:7c:95:26:b6:87:6c:62:d9:91:a0:d4:f3:40:2d: e4:fc:6d:76 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgICFhswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDI1NEMxMTAvBgNVBAUTKDdCM0Y2MEQ5QjFBMjgwMDJBMDc4NzVDQUI1OEEyMTQ1 NzA3M0UxN0YwHhcNMjQxMTA1MDc0NTMwWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzI5Y2QxYS1hNjJmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvwsu3XQzaJtyjqrLYQ1z8DiPxhRDyHVHe6zZ/jub1M/Zms4V6EnIf85zn59y CFknhTb4fSi6/vnHbiKxure/JFqYu0Lqkik6jIvbdWgh28zOJIA3sM2uUfX7EdJE Eyfn1NnracMwJZlSt5Vbie5hL5icTDguSZ53NM8JTaO4osByo+BigM0QFpxcs5Vr uTSjzlSNlKYkn3JA6j24gFupi6qf2in/FDxAizpurEKYuo3UKm9wuvEJf/vdA5v2 z+9GcisEjA5PMpVrVOCa9SbMJltdEaJei71bttKHwQFqIsBQdG3Ig3I8uKfyGw35 uFLkHrrv5DvlIDfb+x762ehmKwIDAQABo4ICqzCCAqcwHQYDVR0OBBYEFGoBOL2r nE7jHpWxpXIX3abAl0DSMB8GA1UdIwQYMBaAFHs/YNmxooACoHh1yrWKIUVwc+F/ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MjU0Qy81QTU2NEQ0ODE5 RTgxMUU4Qjk2NTBDN0VDNEY5QUUwMi9lejlnMmJHaWdBS2dlSFhLdFlvaFJYQno0 WDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V6OWcyYkdpZ0FLZ2VIWEt0WW9oUlhCejRYOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDI1NEMvNUE1NjRENDgxOUU4MTFFOEI5NjUwQzdFQzRGOUFFMDIvRUUyRjEwODg5 QjQ5MTFFRkJCQUI5MzgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNQYIKwYBBQUHAQcBAf8E JjAkMBIEAgABMAwDBAAbb9wDBAB2Z7cwDgQCAAIwCAMGByQDsQAAMA0GCSqGSIb3 DQEBCwUAA4IBAQBfrCBWPCwtmbFlr+pm+QR5SxYTsou8p9zsv+bplv7P6VmYUOLU INMasYYOSiiI2ZUTF3AqFDzHreVE4QTmv1hexfn9DnGOM02EQShWVkxKFcDgHNRK VP97mFIyRVxt2bdHW1KLPfVZ10qVg7gP7Fwgqorw2hQmsiBt2MsSKQap3iYG+Bb8 yTvrtlsWvte5VzotU9C6R78O1tDKDy4OlpUBEFdDDkLZ8WkJalustV04FYhNg1CW 2guQa6fSZRoPrquFa8JgCHUEL5n28qjOsz6dOfULmzDJiDg4ieZmE5y8QWvyoD/k f5zBQ3wOQ3WnfJUmtodsYtmRoNTzQC3k/G12 -----END CERTIFICATE-----Generated at Wed Nov 20 19:05:16 2024 by rpki-client on console-ams.rpki-client.org