$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/E1E1C946E01611ED8385DA62C4F9AE02.roa File: E1E1C946E01611ED8385DA62C4F9AE02.roa (raw, json) Hash identifier: o0Ry10/Dwg/gxho42K86zqrhGF78WdELGBJAljFgnsM= Subject key identifier: AB:46:EF:4E:F7:49:AB:8E:6A:F1:35:A6:DE:E8:6C:C9:E7:4F:D5:9F Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E2B Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/E1E1C946E01611ED8385DA62C4F9AE02.roa Signing time: Fri 20 Sep 2024 16:35:00 +0000 ROA not before: Fri 20 Sep 2024 16:35:00 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 4835 IP address blocks: 124.116.158.0/23 maxlen: 23 125.76.224.0/19 maxlen: 24 218.30.19.0/24 maxlen: 24 218.30.20.0/24 maxlen: 24 218.30.21.0/24 maxlen: 24 218.30.22.0/24 maxlen: 24 218.30.23.0/24 maxlen: 24 218.30.24.0/24 maxlen: 24 218.30.66.0/24 maxlen: 24 218.30.67.0/24 maxlen: 24 218.30.68.0/22 maxlen: 22 218.30.72.0/22 maxlen: 22 218.30.72.0/24 maxlen: 24 218.30.73.0/24 maxlen: 24 218.30.74.0/24 maxlen: 24 218.30.76.0/22 maxlen: 23 218.30.80.0/24 maxlen: 24 218.30.81.0/24 maxlen: 24 218.30.82.0/24 maxlen: 24 218.30.83.0/24 maxlen: 24 218.30.85.0/24 maxlen: 24 218.30.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 06:14:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7723 (0x1e2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Sep 20 16:35:00 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda433-2dc5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ac:6e:4f:21:8c:0f:76:31:bc:75:64:bd:98: e2:83:bb:69:2f:1c:b8:b8:84:89:49:d2:6e:96:85: 1d:3b:5b:01:d9:d1:48:fc:c8:0f:3f:72:74:94:20: b7:52:a9:3f:06:48:32:38:cf:e4:48:84:2d:12:44: 67:23:0e:17:ba:c3:e5:53:92:03:68:06:6e:79:08: 89:b0:53:d7:ce:b9:53:cf:2f:39:09:5f:ef:01:7f: a4:32:f5:9e:c7:8d:19:f4:65:4b:ef:8a:5a:5e:0d: 0d:a4:b9:b7:1e:fb:1b:9d:65:99:aa:c2:6f:64:02: 21:3a:1a:3f:8b:fd:de:b7:1f:b3:a6:58:bd:57:4c: d9:8d:51:56:dd:70:2a:20:ad:c7:9b:ff:0f:8d:d0: fa:eb:43:04:b4:b6:ed:83:fb:bb:bf:48:48:cb:30: e3:18:18:a5:c0:f7:a9:7d:c7:1b:89:6f:20:df:df: 04:13:7b:1a:a2:40:49:45:ae:3c:23:51:04:2e:eb: ff:e4:91:7c:a3:ad:b0:ff:ae:83:29:10:ff:4e:a4: 1d:70:41:0f:d4:f6:45:9d:44:04:a6:af:46:a1:8f: 07:c6:aa:a8:f1:9e:5b:83:26:64:e2:30:52:66:98: d2:47:1d:68:b2:33:44:e3:96:04:7e:d8:8e:2c:e6: 6b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:46:EF:4E:F7:49:AB:8E:6A:F1:35:A6:DE:E8:6C:C9:E7:4F:D5:9F X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/E1E1C946E01611ED8385DA62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.116.158.0/23 125.76.224.0/19 218.30.19.0-218.30.24.255 218.30.66.0-218.30.83.255 218.30.85.0/24 218.30.88.0/22 Signature Algorithm: sha256WithRSAEncryption 16:78:26:a8:7d:49:4d:cc:8f:60:38:ae:b9:2a:2a:c7:1d:25: 60:dc:0f:be:af:1e:b6:3c:10:00:37:21:bd:f1:22:32:da:8f: 41:34:1e:21:ab:ca:86:8b:85:58:ca:b1:e5:00:34:10:58:8c: ee:2b:33:87:e4:de:2b:16:7a:30:73:67:4d:b1:5c:73:48:b4: 43:d8:bd:73:72:1a:37:dd:0f:02:e3:a4:7d:ac:62:09:d5:1a: dd:33:5d:c5:8f:6e:1d:89:00:21:f3:cc:a7:cc:8b:2f:b5:09: e4:9e:11:12:40:99:b0:a1:10:6e:f2:56:83:71:a3:ad:1e:40: b8:7b:aa:40:a8:84:ba:fd:33:71:b8:3e:cf:30:4a:a2:b0:aa: a3:5f:5b:0d:74:86:10:43:f3:7b:fa:57:49:cb:78:aa:bf:de: 80:39:fa:0b:47:96:6f:28:a3:6e:04:76:e0:63:b5:5b:b7:fd: e5:62:34:c4:37:ad:b2:5b:25:b6:42:a7:2e:23:90:7a:6c:ff: 81:a3:02:e6:a2:7b:68:bf:3f:1b:16:9d:02:a7:8c:15:1f:64: 1a:81:25:6f:dc:1e:da:aa:ee:33:0a:0d:f4:bf:d2:4e:0f:88: b5:a6:6c:30:ea:3c:cd:37:44:e6:4c:58:e7:e1:01:94:f9:37: c4:5c:9a:17 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICHiswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNTAwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQzMy0yZGM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKxuTyGMD3YxvHVkvZjig7tpLxy4uISJSdJuloUdO1sB2dFI/MgPP3J0lCC3 Uqk/BkgyOM/kSIQtEkRnIw4XusPlU5IDaAZueQiJsFPXzrlTzy85CV/vAX+kMvWe x40Z9GVL74paXg0NpLm3HvsbnWWZqsJvZAIhOho/i/3etx+zpli9V0zZjVFW3XAq IK3Hm/8PjdD660MEtLbtg/u7v0hIyzDjGBilwPepfccbiW8g398EE3saokBJRa48 I1EELuv/5JF8o62w/66DKRD/TqQdcEEP1PZFnUQEpq9GoY8Hxqqo8Z5bgyZk4jBS ZpjSRx1osjNE45YEftiOLOZriwIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFKtG7073 SauOavE1pt7obMnnT9WfMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRTFFMUM5NDZF MDE2MTFFRDgzODVEQTYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgABMDQDBAF8dJ4DBAV9TOAwDAMEANoeEwMEANoeGDAMAwQB2h5CAwQC 2h5QAwQA2h5VAwQC2h5YMA0GCSqGSIb3DQEBCwUAA4IBAQAWeCaofUlNzI9gOK65 KirHHSVg3A++rx62PBAANyG98SIy2o9BNB4hq8qGi4VYyrHlADQQWIzuKzOH5N4r Fnowc2dNsVxzSLRD2L1zcho33Q8C46R9rGIJ1RrdM13Fj24diQAh88ynzIsvtQnk nhESQJmwoRBu8laDcaOtHkC4e6pAqIS6/TNxuD7PMEqisKqjX1sNdIYQQ/N7+ldJ y3iqv96AOfoLR5ZvKKNuBHbgY7Vbt/3lYjTEN62yWyW2QqcuI5B6bP+BowLmonto vz8bFp0Cp4wVH2QagSVv3B7aqu4zCg30v9JOD4i1pmww6jzNN0TmTFjn4QGU+TfE XJoX -----END CERTIFICATE-----Generated at Fri Nov 22 09:31:42 2024 by rpki-client on console-fra.rpki-client.org