$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/ECE5D100BBA411EAB345A780C4F9AE02.roa File: ECE5D100BBA411EAB345A780C4F9AE02.roa (raw, json) Hash identifier: s24eGTk9qtglZvLWCbwWFoNHeLNAj6hVXda2Rlgfp08= Subject key identifier: C1:CD:94:16:07:85:8E:D7:48:8D:A3:42:7F:1B:F5:AC:86:EF:4C:13 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1D22 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/ECE5D100BBA411EAB345A780C4F9AE02.roa Signing time: Tue 02 Jan 2024 16:54:18 +0000 ROA not before: Tue 02 Jan 2024 16:54:18 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 137702 IP address blocks: 180.96.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7458 (0x1d22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Validity Not Before: Jan 2 16:54:18 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65943fb9-533d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:69:fc:4e:ca:b2:eb:90:e7:a9:f4:b7:4e:dd: eb:4e:a5:55:62:d8:ed:fb:8f:43:0c:85:46:ef:86: 62:7f:c5:1f:2b:26:f9:77:98:67:40:c4:09:f7:c8: c4:a9:5d:99:a2:26:eb:ed:01:22:1c:bd:f5:5b:a6: d2:13:e1:72:7e:67:d1:99:44:f4:01:bc:eb:eb:e1: a7:12:65:a5:61:94:b8:7f:bb:5c:7d:54:69:ad:d1: d6:2f:5a:5f:33:44:96:b0:c2:6d:ec:76:d3:b3:99: 42:02:b4:82:3d:ca:ee:b0:74:9a:5c:02:86:a6:74: 87:c8:44:0d:da:7e:df:b0:34:4d:d2:89:fa:db:3e: bb:85:f1:52:9d:0a:88:78:27:6e:f9:24:85:6f:f7: 03:f6:9f:bf:f7:4b:f4:b0:e8:4c:70:82:d7:f9:b5: 2c:64:5f:39:90:3c:ad:2a:c7:4a:83:1f:10:8d:45: 93:b7:a5:43:7c:4b:16:b7:69:1e:b1:dd:23:43:9f: 97:c5:87:f4:5f:34:df:ca:f3:c5:3e:f6:48:90:fe: c3:62:b3:7f:b8:d5:e6:da:e5:35:e3:e5:dc:07:44: 39:55:5d:19:3a:71:83:64:18:41:6f:90:2d:9c:24: b2:d3:b5:44:28:63:98:66:d2:27:be:5a:1d:94:e9: 1f:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:CD:94:16:07:85:8E:D7:48:8D:A3:42:7F:1B:F5:AC:86:EF:4C:13 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/ECE5D100BBA411EAB345A780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.96.10.0/24 Signature Algorithm: sha256WithRSAEncryption 91:f3:88:e0:c7:e4:54:4f:4d:b3:a1:c8:17:7f:27:77:b6:21: 26:33:bc:19:51:b1:47:13:69:16:fe:c8:c1:98:e5:d7:05:9b: c5:d4:b5:a7:86:04:d2:0b:39:36:54:c4:fc:3b:98:a4:29:17: 69:26:68:6e:26:56:91:c6:dc:85:59:05:04:3c:3a:01:9e:88: ba:7e:b3:f4:88:73:d5:81:63:cc:60:8a:24:b9:f4:2a:b3:8f: 6e:52:88:aa:57:72:1f:51:e3:41:19:a4:8e:e6:1f:7e:77:8b: 6f:c9:47:9c:53:fc:0d:4f:c8:16:3f:73:e4:4d:04:53:49:89: eb:fb:d5:28:74:03:11:9c:7f:97:0a:20:a0:76:ed:7c:f9:0c: fe:3c:ba:d6:e1:52:1a:85:f5:75:48:4e:92:dd:46:87:bb:c1: ae:0f:dd:26:72:c7:04:ad:a1:6f:6f:e3:25:26:e4:ff:41:ca: 61:a6:46:ff:6d:9a:5a:ff:e4:51:44:71:4e:c5:bd:c4:bc:9a: 26:3c:68:4d:a0:b0:4e:b4:83:59:84:96:1e:fe:06:a9:51:2e: 3d:fa:de:60:78:8b:31:6b:52:07:dc:e9:29:9f:41:b7:cf:2a: 52:9f:01:0b:e9:3e:85:ac:01:8e:3b:2f:9e:4a:36:58:aa:d0: a8:30:fc:f4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwMTAyMTY1NDE4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0M2ZiOS01MzNkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlWn8Tsqy65DnqfS3Tt3rTqVVYtjt+49DDIVG74Zif8UfKyb5d5hnQMQJ98jE qV2Zoibr7QEiHL31W6bSE+FyfmfRmUT0Abzr6+GnEmWlYZS4f7tcfVRprdHWL1pf M0SWsMJt7HbTs5lCArSCPcrusHSaXAKGpnSHyEQN2n7fsDRN0on62z67hfFSnQqI eCdu+SSFb/cD9p+/90v0sOhMcILX+bUsZF85kDytKsdKgx8QjUWTt6VDfEsWt2ke sd0jQ5+XxYf0XzTfyvPFPvZIkP7DYrN/uNXm2uU14+XcB0Q5VV0ZOnGDZBhBb5At nCSy07VEKGOYZtInvlodlOkfJQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMHNlBYH hY7XSI2jQn8b9ayG70wTMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRUNFNUQxMDBC QkE0MTFFQUIzNDVBNzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC0YAowDQYJKoZIhvcNAQELBQADggEBAJHziODH5FRPTbOh yBd/J3e2ISYzvBlRsUcTaRb+yMGY5dcFm8XUtaeGBNILOTZUxPw7mKQpF2kmaG4m VpHG3IVZBQQ8OgGeiLp+s/SIc9WBY8xgiiS59Cqzj25SiKpXch9R40EZpI7mH353 i2/JR5xT/A1PyBY/c+RNBFNJiev71Sh0AxGcf5cKIKB27Xz5DP48utbhUhqF9XVI TpLdRoe7wa4P3SZyxwStoW9v4yUm5P9BymGmRv9tmlr/5FFEcU7FvcS8miY8aE2g sE60g1mElh7+BqlRLj363mB4izFrUgfc6SmfQbfPKlKfAQvpPoWsAY47L55KNliq 0Kgw/PQ= -----END CERTIFICATE-----Generated at Sat May 18 17:37:32 2024 by rpki-client on console-fra.rpki-client.org