$ rpki-client -vvf rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/ECE5D100BBA411EAB345A780C4F9AE02.roa File: ECE5D100BBA411EAB345A780C4F9AE02.roa (raw, json) Hash identifier: bigKPvPIUDwHxONb1Gr8dDYsiNQ0PtvvH9Y2uewhgDg= Subject key identifier: 58:A9:59:8D:46:B7:49:81:5B:C5:96:89:06:C3:4B:A6:8D:36:13:33 Certificate issuer: /CN=A914EAE4/serialNumber=AD56B67187A98BA314084405797BD9656E8AC8BA Certificate serial: 1E17 Authority key identifier: AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/ECE5D100BBA411EAB345A780C4F9AE02.roa Signing time: Fri 20 Sep 2024 16:34:42 +0000 ROA not before: Fri 20 Sep 2024 16:34:42 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 137702 IP address blocks: 180.96.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7703 (0x1e17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EAE4 Validity Not Before: Sep 20 16:34:42 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66eda421-a645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:10:55:95:1c:9b:9f:4f:50:28:8c:d2:f0:77: 5d:85:d3:4d:c1:c3:90:15:f5:2b:c5:5c:f0:01:d6: fa:d8:a5:a1:4a:34:b1:83:8b:db:4e:22:7b:42:09: e8:19:31:92:2c:62:10:f2:ec:09:c9:df:d1:0e:4a: 8a:34:72:35:23:18:4d:92:f5:cc:fe:8f:7e:c1:64: c3:dd:41:9e:09:da:95:6b:ea:29:18:a2:f5:f8:c2: a6:52:0e:3e:3c:f6:5b:95:ed:67:0b:71:ca:16:35: 8e:5a:0d:59:ae:e7:9d:e2:85:1c:56:46:56:ed:03: 7d:f7:24:f4:41:e6:e0:81:8f:39:cc:37:b2:41:30: 89:1a:af:6e:92:a8:d2:ba:0c:40:44:b1:1e:55:e9: 69:fa:b9:f7:1e:0f:56:18:2d:de:28:82:3b:09:30: 3b:a4:5e:00:64:ef:c2:0b:1a:fc:1f:c8:3a:df:83: bd:c1:55:3e:49:cb:1e:36:d9:e8:01:ef:73:34:fa: f6:3a:a8:0d:4b:7f:17:15:36:dd:e6:81:b8:86:1b: e0:03:2a:72:9c:da:c8:26:ac:c0:45:10:64:a7:d1: dd:bf:7d:e5:38:9e:66:84:98:38:f5:41:de:62:8b: 17:65:f7:3b:b5:33:cd:1b:4d:94:3b:44:1a:54:84: c4:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A9:59:8D:46:B7:49:81:5B:C5:96:89:06:C3:4B:A6:8D:36:13:33 X509v3 Authority Key Identifier: keyid:AD:56:B6:71:87:A9:8B:A3:14:08:44:05:79:7B:D9:65:6E:8A:C8:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/rVa2cYepi6MUCEQFeXvZZW6KyLo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rVa2cYepi6MUCEQFeXvZZW6KyLo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EAE4/6753B8AE257511E7AC0D172AC4F9AE02/ECE5D100BBA411EAB345A780C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 180.96.10.0/24 Signature Algorithm: sha256WithRSAEncryption 18:46:e0:31:a9:9a:df:c8:fb:aa:ca:38:36:d6:dc:b6:f2:d0: 18:b4:3b:9e:e4:94:41:0b:4a:0e:b9:36:61:8a:84:c1:c4:23: 72:1e:f9:3d:71:6e:e4:90:d2:8e:87:ac:48:1f:2a:99:84:76: 33:6f:00:85:79:27:45:3f:27:fd:86:37:84:de:5e:3e:64:19: 74:24:3e:69:6b:5f:32:a0:90:d2:16:c2:22:eb:cb:56:b3:3b: 74:98:ba:31:6a:55:3d:df:b3:4c:da:70:32:af:fb:ea:9a:57: 97:2e:25:ee:b8:12:25:37:16:8c:f1:44:d8:73:94:b4:4b:a8: dd:a1:0c:f0:4c:17:d7:1b:00:c4:ed:94:77:bb:93:32:df:7d: 67:43:82:a1:ec:33:46:9d:09:06:6f:96:a0:44:90:03:88:27: 06:d6:18:62:c8:d5:ac:cb:d5:43:73:20:ff:fe:37:3a:d1:e7: f6:fa:9c:b1:f1:04:fe:37:78:9b:a0:51:45:91:4d:61:6a:18: c8:12:e3:dd:7e:3f:fd:ac:9e:79:6b:bd:fb:25:ae:4c:a2:24: 87:bc:41:38:76:8c:49:50:90:65:f5:20:08:9a:d8:78:94:ff: c8:30:3f:4b:0e:f4:3d:1e:97:68:e6:4f:9b:34:3e:13:01:f5: 49:7f:f5:fa -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICHhcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVBRTQxMTAvBgNVBAUTKEFENTZCNjcxODdBOThCQTMxNDA4NDQwNTc5N0JEOTY1 NkU4QUM4QkEwHhcNMjQwOTIwMTYzNDQyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmVkYTQyMS1hNjQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwhBVlRybn09QKIzS8HddhdNNwcOQFfUrxVzwAdb62KWhSjSxg4vbTiJ7Qgno GTGSLGIQ8uwJyd/RDkqKNHI1IxhNkvXM/o9+wWTD3UGeCdqVa+opGKL1+MKmUg4+ PPZble1nC3HKFjWOWg1Zrued4oUcVkZW7QN99yT0QebggY85zDeyQTCJGq9ukqjS ugxARLEeVelp+rn3Hg9WGC3eKII7CTA7pF4AZO/CCxr8H8g634O9wVU+ScseNtno Ae9zNPr2OqgNS38XFTbd5oG4hhvgAypynNrIJqzARRBkp9Hdv33lOJ5mhJg49UHe YosXZfc7tTPNG02UO0QaVITEpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFipWY1G t0mBW8WWiQbDS6aNNhMzMB8GA1UdIwQYMBaAFK1WtnGHqYujFAhEBXl72WVuisi6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUFFNC82NzUzQjhBRTI1 NzUxMUU3QUMwRDE3MkFDNEY5QUUwMi9yVmEyY1llcGk2TVVDRVFGZVh2WlpXNkt5 TG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JWYTJjWWVwaTZNVUNFUUZlWHZaWlc2S3lMby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVBRTQvNjc1M0I4QUUyNTc1MTFFN0FDMEQxNzJBQzRGOUFFMDIvRUNFNUQxMDBC QkE0MTFFQUIzNDVBNzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAC0YAowDQYJKoZIhvcNAQELBQADggEBABhG4DGpmt/I+6rK ODbW3Lby0Bi0O57klEELSg65NmGKhMHEI3Ie+T1xbuSQ0o6HrEgfKpmEdjNvAIV5 J0U/J/2GN4TeXj5kGXQkPmlrXzKgkNIWwiLry1azO3SYujFqVT3fs0zacDKv++qa V5cuJe64EiU3FozxRNhzlLRLqN2hDPBMF9cbAMTtlHe7kzLffWdDgqHsM0adCQZv lqBEkAOIJwbWGGLI1azL1UNzIP/+NzrR5/b6nLHxBP43eJugUUWRTWFqGMgS491+ P/2snnlrvfslrkyiJIe8QTh2jElQkGX1IAia2HiU/8gwP0sO9D0el2jmT5s0PhMB 9Ul/9fo= -----END CERTIFICATE-----Generated at Sun Feb 16 22:32:29 2025 by rpki-client