$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa File: EC8209420EB411EFAE1CF63BC4F9AE02.roa (raw, json) Hash identifier: NhE6BhdvNa2vpC+KQiezMi0MSOcKQeq7OmkH62Iv3CM= Subject key identifier: E6:A9:4B:1A:B7:42:D8:03:A5:D1:D8:16:E0:92:A0:7D:FF:B0:17:38 Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 34E5 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa Signing time: Mon 22 Jul 2024 14:40:33 +0000 ROA not before: Mon 22 Jul 2024 14:40:33 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 38599 IP address blocks: 58.181.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13541 (0x34e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA Validity Not Before: Jul 22 14:40:33 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=669e6f61-4da9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d9:af:82:c0:49:64:10:02:2d:d2:bd:46:f2: 5f:84:28:91:28:b1:17:bf:a7:65:21:c4:3f:11:9c: 2f:1c:22:10:95:62:6a:66:4d:89:be:7b:24:04:d3: 23:8d:97:92:2d:ee:8c:93:41:36:a5:47:5d:29:a8: 43:ea:36:3a:8a:5b:82:f8:b1:e5:0c:aa:d2:3f:9c: 2c:33:28:3e:67:06:2a:ea:3e:ba:f6:72:da:e7:15: c4:d7:37:72:b6:5c:fc:a7:e5:3a:ed:58:eb:7e:65: 30:e8:19:aa:91:8a:41:95:e7:46:63:26:d5:ab:84: 10:81:ad:2a:61:90:37:41:cf:81:dd:e8:89:01:dc: 27:30:ef:08:5f:21:03:93:74:d4:b1:a5:89:ff:ba: ad:90:26:15:8c:45:e8:66:25:78:64:77:f2:80:7f: 97:ee:7a:6a:c6:76:5c:f4:91:76:a1:57:e3:98:5e: c9:b4:04:26:52:07:7a:1f:fc:7c:e0:7e:f4:80:df: a7:ea:cf:3c:66:7a:58:c7:d9:a4:19:64:cd:7d:11: 6b:5b:0d:a3:72:b3:33:c7:f9:2d:e3:a3:39:80:89: cf:db:5a:3b:63:9e:bb:8c:1e:87:75:54:38:47:8c: 13:0c:cc:59:08:46:91:b6:1d:97:2f:d7:33:34:30: 22:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A9:4B:1A:B7:42:D8:03:A5:D1:D8:16:E0:92:A0:7D:FF:B0:17:38 X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/EC8209420EB411EFAE1CF63BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.181.209.0/24 Signature Algorithm: sha256WithRSAEncryption ad:74:a9:31:8f:3b:49:dd:9b:23:34:e2:5e:2a:85:d1:8a:9c: 0c:6c:fb:62:8b:db:1d:7c:68:69:b7:65:36:35:75:d0:e4:b7: 79:3b:e6:be:cf:e2:e9:c4:8f:ee:0d:b0:c8:91:da:82:50:eb: 4a:a9:47:7a:db:5c:e9:c0:65:3d:5d:d6:b1:9a:0e:a3:e3:fb: 72:be:7a:20:2c:23:3e:e9:50:ca:95:98:c8:ea:38:ba:2b:b2: d9:47:fb:1f:cb:55:d0:7f:34:1c:17:96:7e:cd:e7:16:50:23: 8b:52:b9:da:cd:ba:ec:21:24:a2:b6:98:1e:6c:5d:99:29:dd: 3e:99:ff:21:0e:c9:e7:9c:a3:c2:7b:5e:96:b7:19:ea:b0:8d: 3c:fb:13:45:01:04:e1:28:d1:0a:dc:0a:a4:78:02:65:7f:8c: 5a:44:62:fd:98:05:8b:42:ab:3c:f9:3a:41:dc:e7:1c:de:c1: fa:51:2b:00:7a:92:1b:3e:8e:38:36:15:de:a3:46:b4:34:14: fd:f7:5d:21:ae:e3:b1:b8:b3:d8:74:c9:dc:7c:27:ec:44:fa: 31:bc:74:aa:63:33:9f:bc:a2:73:19:81:af:c6:a3:b7:15:5b: 4e:fa:c6:de:47:ff:1b:38:de:23:16:c1:3e:c0:01:4f:b7:84: 9a:a5:79:9a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjQwNzIyMTQ0MDMzWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjllNmY2MS00ZGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo9mvgsBJZBACLdK9RvJfhCiRKLEXv6dlIcQ/EZwvHCIQlWJqZk2JvnskBNMj jZeSLe6Mk0E2pUddKahD6jY6iluC+LHlDKrSP5wsMyg+ZwYq6j669nLa5xXE1zdy tlz8p+U67VjrfmUw6BmqkYpBledGYybVq4QQga0qYZA3Qc+B3eiJAdwnMO8IXyED k3TUsaWJ/7qtkCYVjEXoZiV4ZHfygH+X7npqxnZc9JF2oVfjmF7JtAQmUgd6H/x8 4H70gN+n6s88ZnpYx9mkGWTNfRFrWw2jcrMzx/kt46M5gInP21o7Y567jB6HdVQ4 R4wTDMxZCEaRth2XL9czNDAilwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOapSxq3 QtgDpdHYFuCSoH3/sBc4MB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvRUM4MjA5NDIw RUI0MTFFRkFFMUNGNjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAA6tdEwDQYJKoZIhvcNAQELBQADggEBAK10qTGPO0ndmyM0 4l4qhdGKnAxs+2KL2x18aGm3ZTY1ddDkt3k75r7P4unEj+4NsMiR2oJQ60qpR3rb XOnAZT1d1rGaDqPj+3K+eiAsIz7pUMqVmMjqOLorstlH+x/LVdB/NBwXln7N5xZQ I4tSudrNuuwhJKK2mB5sXZkp3T6Z/yEOyeeco8J7Xpa3GeqwjTz7E0UBBOEo0Qrc CqR4AmV/jFpEYv2YBYtCqzz5OkHc5xzewfpRKwB6khs+jjg2Fd6jRrQ0FP33XSGu 47G4s9h0ydx8J+xE+jG8dKpjM5+8onMZga/Go7cVW076xt5H/xs43iMWwT7AAU+3 hJqleZo= -----END CERTIFICATE-----Generated at Sun Feb 16 22:14:47 2025 by rpki-client