$ rpki-client -vvf rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/EE01A248F2FB11EE9AA9E24CC4F9AE02.roa File: EE01A248F2FB11EE9AA9E24CC4F9AE02.roa (raw, json) Hash identifier: u90GvXDC2nj38gPxwI7H6zVq1FrynP/V/Ah+aJjG8F8= Subject key identifier: 1E:3D:56:9A:6A:D1:76:EC:99:00:F5:EB:28:12:A3:DD:6A:68:32:5F Certificate issuer: /CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Certificate serial: 5B Authority key identifier: 41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/EE01A248F2FB11EE9AA9E24CC4F9AE02.roa Signing time: Thu 29 Aug 2024 07:19:40 +0000 ROA not before: Thu 29 Aug 2024 07:19:40 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 7545 IP address blocks: 155.144.58.0/24 maxlen: 24 155.144.59.0/24 maxlen: 24 155.144.60.0/24 maxlen: 24 155.144.61.0/24 maxlen: 24 155.144.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 02:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 91 (0x5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91757CB/serialNumber=41213B2F5F2429FC328EC3F4E95D5886402FEB69 Validity Not Before: Aug 29 07:19:40 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66d0210c-695d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:74:bd:89:ce:34:37:21:b8:34:3e:e0:e1:c7: 82:ca:e4:66:65:dd:78:77:a1:2c:64:aa:1d:e6:b5: 40:af:b4:d6:b4:e2:c4:ac:65:69:b5:0e:ba:e1:89: ec:ba:14:c9:0c:cd:33:05:81:3b:98:f6:b9:61:02: 45:2b:3c:23:c3:ce:63:84:fa:b9:7e:ce:99:e0:b8: 77:ce:ef:25:a0:88:47:6b:2d:ba:10:c7:59:53:64: 28:50:1c:8c:36:e4:38:58:ee:08:26:d9:99:1b:3d: c9:5c:39:2a:e8:d2:70:8d:7b:3a:f3:91:23:3d:c9: 89:09:db:48:49:c1:78:11:47:a1:2c:04:ba:a6:b4: 75:cb:1f:fb:2f:e4:31:56:4c:0e:bc:76:5a:c2:31: 08:2c:ae:88:34:4a:94:27:85:4b:e5:09:05:37:82: 4a:d5:47:d3:01:8f:03:eb:ed:3f:28:69:29:1c:17: b1:f2:1a:7f:9e:cd:72:bc:70:3e:03:83:8c:80:ea: b1:cb:ad:ad:13:5d:9c:a4:9b:82:ad:a1:c5:b6:78: c4:1c:39:cb:e6:f8:95:f2:75:a0:5a:0b:81:23:20: 34:45:56:2d:db:01:ef:bd:bf:00:98:03:03:c7:4b: 65:4f:5f:7d:b0:cd:8f:c1:91:dd:10:1e:c0:d2:ff: 42:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:3D:56:9A:6A:D1:76:EC:99:00:F5:EB:28:12:A3:DD:6A:68:32:5F X509v3 Authority Key Identifier: keyid:41:21:3B:2F:5F:24:29:FC:32:8E:C3:F4:E9:5D:58:86:40:2F:EB:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/QSE7L18kKfwyjsP06V1YhkAv62k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QSE7L18kKfwyjsP06V1YhkAv62k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91757CB/459B0C64F2F811EEA3506738C4F9AE02/EE01A248F2FB11EE9AA9E24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 155.144.58.0-155.144.62.255 Signature Algorithm: sha256WithRSAEncryption 7a:94:cf:22:99:d0:18:9c:62:33:43:df:dc:fb:7a:e4:31:c1: 1b:78:54:4c:b8:cd:88:15:9b:f7:0f:35:cc:66:22:ff:e4:1b: 8a:70:f4:b6:ee:bb:6a:b3:88:1a:94:a7:ee:2b:f3:b1:5a:d5: 30:79:6c:73:85:20:57:21:90:54:60:26:fb:88:54:aa:b9:b1: ad:d8:8f:d2:f0:af:fc:0d:cd:e2:fb:eb:6f:d4:f6:5c:83:b1: 7c:a8:ad:bb:51:a9:2d:f7:02:df:67:96:7c:51:5e:e9:17:97: 7b:b8:cf:b2:98:82:58:6c:13:b5:65:02:7c:71:b2:62:fe:e7: 23:bb:05:15:2f:f8:a6:53:2b:64:8c:01:04:4e:2b:71:60:60: a5:b4:d6:51:e4:ec:9b:b7:5f:6b:5e:35:d2:5c:d3:12:98:1e: 49:4b:1a:df:fc:44:9b:d9:78:5f:53:16:e8:0b:8d:a4:9e:c9: 51:fc:f4:0d:e1:35:35:6a:6e:c4:34:ac:33:56:69:b7:f0:cb: 62:46:59:54:cb:99:2d:f1:e2:86:00:bd:dd:0f:03:81:9c:fd: 13:92:91:7e:7d:77:9a:e0:97:a0:b1:b4:f6:39:23:1e:fa:20: a4:50:96:3b:f9:01:9a:5d:fe:19:63:db:36:60:0f:53:d6:a0: ba:2d:10:66 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBWzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NTdDQjExMC8GA1UEBRMoNDEyMTNCMkY1RjI0MjlGQzMyOEVDM0Y0RTk1RDU4ODY0 MDJGRUI2OTAeFw0yNDA4MjkwNzE5NDBaFw0yNTA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2ZDAyMTBjLTY5NWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCpdL2JzjQ3Ibg0PuDhx4LK5GZl3Xh3oSxkqh3mtUCvtNa04sSsZWm1Drrhiey6 FMkMzTMFgTuY9rlhAkUrPCPDzmOE+rl+zpnguHfO7yWgiEdrLboQx1lTZChQHIw2 5DhY7ggm2ZkbPclcOSro0nCNezrzkSM9yYkJ20hJwXgRR6EsBLqmtHXLH/sv5DFW TA68dlrCMQgsrog0SpQnhUvlCQU3gkrVR9MBjwPr7T8oaSkcF7HyGn+ezXK8cD4D g4yA6rHLra0TXZykm4KtocW2eMQcOcvm+JXydaBaC4EjIDRFVi3bAe+9vwCYAwPH S2VPX32wzY/Bkd0QHsDS/0JNAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUHj1WmmrR duyZAPXrKBKj3WpoMl8wHwYDVR0jBBgwFoAUQSE7L18kKfwyjsP06V1YhkAv62kw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc1N0NCLzQ1OUIwQzY0RjJG ODExRUVBMzUwNjczOEM0RjlBRTAyL1FTRTdMMThrS2Z3eWpzUDA2VjFZaGtBdjYy ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUVNFN0wxOGtLZnd5anNQMDZWMVloa0F2NjJrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NTdDQi80NTlCMEM2NEYyRjgxMUVFQTM1MDY3MzhDNEY5QUUwMi9FRTAxQTI0OEYy RkIxMUVFOUFBOUUyNENDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQBm5A6AwQAm5A+MA0GCSqGSIb3DQEBCwUAA4IBAQB6lM8i mdAYnGIzQ9/c+3rkMcEbeFRMuM2IFZv3DzXMZiL/5BuKcPS27rtqs4galKfuK/Ox WtUweWxzhSBXIZBUYCb7iFSqubGt2I/S8K/8Dc3i++tv1PZcg7F8qK27Uakt9wLf Z5Z8UV7pF5d7uM+ymIJYbBO1ZQJ8cbJi/ucjuwUVL/imUytkjAEETitxYGCltNZR 5Oybt19rXjXSXNMSmB5JSxrf/ESb2XhfUxboC42knslR/PQN4TU1am7ENKwzVmm3 8MtiRllUy5kt8eKGAL3dDwOBnP0TkpF+fXea4JegsbT2OSMe+iCkUJY7+QGaXf4Z Y9s2YA9T1qC6LRBm -----END CERTIFICATE-----Generated at Thu Nov 21 06:50:17 2024 by rpki-client on console-fra.rpki-client.org