$ rpki-client -vvf rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/EED16B2CEC4211EABC227339C4F9AE02.roa File: EED16B2CEC4211EABC227339C4F9AE02.roa (raw, json) Hash identifier: RMR7KwU7xyWXlKtABuhss5yJpFReeaEZyLkq7UcoIo4= Subject key identifier: E9:E8:A9:DF:0C:0A:F5:7A:6A:6F:53:06:BA:81:52:95:81:04:54:6A Certificate issuer: /CN=A917CFD2/serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Certificate serial: 0700 Authority key identifier: F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/EED16B2CEC4211EABC227339C4F9AE02.roa Signing time: Mon 08 Jan 2024 22:31:44 +0000 ROA not before: Mon 08 Jan 2024 22:31:44 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 24481 IP address blocks: 202.79.16.0/21 maxlen: 21 202.79.16.0/24 maxlen: 24 202.79.17.0/24 maxlen: 24 202.79.18.0/24 maxlen: 24 202.79.19.0/24 maxlen: 24 202.79.20.0/24 maxlen: 24 202.79.21.0/24 maxlen: 24 202.79.22.0/24 maxlen: 24 202.79.23.0/24 maxlen: 24 2401:5800::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1792 (0x700) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917CFD2/serialNumber=F59BC647E90CCEDC94EA85A62EB8EB18BD03526B Validity Not Before: Jan 8 22:31:44 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=659c77d0-47eb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9d:0e:0e:a0:91:72:1f:e9:ad:39:7d:29:79: 96:38:91:db:54:e3:54:2a:21:c9:e4:17:3b:ae:90: ec:92:95:c2:ea:35:8f:92:e8:5a:18:03:a5:bc:ec: 00:50:0e:41:a6:af:ee:04:72:53:47:a9:25:bb:dc: d5:f8:2a:dc:e1:84:5b:b2:e4:d6:53:cc:4d:54:36: 51:b2:fe:b2:c2:fe:11:bd:25:b1:8c:9d:78:d2:6f: 7e:f9:90:0b:14:e5:26:b1:2a:70:19:04:89:fa:6f: 7a:00:40:3d:46:0b:7a:32:10:69:64:23:e4:aa:30: 37:4c:a7:9d:d3:d5:89:b3:f9:a4:b7:e9:b4:a6:47: 59:ca:cf:c2:04:5e:67:83:6a:fb:1b:eb:e8:f5:60: 1f:ec:16:45:68:2d:1a:44:59:7d:e2:93:79:be:f1: 94:31:81:01:ef:2a:c1:43:9b:fe:4d:df:26:d4:1b: 75:fe:d3:5e:0d:13:76:c4:4b:24:ff:33:0d:9f:f0: e6:23:59:28:d2:e4:ee:1f:4b:8b:49:17:3b:d7:39: 08:de:76:e4:64:09:54:87:4d:98:52:3f:8e:aa:7e: 94:3f:37:c2:5c:c0:c3:f5:23:c7:b2:f0:db:0b:cb: 89:77:47:8e:e0:7e:7d:3b:45:b4:4e:92:09:aa:89: 8a:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E8:A9:DF:0C:0A:F5:7A:6A:6F:53:06:BA:81:52:95:81:04:54:6A X509v3 Authority Key Identifier: keyid:F5:9B:C6:47:E9:0C:CE:DC:94:EA:85:A6:2E:B8:EB:18:BD:03:52:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/9ZvGR-kMztyU6oWmLrjrGL0DUms.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9ZvGR-kMztyU6oWmLrjrGL0DUms.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917CFD2/1D2A8942E6D311EAA63B2719C4F9AE02/EED16B2CEC4211EABC227339C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.79.16.0/21 IPv6: 2401:5800::/32 Signature Algorithm: sha256WithRSAEncryption 31:8e:bc:a6:6f:53:2b:b6:4f:db:b9:9e:b1:cd:a9:0b:81:c1: c2:30:81:ce:d3:57:66:26:d9:53:24:96:5a:51:df:2d:8f:b2: 7c:38:bf:26:e5:23:7e:40:ed:eb:60:23:1a:f2:b4:47:d4:83: 76:8d:a6:f8:04:81:fc:b4:7f:66:2d:8e:98:37:b3:51:34:8a: 99:7d:90:14:9f:02:01:cf:d2:7b:33:3c:1c:67:19:46:79:d2: 33:e7:60:5d:0d:bc:fb:d5:4c:42:63:81:ee:cd:0a:f8:21:09: 9d:e1:0e:5d:24:66:2d:d6:a0:76:70:f7:60:d1:de:10:91:12: 85:8b:86:a7:79:68:cd:37:47:8b:49:d9:9f:31:63:f8:17:03: 11:ef:af:2e:f9:ec:e6:04:05:fc:e2:89:dc:6f:b5:37:5a:51: f5:c4:48:65:ca:0a:4e:49:03:09:94:53:e0:5c:0f:8e:c7:db: 0b:4c:cf:05:dd:f3:54:b6:f7:e4:1b:c6:3f:00:b7:b6:e8:f1: c2:ee:69:29:dd:85:6d:51:be:4b:ed:53:b0:3e:36:0a:09:b5: 92:9c:d3:90:58:69:d9:4c:b6:24:e3:a2:0a:5a:c8:8d:ec:43: 65:15:6e:97:56:f5:35:99:c2:01:ba:ea:ea:8c:31:c7:ca:a6: 6b:9a:92:34 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBwAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0NGRDIxMTAvBgNVBAUTKEY1OUJDNjQ3RTkwQ0NFREM5NEVBODVBNjJFQjhFQjE4 QkQwMzUyNkIwHhcNMjQwMTA4MjIzMTQ0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTljNzdkMC00N2ViMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtJ0ODqCRch/prTl9KXmWOJHbVONUKiHJ5Bc7rpDskpXC6jWPkuhaGAOlvOwA UA5Bpq/uBHJTR6klu9zV+Crc4YRbsuTWU8xNVDZRsv6ywv4RvSWxjJ140m9++ZAL FOUmsSpwGQSJ+m96AEA9Rgt6MhBpZCPkqjA3TKed09WJs/mkt+m0pkdZys/CBF5n g2r7G+vo9WAf7BZFaC0aRFl94pN5vvGUMYEB7yrBQ5v+Td8m1Bt1/tNeDRN2xEsk /zMNn/DmI1ko0uTuH0uLSRc71zkI3nbkZAlUh02YUj+Oqn6UPzfCXMDD9SPHsvDb C8uJd0eO4H59O0W0TpIJqomKKQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOnoqd8M CvV6am9TBrqBUpWBBFRqMB8GA1UdIwQYMBaAFPWbxkfpDM7clOqFpi646xi9A1Jr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3Q0ZEMi8xRDJBODk0MkU2 RDMxMUVBQTYzQjI3MTlDNEY5QUUwMi85WnZHUi1rTXp0eVU2b1dtTHJqckdMMERV bXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzladkdSLWtNenR5VTZvV21McmpyR0wwRFVtcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0NGRDIvMUQyQTg5NDJFNkQzMTFFQUE2M0IyNzE5QzRGOUFFMDIvRUVEMTZCMkNF QzQyMTFFQUJDMjI3MzM5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAPKTxAwDQQCAAIwBwMFACQBWAAwDQYJKoZIhvcNAQELBQAD ggEBADGOvKZvUyu2T9u5nrHNqQuBwcIwgc7TV2Ym2VMkllpR3y2Psnw4vyblI35A 7etgIxrytEfUg3aNpvgEgfy0f2Ytjpg3s1E0ipl9kBSfAgHP0nszPBxnGUZ50jPn YF0NvPvVTEJjge7NCvghCZ3hDl0kZi3WoHZw92DR3hCREoWLhqd5aM03R4tJ2Z8x Y/gXAxHvry757OYEBfziidxvtTdaUfXESGXKCk5JAwmUU+BcD47H2wtMzwXd81S2 9+Qbxj8At7bo8cLuaSndhW1RvkvtU7A+NgoJtZKc05BYadlMtiTjogpayI3sQ2UV bpdW9TWZwgG66uqMMcfKpmuakjQ= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:31 2024 by rpki-client on console-ams.rpki-client.org