$ rpki-client -vvf rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/EE2DC576942811EEAA69EB54C4F9AE02.roa File: EE2DC576942811EEAA69EB54C4F9AE02.roa (raw, json) Hash identifier: GOKQjlSRbohhc3e25wKXwO0I9oCyjdoNjW5acBKmw0A= Subject key identifier: CE:FC:0B:DD:3C:F9:E7:D1:6A:A0:6A:9B:F9:1B:41:1C:06:14:98:17 Certificate issuer: /CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Certificate serial: 0633 Authority key identifier: B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/EE2DC576942811EEAA69EB54C4F9AE02.roa Signing time: Sat 31 Aug 2024 00:32:49 +0000 ROA not before: Sat 31 Aug 2024 00:32:49 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 55441 IP address blocks: 14.96.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1587 (0x633) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917DEA4/serialNumber=B4D6FFD5DFF9EAC413AB4408E09637B09494DBC8 Validity Not Before: Aug 31 00:32:49 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66d264b1-b990 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:8d:f8:6d:7d:3b:0b:69:69:e1:2b:bb:fd:1e: 55:7d:51:46:c3:9a:1c:36:ce:58:8d:6f:07:5e:21: 4e:df:24:7f:a2:4f:47:d3:33:5a:6a:79:31:32:f4: 42:21:11:ae:66:63:96:c0:72:89:e4:1a:e5:76:e1: 4d:9e:c1:82:dd:43:ef:70:21:0a:f2:23:0e:77:13: 55:0f:c0:24:42:e4:92:83:d3:82:55:f8:09:be:92: 40:96:a8:85:69:d4:21:1a:f4:01:55:a8:0a:7a:c9: ef:63:e6:84:1a:65:5b:20:20:61:01:73:8e:31:8b: d1:d5:eb:4e:d6:9a:99:d8:60:5d:0a:55:bd:71:73: 69:ef:79:79:e5:f0:f3:77:e7:75:40:53:70:8c:74: 8d:dd:28:79:61:93:d2:0e:45:e8:38:54:4a:2e:28: b0:ca:57:c8:42:e1:43:61:38:ae:3c:6e:2b:69:9d: bd:38:ee:c5:65:4c:5a:32:e6:d4:5e:db:4f:88:ff: 13:d4:dd:32:1d:d2:c1:4a:35:04:e8:30:3f:d0:70: 70:ef:ad:fd:e5:db:14:69:60:84:56:a3:c7:9e:be: ee:7b:6d:30:9e:1f:dd:da:bb:2a:6c:ff:9b:61:1e: 8c:c3:b5:03:a5:c3:48:f2:2c:2d:ec:21:88:66:5a: 77:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:FC:0B:DD:3C:F9:E7:D1:6A:A0:6A:9B:F9:1B:41:1C:06:14:98:17 X509v3 Authority Key Identifier: keyid:B4:D6:FF:D5:DF:F9:EA:C4:13:AB:44:08:E0:96:37:B0:94:94:DB:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/tNb_1d_56sQTq0QI4JY3sJSU28g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tNb_1d_56sQTq0QI4JY3sJSU28g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917DEA4/A2426B60982911EBB7882081C4F9AE02/EE2DC576942811EEAA69EB54C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.96.7.0/24 Signature Algorithm: sha256WithRSAEncryption a0:ec:74:f6:b9:5d:c0:c2:26:7b:ed:8b:e6:cf:b6:b3:e8:3a: 86:dd:96:c2:0a:79:23:ff:9c:c4:a7:2e:cb:6a:21:57:d8:dc: 42:54:83:50:7c:da:f5:06:f9:11:71:42:93:7c:66:e4:81:31: aa:d1:81:34:c8:bd:b7:48:2c:ef:85:92:39:55:ff:94:bf:36: 77:1b:77:0c:a1:27:ca:7c:29:44:9a:0e:30:55:bc:59:dc:58: f8:86:f1:78:4e:a1:34:ab:d0:b6:32:e2:4b:bf:e0:2a:83:19: 88:9b:08:d8:f3:83:08:00:24:33:8c:6f:c3:27:d7:dd:ec:ca: 4d:7d:4f:01:53:a3:12:d6:28:40:fd:a7:59:16:12:94:de:55: 90:52:d5:7e:4a:f5:fd:38:13:50:c4:f9:bb:2d:d3:72:f2:37: b0:47:dd:48:79:3b:80:62:71:d1:db:7b:6f:14:f3:29:30:9d: 78:ba:2d:2c:63:25:c5:f3:12:06:8b:cb:69:fe:7c:2f:8d:76: 2c:14:4b:aa:02:55:fe:81:23:69:a8:73:5a:1d:f7:07:e9:c5: fa:82:cf:31:0f:d8:75:2d:ac:60:49:e2:f9:25:8f:27:2b:5a: 94:60:8f:9c:b6:05:a7:80:ec:00:96:67:b9:12:45:a7:c0:91: f8:84:d6:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0RFQTQxMTAvBgNVBAUTKEI0RDZGRkQ1REZGOUVBQzQxM0FCNDQwOEUwOTYzN0Iw OTQ5NERCQzgwHhcNMjQwODMxMDAzMjQ5WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQyNjRiMS1iOTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxo34bX07C2lp4Su7/R5VfVFGw5ocNs5YjW8HXiFO3yR/ok9H0zNaankxMvRC IRGuZmOWwHKJ5BrlduFNnsGC3UPvcCEK8iMOdxNVD8AkQuSSg9OCVfgJvpJAlqiF adQhGvQBVagKesnvY+aEGmVbICBhAXOOMYvR1etO1pqZ2GBdClW9cXNp73l55fDz d+d1QFNwjHSN3Sh5YZPSDkXoOFRKLiiwylfIQuFDYTiuPG4raZ29OO7FZUxaMubU XttPiP8T1N0yHdLBSjUE6DA/0HBw76395dsUaWCEVqPHnr7ue20wnh/d2rsqbP+b YR6Mw7UDpcNI8iwt7CGIZlp3WwIDAQABo4IClTCCApEwHQYDVR0OBBYEFM78C908 +efRaqBqm/kbQRwGFJgXMB8GA1UdIwQYMBaAFLTW/9Xf+erEE6tECOCWN7CUlNvI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3REVBNC9BMjQyNkI2MDk4 MjkxMUVCQjc4ODIwODFDNEY5QUUwMi90TmJfMWRfNTZzUVRxMFFJNEpZM3NKU1Uy OGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ROYl8xZF81NnNRVHEwUUk0Slkzc0pTVTI4Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0RFQTQvQTI0MjZCNjA5ODI5MTFFQkI3ODgyMDgxQzRGOUFFMDIvRUUyREM1NzY5 NDI4MTFFRUFBNjlFQjU0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAOYAcwDQYJKoZIhvcNAQELBQADggEBAKDsdPa5XcDCJnvt i+bPtrPoOobdlsIKeSP/nMSnLstqIVfY3EJUg1B82vUG+RFxQpN8ZuSBMarRgTTI vbdILO+FkjlV/5S/NncbdwyhJ8p8KUSaDjBVvFncWPiG8XhOoTSr0LYy4ku/4CqD GYibCNjzgwgAJDOMb8Mn193syk19TwFToxLWKED9p1kWEpTeVZBS1X5K9f04E1DE +bst03LyN7BH3Uh5O4BicdHbe28U8ykwnXi6LSxjJcXzEgaLy2n+fC+NdiwUS6oC Vf6BI2moc1od9wfpxfqCzzEP2HUtrGBJ4vkljycrWpRgj5y2BaeA7ACWZ7kSRafA kfiE1tk= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:29 2024 by rpki-client on console-fra.rpki-client.org