$ rpki-client -vvf rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/EC9B786E9D8811EB80D73886C4F9AE02.roa File: EC9B786E9D8811EB80D73886C4F9AE02.roa (raw, json) Hash identifier: hxoilEsxdOaPHf72rZ87qnsjQ85Xv92LxhdM//owldE= Subject key identifier: FD:50:5E:6C:A5:D1:74:4F:F6:3E:A8:F8:D6:D6:90:82:4B:02:E1:B2 Certificate issuer: /CN=A918337F/serialNumber=31E7B10F718B1189A0319D6447E13F6C46407AA5 Certificate serial: 2631 Authority key identifier: 31:E7:B1:0F:71:8B:11:89:A0:31:9D:64:47:E1:3F:6C:46:40:7A:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MeexD3GLEYmgMZ1kR-E_bEZAeqU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/EC9B786E9D8811EB80D73886C4F9AE02.roa Signing time: Sun 30 Jun 2024 16:13:17 +0000 ROA not before: Sun 30 Jun 2024 16:13:17 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 136402 IP address blocks: 45.114.232.0/23 maxlen: 24 163.47.224.0/22 maxlen: 22 2404:e400:10::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/MeexD3GLEYmgMZ1kR-E_bEZAeqU.crl rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/MeexD3GLEYmgMZ1kR-E_bEZAeqU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MeexD3GLEYmgMZ1kR-E_bEZAeqU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:41:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9777 (0x2631) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A918337F/serialNumber=31E7B10F718B1189A0319D6447E13F6C46407AA5 Validity Not Before: Jun 30 16:13:17 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=6681841d-0dd3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c4:84:20:fe:5a:34:0b:e0:95:9e:95:77:c6: 4f:8b:7d:1a:8c:e8:5b:fa:cf:7d:ea:6f:44:f8:0a: 02:ed:ef:c5:12:f2:8d:96:b9:ab:96:24:1e:79:f9: 37:a4:59:ca:72:49:39:7c:9b:ae:1c:33:63:b7:f8: 2c:48:ca:9d:6d:ad:04:f5:31:f1:20:a7:6e:24:8a: e0:26:f7:f5:9a:2a:a2:1b:00:a1:fa:e0:dd:63:d2: 4d:d4:57:0e:4e:1b:c7:c6:3d:a1:51:c7:90:95:e4: 5b:1e:d6:c5:4a:f9:02:0c:40:f7:68:9d:07:77:32: 13:90:5d:f0:08:2a:dc:3e:cd:c0:f7:2d:01:b0:84: 50:2c:1c:cf:39:45:65:77:42:b7:f9:ca:26:4c:e9: 4b:04:52:35:92:f4:62:55:5c:a6:68:cf:27:4d:23: 2c:5e:8f:ed:0a:e1:14:37:c5:37:97:f6:e0:8e:fb: bb:1b:1a:f2:fc:f0:c9:ca:d2:ba:5c:ce:ce:cb:b8: cd:49:b8:b0:7e:37:70:d5:a8:c7:8d:be:8b:6b:cf: c1:3b:44:87:6a:9c:c0:88:8e:d3:56:3a:78:10:18: b6:a8:0d:72:fb:8c:f9:1f:50:42:22:c1:28:83:4e: 2e:b0:1a:33:5a:36:17:be:8b:29:64:be:b9:28:f8: d8:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:50:5E:6C:A5:D1:74:4F:F6:3E:A8:F8:D6:D6:90:82:4B:02:E1:B2 X509v3 Authority Key Identifier: keyid:31:E7:B1:0F:71:8B:11:89:A0:31:9D:64:47:E1:3F:6C:46:40:7A:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/MeexD3GLEYmgMZ1kR-E_bEZAeqU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MeexD3GLEYmgMZ1kR-E_bEZAeqU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A918337F/468EF726D6AF11E4B3717141C4F9AE02/EC9B786E9D8811EB80D73886C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.232.0/23 163.47.224.0/22 IPv6: 2404:e400:10::/44 Signature Algorithm: sha256WithRSAEncryption 09:77:11:93:85:4f:ad:2d:1d:ef:85:d4:75:fd:81:6d:6c:fc: fa:83:24:33:9f:00:7d:a4:a0:d8:66:2b:d6:9d:87:55:d8:e3: e4:07:65:d6:50:33:7a:9e:b0:82:d6:be:d8:8d:1f:1d:2e:ba: 84:62:ee:c2:6c:4f:47:c0:eb:cb:70:f8:e9:11:a8:46:47:e7: fd:17:1d:51:9c:f1:f3:1b:2e:57:c0:68:a6:a3:72:79:f1:cd: 27:38:8e:16:a4:03:c0:b8:9f:72:73:33:4c:b5:9e:df:98:af: 89:ee:73:b7:25:af:95:ce:e9:30:c0:ec:55:c5:15:e0:93:e9: 6b:e1:96:b5:5e:27:f4:8b:8e:47:6d:77:4c:0e:50:81:37:8f: 73:60:af:66:0f:70:d3:f1:d0:97:f2:10:76:fa:42:ac:ce:7f: 9c:06:f4:14:d1:20:cb:4e:89:ee:27:fa:66:37:95:93:76:9c: c4:86:35:f7:dd:09:62:61:ce:3b:80:78:d7:86:3c:02:ca:3f: 96:03:66:cf:01:10:28:d4:07:b3:c6:b0:a3:21:ce:d3:61:e4: 0c:63:3a:c9:74:1d:04:8f:b5:8f:61:55:8b:aa:62:bb:9f:06: 56:cd:ce:c0:97:09:a4:73:15:3c:70:b5:c6:3a:41:3c:a6:c5: 56:e0:45:f1 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICJjEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODMzN0YxMTAvBgNVBAUTKDMxRTdCMTBGNzE4QjExODlBMDMxOUQ2NDQ3RTEzRjZD NDY0MDdBQTUwHhcNMjQwNjMwMTYxMzE3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjgxODQxZC0wZGQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcSEIP5aNAvglZ6Vd8ZPi30ajOhb+s996m9E+AoC7e/FEvKNlrmrliQeefk3 pFnKckk5fJuuHDNjt/gsSMqdba0E9THxIKduJIrgJvf1miqiGwCh+uDdY9JN1FcO ThvHxj2hUceQleRbHtbFSvkCDED3aJ0HdzITkF3wCCrcPs3A9y0BsIRQLBzPOUVl d0K3+comTOlLBFI1kvRiVVymaM8nTSMsXo/tCuEUN8U3l/bgjvu7Gxry/PDJytK6 XM7Oy7jNSbiwfjdw1ajHjb6La8/BO0SHapzAiI7TVjp4EBi2qA1y+4z5H1BCIsEo g04usBozWjYXvospZL65KPjYeQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFP1QXmyl 0XRP9j6o+NbWkIJLAuGyMB8GA1UdIwQYMBaAFDHnsQ9xixGJoDGdZEfhP2xGQHql MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4MzM3Ri80NjhFRjcyNkQ2 QUYxMUU0QjM3MTcxNDFDNEY5QUUwMi9NZWV4RDNHTEVZbWdNWjFrUi1FX2JFWkFl cVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01lZXhEM0dMRVltZ01aMWtSLUVfYkVaQWVxVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODMzN0YvNDY4RUY3MjZENkFGMTFFNEIzNzE3MTQxQzRGOUFFMDIvRUM5Qjc4NkU5 RDg4MTFFQjgwRDczODg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAEtcugDBAKjL+AwDwQCAAIwCQMHBCQE5AAAEDANBgkqhkiG 9w0BAQsFAAOCAQEACXcRk4VPrS0d74XUdf2BbWz8+oMkM58AfaSg2GYr1p2HVdjj 5Adl1lAzep6wgta+2I0fHS66hGLuwmxPR8Dry3D46RGoRkfn/RcdUZzx8xsuV8Bo pqNyefHNJziOFqQDwLifcnMzTLWe35ivie5ztyWvlc7pMMDsVcUV4JPpa+GWtV4n 9IuOR213TA5QgTePc2CvZg9w0/HQl/IQdvpCrM5/nAb0FNEgy06J7if6ZjeVk3ac xIY1990JYmHOO4B414Y8Aso/lgNmzwEQKNQHs8awoyHO02HkDGM6yXQdBI+1j2FV i6piu58GVs3OwJcJpHMVPHC1xjpBPKbFVuBF8Q== -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:50 2024 by rpki-client on console-fra.rpki-client.org