$ rpki-client -vvf rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/EE83B18A7F7E11ED86E00936C4F9AE02.roa File: EE83B18A7F7E11ED86E00936C4F9AE02.roa (raw, json) Hash identifier: yPrP3KfHG7wLOXeRQBj72uPHDwFnUsuzGYQzTqa6CNw= Subject key identifier: 01:96:33:AB:5A:F9:1F:E4:C0:0F:5F:30:AF:82:81:E0:A4:5C:55:5A Certificate issuer: /CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Certificate serial: 011A Authority key identifier: 40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/EE83B18A7F7E11ED86E00936C4F9AE02.roa Signing time: Sun 31 Dec 2023 04:05:06 +0000 ROA not before: Sun 31 Dec 2023 04:05:06 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139341 IP address blocks: 164.52.14.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 282 (0x11a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C31A2/serialNumber=40E58263972B9E24142BAA9B5AFA053481A3719E Validity Not Before: Dec 31 04:05:06 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6590e872-21ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2e:33:32:21:ea:9b:d4:ed:3f:d6:75:24:f9: 03:50:3f:aa:57:c1:ee:ca:64:00:82:ed:fc:22:0f: d8:92:c9:7c:d7:57:2d:fd:53:6e:17:87:c9:08:d5: 3c:68:eb:1d:db:07:01:60:e7:7f:6e:b3:61:0b:7d: fd:cb:f6:bb:3b:51:38:f7:72:ad:a0:4e:30:2c:3b: e7:b7:3e:c1:3c:ac:9e:e7:6c:29:c3:5d:da:cf:22: 85:16:7f:46:5f:d5:9f:19:fb:b5:e1:8c:ac:f1:42: 08:e4:4a:e0:b2:c8:e0:95:30:64:28:f1:64:f8:6e: d3:34:76:99:51:e2:e5:9a:ac:aa:c8:9c:4a:77:29: 50:48:9b:26:b7:1b:85:78:9a:ac:69:66:54:15:fb: 52:5e:24:7e:1d:aa:66:00:67:f0:cd:b7:d6:9a:21: 41:ae:e9:a9:f7:e9:35:c1:12:32:51:8c:cf:af:0b: ba:7f:78:6a:00:de:99:87:ab:a2:27:37:79:fa:ad: 1b:e6:ec:51:84:d4:14:7a:ac:8e:24:99:49:50:35: 75:62:8d:1e:54:d1:21:83:96:f7:17:71:8c:fc:5b: 55:f7:dd:36:f2:08:71:30:77:a5:21:30:81:15:1c: 10:b4:a9:2d:f7:f7:ea:8f:2d:41:f3:d6:82:9d:0e: e5:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:96:33:AB:5A:F9:1F:E4:C0:0F:5F:30:AF:82:81:E0:A4:5C:55:5A X509v3 Authority Key Identifier: keyid:40:E5:82:63:97:2B:9E:24:14:2B:AA:9B:5A:FA:05:34:81:A3:71:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/QOWCY5crniQUK6qbWvoFNIGjcZ4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QOWCY5crniQUK6qbWvoFNIGjcZ4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C31A2/D476ED76357211EDAE977839C4F9AE02/EE83B18A7F7E11ED86E00936C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 164.52.14.0/23 Signature Algorithm: sha256WithRSAEncryption 3d:ec:24:6d:2f:ad:bf:0c:c4:90:92:cf:da:7b:06:b8:62:f5: 77:1b:d9:25:ff:e5:ea:ba:22:25:71:7b:90:70:19:28:89:e7: c3:ed:6c:13:80:2e:62:2b:12:95:e4:e0:f9:02:9e:83:87:c2: 6e:95:66:1a:1c:3f:17:c5:fc:ef:02:88:2a:5e:b8:54:d8:f8: 64:f1:d6:9f:d8:30:d5:57:90:55:6b:a4:4a:dd:0f:3b:22:34: 96:c4:25:b7:e8:d0:26:47:46:7a:c3:8e:00:48:ac:3c:af:6c: d6:45:b4:8d:09:da:62:54:4c:27:0b:f0:37:af:92:fc:9e:42: 8b:38:07:58:5a:85:a0:a4:a4:7b:2f:1d:20:bf:4a:ed:83:56: 51:8d:72:87:91:45:3b:2a:0b:6b:23:42:48:cc:d8:85:34:a5: f4:42:85:dd:18:f8:ac:ff:a0:67:a3:7a:c7:9a:04:d6:f1:3e: 15:cf:0c:fe:43:1d:00:c2:48:92:a8:b0:24:6b:66:6d:bf:cc: 29:09:17:08:f2:32:0e:34:12:0e:ee:5a:ae:b1:1b:7a:fc:20: 69:90:16:4c:ba:d7:d6:41:09:a7:cf:ee:14:67:1b:73:85:6c: a1:fa:21:d6:1f:45:d4:49:9a:15:48:a2:f8:98:f9:98:1c:c1: 80:dc:21:37 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICARowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzMxQTIxMTAvBgNVBAUTKDQwRTU4MjYzOTcyQjlFMjQxNDJCQUE5QjVBRkEwNTM0 ODFBMzcxOUUwHhcNMjMxMjMxMDQwNTA2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTkwZTg3Mi0yMWVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAri4zMiHqm9TtP9Z1JPkDUD+qV8HuymQAgu38Ig/Yksl811ct/VNuF4fJCNU8 aOsd2wcBYOd/brNhC339y/a7O1E493KtoE4wLDvntz7BPKye52wpw13azyKFFn9G X9WfGfu14Yys8UII5ErgssjglTBkKPFk+G7TNHaZUeLlmqyqyJxKdylQSJsmtxuF eJqsaWZUFftSXiR+HapmAGfwzbfWmiFBrump9+k1wRIyUYzPrwu6f3hqAN6Zh6ui Jzd5+q0b5uxRhNQUeqyOJJlJUDV1Yo0eVNEhg5b3F3GM/FtV99028ghxMHelITCB FRwQtKkt9/fqjy1B89aCnQ7laQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAGWM6ta +R/kwA9fMK+CgeCkXFVaMB8GA1UdIwQYMBaAFEDlgmOXK54kFCuqm1r6BTSBo3Ge MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMzFBMi9ENDc2RUQ3NjM1 NzIxMUVEQUU5Nzc4MzlDNEY5QUUwMi9RT1dDWTVjcm5pUVVLNnFiV3ZvRk5JR2pj WjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1FPV0NZNWNybmlRVUs2cWJXdm9GTklHamNaNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzMxQTIvRDQ3NkVENzYzNTcyMTFFREFFOTc3ODM5QzRGOUFFMDIvRUU4M0IxOEE3 RjdFMTFFRDg2RTAwOTM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAGkNA4wDQYJKoZIhvcNAQELBQADggEBAD3sJG0vrb8MxJCS z9p7Brhi9Xcb2SX/5eq6IiVxe5BwGSiJ58PtbBOALmIrEpXk4PkCnoOHwm6VZhoc PxfF/O8CiCpeuFTY+GTx1p/YMNVXkFVrpErdDzsiNJbEJbfo0CZHRnrDjgBIrDyv bNZFtI0J2mJUTCcL8DevkvyeQos4B1hahaCkpHsvHSC/Su2DVlGNcoeRRTsqC2sj QkjM2IU0pfRChd0Y+Kz/oGejeseaBNbxPhXPDP5DHQDCSJKosCRrZm2/zCkJFwjy Mg40Eg7uWq6xG3r8IGmQFky619ZBCafP7hRnG3OFbKH6IdYfRdRJmhVIoviY+Zgc wYDcITc= -----END CERTIFICATE-----Generated at Thu Nov 21 03:12:04 2024 by rpki-client on console-fra.rpki-client.org