$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/E8ED06C4973F11EF91A9D23EC4F9AE02.roa File: E8ED06C4973F11EF91A9D23EC4F9AE02.roa (raw, json) Hash identifier: Y2VwMOYiZfpasz78UQfTBjFfqE6GkDJI2tzdINXlj+w= Subject key identifier: 0E:A6:5F:A6:63:38:EB:3F:40:10:2A:B0:85:FB:5E:E0:6A:05:3B:C0 Certificate issuer: /CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Certificate serial: 0589 Authority key identifier: 25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/E8ED06C4973F11EF91A9D23EC4F9AE02.roa Signing time: Thu 31 Oct 2024 04:23:42 +0000 ROA not before: Thu 31 Oct 2024 04:23:42 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45430 IP address blocks: 14.207.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1417 (0x589) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7561/serialNumber=25BC7D4DE77BD01B3D191587696E5AFDD8CECD04 Validity Not Before: Oct 31 04:23:42 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=6723064e-ca92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7e:b6:4c:a5:55:fb:98:a5:a3:ac:f2:e7:d9: f8:ed:f6:f4:8f:e9:84:bd:84:69:e5:37:b8:7a:a7: 96:77:f5:9f:b5:ce:78:4d:5e:df:e4:58:64:1e:ff: 18:13:16:bc:f4:6d:aa:3b:10:37:b5:a9:78:e3:97: ea:5d:d2:61:f3:d8:11:64:90:33:33:ad:58:81:c2: 59:95:33:cf:f9:dd:4e:3e:e0:3a:dd:00:f2:53:ee: a4:c0:09:75:ad:7a:b6:15:ba:03:b8:97:85:b6:c3: 9b:aa:4b:57:de:66:f1:6c:c7:f3:bf:18:0f:b1:ad: a4:42:0d:0a:84:37:3d:86:91:a4:8c:92:1f:aa:56: 0f:a0:d9:5c:63:51:94:88:b0:90:e0:ef:20:27:72: 13:91:ba:f9:a5:98:d5:d2:5b:02:09:c3:24:f7:bc: fa:74:76:9f:c8:51:11:6b:16:28:ec:7f:6d:f7:a7: 18:90:8a:b4:f0:10:4b:ae:2f:2f:a9:62:ec:72:8e: 91:cd:a7:0b:b4:a4:62:b1:df:e6:95:b3:ad:70:12: 02:b5:a3:04:6f:23:57:49:ce:b7:c8:ee:e0:ea:ae: fb:6b:20:cb:f2:64:01:5d:61:38:dd:35:8a:1c:07: 17:cb:3f:b8:da:ee:46:e0:75:f3:de:55:77:3d:9c: 84:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:A6:5F:A6:63:38:EB:3F:40:10:2A:B0:85:FB:5E:E0:6A:05:3B:C0 X509v3 Authority Key Identifier: keyid:25:BC:7D:4D:E7:7B:D0:1B:3D:19:15:87:69:6E:5A:FD:D8:CE:CD:04 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jbx9Ted70Bs9GRWHaW5a_djOzQQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7561/A26E06E0054C11ECBDB4FE46C4F9AE02/E8ED06C4973F11EF91A9D23EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 14.207.0.0/21 Signature Algorithm: sha256WithRSAEncryption 8a:d1:39:ce:df:b2:a5:b4:43:6e:a9:97:95:c4:00:87:8e:38: c4:b8:49:81:1d:b9:29:6e:ce:22:71:63:b5:11:75:f1:83:ca: 9b:16:0a:9b:d8:b4:f0:d5:44:42:15:7d:ba:51:4e:a7:b6:97: e1:2c:b1:07:99:0b:63:47:11:10:93:48:28:f5:8b:e4:a5:f1: 0e:dc:8b:1b:c2:d5:15:29:bd:ae:c8:e4:c0:d3:59:f1:7e:e6: 84:9d:55:3d:83:03:89:7c:b7:b3:d8:35:65:fe:b9:5a:76:ae: 75:5f:50:c5:71:1d:ec:f9:97:b6:92:af:68:fc:92:ac:6a:7e: 37:96:50:4a:55:b6:3a:c5:58:a2:d7:ce:f3:3a:fb:43:b3:92: 93:80:46:e5:dc:6d:91:67:01:c0:7d:dd:c9:79:17:fe:92:8e: 68:61:29:62:26:ca:e5:26:57:8c:6a:74:d0:69:4f:e3:45:a3: 98:c4:83:5a:be:21:f1:9b:b1:28:da:3d:7c:c7:b9:65:3f:03: 27:c8:9a:40:2a:7d:7f:f5:9f:3f:c5:94:e4:80:8a:65:04:25: cd:eb:ab:17:26:8a:67:49:c8:ea:73:cf:08:ff:b0:0a:17:dd: 75:8d:d4:c2:21:de:83:55:28:d8:68:1b:38:58:35:63:75:e1: ec:2c:a9:75 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBYkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTc1NjExMTAvBgNVBAUTKDI1QkM3RDRERTc3QkQwMUIzRDE5MTU4NzY5NkU1QUZE RDhDRUNEMDQwHhcNMjQxMDMxMDQyMzQyWhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzIzMDY0ZS1jYTkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnX62TKVV+5ilo6zy59n47fb0j+mEvYRp5Te4eqeWd/Wftc54TV7f5FhkHv8Y Exa89G2qOxA3tal445fqXdJh89gRZJAzM61YgcJZlTPP+d1OPuA63QDyU+6kwAl1 rXq2FboDuJeFtsObqktX3mbxbMfzvxgPsa2kQg0KhDc9hpGkjJIfqlYPoNlcY1GU iLCQ4O8gJ3ITkbr5pZjV0lsCCcMk97z6dHafyFERaxYo7H9t96cYkIq08BBLri8v qWLsco6RzacLtKRisd/mlbOtcBICtaMEbyNXSc63yO7g6q77ayDL8mQBXWE43TWK HAcXyz+42u5G4HXz3lV3PZyEUQIDAQABo4IClTCCApEwHQYDVR0OBBYEFA6mX6Zj OOs/QBAqsIX7XuBqBTvAMB8GA1UdIwQYMBaAFCW8fU3ne9AbPRkVh2luWv3Yzs0E MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzU2MS9BMjZFMDZFMDA1 NEMxMUVDQkRCNEZFNDZDNEY5QUUwMi9KYng5VGVkNzBCczlHUldIYVc1YV9kak96 UVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pieDlUZWQ3MEJzOUdSV0hhVzVhX2RqT3pRUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTc1NjEvQTI2RTA2RTAwNTRDMTFFQ0JEQjRGRTQ2QzRGOUFFMDIvRThFRDA2QzQ5 NzNGMTFFRjkxQTlEMjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAMOzwAwDQYJKoZIhvcNAQELBQADggEBAIrROc7fsqW0Q26p l5XEAIeOOMS4SYEduSluziJxY7URdfGDypsWCpvYtPDVREIVfbpRTqe2l+EssQeZ C2NHERCTSCj1i+Sl8Q7cixvC1RUpva7I5MDTWfF+5oSdVT2DA4l8t7PYNWX+uVp2 rnVfUMVxHez5l7aSr2j8kqxqfjeWUEpVtjrFWKLXzvM6+0OzkpOARuXcbZFnAcB9 3cl5F/6SjmhhKWImyuUmV4xqdNBpT+NFo5jEg1q+IfGbsSjaPXzHuWU/AyfImkAq fX/1nz/FlOSAimUEJc3rqxcmimdJyOpzzwj/sAoX3XWN1MIh3oNVKNhoGzhYNWN1 4ewsqXU= -----END CERTIFICATE-----Generated at Sat Nov 23 01:27:29 2024 by rpki-client on console-ams.rpki-client.org