$ rpki-client -vvf rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/EFF618B85C7311EF9CC47281C4F9AE02.roa File: EFF618B85C7311EF9CC47281C4F9AE02.roa (raw, json) Hash identifier: btnrujWCL3lq2Vb0/eedRuKvGzTSWA7ubFR4fMa0qko= Subject key identifier: 7A:A7:D9:9C:D1:53:D3:D4:60:B3:AE:B0:15:5B:88:EB:07:7C:E2:9C Certificate issuer: /CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Certificate serial: 3522 Authority key identifier: 58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/EFF618B85C7311EF9CC47281C4F9AE02.roa Signing time: Mon 16 Sep 2024 14:50:59 +0000 ROA not before: Mon 16 Sep 2024 14:50:59 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 117.121.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 29 Oct 2024 14:49:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13602 (0x3522) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E8C90/serialNumber=58A196A7BF06F2E16E909D277141BA44911F1F4F Validity Not Before: Sep 16 14:50:59 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66e845d3-e88c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6b:8a:b8:71:a1:ce:0b:07:09:05:c9:0a:80: 34:2e:00:47:6c:a4:1a:2e:26:37:ff:21:31:0f:04: 1a:25:80:54:72:e7:f1:f4:be:ee:b8:2b:1a:eb:6b: 58:94:19:62:8e:7f:3c:1c:64:94:84:1a:04:a0:02: cf:d4:cb:11:76:eb:e3:81:0d:23:0a:97:13:f0:75: a9:3a:15:3f:22:b7:35:38:69:cd:55:cc:89:4e:65: b2:f1:59:ea:1d:99:cc:4b:88:3c:98:24:74:75:a4: f4:67:b6:86:9c:67:01:5b:1d:05:38:d3:e0:56:34: d4:eb:1b:00:36:3b:34:1b:6f:9c:a0:71:16:40:43: 68:c1:83:81:45:6e:65:7e:7c:ac:01:58:36:fe:ad: f7:bb:19:58:a3:01:e1:a1:fe:a8:f8:8f:fd:61:69: 1e:e6:f1:14:30:0c:57:3c:61:ac:f7:ad:0a:38:78: 7b:01:35:4d:e8:42:7e:98:a5:42:ad:33:20:fc:67: 70:f7:8e:de:e5:36:f3:45:c6:71:6e:22:ee:b2:e1: d5:68:3b:b0:3c:ff:e2:69:c2:be:df:41:8e:f9:ee: 28:80:fe:92:5b:d0:bf:13:c6:d5:57:be:89:9a:92: 6c:56:08:7a:ba:27:59:98:9e:12:61:87:95:a6:d7: 8e:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:A7:D9:9C:D1:53:D3:D4:60:B3:AE:B0:15:5B:88:EB:07:7C:E2:9C X509v3 Authority Key Identifier: keyid:58:A1:96:A7:BF:06:F2:E1:6E:90:9D:27:71:41:BA:44:91:1F:1F:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/WKGWp78G8uFukJ0ncUG6RJEfH08.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WKGWp78G8uFukJ0ncUG6RJEfH08.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E8C90/2D1BEBE41D9511E288E6B3FA08B02CD2/EFF618B85C7311EF9CC47281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 117.121.247.0/24 Signature Algorithm: sha256WithRSAEncryption 82:4a:0c:58:6f:60:e8:6c:78:b0:7e:d6:c8:cf:d4:cd:5d:01: af:3f:ff:e8:4a:3f:0e:0f:9f:98:4c:98:6e:b2:84:78:7f:ba: 70:09:da:0b:cc:ed:06:ba:71:59:4e:da:ea:98:3d:a4:ec:18: 75:44:3f:98:2a:69:a7:fb:34:75:88:4d:42:1e:23:11:b4:1b: a1:96:89:86:82:c1:87:c3:2e:a6:5f:68:ff:62:80:70:76:14: b0:41:4f:e1:b5:02:f9:09:62:bb:39:91:08:c2:53:fe:3b:8c: 24:59:de:61:0a:be:38:28:a6:10:be:63:ba:79:a1:5c:0f:72: c7:c4:e2:53:b6:d6:98:82:49:e6:d5:fc:a6:63:de:a6:ba:2e: ad:34:0d:96:40:7d:5e:cc:7a:df:33:2a:2f:58:03:a1:9b:4a: c1:3d:fe:05:ce:35:b9:ef:11:71:f5:f2:6b:47:0c:f5:ac:d5: 01:58:6a:b6:a4:65:3f:4e:e0:44:75:bd:99:47:cb:f1:7a:92: 0f:58:3f:b1:8a:d1:ab:11:05:de:fd:e6:e3:06:41:2e:83:61: 06:71:e5:ac:13:02:7a:04:80:5d:72:10:90:b7:24:e1:52:2e: c0:66:13:53:0d:97:b0:bd:1d:23:3d:1e:de:88:b2:1a:25:e5: 2c:53:e7:91 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNSIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RThDOTAxMTAvBgNVBAUTKDU4QTE5NkE3QkYwNkYyRTE2RTkwOUQyNzcxNDFCQTQ0 OTExRjFGNEYwHhcNMjQwOTE2MTQ1MDU5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmU4NDVkMy1lODhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu2uKuHGhzgsHCQXJCoA0LgBHbKQaLiY3/yExDwQaJYBUcufx9L7uuCsa62tY lBlijn88HGSUhBoEoALP1MsRduvjgQ0jCpcT8HWpOhU/Irc1OGnNVcyJTmWy8Vnq HZnMS4g8mCR0daT0Z7aGnGcBWx0FONPgVjTU6xsANjs0G2+coHEWQENowYOBRW5l fnysAVg2/q33uxlYowHhof6o+I/9YWke5vEUMAxXPGGs960KOHh7ATVN6EJ+mKVC rTMg/Gdw947e5TbzRcZxbiLusuHVaDuwPP/iacK+30GO+e4ogP6SW9C/E8bVV76J mpJsVgh6uidZmJ4SYYeVpteO2QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHqn2ZzR U9PUYLOusBVbiOsHfOKcMB8GA1UdIwQYMBaAFFihlqe/BvLhbpCdJ3FBukSRHx9P MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOEM5MC8yRDFCRUJFNDFE OTUxMUUyODhFNkIzRkEwOEIwMkNEMi9XS0dXcDc4Rzh1RnVrSjBuY1VHNlJKRWZI MDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dLR1dwNzhHOHVGdWtKMG5jVUc2UkpFZkgwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RThDOTAvMkQxQkVCRTQxRDk1MTFFMjg4RTZCM0ZBMDhCMDJDRDIvRUZGNjE4Qjg1 QzczMTFFRjlDQzQ3MjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAB1efcwDQYJKoZIhvcNAQELBQADggEBAIJKDFhvYOhseLB+ 1sjP1M1dAa8//+hKPw4Pn5hMmG6yhHh/unAJ2gvM7Qa6cVlO2uqYPaTsGHVEP5gq aaf7NHWITUIeIxG0G6GWiYaCwYfDLqZfaP9igHB2FLBBT+G1AvkJYrs5kQjCU/47 jCRZ3mEKvjgophC+Y7p5oVwPcsfE4lO21piCSebV/KZj3qa6Lq00DZZAfV7Met8z Ki9YA6GbSsE9/gXONbnvEXH18mtHDPWs1QFYarakZT9O4ER1vZlHy/F6kg9YP7GK 0asRBd795uMGQS6DYQZx5awTAnoEgF1yEJC3JOFSLsBmE1MNl7C9HSM9Ht6Ishol 5SxT55E= -----END CERTIFICATE-----Generated at Tue Oct 22 17:18:42 2024 by rpki-client on console-fra.rpki-client.org