$ rpki-client -vvf rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/E22BD636AC5011EBA37CCA28C4F9AE02.roa File: E22BD636AC5011EBA37CCA28C4F9AE02.roa (raw, json) Hash identifier: bQAmYqTjRe9JLVgK8wMkzMq+Ly7pZ7AfpT/mrwVghd4= Subject key identifier: C0:67:30:7A:E0:B5:DD:27:7C:52:60:93:BF:DB:4F:47:1E:A9:FA:87 Certificate issuer: /CN=A9136BD7/serialNumber=56A03167FAE12B1BA14BB8474D442B6770BB9829 Certificate serial: 04E5 Authority key identifier: 56:A0:31:67:FA:E1:2B:1B:A1:4B:B8:47:4D:44:2B:67:70:BB:98:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/E22BD636AC5011EBA37CCA28C4F9AE02.roa Signing time: Thu 07 Dec 2023 00:52:03 +0000 ROA not before: Thu 07 Dec 2023 00:52:03 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 55885 IP address blocks: 49.156.48.0/22 maxlen: 22 49.156.48.0/24 maxlen: 24 49.156.49.0/24 maxlen: 24 49.156.50.0/24 maxlen: 24 49.156.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.crl rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1253 (0x4e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9136BD7/serialNumber=56A03167FAE12B1BA14BB8474D442B6770BB9829 Validity Not Before: Dec 7 00:52:03 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65711733-e7b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:19:c4:27:b1:7c:39:e3:e7:ab:bd:78:5f:0b: 3c:4b:65:f7:fd:69:ce:cb:9f:89:7d:90:05:03:15: ca:0d:63:3b:a0:05:5c:22:98:5a:16:a8:76:58:b8: a8:d1:85:81:1e:51:f5:e5:98:14:2b:ab:8c:dd:01: 40:63:3a:54:6c:1d:e9:20:77:fd:d6:7f:42:43:09: 9d:b0:3d:8a:88:02:df:5b:ff:2f:ca:6e:ca:2a:f4: d8:99:b0:2d:1c:8a:41:5d:bd:eb:e8:81:9d:b1:e3: de:76:a0:e1:c6:89:a3:1e:bb:ba:bd:25:6c:f7:b3: 26:7c:75:b8:c6:8e:27:b3:0b:5a:0f:47:15:6d:04: 42:3b:10:f9:ee:d5:18:4f:5d:7c:99:aa:77:60:11: b5:79:38:26:54:80:50:8d:64:e2:4a:49:d2:97:5e: f2:b5:5c:83:93:f6:45:6f:4a:ce:68:6b:9e:60:3f: 56:5c:7a:fa:88:39:f4:dc:5d:cd:8f:19:ef:0d:d2: 77:34:b0:38:6b:e2:0d:ee:28:ab:3a:1d:d9:9e:eb: 02:b1:01:98:f0:71:39:a2:82:94:fd:0e:08:c7:9f: bf:d1:35:45:35:3b:7b:fe:61:3a:bc:4b:24:22:7b: a8:39:30:f5:44:6e:ce:3d:11:0a:6b:fb:29:65:35: ed:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:67:30:7A:E0:B5:DD:27:7C:52:60:93:BF:DB:4F:47:1E:A9:FA:87 X509v3 Authority Key Identifier: keyid:56:A0:31:67:FA:E1:2B:1B:A1:4B:B8:47:4D:44:2B:67:70:BB:98:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VqAxZ_rhKxuhS7hHTUQrZ3C7mCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9136BD7/A651B474AC4F11EB83D18E28C4F9AE02/E22BD636AC5011EBA37CCA28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.156.48.0/22 Signature Algorithm: sha256WithRSAEncryption b2:9a:d0:10:84:ce:0a:fa:71:95:b5:9b:6f:00:df:95:9d:85: d6:d4:8d:3f:58:14:da:81:89:88:7c:4f:a3:f9:d8:90:b7:cc: d4:4d:12:75:9c:87:87:cc:63:4c:a5:8f:86:48:23:39:fb:28: 89:46:eb:68:9a:f9:23:59:4e:da:2c:ea:3c:5d:dc:bb:74:99: bf:ea:53:cf:64:af:9d:f1:de:38:cc:ac:e9:63:5b:39:03:10: a4:41:b2:2b:ab:0a:97:76:e9:23:53:f9:df:cc:f1:38:6a:50: 9b:b2:4a:c7:41:2d:27:80:c4:4e:e9:f1:ef:b7:81:a4:00:2f: 77:8d:a4:c4:a9:9a:ee:7b:ac:10:62:9a:2c:e8:82:ed:36:bb: f3:3d:88:38:d4:2b:ce:db:04:e8:b4:3d:da:65:43:60:10:f9: 72:97:85:ca:f2:e7:78:dd:01:8a:52:9a:b4:86:f5:58:89:64: f5:56:31:9b:6d:a7:67:fc:bf:fc:92:c4:96:e3:be:ef:b4:bc: 15:2e:e6:66:1b:76:0a:1a:9b:46:47:19:8d:78:31:4a:45:42: 82:b0:67:b0:ee:fc:c7:ae:e9:b1:44:ba:17:a5:3b:64:8b:d2: 7a:be:15:dd:ed:c2:17:69:2a:1f:03:09:fe:db:e9:45:aa:5f: 5a:1a:f6:98 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzZCRDcxMTAvBgNVBAUTKDU2QTAzMTY3RkFFMTJCMUJBMTRCQjg0NzRENDQyQjY3 NzBCQjk4MjkwHhcNMjMxMjA3MDA1MjAzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcxMTczMy1lN2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBnEJ7F8OePnq714Xws8S2X3/WnOy5+JfZAFAxXKDWM7oAVcIphaFqh2WLio 0YWBHlH15ZgUK6uM3QFAYzpUbB3pIHf91n9CQwmdsD2KiALfW/8vym7KKvTYmbAt HIpBXb3r6IGdsePedqDhxomjHru6vSVs97MmfHW4xo4nswtaD0cVbQRCOxD57tUY T118map3YBG1eTgmVIBQjWTiSknSl17ytVyDk/ZFb0rOaGueYD9WXHr6iDn03F3N jxnvDdJ3NLA4a+IN7iirOh3ZnusCsQGY8HE5ooKU/Q4Ix5+/0TVFNTt7/mE6vEsk InuoOTD1RG7OPREKa/spZTXtHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMBnMHrg td0nfFJgk7/bT0ceqfqHMB8GA1UdIwQYMBaAFFagMWf64SsboUu4R01EK2dwu5gp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNkJENy9BNjUxQjQ3NEFD NEYxMUVCODNEMThFMjhDNEY5QUUwMi9WcUF4Wl9yaEt4dWhTN2hIVFVRclozQzdt Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZxQXhaX3JoS3h1aFM3aEhUVVFyWjNDN21Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzZCRDcvQTY1MUI0NzRBQzRGMTFFQjgzRDE4RTI4QzRGOUFFMDIvRTIyQkQ2MzZB QzUwMTFFQkEzN0NDQTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIxnDAwDQYJKoZIhvcNAQELBQADggEBALKa0BCEzgr6cZW1 m28A35WdhdbUjT9YFNqBiYh8T6P52JC3zNRNEnWch4fMY0ylj4ZIIzn7KIlG62ia +SNZTtos6jxd3Lt0mb/qU89kr53x3jjMrOljWzkDEKRBsiurCpd26SNT+d/M8Thq UJuySsdBLSeAxE7p8e+3gaQAL3eNpMSpmu57rBBimizogu02u/M9iDjUK87bBOi0 PdplQ2AQ+XKXhcry53jdAYpSmrSG9ViJZPVWMZttp2f8v/ySxJbjvu+0vBUu5mYb dgoam0ZHGY14MUpFQoKwZ7Du/Meu6bFEuhelO2SL0nq+Fd3twhdpKh8DCf7b6UWq X1oa9pg= -----END CERTIFICATE-----Generated at Fri Nov 22 23:39:24 2024 by rpki-client on console-fra.rpki-client.org