$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/46186F4EC6E711EDA2FCBA34C4F9AE02.roa File: 46186F4EC6E711EDA2FCBA34C4F9AE02.roa (raw, json) Hash identifier: XzgXWY7//UVaNEuQIopWxPc37VBbWxsWdMNjr7wRlfY= Subject key identifier: 7D:DE:9A:34:A8:B6:E9:D6:35:C5:EC:F7:D9:52:1A:67:A5:BE:F7:40 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 35E9 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/46186F4EC6E711EDA2FCBA34C4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:18 +0000 ROA not before: Fri 16 Aug 2024 14:40:17 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 10049 IP address blocks: 124.66.178.0/24 maxlen: 24 211.45.60.0/24 maxlen: 24 211.45.61.0/24 maxlen: 24 211.45.62.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13801 (0x35e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Aug 16 14:40:17 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64d1-cfca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f6:d5:bc:19:05:74:91:a7:cf:67:6e:4d:97: 60:c0:d4:a4:8c:a5:8e:bd:b8:26:78:07:02:8d:61: 1f:56:a1:0e:c8:30:b6:35:b6:02:89:30:12:01:11: fd:a9:66:d3:c1:32:b9:51:25:8b:8b:5e:a1:f0:aa: ae:01:8f:f6:94:a6:dd:62:ff:9f:1e:44:2d:0c:3d: 63:d9:fa:52:57:0a:47:91:2a:4b:9d:c5:8e:56:69: 3c:04:50:df:19:ac:46:c4:77:e0:2a:c1:f6:e8:55: 30:c3:1b:ec:14:a0:ff:b7:11:28:f5:22:6c:58:16: fc:01:7d:8e:18:1d:d9:2d:13:2c:50:87:0b:63:c8: 1d:85:52:6b:9e:33:96:ca:2d:93:b5:ea:b8:47:f7: 6f:1b:1f:ea:8a:a0:66:83:b7:52:b4:5f:bc:d9:a9: 00:53:4c:2a:05:bd:61:0d:ad:fe:9c:29:37:9b:e6: 48:3a:7b:07:03:1c:99:6f:2a:86:66:b6:6c:a6:62: c6:ce:85:20:0f:99:26:b5:01:c6:e2:a2:f1:6f:ff: d0:68:a3:0a:5e:fb:26:4d:48:e4:b6:b6:74:81:02: f1:f8:39:10:48:b9:16:55:76:87:07:ef:fe:9f:03: 73:0a:ed:05:f6:51:40:1e:32:de:0a:10:9b:cf:c0: 5f:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:DE:9A:34:A8:B6:E9:D6:35:C5:EC:F7:D9:52:1A:67:A5:BE:F7:40 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/46186F4EC6E711EDA2FCBA34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 124.66.178.0/24 211.45.60.0-211.45.62.255 Signature Algorithm: sha256WithRSAEncryption d4:57:da:8d:11:24:d2:e2:05:75:9a:f2:9b:bf:bd:65:b2:50: f5:04:19:78:63:39:f5:30:aa:47:25:8c:6c:48:47:f3:da:b7: f3:d8:eb:a7:50:10:6a:70:a4:3a:fe:72:f5:0d:db:af:7a:c5: 4b:f7:d8:a9:77:08:13:ba:cd:3a:36:1b:cb:b4:3b:3b:1f:96: 02:53:20:28:31:64:e9:a6:e9:9c:9c:de:85:fb:a0:32:ab:e1: ea:0a:04:54:f1:8b:81:e7:0c:0e:cd:e6:13:3c:02:c5:fc:67: 17:57:97:ec:4c:2d:30:4a:5c:f6:3d:de:4e:67:88:e6:81:a8: 3c:cf:2a:ae:3e:25:1b:89:6a:47:71:e9:cd:c5:51:ef:8b:e6: 2e:de:64:10:be:10:40:4e:05:80:91:b4:b2:df:55:fd:5e:ee: 10:fc:d6:7a:1f:27:e5:81:a1:51:6a:58:4e:d3:06:5d:58:8c: 06:e5:74:82:f2:89:1d:22:61:5c:d6:e3:88:02:c4:22:e2:dc: 09:1d:c5:a6:37:5d:62:41:d3:08:0b:b7:2e:fb:ff:69:d7:67: 20:c4:90:9f:41:8e:00:33:82:3f:f6:b1:3f:a8:bf:f6:f1:ed: 61:9c:49:56:53:15:6d:b9:b7:5a:3c:75:4f:9a:12:be:77:a3: ee:ae:70:d1 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICNekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQwODE2MTQ0MDE3WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRkMS1jZmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6fbVvBkFdJGnz2duTZdgwNSkjKWOvbgmeAcCjWEfVqEOyDC2NbYCiTASARH9 qWbTwTK5USWLi16h8KquAY/2lKbdYv+fHkQtDD1j2fpSVwpHkSpLncWOVmk8BFDf GaxGxHfgKsH26FUwwxvsFKD/txEo9SJsWBb8AX2OGB3ZLRMsUIcLY8gdhVJrnjOW yi2Tteq4R/dvGx/qiqBmg7dStF+82akAU0wqBb1hDa3+nCk3m+ZIOnsHAxyZbyqG ZrZspmLGzoUgD5kmtQHG4qLxb//QaKMKXvsmTUjktrZ0gQLx+DkQSLkWVXaHB+/+ nwNzCu0F9lFAHjLeChCbz8BfMwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFH3emjSo tunWNcXs99lSGmelvvdAMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNDYxODZGNEVD NkU3MTFFREEyRkNCQTM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBAB8QrIwDAMEAtMtPAMEANMtPjANBgkqhkiG9w0BAQsFAAOC AQEA1FfajREk0uIFdZrym7+9ZbJQ9QQZeGM59TCqRyWMbEhH89q389jrp1AQanCk Ov5y9Q3br3rFS/fYqXcIE7rNOjYby7Q7Ox+WAlMgKDFk6abpnJzehfugMqvh6goE VPGLgecMDs3mEzwCxfxnF1eX7EwtMEpc9j3eTmeI5oGoPM8qrj4lG4lqR3HpzcVR 74vmLt5kEL4QQE4FgJG0st9V/V7uEPzWeh8n5YGhUWpYTtMGXViMBuV0gvKJHSJh XNbjiALEIuLcCR3FpjddYkHTCAu3Lvv/addnIMSQn0GOADOCP/axP6i/9vHtYZxJ VlMVbbm3Wjx1T5oSvnej7q5w0Q== -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:25 2024 by rpki-client on console-fra.rpki-client.org