$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/52850542A60811EF91FB1113C4F9AE02.roa File: 52850542A60811EF91FB1113C4F9AE02.roa (raw, json) Hash identifier: kowmpjbS8K8YRAisMY96jcR4JecyVpMM9JfAm+PJPWk= Subject key identifier: EC:6B:5A:CC:4F:01:C5:53:68:E9:1A:CD:A5:22:78:73:44:52:27:DA Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 369A Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/52850542A60811EF91FB1113C4F9AE02.roa Signing time: Mon 18 Nov 2024 23:53:34 +0000 ROA not before: Mon 18 Nov 2024 23:53:34 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 20200 IP address blocks: 115.71.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13978 (0x369a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E Validity Not Before: Nov 18 23:53:34 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=673bd37e-f744 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2b:15:cc:c4:bf:5b:78:9b:9a:15:1f:e6:6e: 96:59:31:67:b5:cf:12:9c:56:45:d7:8e:88:a8:5a: 1a:6e:25:97:46:21:40:b3:c8:8a:35:de:3a:6d:20: 8f:fc:ea:d4:99:c3:f7:ff:08:30:34:de:03:33:cb: 66:98:3f:4b:20:1a:44:27:c6:d7:cd:a0:b7:e4:25: f3:6b:85:1a:a0:68:e8:6f:68:56:b2:9e:2f:24:b1: 30:3f:2f:45:f3:5b:61:95:26:ee:83:79:bb:53:38: 85:d4:fb:ba:57:61:8b:f7:d6:2a:62:d2:6e:f0:df: f3:dc:09:9a:aa:58:fb:a3:f3:bb:37:45:5e:cc:87: 5c:68:62:51:48:2a:3d:51:0b:05:de:13:60:0f:00: d5:74:f5:3f:91:19:f5:f3:95:9b:8a:4d:a2:48:4d: d6:97:c4:5f:2d:1c:91:41:ae:2a:53:33:9a:9b:27: c6:39:b9:7a:f4:04:e9:de:a7:42:16:45:e0:c7:18: 56:16:60:52:4f:d5:fc:fc:be:ee:dd:52:ab:57:b2: 51:17:44:c1:ac:7b:82:f5:1d:03:cd:b3:7c:11:71: 6d:21:0b:50:eb:12:d3:ce:e5:51:16:91:a3:5b:a4: c1:2f:14:8e:be:fb:0a:1d:d6:29:1a:78:b1:71:57: 85:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:6B:5A:CC:4F:01:C5:53:68:E9:1A:CD:A5:22:78:73:44:52:27:DA X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/52850542A60811EF91FB1113C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 115.71.26.0/24 Signature Algorithm: sha256WithRSAEncryption e2:c5:7f:cb:45:ce:6b:83:6d:34:d6:79:f0:de:db:07:28:7a: cc:18:1b:9a:bc:e8:0a:6a:9b:4e:2d:fe:3b:04:d9:b8:d1:fe: a1:92:50:4d:49:d2:cd:a6:2d:8d:aa:fb:97:c9:2b:2e:af:e1: d0:ce:ea:60:34:97:ed:ea:ae:bd:fb:ca:50:ff:df:e3:a8:7d: 6c:d8:e7:0f:97:8e:79:e2:84:b3:a8:12:25:e7:2c:60:73:bf: 5d:86:0f:f2:a4:f3:34:f3:af:08:1e:c3:a9:4b:d8:48:56:e1: a8:72:54:87:18:09:24:59:fd:32:08:99:c7:97:7d:0c:20:e0: e6:c6:77:69:19:c2:78:7e:de:70:22:e0:59:b4:f0:45:1a:69: 7f:dd:5f:35:60:b8:91:85:f0:a3:7e:7e:65:1e:62:83:a9:69: a8:37:a9:cb:22:d1:9d:f9:7a:fc:9e:2d:32:a8:53:b7:16:0a: fa:5d:b7:92:cc:99:ee:98:77:45:03:ca:b3:ad:62:1f:21:16: 43:3d:95:e7:88:ca:36:e3:81:ca:95:a6:7f:bc:4e:7e:17:b5: 83:10:70:c2:ee:30:34:3b:00:01:93:dd:87:52:a0:af:af:69: 25:f3:ae:1d:ee:c6:50:73:fd:23:00:ea:2c:67:20:2d:0c:90: 5e:9a:52:74 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNpowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQxMTE4MjM1MzM0WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzNiZDM3ZS1mNzQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyCsVzMS/W3ibmhUf5m6WWTFntc8SnFZF146IqFoabiWXRiFAs8iKNd46bSCP /OrUmcP3/wgwNN4DM8tmmD9LIBpEJ8bXzaC35CXza4UaoGjob2hWsp4vJLEwPy9F 81thlSbug3m7UziF1Pu6V2GL99YqYtJu8N/z3Amaqlj7o/O7N0VezIdcaGJRSCo9 UQsF3hNgDwDVdPU/kRn185Wbik2iSE3Wl8RfLRyRQa4qUzOamyfGObl69ATp3qdC FkXgxxhWFmBST9X8/L7u3VKrV7JRF0TBrHuC9R0DzbN8EXFtIQtQ6xLTzuVRFpGj W6TBLxSOvvsKHdYpGnixcVeFVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOxrWsxP AcVTaOkazaUieHNEUifaMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvNTI4NTA1NDJB NjA4MTFFRjkxRkIxMTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABzRxowDQYJKoZIhvcNAQELBQADggEBAOLFf8tFzmuDbTTW efDe2wcoeswYG5q86Apqm04t/jsE2bjR/qGSUE1J0s2mLY2q+5fJKy6v4dDO6mA0 l+3qrr37ylD/3+OofWzY5w+XjnnihLOoEiXnLGBzv12GD/Kk8zTzrwgew6lL2EhW 4ahyVIcYCSRZ/TIImceXfQwg4ObGd2kZwnh+3nAi4Fm08EUaaX/dXzVguJGF8KN+ fmUeYoOpaag3qcsi0Z35evyeLTKoU7cWCvpdt5LMme6Yd0UDyrOtYh8hFkM9leeI yjbjgcqVpn+8Tn4XtYMQcMLuMDQ7AAGT3YdSoK+vaSXzrh3uxlBz/SMA6ixnIC0M kF6aUnQ= -----END CERTIFICATE-----Generated at Sun Feb 16 20:37:53 2025 by rpki-client