$ rpki-client -vvf rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/49EECD288DB811E98ACC9F7EC4F9AE02.roa File: 49EECD288DB811E98ACC9F7EC4F9AE02.roa (raw, json) Hash identifier: lwHJVdbN23eCChW/THPLEAzro1WeGykTAhAcNxH5FKo= Subject key identifier: D0:75:34:67:0E:16:25:9A:C1:45:40:C1:32:52:1F:39:44:9E:2B:88 Certificate issuer: /CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Certificate serial: 33F0 Authority key identifier: 9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/49EECD288DB811E98ACC9F7EC4F9AE02.roa Signing time: Tue 20 Jun 2023 14:50:36 +0000 ROA not before: Tue 20 Jun 2023 14:50:36 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 55514 IP address blocks: 203.209.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 14:03:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13296 (0x33f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91697FA/serialNumber=9F82DBC9466312C5BA2E921279302400956A982A Validity Not Before: Jun 20 14:50:36 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6491bcbc-6e6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1b:a6:2e:c0:d9:f5:6d:ea:cc:29:62:2b:80: 83:77:9a:a3:0b:fe:13:3b:6f:94:b0:77:fc:7b:3a: 3a:e9:89:95:ef:cf:32:09:b2:11:1a:ce:1e:3b:a5: 8e:17:29:85:c5:5e:13:05:59:09:f4:92:07:df:c2: 11:09:7d:bb:cf:8e:17:5a:3c:bd:6c:6d:f2:a0:6f: 13:3a:51:b8:d2:12:f2:c4:2d:37:20:3b:3e:29:c5: 92:05:28:49:4a:43:5b:8b:64:a1:5e:9e:27:32:ce: 22:d7:e7:6f:a7:47:a1:53:fe:8c:b5:3b:63:4e:8a: 24:4f:c7:50:7a:02:b9:3f:ce:c9:d5:27:16:36:aa: 10:69:77:22:4e:76:8f:bf:a1:1e:52:83:26:28:12: 26:c0:e2:24:6e:64:1c:bf:7a:91:a4:4b:16:c1:44: 6c:f7:21:05:55:c2:86:6b:b6:33:1e:6e:74:57:0d: 74:49:e7:65:42:96:06:c4:93:9b:f4:70:de:88:f5: f5:47:25:25:fc:5b:f9:32:67:99:50:df:2d:76:2f: b1:21:d1:43:ca:01:a4:fc:63:36:df:21:10:b1:2c: 35:29:9e:b2:00:2e:48:23:0c:9b:ee:bf:89:a6:4e: 9a:ec:8c:0f:bb:fc:98:4f:9e:8e:ae:62:d9:18:cd: 10:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:75:34:67:0E:16:25:9A:C1:45:40:C1:32:52:1F:39:44:9E:2B:88 X509v3 Authority Key Identifier: keyid:9F:82:DB:C9:46:63:12:C5:BA:2E:92:12:79:30:24:00:95:6A:98:2A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/n4LbyUZjEsW6LpISeTAkAJVqmCo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n4LbyUZjEsW6LpISeTAkAJVqmCo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91697FA/27F83B701D8311E2932921D808B02CD2/49EECD288DB811E98ACC9F7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.209.90.0/24 Signature Algorithm: sha256WithRSAEncryption af:cc:1e:d2:8d:4d:f5:68:7c:75:07:00:3a:b0:38:c6:72:13: f1:2d:13:d4:2c:76:78:58:2a:28:57:1b:7e:1e:13:94:80:08: df:13:99:2b:25:48:47:8c:bf:0c:11:56:37:f9:64:19:04:f4: 8c:38:67:b8:73:b9:c3:6d:fb:46:7d:2b:4d:d9:37:a6:04:ed: 9b:1f:9d:36:3b:7e:b5:a9:89:54:23:bc:25:49:22:3a:cc:91: 95:80:4e:ad:22:13:0b:df:97:02:85:44:33:de:ad:70:5e:13: 10:73:42:61:6c:36:4b:3c:c0:34:a7:61:e9:b8:8a:65:a8:a7: 70:6f:70:c3:a9:95:c1:23:b1:f3:6f:b7:2d:ea:5e:6d:35:ef: e4:2e:b7:7f:3a:71:0a:ed:3b:ca:c5:c0:53:33:db:bb:95:6f: 3e:1b:22:97:f7:f3:56:d9:1e:a7:b1:e0:91:02:c4:2a:4f:0b: ce:74:d5:24:eb:6a:30:94:a0:2a:bc:23:23:18:c9:d5:79:1b: d1:f0:e0:ac:54:e5:99:98:78:d4:3c:08:cb:95:4c:eb:ea:43: d9:12:b8:a1:a0:72:40:20:80:d0:19:6e:6e:b3:fc:0d:6a:4d: 27:d2:6a:32:41:e6:d8:c2:bc:db:fb:17:3d:a0:c8:ad:7d:bf: 41:6b:c7:41 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICM/AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Njk3RkExMTAvBgNVBAUTKDlGODJEQkM5NDY2MzEyQzVCQTJFOTIxMjc5MzAyNDAw OTU2QTk4MkEwHhcNMjMwNjIwMTQ1MDM2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDkxYmNiYy02ZTZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6humLsDZ9W3qzCliK4CDd5qjC/4TO2+UsHf8ezo66YmV788yCbIRGs4eO6WO FymFxV4TBVkJ9JIH38IRCX27z44XWjy9bG3yoG8TOlG40hLyxC03IDs+KcWSBShJ SkNbi2ShXp4nMs4i1+dvp0ehU/6MtTtjTookT8dQegK5P87J1ScWNqoQaXciTnaP v6EeUoMmKBImwOIkbmQcv3qRpEsWwURs9yEFVcKGa7YzHm50Vw10SedlQpYGxJOb 9HDeiPX1RyUl/Fv5MmeZUN8tdi+xIdFDygGk/GM23yEQsSw1KZ6yAC5IIwyb7r+J pk6a7IwPu/yYT56OrmLZGM0Q1QIDAQABo4IClTCCApEwHQYDVR0OBBYEFNB1NGcO FiWawUVAwTJSHzlEniuIMB8GA1UdIwQYMBaAFJ+C28lGYxLFui6SEnkwJACVapgq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2OTdGQS8yN0Y4M0I3MDFE ODMxMUUyOTMyOTIxRDgwOEIwMkNEMi9uNExieVVaakVzVzZMcElTZVRBa0FKVnFt Q28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL240TGJ5VVpqRXNXNkxwSVNlVEFrQUpWcW1Dby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Njk3RkEvMjdGODNCNzAxRDgzMTFFMjkzMjkyMUQ4MDhCMDJDRDIvNDlFRUNEMjg4 REI4MTFFOThBQ0M5RjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBADL0VowDQYJKoZIhvcNAQELBQADggEBAK/MHtKNTfVofHUH ADqwOMZyE/EtE9QsdnhYKihXG34eE5SACN8TmSslSEeMvwwRVjf5ZBkE9Iw4Z7hz ucNt+0Z9K03ZN6YE7ZsfnTY7frWpiVQjvCVJIjrMkZWATq0iEwvflwKFRDPerXBe ExBzQmFsNks8wDSnYem4imWop3BvcMOplcEjsfNvty3qXm017+Qut386cQrtO8rF wFMz27uVbz4bIpf381bZHqex4JECxCpPC8501STrajCUoCq8IyMYydV5G9Hw4KxU 5ZmYeNQ8CMuVTOvqQ9kSuKGgckAggNAZbm6z/A1qTSfSajJB5tjCvNv7Fz2gyK19 v0Frx0E= -----END CERTIFICATE-----Generated at Thu Jun 6 14:59:01 2024 by rpki-client on console-fra.rpki-client.org