$ rpki-client -vvf rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa File: E366C4B83B2611E9906E7B81C4F9AE02.roa (raw, json) Hash identifier: vcJ4eetZb+dZrnxUFcu6W7lJNDel2fwyC9zxUGQn1i0= Subject key identifier: E1:8B:08:6E:0A:5D:52:56:C3:0B:15:21:46:60:99:A9:B6:36:D5:36 Certificate issuer: /CN=A9187386/serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Certificate serial: 0F96 Authority key identifier: DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa Signing time: Fri 31 May 2024 19:10:42 +0000 ROA not before: Fri 31 May 2024 19:10:42 +0000 ROA not after: Tue 01 Oct 2024 00:00:00 +0000 asID: 38229 IP address blocks: 192.248.0.0/17 maxlen: 17 192.248.0.0/22 maxlen: 22 192.248.4.0/22 maxlen: 22 192.248.8.0/21 maxlen: 21 192.248.16.0/20 maxlen: 20 192.248.32.0/19 maxlen: 19 192.248.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 15:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3990 (0xf96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187386/serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Validity Not Before: May 31 19:10:42 2024 GMT Not After : Oct 1 00:00:00 2024 GMT Subject: CN=665a20b2-ebc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:42:57:b8:4e:00:bd:d6:bb:cb:c6:a0:27:d1: 97:7c:04:93:b4:06:b4:82:4d:6c:ad:5f:2e:b5:4e: 46:f8:4c:b0:d9:b6:d9:1a:1c:d3:2d:30:7f:f9:5f: 38:d4:33:d2:32:b5:4e:ff:e1:6c:ba:8a:38:f0:9c: 19:82:2d:d8:68:95:7f:b2:c4:de:d6:82:c5:5b:8f: 85:f4:b3:cf:c3:9d:37:8e:d9:eb:c3:23:af:0a:dd: 2d:5f:18:27:d7:de:08:61:87:fa:a0:04:df:c2:6b: a7:42:f4:6c:02:5f:bb:75:1d:e4:67:92:e8:ab:ff: 0d:d1:99:4b:6e:ad:36:72:c8:cb:74:78:4e:ed:cc: 90:ff:69:67:70:e5:03:20:cb:87:4e:5f:78:fe:90: 89:4c:2c:d7:4c:67:29:6a:42:c8:b9:f9:77:22:2e: df:d5:9a:f4:2f:48:b8:30:3c:1f:f8:13:71:da:78: 3f:fa:9e:a7:33:0d:55:92:78:68:80:0a:1b:30:65: a5:de:f7:ec:42:13:78:bb:16:9f:7e:99:70:a0:38: 3e:f9:43:9f:7e:d5:d1:a1:b3:c9:ec:15:36:ff:a7: dd:66:25:36:e0:7a:53:f3:e8:eb:ae:f4:33:01:05: e9:95:d5:a1:53:bc:95:ac:e2:69:f4:29:7d:4a:53: 39:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:8B:08:6E:0A:5D:52:56:C3:0B:15:21:46:60:99:A9:B6:36:D5:36 X509v3 Authority Key Identifier: keyid:DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.248.0.0/17 Signature Algorithm: sha256WithRSAEncryption cc:76:a1:de:5f:eb:8e:6c:16:68:8b:2e:95:b0:bd:84:83:e0: 52:81:17:8c:55:c6:49:3e:4a:a9:dd:ab:6c:ea:2d:b4:ca:83: 92:90:d9:55:fd:a3:d7:22:ff:34:da:df:24:cf:f4:ce:97:ef: 9a:b7:f9:cb:43:9e:7c:a0:1f:55:0e:05:cc:a1:b9:ec:d9:f1: 5d:63:84:fb:c5:03:46:10:60:8c:07:19:98:cc:3a:44:8e:1a: 0b:78:b9:1e:0c:ab:e6:2a:9d:a3:21:b3:18:e3:fa:d5:af:6a: c1:16:55:77:77:46:00:21:63:0e:37:cd:8d:ae:21:d8:d2:67: 9b:90:5d:cf:8f:11:0b:f8:aa:91:6b:5d:51:95:91:7a:47:09: bd:56:61:11:36:85:19:70:32:11:b2:71:11:c0:3b:30:d7:88: 93:a6:e8:13:f1:6b:d0:7a:b6:f2:26:ee:0d:75:6a:74:74:8f: 56:73:b0:ae:89:ab:15:cd:1f:a2:c1:1d:2c:32:25:c7:96:f4: 02:b9:f2:dc:fe:42:3d:26:8f:ec:5b:a1:52:ad:a4:c5:4c:8a: ab:f0:c2:98:18:01:a2:2b:37:15:d7:82:5c:d4:c8:88:2b:0c: 5e:85:c6:32:75:b7:91:9a:6a:94:5e:c4:e8:d6:c3:02:02:c4: af:d6:6e:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD5YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczODYxMTAvBgNVBAUTKERFMEM4RjQyQkNBMDVCMkY1NTgxRTZCQ0NCNEMxNEE2 RTY3MUI2MTkwHhcNMjQwNTMxMTkxMDQyWhcNMjQxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhMjBiMi1lYmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0UJXuE4Avda7y8agJ9GXfASTtAa0gk1srV8utU5G+Eyw2bbZGhzTLTB/+V84 1DPSMrVO/+Fsuoo48JwZgi3YaJV/ssTe1oLFW4+F9LPPw503jtnrwyOvCt0tXxgn 194IYYf6oATfwmunQvRsAl+7dR3kZ5Loq/8N0ZlLbq02csjLdHhO7cyQ/2lncOUD IMuHTl94/pCJTCzXTGcpakLIufl3Ii7f1Zr0L0i4MDwf+BNx2ng/+p6nMw1Vknho gAobMGWl3vfsQhN4uxaffplwoDg++UOfftXRobPJ7BU2/6fdZiU24HpT8+jrrvQz AQXpldWhU7yVrOJp9Cl9SlM5GQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOGLCG4K XVJWwwsVIUZgmam2NtU2MB8GA1UdIwQYMBaAFN4Mj0K8oFsvVYHmvMtMFKbmcbYZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzM4Ni80OUNENkEzQzNC MjYxMUU5QjIwRDI2ODFDNEY5QUUwMi8zZ3lQUXJ5Z1d5OVZnZWE4eTB3VXB1Wnh0 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNneVBRcnlnV3k5VmdlYTh5MHdVcHVaeHRoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczODYvNDlDRDZBM0MzQjI2MTFFOUIyMEQyNjgxQzRGOUFFMDIvRTM2NkM0Qjgz QjI2MTFFOTkwNkU3QjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAfA+AAwDQYJKoZIhvcNAQELBQADggEBAMx2od5f645sFmiL LpWwvYSD4FKBF4xVxkk+Sqndq2zqLbTKg5KQ2VX9o9ci/zTa3yTP9M6X75q3+ctD nnygH1UOBcyhuezZ8V1jhPvFA0YQYIwHGZjMOkSOGgt4uR4Mq+YqnaMhsxjj+tWv asEWVXd3RgAhYw43zY2uIdjSZ5uQXc+PEQv4qpFrXVGVkXpHCb1WYRE2hRlwMhGy cRHAOzDXiJOm6BPxa9B6tvIm7g11anR0j1ZzsK6JqxXNH6LBHSwyJceW9AK58tz+ Qj0mj+xboVKtpMVMiqvwwpgYAaIrNxXXglzUyIgrDF6FxjJ1t5GaapRexOjWwwIC xK/WbgE= -----END CERTIFICATE-----Generated at Fri Jun 14 18:52:11 2024 by rpki-client on console-fra.rpki-client.org