$ rpki-client -vvf rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/3FEFA562483D11EC82E81112C4F9AE02.roa File: 3FEFA562483D11EC82E81112C4F9AE02.roa (raw, json) Hash identifier: QNA9/itvhv9mObBs9bYBHmVetm3GHmSDFhk30Zk39c4= Subject key identifier: 37:70:DB:48:98:E0:52:21:00:62:27:21:2A:EC:DA:8A:8C:16:6A:56 Certificate issuer: /CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Certificate serial: 33DA Authority key identifier: BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/3FEFA562483D11EC82E81112C4F9AE02.roa Signing time: Wed 08 May 2024 07:01:37 +0000 ROA not before: Wed 08 May 2024 07:01:37 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 45344 IP address blocks: 210.48.216.0/24 maxlen: 24 210.48.217.0/24 maxlen: 24 210.48.218.0/24 maxlen: 24 210.48.219.0/24 maxlen: 24 210.48.220.0/24 maxlen: 24 210.48.221.0/24 maxlen: 24 210.48.222.0/24 maxlen: 24 210.48.223.0/24 maxlen: 24 2001:df0:18::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 14:53:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13274 (0x33da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C65E8/serialNumber=BCDCE8B06F05962340300C9C4747B5A251A219C4 Validity Not Before: May 8 07:01:37 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=663b2350-92b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:51:db:6e:bd:fb:06:ec:71:8b:07:fe:6d:b2: a7:3c:7a:34:11:64:83:41:28:6c:ad:f9:37:26:88: 16:66:a3:83:7b:30:4e:f2:d0:c6:a8:42:24:2c:5a: fd:4a:1e:a3:60:d5:e9:c0:a0:b7:91:2d:33:ee:f1: a5:43:de:86:b0:67:ff:94:b4:28:b5:b9:df:35:d5: bf:19:98:09:88:70:46:58:ae:57:33:6f:b8:04:8a: ea:92:56:b3:23:e4:02:09:81:2d:50:d9:87:4c:77: f1:d9:b3:77:e2:63:72:12:35:00:88:fd:b1:50:40: 75:43:d9:8f:03:f2:bb:47:34:f6:7c:59:a0:c8:67: c5:60:00:0c:5c:21:cf:f2:3b:da:6e:2c:88:fb:fe: fb:5f:4c:51:44:22:b7:75:e4:72:9c:17:68:77:31: 61:11:f1:0f:ad:d1:05:45:fb:e2:d9:5c:ea:db:86: 3c:48:04:9c:41:ff:b8:92:23:0d:16:37:87:52:45: f1:76:63:9a:35:e8:e6:49:80:b3:4c:ef:7c:0d:c9: cf:ff:a9:c2:f2:97:44:1f:3a:21:ea:b2:82:b8:17: 3c:9d:44:45:4c:1a:a9:e4:42:bb:06:f8:30:1f:ae: b0:7e:ae:a0:11:c1:d0:e5:17:31:25:4c:d8:42:a8: c2:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:70:DB:48:98:E0:52:21:00:62:27:21:2A:EC:DA:8A:8C:16:6A:56 X509v3 Authority Key Identifier: keyid:BC:DC:E8:B0:6F:05:96:23:40:30:0C:9C:47:47:B5:A2:51:A2:19:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/vNzosG8FliNAMAycR0e1olGiGcQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vNzosG8FliNAMAycR0e1olGiGcQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C65E8/A1F23A641D9911E295EB528608B02CD2/3FEFA562483D11EC82E81112C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.48.216.0/21 IPv6: 2001:df0:18::/48 Signature Algorithm: sha256WithRSAEncryption 9a:34:f2:31:59:f7:0f:e2:08:64:f8:1d:e6:b9:c2:85:5a:ea: 20:ea:20:bf:aa:c9:af:58:b4:b9:02:4a:46:00:ed:03:09:4a: ed:af:45:b7:42:5f:6e:1b:35:3c:ee:a9:d9:a3:5a:54:df:da: 0f:57:d0:55:57:54:4e:83:c1:44:77:d8:e0:11:21:3b:3a:e2: 0d:b7:5a:d7:22:5f:6d:ff:98:ce:fd:b2:e8:e9:af:76:c3:55: 01:de:c6:a9:fb:2b:01:61:73:3c:22:75:33:73:a4:90:e2:fa: fc:b9:7f:35:6c:cc:6a:bf:68:a8:05:fb:6e:ed:f1:fb:11:a9: 2f:af:3c:61:80:52:d1:b6:d9:92:74:0a:e6:95:6e:4a:94:57: 7b:8b:ca:56:9a:a3:f8:ab:52:e0:19:e4:67:a2:df:d8:c8:ea: 53:d2:2f:1b:d5:98:e3:7e:eb:1d:2e:3f:0b:f1:49:7a:e3:50: eb:ed:70:e5:75:24:da:5d:e8:b2:c1:92:bc:4f:9d:49:1e:ca: 64:cd:4e:8e:20:e6:8e:13:02:57:51:d1:0c:01:f1:ff:59:9a: 46:08:ed:bd:ce:54:86:b2:d8:94:ca:42:8f:6c:b9:9e:d3:39: 1f:6f:43:b2:a1:bf:18:61:7b:60:2c:23:70:94:2f:61:5a:44: d2:e3:20:1c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICM9owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzY1RTgxMTAvBgNVBAUTKEJDRENFOEIwNkYwNTk2MjM0MDMwMEM5QzQ3NDdCNUEy NTFBMjE5QzQwHhcNMjQwNTA4MDcwMTM3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjNiMjM1MC05MmI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnVHbbr37Buxxiwf+bbKnPHo0EWSDQShsrfk3JogWZqODezBO8tDGqEIkLFr9 Sh6jYNXpwKC3kS0z7vGlQ96GsGf/lLQotbnfNdW/GZgJiHBGWK5XM2+4BIrqklaz I+QCCYEtUNmHTHfx2bN34mNyEjUAiP2xUEB1Q9mPA/K7RzT2fFmgyGfFYAAMXCHP 8jvabiyI+/77X0xRRCK3deRynBdodzFhEfEPrdEFRfvi2Vzq24Y8SAScQf+4kiMN FjeHUkXxdmOaNejmSYCzTO98DcnP/6nC8pdEHzoh6rKCuBc8nURFTBqp5EK7Bvgw H66wfq6gEcHQ5RcxJUzYQqjCgwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFDdw20iY 4FIhAGInISrs2oqMFmpWMB8GA1UdIwQYMBaAFLzc6LBvBZYjQDAMnEdHtaJRohnE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjVFOC9BMUYyM0E2NDFE OTkxMUUyOTVFQjUyODYwOEIwMkNEMi92Tnpvc0c4RmxpTkFNQXljUjBlMW9sR2lH Y1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZOem9zRzhGbGlOQU1BeWNSMGUxb2xHaUdjUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzY1RTgvQTFGMjNBNjQxRDk5MTFFMjk1RUI1Mjg2MDhCMDJDRDIvM0ZFRkE1NjI0 ODNEMTFFQzgyRTgxMTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAPSMNgwDwQCAAIwCQMHACABDfAAGDANBgkqhkiG9w0BAQsF AAOCAQEAmjTyMVn3D+IIZPgd5rnChVrqIOogv6rJr1i0uQJKRgDtAwlK7a9Ft0Jf bhs1PO6p2aNaVN/aD1fQVVdUToPBRHfY4BEhOzriDbda1yJfbf+Yzv2y6OmvdsNV Ad7GqfsrAWFzPCJ1M3OkkOL6/Ll/NWzMar9oqAX7bu3x+xGpL688YYBS0bbZknQK 5pVuSpRXe4vKVpqj+KtS4BnkZ6Lf2MjqU9IvG9WY437rHS4/C/FJeuNQ6+1w5XUk 2l3ossGSvE+dSR7KZM1OjiDmjhMCV1HRDAHx/1maRgjtvc5UhrLYlMpCj2y5ntM5 H29DsqG/GGF7YCwjcJQvYVpE0uMgHA== -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:56 2024 by rpki-client on console-ams.rpki-client.org