$ rpki-client -vvf rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/75D91256B2F311EBB8A53526C4F9AE02.roa File: 75D91256B2F311EBB8A53526C4F9AE02.roa (raw, json) Hash identifier: EIkDjvD6OdJF56nVBhQ0vcLS9lmzaIPhojjmsWvvLU8= Subject key identifier: EF:8D:34:46:B6:1C:2E:CE:60:3E:5F:21:B4:24:10:46:46:24:72:CC Certificate issuer: /CN=A9118D0F/serialNumber=43E1E8C4261CE07D4F8E4CFB7A3F833FBB46B88C Certificate serial: 0817 Authority key identifier: 43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/75D91256B2F311EBB8A53526C4F9AE02.roa Signing time: Mon 06 Nov 2023 21:49:16 +0000 ROA not before: Mon 06 Nov 2023 21:49:16 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139750 IP address blocks: 49.128.64.0/24 maxlen: 24 49.128.66.0/24 maxlen: 24 49.128.68.0/24 maxlen: 24 49.128.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.crl rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 21:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2071 (0x817) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118D0F/serialNumber=43E1E8C4261CE07D4F8E4CFB7A3F833FBB46B88C Validity Not Before: Nov 6 21:49:16 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65495f5c-bd29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:fa:13:69:ea:d0:22:b3:6d:ed:db:5e:b0:22: ef:80:d4:a9:1b:3a:eb:7d:18:7b:b4:71:14:86:82: c6:ca:88:a4:98:84:7e:aa:1e:ab:52:54:4a:b7:9a: 51:d1:5c:72:f8:24:1b:a2:88:78:6d:8a:45:36:7b: c0:4b:70:bb:19:4f:36:21:64:98:8a:58:05:30:29: 9a:7a:1e:1e:02:8e:35:af:fc:84:04:18:46:c2:c0: d3:b3:cd:77:c5:fa:2e:16:2e:15:d9:d8:d7:be:43: ca:a9:48:fd:fd:11:d1:d2:8f:8f:0b:b4:e1:33:a0: 00:ca:2f:5e:57:22:ef:9a:53:09:88:3c:c2:5f:4e: 01:11:12:cb:15:2e:e7:57:2a:ea:49:38:49:dc:fa: 07:30:6f:ec:cf:ca:4d:c6:29:ce:6f:77:75:cf:85: ee:ca:fa:1d:f4:8f:96:ea:26:c9:ae:96:f0:a5:de: f5:de:a1:77:c6:61:17:9b:29:72:f4:31:c2:4a:91: c7:49:cc:1a:fe:52:0e:fb:b2:e6:1e:6a:38:00:f6: a6:c8:41:e3:85:f9:5e:6f:32:33:97:2d:45:23:bc: 16:5f:b6:3d:5f:6c:4a:0e:a0:d3:f1:8a:3f:c5:53: 9b:fc:ea:b7:e9:b4:12:48:17:1a:4d:19:f5:c7:3d: 4f:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:8D:34:46:B6:1C:2E:CE:60:3E:5F:21:B4:24:10:46:46:24:72:CC X509v3 Authority Key Identifier: keyid:43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/75D91256B2F311EBB8A53526C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.128.64.0/24 49.128.66.0/24 49.128.68.0/24 49.128.81.0/24 Signature Algorithm: sha256WithRSAEncryption 03:5b:96:7a:49:fa:8d:90:ea:8b:79:e0:75:f9:af:3c:ff:75: 1a:83:f1:71:3a:f7:2f:89:eb:84:47:23:2a:37:ec:ba:b7:5f: cc:59:f8:6c:59:09:67:16:0b:42:a1:14:86:88:a3:12:fd:84: 0d:42:5c:aa:9b:03:81:de:e0:cc:3a:e5:09:87:8b:a4:d1:91: 67:5b:ea:24:12:3f:94:9f:05:35:7a:31:b2:87:9b:f3:9a:8e: 07:cf:d8:cd:e1:dd:ee:e0:c3:33:e5:62:c2:76:4a:65:cc:fe: 97:fb:77:b0:d0:25:9a:0c:e0:72:52:f5:10:e3:2a:f9:67:8f: ac:9a:af:dc:5e:dc:b1:3b:da:27:29:e1:78:60:95:f0:11:6c: 18:f1:ea:b4:22:a9:ec:cc:3e:52:6b:23:5f:dd:ea:cb:ab:27: 4d:43:42:3e:dd:99:aa:9a:92:4d:dc:4e:ed:0c:27:86:e3:32: a4:1c:b1:8e:29:42:c9:7c:43:88:c0:1b:57:9f:8c:fb:ff:cb: 6d:5e:44:e8:9c:df:37:a4:dd:f4:43:29:df:49:ac:3b:4f:39: 63:8a:5e:84:75:c2:60:77:1e:c5:61:4d:9f:71:7b:4f:da:86: bc:65:c3:67:0b:63:1b:43:f2:a8:98:8a:31:08:88:83:06:f8: 92:72:ae:f0 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThEMEYxMTAvBgNVBAUTKDQzRTFFOEM0MjYxQ0UwN0Q0RjhFNENGQjdBM0Y4MzNG QkI0NkI4OEMwHhcNMjMxMTA2MjE0OTE2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ5NWY1Yy1iZDI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoPoTaerQIrNt7dtesCLvgNSpGzrrfRh7tHEUhoLGyoikmIR+qh6rUlRKt5pR 0Vxy+CQbooh4bYpFNnvAS3C7GU82IWSYilgFMCmaeh4eAo41r/yEBBhGwsDTs813 xfouFi4V2djXvkPKqUj9/RHR0o+PC7ThM6AAyi9eVyLvmlMJiDzCX04BERLLFS7n VyrqSThJ3PoHMG/sz8pNxinOb3d1z4Xuyvod9I+W6ibJrpbwpd713qF3xmEXmyly 9DHCSpHHScwa/lIO+7LmHmo4APamyEHjhflebzIzly1FI7wWX7Y9X2xKDqDT8Yo/ xVOb/Oq36bQSSBcaTRn1xz1PEQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFO+NNEa2 HC7OYD5fIbQkEEZGJHLMMB8GA1UdIwQYMBaAFEPh6MQmHOB9T45M+3o/gz+7RriM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEQwRi83RDIyNzNCNEE2 NDYxMUVBQUY5RTkxNjJDNEY5QUUwMi9RLUhveENZYzRIMVBqa3o3ZWotRFA3dEd1 SXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtSG94Q1ljNEgxUGprejdlai1EUDd0R3VJdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThEMEYvN0QyMjczQjRBNjQ2MTFFQUFGOUU5MTYyQzRGOUFFMDIvNzVEOTEyNTZC MkYzMTFFQkI4QTUzNTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAxgEADBAAxgEIDBAAxgEQDBAAxgFEwDQYJKoZIhvcNAQEL BQADggEBAANblnpJ+o2Q6ot54HX5rzz/dRqD8XE69y+J64RHIyo37Lq3X8xZ+GxZ CWcWC0KhFIaIoxL9hA1CXKqbA4He4Mw65QmHi6TRkWdb6iQSP5SfBTV6MbKHm/Oa jgfP2M3h3e7gwzPlYsJ2SmXM/pf7d7DQJZoM4HJS9RDjKvlnj6yar9xe3LE72icp 4XhglfARbBjx6rQiqezMPlJrI1/d6surJ01DQj7dmaqakk3cTu0MJ4bjMqQcsY4p Qsl8Q4jAG1efjPv/y21eROic3zek3fRDKd9JrDtPOWOKXoR1wmB3HsVhTZ9xe0/a hrxlw2cLYxtD8qiYijEIiIMG+JJyrvA= -----END CERTIFICATE-----Generated at Tue May 14 22:21:53 2024 by rpki-client on console-fra.rpki-client.org