$ rpki-client -vvf rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/75D91256B2F311EBB8A53526C4F9AE02.roa File: 75D91256B2F311EBB8A53526C4F9AE02.roa (raw, json) Hash identifier: Cf3w2+/kQFFdBNp0nOAXgGT+JLVmdNCHNGijos8QA7A= Subject key identifier: 17:A5:B0:43:26:C7:01:51:2A:14:17:7F:85:2E:88:DC:22:C2:3C:68 Certificate issuer: /CN=A9118D0F/serialNumber=43E1E8C4261CE07D4F8E4CFB7A3F833FBB46B88C Certificate serial: 08D6 Authority key identifier: 43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/75D91256B2F311EBB8A53526C4F9AE02.roa Signing time: Fri 08 Nov 2024 20:28:45 +0000 ROA not before: Fri 08 Nov 2024 20:28:45 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 139750 IP address blocks: 49.128.64.0/24 maxlen: 24 49.128.66.0/24 maxlen: 24 49.128.68.0/24 maxlen: 24 49.128.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.crl rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2262 (0x8d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9118D0F/serialNumber=43E1E8C4261CE07D4F8E4CFB7A3F833FBB46B88C Validity Not Before: Nov 8 20:28:45 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=672e747d-6189 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:5a:2d:48:76:a7:45:9a:0a:ce:c4:68:f9:55: b5:f4:de:63:f0:24:c6:a8:5b:0b:0f:bd:d6:aa:5a: c0:05:08:ad:49:73:31:44:5e:0b:59:cf:ee:a8:06: 52:8a:a2:a2:c0:a3:e3:b0:0d:7d:dd:65:62:04:84: bf:03:8d:9a:08:32:20:06:77:1f:a7:cc:cc:89:e8: da:f9:05:ce:73:29:e8:7b:61:47:49:57:a4:45:79: 77:38:38:d8:1f:94:cf:e2:c4:f3:c3:62:d0:10:e5: 02:d1:0b:c4:70:c4:21:da:4b:e2:c0:1d:15:94:b1: 22:82:12:43:9d:10:bb:b7:78:ec:a7:1c:32:ec:37: 25:30:13:da:7b:4d:38:da:0d:e7:7a:24:6a:67:0a: 45:38:d7:e1:2f:ec:27:b3:ce:7d:c7:bc:fa:75:15: ce:6b:76:6f:8a:e6:f1:89:d1:3d:46:ac:f1:cc:ac: 1f:c9:d2:a3:eb:2a:0c:d5:35:da:72:d5:03:e3:0b: 4f:52:e7:77:00:bf:f1:e1:09:75:42:95:66:8d:52: 0b:92:2d:69:87:65:8b:58:aa:e5:d4:1a:12:d4:14: 7b:cc:42:3d:3d:b6:cc:8d:5d:6b:18:64:e4:f1:da: 5f:e5:d1:e9:8e:01:14:97:a9:be:f4:84:6e:c7:f0: a2:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:A5:B0:43:26:C7:01:51:2A:14:17:7F:85:2E:88:DC:22:C2:3C:68 X509v3 Authority Key Identifier: keyid:43:E1:E8:C4:26:1C:E0:7D:4F:8E:4C:FB:7A:3F:83:3F:BB:46:B8:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q-HoxCYc4H1Pjkz7ej-DP7tGuIw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9118D0F/7D2273B4A64611EAAF9E9162C4F9AE02/75D91256B2F311EBB8A53526C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.128.64.0/24 49.128.66.0/24 49.128.68.0/24 49.128.81.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:1c:9c:90:8a:5e:01:04:20:51:d1:20:79:56:5f:87:f5:ef: 78:aa:a5:8f:b4:d9:8b:4c:03:8c:a0:38:1e:b6:b3:ac:c5:ab: 37:59:30:13:26:9c:2b:b2:90:63:a7:45:62:b8:77:8a:ca:74: 0f:22:16:fd:48:ce:f1:57:17:64:b5:7f:42:b6:10:70:8e:91: 3b:9d:2c:10:26:93:e6:b6:74:38:b2:f9:9f:9a:ce:9c:b6:c9: 37:46:f8:56:20:78:3b:10:35:b4:ef:ff:48:23:d5:e6:6e:d4: a1:04:77:7a:5c:63:2b:9e:fe:2b:24:5e:8d:8a:5c:f3:60:7a: c9:49:6e:a9:bf:53:ec:a8:ea:1b:48:a7:8d:fa:64:0a:f4:19: b7:7e:c9:55:cd:b9:fd:07:ad:84:fc:03:85:f2:15:1b:96:75: cf:c6:9d:e5:9c:84:33:78:44:d1:ec:41:23:61:73:07:44:c7: 79:23:c6:32:84:47:25:5c:78:37:c6:d7:40:11:7f:79:fb:90: 2b:65:79:ed:49:31:3b:1f:d5:33:72:f8:e0:4a:5b:e8:50:28: c3:2d:11:18:27:7f:eb:f0:1e:65:72:b1:de:47:a1:87:10:ce: 0d:15:78:9d:dd:dc:b0:3f:63:1f:37:57:47:83:f2:f5:63:f8: 3f:e9:10:33 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCNYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MThEMEYxMTAvBgNVBAUTKDQzRTFFOEM0MjYxQ0UwN0Q0RjhFNENGQjdBM0Y4MzNG QkI0NkI4OEMwHhcNMjQxMTA4MjAyODQ1WhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzJlNzQ3ZC02MTg5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAylotSHanRZoKzsRo+VW19N5j8CTGqFsLD73WqlrABQitSXMxRF4LWc/uqAZS iqKiwKPjsA193WViBIS/A42aCDIgBncfp8zMieja+QXOcynoe2FHSVekRXl3ODjY H5TP4sTzw2LQEOUC0QvEcMQh2kviwB0VlLEighJDnRC7t3jspxwy7DclMBPae004 2g3neiRqZwpFONfhL+wns859x7z6dRXOa3ZviubxidE9RqzxzKwfydKj6yoM1TXa ctUD4wtPUud3AL/x4Ql1QpVmjVILki1ph2WLWKrl1BoS1BR7zEI9PbbMjV1rGGTk 8dpf5dHpjgEUl6m+9IRux/CicwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBelsEMm xwFRKhQXf4UuiNwiwjxoMB8GA1UdIwQYMBaAFEPh6MQmHOB9T45M+3o/gz+7RriM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExOEQwRi83RDIyNzNCNEE2 NDYxMUVBQUY5RTkxNjJDNEY5QUUwMi9RLUhveENZYzRIMVBqa3o3ZWotRFA3dEd1 SXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EtSG94Q1ljNEgxUGprejdlai1EUDd0R3VJdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MThEMEYvN0QyMjczQjRBNjQ2MTFFQUFGOUU5MTYyQzRGOUFFMDIvNzVEOTEyNTZC MkYzMTFFQkI4QTUzNTI2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAxgEADBAAxgEIDBAAxgEQDBAAxgFEwDQYJKoZIhvcNAQEL BQADggEBAD4cnJCKXgEEIFHRIHlWX4f173iqpY+02YtMA4ygOB62s6zFqzdZMBMm nCuykGOnRWK4d4rKdA8iFv1IzvFXF2S1f0K2EHCOkTudLBAmk+a2dDiy+Z+azpy2 yTdG+FYgeDsQNbTv/0gj1eZu1KEEd3pcYyue/iskXo2KXPNgeslJbqm/U+yo6htI p436ZAr0Gbd+yVXNuf0HrYT8A4XyFRuWdc/GneWchDN4RNHsQSNhcwdEx3kjxjKE RyVceDfG10ARf3n7kCtlee1JMTsf1TNy+OBKW+hQKMMtERgnf+vwHmVysd5HoYcQ zg0VeJ3d3LA/Yx83V0eD8vVj+D/pEDM= -----END CERTIFICATE-----Generated at Wed Nov 20 21:34:44 2024 by rpki-client on console-ams.rpki-client.org