$ rpki-client -vvf rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/B77A93FE852411EFA67F8144C4F9AE02.roa File: B77A93FE852411EFA67F8144C4F9AE02.roa (raw, json) Hash identifier: b5QJS+nZoFtgRzTvx67xjRQCXHWDtuSb6KG2sqmbzso= Subject key identifier: 76:76:11:60:B8:87:AF:73:81:2D:FB:15:A5:A4:78:81:83:2F:C3:23 Certificate issuer: /CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Certificate serial: 24BB Authority key identifier: 2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/B77A93FE852411EFA67F8144C4F9AE02.roa Signing time: Tue 08 Oct 2024 03:25:47 +0000 ROA not before: Tue 08 Oct 2024 03:25:47 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 45458 IP address blocks: 147.50.33.0/24 maxlen: 24 147.50.63.0/24 maxlen: 24 147.50.79.0/24 maxlen: 24 147.50.80.0/20 maxlen: 24 147.50.96.0/20 maxlen: 24 147.50.112.0/21 maxlen: 21 147.50.119.0/24 maxlen: 24 147.50.120.0/22 maxlen: 24 147.50.125.0/24 maxlen: 24 147.50.126.0/23 maxlen: 24 147.50.192.0/19 maxlen: 19 147.50.192.0/24 maxlen: 24 147.50.195.0/24 maxlen: 24 184.82.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:50:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9403 (0x24bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BD54/serialNumber=2F59CEDA614815F4632F39D5A31C2A5148C6B4FA Validity Not Before: Oct 8 03:25:47 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6704a63a-f2fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:35:fa:4f:28:d2:ca:7b:7b:e2:4c:66:5c:91: 24:80:80:a8:1f:30:ce:f0:e5:76:c1:25:44:20:21: 90:ea:ec:46:53:76:6e:d9:f4:a1:88:df:d4:3b:d2: 7b:41:b8:c7:59:8c:14:4a:40:05:f7:37:0f:eb:b2: 6a:37:9d:aa:77:28:8a:e9:1f:5a:e8:cf:a3:97:e5: 83:a2:e2:04:61:02:00:74:4a:da:0f:84:c1:f8:88: c9:08:4c:20:82:3b:ae:63:bc:9f:c1:4a:99:0d:89: 4c:1c:68:32:6c:0c:d9:37:c8:c4:db:39:cd:5e:5a: 13:26:77:7f:79:bd:90:ac:fd:f2:7d:b7:07:ab:60: b2:c3:7d:a3:69:4a:39:89:93:69:71:2e:fe:93:19: d7:60:72:b8:4d:9b:6e:77:4a:6f:a4:3c:79:3c:0b: 0c:72:3e:ee:70:74:e7:d8:a8:0f:c3:9b:e2:df:6a: 22:da:a2:aa:2b:3f:ca:d9:71:90:06:98:57:4a:ef: d3:68:7d:7d:ca:f2:86:ac:b7:d3:9e:18:0c:47:70: 0a:e0:68:05:4c:40:b1:c6:22:72:23:d1:bc:cb:fb: 90:e3:9d:32:45:2b:6c:11:0a:e3:3d:f8:f8:f0:77: 79:9a:54:fe:eb:18:b5:64:7e:4b:34:ad:b0:d7:c1: b1:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:76:11:60:B8:87:AF:73:81:2D:FB:15:A5:A4:78:81:83:2F:C3:23 X509v3 Authority Key Identifier: keyid:2F:59:CE:DA:61:48:15:F4:63:2F:39:D5:A3:1C:2A:51:48:C6:B4:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/L1nO2mFIFfRjLznVoxwqUUjGtPo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/L1nO2mFIFfRjLznVoxwqUUjGtPo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BD54/D90112843F4F11E59512E04CC4F9AE02/B77A93FE852411EFA67F8144C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.33.0/24 147.50.63.0/24 147.50.79.0-147.50.123.255 147.50.125.0-147.50.127.255 147.50.192.0/19 184.82.128.0/21 Signature Algorithm: sha256WithRSAEncryption 05:a5:e5:c8:c1:ac:64:ee:6b:e0:db:da:0a:91:ec:42:3e:a9: 15:dc:a9:b7:78:b0:84:cd:32:61:0c:db:40:71:04:6a:0d:44: 2e:5f:5d:69:17:8a:67:c6:ee:a6:5b:d8:76:e6:41:70:c4:87: e3:95:9b:c9:28:2c:4e:2d:8b:e0:7e:b0:a9:ab:e8:81:bc:60: 86:ae:fb:74:f2:d6:1b:53:9a:e1:7a:c2:75:50:7d:b0:dc:c9: 62:ee:68:79:5d:00:72:49:64:89:8f:f1:5c:42:38:b7:4d:89: 77:14:28:90:54:3b:a9:31:60:a4:d5:d8:da:c7:ca:a0:da:38: 5f:14:99:a5:35:ed:84:92:15:83:fc:5d:9f:21:d5:56:7b:23: c4:36:95:82:ce:b8:f2:80:64:04:d0:3d:04:76:ef:fd:22:b3: 4b:f4:59:e1:ee:ec:68:a7:8a:8c:a8:00:79:f1:26:b6:64:f1: e5:93:45:3e:82:50:98:c7:41:50:49:71:15:b9:30:66:03:e4: f0:af:c9:8b:8a:cd:9a:db:cb:3a:a3:7a:56:6a:2e:a5:a7:9d: 6e:11:e7:29:a1:db:76:a8:ec:b2:75:1d:38:4c:f5:d2:77:05: ab:88:0d:28:ca:72:de:3e:cc:c3:c1:24:54:7e:63:13:ca:f4: c9:e5:da:9c -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgICJLswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJENTQxMTAvBgNVBAUTKDJGNTlDRURBNjE0ODE1RjQ2MzJGMzlENUEzMUMyQTUx NDhDNkI0RkEwHhcNMjQxMDA4MDMyNTQ3WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA0YTYzYS1mMmZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTX6TyjSynt74kxmXJEkgICoHzDO8OV2wSVEICGQ6uxGU3Zu2fShiN/UO9J7 QbjHWYwUSkAF9zcP67JqN52qdyiK6R9a6M+jl+WDouIEYQIAdEraD4TB+IjJCEwg gjuuY7yfwUqZDYlMHGgybAzZN8jE2znNXloTJnd/eb2QrP3yfbcHq2Cyw32jaUo5 iZNpcS7+kxnXYHK4TZtud0pvpDx5PAsMcj7ucHTn2KgPw5vi32oi2qKqKz/K2XGQ BphXSu/TaH19yvKGrLfTnhgMR3AK4GgFTECxxiJyI9G8y/uQ450yRStsEQrjPfj4 8Hd5mlT+6xi1ZH5LNK2w18GxFQIDAQABo4ICwzCCAr8wHQYDVR0OBBYEFHZ2EWC4 h69zgS37FaWkeIGDL8MjMB8GA1UdIwQYMBaAFC9ZztphSBX0Yy851aMcKlFIxrT6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkQ1NC9EOTAxMTI4NDNG NEYxMUU1OTUxMkUwNENDNEY5QUUwMi9MMW5PMm1GSUZmUmpMem5Wb3h3cVVVakd0 UG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL0wxbk8ybUZJRmZSakx6blZveHdxVVVqR3RQby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJENTQvRDkwMTEyODQzRjRGMTFFNTk1MTJFMDRDQzRGOUFFMDIvQjc3QTkzRkU4 NTI0MTFFRkE2N0Y4MTQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTQYIKwYBBQUHAQcBAf8E PjA8MDoEAgABMDQDBACTMiEDBACTMj8wDAMEAJMyTwMEApMyeDAMAwQAkzJ9AwQH kzIAAwQFkzLAAwQDuFKAMA0GCSqGSIb3DQEBCwUAA4IBAQAFpeXIwaxk7mvg29oK kexCPqkV3Km3eLCEzTJhDNtAcQRqDUQuX11pF4pnxu6mW9h25kFwxIfjlZvJKCxO LYvgfrCpq+iBvGCGrvt08tYbU5rhesJ1UH2w3Mli7mh5XQBySWSJj/FcQji3TYl3 FCiQVDupMWCk1djax8qg2jhfFJmlNe2EkhWD/F2fIdVWeyPENpWCzrjygGQE0D0E du/9IrNL9Fnh7uxop4qMqAB58Sa2ZPHlk0U+glCYx0FQSXEVuTBmA+Twr8mLis2a 28s6o3pWai6lp51uEecpodt2qOyydR04TPXSdwWriA0oynLePszDwSRUfmMTyvTJ 5dqc -----END CERTIFICATE-----Generated at Fri Nov 22 16:49:13 2024 by rpki-client on console-ams.rpki-client.org