$ rpki-client -vvf rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/CD145D246E4E11EDBE02B065C4F9AE02.roa File: CD145D246E4E11EDBE02B065C4F9AE02.roa (raw, json) Hash identifier: V3zMPliS6mR8rENzRZbv+Fm8qxtTgdFeCg1XmwCXLvU= Subject key identifier: 94:6F:84:9C:E4:C6:0D:22:DB:40:34:98:54:7A:A8:8D:25:D4:34:02 Certificate issuer: /CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Certificate serial: 09CE Authority key identifier: D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/CD145D246E4E11EDBE02B065C4F9AE02.roa Signing time: Sat 08 Jul 2023 19:56:33 +0000 ROA not before: Sat 08 Jul 2023 19:56:33 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 38744 IP address blocks: 49.0.32.0/20 maxlen: 24 49.0.48.0/21 maxlen: 24 117.58.240.0/21 maxlen: 24 2404:b580::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2510 (0x9ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9122219/serialNumber=D0D2F45A46D26766014B786019A09A8334873DAD Validity Not Before: Jul 8 19:56:33 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a9bf70-9655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f2:3f:fa:6d:e9:a7:b4:47:69:ba:e7:5a:67: a2:a0:aa:d6:7c:9b:a0:c8:ad:ca:d2:f4:60:bf:41: 5d:58:3d:d9:2c:9b:a3:91:18:08:b1:d4:76:31:67: 60:9a:cc:17:ea:eb:9f:30:9a:d5:3f:2c:e3:a3:53: 9c:c8:db:05:0c:cc:ea:4e:63:89:75:12:5f:94:81: 1d:ff:c3:35:b5:f2:c1:9a:d0:ec:83:a8:09:ac:f9: e1:e2:dc:3b:82:3b:9f:96:77:88:62:35:cf:23:f3: 9c:b4:08:a6:62:64:8a:68:c0:0d:1a:a7:48:86:a8: e8:56:46:29:c7:a5:4b:21:55:96:25:d5:cb:d5:0f: 12:f6:4d:22:95:bc:a4:04:1a:92:64:92:79:9e:48: 77:64:2f:e3:0f:c0:ab:81:92:0c:c4:4f:bf:44:3a: 39:19:0f:84:e8:70:52:b3:5d:b6:61:08:c1:2e:72: 55:61:13:5f:c3:b9:5b:5a:d3:cc:16:e1:de:f3:da: eb:20:28:ff:64:d0:0f:47:bb:81:c7:1a:9a:f0:a1: 4f:fa:42:70:f4:47:2c:19:b5:e8:55:34:31:f8:3c: 48:44:6c:0a:4e:1b:05:4b:3b:59:01:03:52:53:c2: fd:8e:85:c0:c7:87:d8:d8:61:52:e3:05:d0:27:21: f8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:6F:84:9C:E4:C6:0D:22:DB:40:34:98:54:7A:A8:8D:25:D4:34:02 X509v3 Authority Key Identifier: keyid:D0:D2:F4:5A:46:D2:67:66:01:4B:78:60:19:A0:9A:83:34:87:3D:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/0NL0WkbSZ2YBS3hgGaCagzSHPa0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0NL0WkbSZ2YBS3hgGaCagzSHPa0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9122219/82FE89CC3C3711EA873E1460C4F9AE02/CD145D246E4E11EDBE02B065C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.0.32.0-49.0.55.255 117.58.240.0/21 IPv6: 2404:b580::/32 Signature Algorithm: sha256WithRSAEncryption 83:91:dc:25:bc:04:b0:2f:44:8a:c6:1e:bf:ee:c5:29:93:ff: 53:a7:34:6c:da:1c:f9:15:03:bc:4e:79:c2:f6:e9:8d:d4:09: ab:bf:18:58:b1:9b:68:33:81:65:a3:f6:40:3d:29:95:ca:ce: 9a:4a:78:7f:43:fc:8b:41:be:e1:d9:e9:d3:93:39:45:78:f7: cd:ee:2e:0f:f4:ba:cc:fc:1e:b5:a8:d3:75:01:1d:8a:42:18: 3e:1a:87:be:2b:0d:54:bb:6c:33:53:f7:9a:b8:d2:90:f6:23: 08:ab:cc:a6:11:94:3b:d6:a2:2e:40:35:8d:61:48:69:d9:f9: be:b7:f8:d5:42:6b:24:33:3e:fa:cc:35:42:b1:31:39:4d:31: 91:82:74:48:64:1a:e7:f3:63:09:17:0e:c8:26:f4:82:c0:15: b7:34:4b:12:7f:97:03:f8:15:04:0e:37:e6:22:17:36:1f:63: 07:39:28:72:a6:d6:18:35:8a:ee:c9:5c:36:4e:9d:a6:a8:7f: e5:10:dc:9c:1f:a7:62:13:90:d2:f9:17:87:67:0f:bc:b2:ae: 7f:f5:98:57:ff:74:06:99:9b:5c:61:2e:41:fb:51:85:26:64: 06:03:2d:3c:72:00:e1:fe:fb:32:b5:e2:96:70:64:52:b7:4d: c7:e1:6e:e5 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICCc4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjIyMTkxMTAvBgNVBAUTKEQwRDJGNDVBNDZEMjY3NjYwMTRCNzg2MDE5QTA5QTgz MzQ4NzNEQUQwHhcNMjMwNzA4MTk1NjMzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5YmY3MC05NjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5PI/+m3pp7RHabrnWmeioKrWfJugyK3K0vRgv0FdWD3ZLJujkRgIsdR2MWdg mswX6uufMJrVPyzjo1OcyNsFDMzqTmOJdRJflIEd/8M1tfLBmtDsg6gJrPnh4tw7 gjuflneIYjXPI/OctAimYmSKaMANGqdIhqjoVkYpx6VLIVWWJdXL1Q8S9k0ilbyk BBqSZJJ5nkh3ZC/jD8CrgZIMxE+/RDo5GQ+E6HBSs122YQjBLnJVYRNfw7lbWtPM FuHe89rrICj/ZNAPR7uBxxqa8KFP+kJw9EcsGbXoVTQx+DxIRGwKThsFSztZAQNS U8L9joXAx4fY2GFS4wXQJyH4EwIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFJRvhJzk xg0i20A0mFR6qI0l1DQCMB8GA1UdIwQYMBaAFNDS9FpG0mdmAUt4YBmgmoM0hz2t MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMjIxOS84MkZFODlDQzND MzcxMUVBODczRTE0NjBDNEY5QUUwMi8wTkwwV2tiU1oyWUJTM2hnR2FDYWd6U0hQ YTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBOTDBXa2JTWjJZQlMzaGdHYUNhZ3pTSFBhMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjIyMTkvODJGRTg5Q0MzQzM3MTFFQTg3M0UxNDYwQzRGOUFFMDIvQ0QxNDVEMjQ2 RTRFMTFFREJFMDJCMDY1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBoEAgABMBQwDAMEBTEAIAMEAzEAMAMEA3U68DANBAIAAjAHAwUAJAS1gDAN BgkqhkiG9w0BAQsFAAOCAQEAg5HcJbwEsC9EisYev+7FKZP/U6c0bNoc+RUDvE55 wvbpjdQJq78YWLGbaDOBZaP2QD0plcrOmkp4f0P8i0G+4dnp05M5RXj3ze4uD/S6 zPwetajTdQEdikIYPhqHvisNVLtsM1P3mrjSkPYjCKvMphGUO9aiLkA1jWFIadn5 vrf41UJrJDM++sw1QrExOU0xkYJ0SGQa5/NjCRcOyCb0gsAVtzRLEn+XA/gVBA43 5iIXNh9jBzkocqbWGDWK7slcNk6dpqh/5RDcnB+nYhOQ0vkXh2cPvLKuf/WYV/90 BpmbXGEuQftRhSZkBgMtPHIA4f77MrXilnBkUrdNx+Fu5Q== -----END CERTIFICATE-----Generated at Thu May 16 22:34:43 2024 by rpki-client on console-ams.rpki-client.org