$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/05163DEADD8711EC9BF56E5BC4F9AE02.roa File: 05163DEADD8711EC9BF56E5BC4F9AE02.roa (raw, json) Hash identifier: zGN2nOJQWd9Hxkuu+Xvwm7K9HCh0xLUXhnRjE+idexs= Subject key identifier: 0E:4B:BD:9B:BF:C4:FE:1C:3E:E7:6F:8A:13:41:B9:2C:91:33:A9:66 Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 03DF Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/05163DEADD8711EC9BF56E5BC4F9AE02.roa Signing time: Thu 24 Oct 2024 07:11:10 +0000 ROA not before: Thu 24 Oct 2024 07:11:10 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 142299 IP address blocks: 147.50.229.0/24 maxlen: 24 147.50.233.0/24 maxlen: 24 147.50.235.0/24 maxlen: 24 147.50.238.0/24 maxlen: 24 147.50.240.0/24 maxlen: 24 147.50.242.0/24 maxlen: 24 147.50.243.0/24 maxlen: 24 147.50.244.0/24 maxlen: 24 147.50.252.0/23 maxlen: 23 147.50.252.0/24 maxlen: 24 147.50.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 991 (0x3df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Oct 24 07:11:10 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6719f30e-d244 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:cb:ab:75:2e:f5:da:f8:31:b1:26:57:7c:dd: fc:86:9d:8b:4b:8b:3d:15:bf:22:5a:1a:33:eb:91: c8:a3:34:56:3b:0d:f8:34:9e:7a:44:2e:a5:ee:ff: 9c:46:f2:0e:01:07:67:d5:da:78:a5:6f:e0:7b:8b: 51:91:a9:7a:87:27:1c:ec:8d:75:1f:0f:b9:23:00: 79:b2:f2:ca:47:be:2c:91:51:b9:c2:b9:39:fc:f5: 25:77:9b:c1:18:1a:4a:77:64:34:a0:02:1e:ad:2a: 5d:d7:2b:ae:fe:a5:b9:14:e9:7d:8c:36:14:04:ab: 6b:05:dd:3f:fe:2d:57:88:be:1f:d9:54:1f:51:e1: 10:51:5a:45:7c:b8:3c:81:2e:bc:04:1a:fe:5a:97: a0:ba:88:55:6f:2e:67:cb:9f:76:ad:d2:5d:2f:06: e6:2a:8b:79:d9:0b:9d:c7:8a:21:57:44:26:7a:a4: 4c:d8:02:df:7b:80:ef:c8:94:9e:a4:0f:f9:23:23: 4b:b0:70:3b:f7:40:5e:b9:b0:35:b5:24:b0:f5:77: 82:a1:26:1a:e7:19:f1:4a:c2:dc:86:e0:52:98:f3: 95:38:09:1a:c2:33:ae:f1:b3:70:f6:38:90:27:e3: 65:0d:81:e4:48:b3:dc:bb:98:92:46:1d:3c:5f:dd: 1e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:4B:BD:9B:BF:C4:FE:1C:3E:E7:6F:8A:13:41:B9:2C:91:33:A9:66 X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/05163DEADD8711EC9BF56E5BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.229.0/24 147.50.233.0/24 147.50.235.0/24 147.50.238.0/24 147.50.240.0/24 147.50.242.0-147.50.244.255 147.50.252.0/23 Signature Algorithm: sha256WithRSAEncryption 8c:a9:08:f7:85:1e:b0:55:d8:1e:85:4b:85:f0:1a:86:f8:b4: 38:3c:15:e0:4b:21:b1:77:d4:c3:57:ca:fb:1b:9c:28:f0:84: 20:08:b9:45:20:45:06:07:a4:3d:bf:6b:d9:8a:8a:8a:e8:c6: 2c:a9:24:19:20:13:34:a3:ec:93:78:c6:b0:e1:54:eb:bb:07: ed:a9:05:b9:69:e8:cb:50:75:1b:08:56:ed:42:6c:d6:86:7a: a9:1e:4e:e8:9d:0b:10:40:13:e3:12:26:d3:e0:43:e4:b0:dd: 38:a3:43:c0:a4:13:3a:5f:5a:55:fb:dc:14:52:ff:52:c4:d1: 21:2d:d1:cf:16:4a:68:65:fb:a0:f1:e0:ac:42:c4:11:99:a6: a5:4c:6a:36:41:01:df:c9:69:6b:72:0d:9f:8f:ac:c1:b8:3c: 5f:6a:cd:b9:a0:0c:b8:4b:fe:56:11:a2:7f:d1:1d:fe:9c:3f: 82:61:95:e8:bf:d5:cd:e5:10:aa:e7:f1:ba:cd:38:50:67:fb: 48:7e:3c:a1:bc:e7:05:96:01:3b:5c:15:e8:43:f2:7a:fb:66: d8:29:e5:0d:6e:5f:0e:ed:3b:98:66:56:e7:57:f4:7a:45:7c: c0:0e:ad:8f:1b:88:00:4b:b8:85:48:23:32:8c:28:d1:57:af: b1:8c:9c:15 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICA98wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjQxMDI0MDcxMTEwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE5ZjMwZS1kMjQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA68urdS712vgxsSZXfN38hp2LS4s9Fb8iWhoz65HIozRWOw34NJ56RC6l7v+c RvIOAQdn1dp4pW/ge4tRkal6hycc7I11Hw+5IwB5svLKR74skVG5wrk5/PUld5vB GBpKd2Q0oAIerSpd1yuu/qW5FOl9jDYUBKtrBd0//i1XiL4f2VQfUeEQUVpFfLg8 gS68BBr+WpeguohVby5ny592rdJdLwbmKot52Qudx4ohV0QmeqRM2ALfe4DvyJSe pA/5IyNLsHA790BeubA1tSSw9XeCoSYa5xnxSsLchuBSmPOVOAkawjOu8bNw9jiQ J+NlDYHkSLPcu5iSRh08X90eZwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFA5LvZu/ xP4cPudvihNBuSyRM6lmMB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRUMxRUU2NTI4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvMDUxNjNERUFE RDg3MTFFQzlCRjU2RTVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBACTMuUDBACTMukDBACTMusDBACTMu4DBACTMvAwDAMEAZMy 8gMEAJMy9AMEAZMy/DANBgkqhkiG9w0BAQsFAAOCAQEAjKkI94UesFXYHoVLhfAa hvi0ODwV4EshsXfUw1fK+xucKPCEIAi5RSBFBgekPb9r2YqKiujGLKkkGSATNKPs k3jGsOFU67sH7akFuWnoy1B1GwhW7UJs1oZ6qR5O6J0LEEAT4xIm0+BD5LDdOKND wKQTOl9aVfvcFFL/UsTRIS3RzxZKaGX7oPHgrELEEZmmpUxqNkEB38lpa3INn4+s wbg8X2rNuaAMuEv+VhGif9Ed/pw/gmGV6L/VzeUQqufxus04UGf7SH48obznBZYB O1wV6EPyevtm2CnlDW5fDu07mGZW51f0ekV8wA6tjxuIAEu4hUgjMowo0VevsYyc FQ== -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:52 2024 by rpki-client on console-fra.rpki-client.org