$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/56EC4CB4927911EFABEC2D46C4F9AE02.roa File: 56EC4CB4927911EFABEC2D46C4F9AE02.roa (raw, json) Hash identifier: 5jFOXz91ZZ50fpVnfRxRJl436xHddATVpaygKT2CLho= Subject key identifier: 8C:A6:E4:0F:B6:BE:CB:7A:3C:F7:E2:98:E3:9C:C5:50:45:E1:A9:FD Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 03E3 Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/56EC4CB4927911EFABEC2D46C4F9AE02.roa Signing time: Fri 25 Oct 2024 02:32:12 +0000 ROA not before: Fri 25 Oct 2024 02:32:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 9891 IP address blocks: 147.50.224.0/19 maxlen: 19 147.50.224.0/22 maxlen: 22 147.50.228.0/24 maxlen: 24 147.50.230.0/24 maxlen: 24 147.50.231.0/24 maxlen: 24 147.50.232.0/22 maxlen: 22 147.50.236.0/23 maxlen: 23 147.50.239.0/24 maxlen: 24 147.50.240.0/22 maxlen: 22 147.50.246.0/24 maxlen: 24 147.50.247.0/24 maxlen: 24 147.50.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 995 (0x3e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Oct 25 02:32:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=671b032c-90a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:ae:80:c0:ee:0e:1c:64:34:79:d8:5c:54:ef: 76:ad:49:f1:7d:87:30:9f:5d:ea:23:de:d8:98:ff: a8:f1:39:57:f9:db:46:87:71:d5:07:a8:5d:02:6d: a2:08:f3:de:67:87:9f:10:2e:1f:2e:12:9e:bf:2c: e3:d0:b0:f7:f8:08:ee:6b:50:96:1c:4a:3b:c3:a3: 5a:f5:46:d0:44:bd:7e:54:ad:0d:0b:7b:c2:90:f4: cb:17:1f:24:2b:5d:c1:f2:f2:37:00:e1:4c:30:f7: 45:64:97:8e:77:7a:14:af:33:66:9d:0c:c2:81:4b: ac:96:ce:2a:b5:d6:4c:58:9a:1f:1f:a0:d5:83:56: 38:74:a6:1e:da:bc:33:27:31:93:27:8e:81:2a:4e: 74:aa:a9:23:61:60:3f:0f:75:b2:ca:fa:c4:5b:54: 59:86:ea:d7:8d:92:02:bd:bd:ad:0f:50:3e:95:9f: 85:e5:d5:b0:65:65:a1:42:4c:a0:d6:af:eb:86:23: ee:68:95:d6:c5:22:0a:24:06:64:b6:ac:99:c4:f2: a1:f5:a8:60:72:c6:95:00:c1:42:b6:c4:a4:1b:f5: 2c:fe:df:66:7a:84:65:44:c6:04:c4:2b:86:0e:c6: 1b:fd:57:c7:e9:ea:78:e8:13:b1:c1:9d:1a:10:06: 0c:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:A6:E4:0F:B6:BE:CB:7A:3C:F7:E2:98:E3:9C:C5:50:45:E1:A9:FD X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/56EC4CB4927911EFABEC2D46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.224.0/19 Signature Algorithm: sha256WithRSAEncryption 39:c4:96:eb:68:72:07:cd:73:24:c5:18:a4:19:62:ee:dc:a0: 61:6d:87:7f:fe:31:0b:ee:e4:1a:52:0e:ab:84:4d:2f:d3:c8: 98:61:91:88:14:ec:10:0e:0c:c5:24:5d:82:6b:43:86:14:15: 8a:42:86:5f:c2:68:50:4f:b3:60:18:7b:f1:9c:02:05:a2:bc: 1a:f2:21:c8:ae:4f:1a:4a:5c:99:e2:86:f7:8f:af:34:01:20: 2c:b1:be:74:be:45:0a:d4:fa:4c:c5:85:c9:9b:68:43:ac:ea: a5:5c:07:49:d6:a8:62:f6:42:e2:1b:65:fe:1a:e1:0c:59:d5: 26:ab:4d:15:7b:98:bf:bf:c6:e0:89:78:85:22:0c:ec:31:ae: 0e:c9:d3:cc:15:4b:c5:c7:44:8f:80:95:1a:1c:4f:41:f3:31: cd:7a:4d:54:7d:78:33:ad:0c:0e:9f:e7:fa:79:09:cc:bd:b6: d1:26:8a:58:09:8d:6e:a9:69:3f:d4:85:40:1b:ac:81:f0:89: 0c:46:45:7f:1e:6b:3e:54:55:fb:16:a3:a3:07:fe:e4:37:17: 8b:cb:07:13:7e:8c:f0:00:04:fa:d4:35:40:1f:1e:85:b9:de: 3c:ee:ab:b4:6a:96:63:df:c1:2e:4c:06:3d:b0:b2:dd:0a:07: e0:35:58:3c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA+MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjQxMDI1MDIzMjEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFiMDMyYy05MGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA666AwO4OHGQ0edhcVO92rUnxfYcwn13qI97YmP+o8TlX+dtGh3HVB6hdAm2i CPPeZ4efEC4fLhKevyzj0LD3+Ajua1CWHEo7w6Na9UbQRL1+VK0NC3vCkPTLFx8k K13B8vI3AOFMMPdFZJeOd3oUrzNmnQzCgUusls4qtdZMWJofH6DVg1Y4dKYe2rwz JzGTJ46BKk50qqkjYWA/D3WyyvrEW1RZhurXjZICvb2tD1A+lZ+F5dWwZWWhQkyg 1q/rhiPuaJXWxSIKJAZktqyZxPKh9ahgcsaVAMFCtsSkG/Us/t9meoRlRMYExCuG DsYb/VfH6ep46BOxwZ0aEAYM5wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIym5A+2 vst6PPfimOOcxVBF4an9MB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRUMxRUU2NTI4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvNTZFQzRDQjQ5 Mjc5MTFFRkFCRUMyRDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAWTMuAwDQYJKoZIhvcNAQELBQADggEBADnElutocgfNcyTF GKQZYu7coGFth3/+MQvu5BpSDquETS/TyJhhkYgU7BAODMUkXYJrQ4YUFYpChl/C aFBPs2AYe/GcAgWivBryIciuTxpKXJnihvePrzQBICyxvnS+RQrU+kzFhcmbaEOs 6qVcB0nWqGL2QuIbZf4a4QxZ1SarTRV7mL+/xuCJeIUiDOwxrg7J08wVS8XHRI+A lRocT0HzMc16TVR9eDOtDA6f5/p5Ccy9ttEmilgJjW6paT/UhUAbrIHwiQxGRX8e az5UVfsWo6MH/uQ3F4vLBxN+jPAABPrUNUAfHoW53jzuq7RqlmPfwS5MBj2wst0K B+A1WDw= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:55 2024 by rpki-client on console-ams.rpki-client.org