$ rpki-client -vvf rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa File: A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa (raw, json) Hash identifier: 1tRgJ3aPzibyR+z50Gw9nZnYt8M73G+bJYsVfkg2zT8= Subject key identifier: D9:06:41:FF:C8:9F:D3:42:12:45:A0:CF:7F:BF:07:B6:23:33:AC:8A Certificate issuer: /CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Certificate serial: 03A2 Authority key identifier: D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa Signing time: Wed 31 Jul 2024 02:33:08 +0000 ROA not before: Wed 31 Jul 2024 02:33:08 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 140326 IP address blocks: 147.50.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 930 (0x3a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91262CA/serialNumber=D63DE82A759F9657F8F073B251251AAE67BA4BA6 Validity Not Before: Jul 31 02:33:08 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66a9a264-eb6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:24:68:b0:51:d3:4e:39:34:81:cd:08:40:0a: 6d:5d:e7:7a:97:0e:f6:af:d1:27:84:89:52:0e:42: 49:1c:d8:3b:93:77:5e:53:5f:9b:b1:d3:80:b2:fb: e5:7c:48:f0:00:35:14:55:2c:33:7e:41:d3:1e:f9: ee:36:2e:5c:10:34:e0:55:93:81:49:7a:68:72:df: 37:85:61:46:aa:4e:d2:b6:36:85:1b:31:2d:11:11: fe:48:5e:5a:d7:61:61:56:e1:7d:9b:6a:4d:3c:d0: d9:88:1e:98:6e:82:42:c4:6e:b0:77:5a:3c:fa:33: d5:23:08:6e:be:ce:d5:9d:69:97:93:ac:c3:d3:cb: 07:93:d6:1c:15:c5:76:b3:fb:d3:75:da:bb:85:60: 0c:b1:2d:fe:b2:2d:9e:ef:b9:17:c0:30:ec:16:c9: 11:b1:44:69:ef:26:0e:78:0e:ab:31:36:da:67:30: 80:a4:5c:98:0a:c7:8f:d6:1e:3a:c2:10:2a:0d:ee: c4:93:fc:05:0e:3e:77:52:a5:cf:d8:14:6c:47:dd: 60:84:b3:ea:6a:af:c4:e7:c2:10:15:cf:12:f6:15: 64:d4:06:8b:37:76:45:1f:6d:77:72:98:cf:b8:a6: 7b:89:db:9c:63:2f:fc:c3:18:0e:fb:57:8e:ef:3c: 2d:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:06:41:FF:C8:9F:D3:42:12:45:A0:CF:7F:BF:07:B6:23:33:AC:8A X509v3 Authority Key Identifier: keyid:D6:3D:E8:2A:75:9F:96:57:F8:F0:73:B2:51:25:1A:AE:67:BA:4B:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/1j3oKnWfllf48HOyUSUarme6S6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/1j3oKnWfllf48HOyUSUarme6S6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91262CA/EC1EE6528A5711EC96EBC014C4F9AE02/A09F8E52DF3E11EC83CCFE1EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 147.50.72.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:ce:62:68:10:0a:db:67:71:02:76:41:a7:7a:e5:82:68:ef: 74:07:65:52:87:36:19:d4:7a:47:85:1c:c5:88:7f:68:df:1d: 54:6e:fb:92:51:82:04:c5:0c:36:cc:ac:8d:4a:60:68:22:ea: 02:b5:f6:db:b5:c1:36:3e:8f:97:96:7b:67:bc:0c:ee:3a:a6: 93:cb:21:72:5a:e6:48:c0:c8:cb:5d:c1:12:15:f0:9e:fc:fc: 7a:f5:32:cd:d3:ea:0d:68:ae:84:13:e9:f5:9a:0c:5a:ed:91: a5:52:5b:8f:63:41:70:4f:40:65:da:da:57:01:04:97:d1:ba: 76:64:a7:2f:30:c8:1c:34:08:c4:5a:94:67:cb:e6:69:09:27: b3:e0:ff:8f:42:12:1b:b5:e4:84:31:46:52:6d:0f:e0:72:2a: 95:40:c5:d8:d3:ee:33:63:97:a2:1c:73:f4:71:24:16:c5:c6: c5:91:14:b0:a0:22:e5:0b:6e:f0:9d:7d:d8:3c:b3:3b:08:5d: 63:04:20:ec:cb:1a:d9:ca:6b:52:46:af:79:8b:ca:69:5c:6f: e3:da:11:90:a5:6a:78:37:75:04:6b:c2:4e:04:5f:0f:0c:4c: e9:a6:f1:be:61:70:25:37:b9:a5:8e:76:0e:f6:67:33:31:4e: 97:3e:94:c3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjYyQ0ExMTAvBgNVBAUTKEQ2M0RFODJBNzU5Rjk2NTdGOEYwNzNCMjUxMjUxQUFF NjdCQTRCQTYwHhcNMjQwNzMxMDIzMzA4WhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmE5YTI2NC1lYjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3yRosFHTTjk0gc0IQAptXed6lw72r9EnhIlSDkJJHNg7k3deU1+bsdOAsvvl fEjwADUUVSwzfkHTHvnuNi5cEDTgVZOBSXpoct83hWFGqk7StjaFGzEtERH+SF5a 12FhVuF9m2pNPNDZiB6YboJCxG6wd1o8+jPVIwhuvs7VnWmXk6zD08sHk9YcFcV2 s/vTddq7hWAMsS3+si2e77kXwDDsFskRsURp7yYOeA6rMTbaZzCApFyYCseP1h46 whAqDe7Ek/wFDj53UqXP2BRsR91ghLPqaq/E58IQFc8S9hVk1AaLN3ZFH213cpjP uKZ7iducYy/8wxgO+1eO7zwtHwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNkGQf/I n9NCEkWgz3+/B7YjM6yKMB8GA1UdIwQYMBaAFNY96Cp1n5ZX+PBzslElGq5nukum MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNjJDQS9FQzFFRTY1MjhB NTcxMUVDOTZFQkMwMTRDNEY5QUUwMi8xajNvS25XZmxsZjQ4SE95VVNVYXJtZTZT NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzFqM29LbldmbGxmNDhIT3lVU1Vhcm1lNlM2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjYyQ0EvRUMxRUU2NTI4QTU3MTFFQzk2RUJDMDE0QzRGOUFFMDIvQTA5RjhFNTJE RjNFMTFFQzgzQ0NGRTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACTMkgwDQYJKoZIhvcNAQELBQADggEBAC/OYmgQCttncQJ2 Qad65YJo73QHZVKHNhnUekeFHMWIf2jfHVRu+5JRggTFDDbMrI1KYGgi6gK19tu1 wTY+j5eWe2e8DO46ppPLIXJa5kjAyMtdwRIV8J78/Hr1Ms3T6g1oroQT6fWaDFrt kaVSW49jQXBPQGXa2lcBBJfRunZkpy8wyBw0CMRalGfL5mkJJ7Pg/49CEhu15IQx RlJtD+ByKpVAxdjT7jNjl6Icc/RxJBbFxsWRFLCgIuULbvCdfdg8szsIXWMEIOzL GtnKa1JGr3mLymlcb+PaEZClang3dQRrwk4EXw8MTOmm8b5hcCU3uaWOdg72ZzMx Tpc+lMM= -----END CERTIFICATE-----Generated at Thu Nov 21 01:25:55 2024 by rpki-client on console-ams.rpki-client.org