$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/3BCB61DA01D411EFB260D83DC4F9AE02.roa File: 3BCB61DA01D411EFB260D83DC4F9AE02.roa (raw, json) Hash identifier: muW+yLLJUTnawR+FgDid9A3SKEIuIkmDMewXJcxTT8Q= Subject key identifier: F9:D0:82:15:E8:DF:00:01:C8:31:E1:CB:28:A4:2E:D9:4F:87:BF:44 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 358E Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/3BCB61DA01D411EFB260D83DC4F9AE02.roa Signing time: Tue 14 May 2024 00:50:01 +0000 ROA not before: Tue 14 May 2024 00:50:01 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 41717 IP address blocks: 49.128.221.0/24 maxlen: 24 49.128.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13710 (0x358e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: May 14 00:50:01 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6642b539-bf6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:1c:1f:ab:cf:78:44:b7:dc:78:ca:af:a6:bd: 3f:a5:45:b7:7e:1a:73:e2:c4:61:5e:b0:01:ce:bd: d9:b1:06:7b:b1:5c:f5:9b:44:90:ad:d1:55:91:dc: 61:d5:90:ac:58:f3:95:d8:56:6a:0d:0f:46:2a:66: 86:6f:f4:3a:ba:00:ce:72:bf:d7:98:91:78:05:c4: bc:5f:cd:23:55:78:32:fd:6f:8d:d2:ff:11:81:4e: 1b:fa:c6:18:4a:40:05:13:cf:4d:d6:ff:c7:01:d8: c5:bd:be:3a:e0:c3:89:66:81:33:0e:8d:ef:c9:f5: db:7f:e0:45:c9:ab:be:f2:89:1c:17:e6:3f:a1:df: 2e:75:7e:ae:2b:ed:da:14:60:39:4d:ca:3d:b8:2a: b6:b7:21:f7:99:97:e0:8d:ee:99:c8:1a:cb:3a:86: ad:e8:16:d6:b4:4c:87:91:b1:6d:3d:fa:7e:ff:7b: 2e:29:fc:3c:da:7e:cd:22:10:c6:20:2a:e9:bb:b5: f8:01:a9:0b:0f:4b:b4:6b:fe:11:49:3c:03:5c:77: 89:37:97:0f:13:7e:a6:d0:4a:cf:3b:44:89:06:08: 81:de:05:fb:02:17:e8:92:35:5d:4d:20:5c:15:74: 38:a5:83:45:13:ca:b2:c7:4e:42:d2:c3:7f:2e:1f: 94:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D0:82:15:E8:DF:00:01:C8:31:E1:CB:28:A4:2E:D9:4F:87:BF:44 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/3BCB61DA01D411EFB260D83DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.128.221.0-49.128.222.255 Signature Algorithm: sha256WithRSAEncryption 11:cc:3c:41:36:59:5b:b6:a5:d9:07:fe:c9:3f:f0:05:d1:d2: 17:9c:ba:d8:02:b0:23:50:8c:a4:9d:07:c1:8d:df:3d:09:77: 29:79:2f:f8:f8:47:29:75:e9:4a:a2:76:85:00:ff:53:71:23: ac:c1:a5:11:2e:c3:a1:a8:67:bf:52:c3:31:ce:d9:ab:2b:08: e1:cc:24:da:01:c8:b8:b5:d5:16:6e:8a:ac:ff:ec:04:f9:6e: c7:9f:41:5f:b1:81:79:5c:45:59:ef:57:27:b9:36:b1:f6:f0: 6b:fe:c1:ec:67:de:f6:f9:29:1f:a2:86:89:88:71:9d:c5:dd: 2f:4b:c0:94:c9:67:14:8c:d4:02:23:49:01:b3:0f:b9:6c:82: 83:23:46:2e:02:ff:a8:cc:70:67:84:6c:09:a1:e4:46:2e:02: 23:66:e5:5f:ce:a3:b0:2e:85:d7:17:f6:c2:4e:6c:db:74:ca: e3:97:0a:71:70:55:13:fc:2c:35:2b:e2:3a:f9:60:ab:c6:e6: 6f:5a:c4:66:22:1b:3a:3d:11:dd:3e:bb:e2:17:e1:95:34:c3: 38:45:16:f0:ab:1f:2f:2f:5a:f9:75:0a:80:fa:3d:d2:dd:7e: cf:07:e9:a9:8f:58:a8:a6:e8:de:16:9a:48:10:d7:28:74:5d: 33:3b:e3:17 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICNY4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQwNTE0MDA1MDAxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQyYjUzOS1iZjZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3Rwfq894RLfceMqvpr0/pUW3fhpz4sRhXrABzr3ZsQZ7sVz1m0SQrdFVkdxh 1ZCsWPOV2FZqDQ9GKmaGb/Q6ugDOcr/XmJF4BcS8X80jVXgy/W+N0v8RgU4b+sYY SkAFE89N1v/HAdjFvb464MOJZoEzDo3vyfXbf+BFyau+8okcF+Y/od8udX6uK+3a FGA5Tco9uCq2tyH3mZfgje6ZyBrLOoat6BbWtEyHkbFtPfp+/3suKfw82n7NIhDG ICrpu7X4AakLD0u0a/4RSTwDXHeJN5cPE36m0ErPO0SJBgiB3gX7AhfokjVdTSBc FXQ4pYNFE8qyx05C0sN/Lh+UTwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFPnQghXo 3wAByDHhyyikLtlPh79EMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvM0JDQjYxREEw MUQ0MTFFRkIyNjBEODNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEADGA3QMEADGA3jANBgkqhkiG9w0BAQsFAAOCAQEAEcw8 QTZZW7al2Qf+yT/wBdHSF5y62AKwI1CMpJ0HwY3fPQl3KXkv+PhHKXXpSqJ2hQD/ U3EjrMGlES7Doahnv1LDMc7ZqysI4cwk2gHIuLXVFm6KrP/sBPlux59BX7GBeVxF We9XJ7k2sfbwa/7B7Gfe9vkpH6KGiYhxncXdL0vAlMlnFIzUAiNJAbMPuWyCgyNG LgL/qMxwZ4RsCaHkRi4CI2blX86jsC6F1xf2wk5s23TK45cKcXBVE/wsNSviOvlg q8bmb1rEZiIbOj0R3T674hfhlTTDOEUW8KsfLy9a+XUKgPo90t1+zwfpqY9YqKbo 3haaSBDXKHRdMzvjFw== -----END CERTIFICATE-----Generated at Sat May 18 15:26:02 2024 by rpki-client on console-fra.rpki-client.org