$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/3BCB61DA01D411EFB260D83DC4F9AE02.roa File: 3BCB61DA01D411EFB260D83DC4F9AE02.roa (raw, json) Hash identifier: ntg1Sa5uJDmNLEQGDT84VTtiG25Hye7r/1zWkL8hIks= Subject key identifier: 1B:A1:37:21:F4:5E:40:E3:C8:8E:E7:04:BF:1E:F0:B4:1D:83:24:90 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 35FB Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/3BCB61DA01D411EFB260D83DC4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:33 +0000 ROA not before: Fri 16 Aug 2024 14:40:33 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 41717 IP address blocks: 49.128.221.0/24 maxlen: 24 49.128.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13819 (0x35fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Aug 16 14:40:33 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64e1-a8a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5a:c3:6b:5b:30:f9:17:24:41:7b:ec:dc:f8: c2:ed:e3:7d:42:b9:e2:1f:d0:4b:65:b5:8a:82:d3: 47:9c:69:f0:dd:17:da:9b:5e:7c:60:8e:19:27:21: 74:7d:d4:80:c9:3f:c2:9c:65:ee:22:62:80:e1:8a: 9b:f9:6f:f1:40:2d:00:07:8d:db:c2:0e:8f:56:2e: b0:8e:46:63:cf:f4:c0:bb:d9:58:1c:2f:ed:14:92: 70:35:28:7b:ba:e6:37:85:5d:9f:5a:6a:7a:79:9c: ba:30:a5:b9:0c:e3:ef:93:1b:6a:52:70:18:09:39: e0:ca:3a:37:db:f2:ed:c1:18:89:62:c8:9d:9e:8f: e9:66:ad:9d:eb:73:96:63:4b:6b:ca:85:8e:3a:ee: 75:e9:34:ee:f7:4f:ad:15:3d:09:e4:c5:73:15:2d: 80:88:48:8f:40:27:4e:a8:38:11:8e:01:fb:be:d4: 5e:35:ed:73:7e:d7:bc:e7:55:d5:f1:40:ac:5d:c7: 6f:62:07:b4:6f:17:11:ba:3d:de:55:19:fb:2a:0c: 62:54:a1:a7:c0:80:27:9b:38:50:71:b0:f2:9a:4e: 1a:f9:06:1e:ba:51:2a:bc:fc:37:a5:9f:b1:3d:51: d8:b3:0d:96:1d:01:0a:b5:0c:b3:1a:99:2b:bd:1b: eb:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A1:37:21:F4:5E:40:E3:C8:8E:E7:04:BF:1E:F0:B4:1D:83:24:90 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/3BCB61DA01D411EFB260D83DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.128.221.0-49.128.222.255 Signature Algorithm: sha256WithRSAEncryption d8:9a:84:43:bd:2c:e1:9f:ca:1f:91:35:27:00:c1:0a:fb:c6: 80:9a:3a:62:71:5a:dd:e8:ee:9a:4e:ec:ec:a4:c0:d1:ec:8b: ed:cf:a2:9b:e2:74:82:17:40:aa:18:af:fa:cf:7a:65:c2:a1: a0:09:01:7c:91:eb:8a:89:74:28:ec:31:06:ee:7a:21:62:4f: 55:82:dc:9b:d5:69:47:68:90:df:06:1d:97:e5:67:16:ff:71: 4e:33:27:29:cc:b2:97:51:45:98:4a:db:fd:91:c4:a0:74:ff: 4d:72:23:b8:b4:b6:57:33:d7:76:48:19:f1:8f:81:0d:3e:b9: 4f:7b:b4:04:8e:bb:9b:58:54:c6:16:cb:b9:55:11:79:35:0d: 98:f1:59:e1:11:e5:e7:32:f5:da:5f:0d:f7:f0:d1:69:5d:a0: 40:8b:c0:d6:c8:27:d6:8f:9f:ff:fc:00:51:9b:e5:b4:1b:32: 2a:15:3a:63:b7:77:4b:e4:29:87:d1:07:dc:5b:21:92:71:08: 16:01:d4:b5:64:d7:fb:43:21:ce:d3:d4:fb:f5:1a:88:4f:c2: 11:b1:f0:ce:f9:79:86:7a:90:2d:e0:2a:ae:11:29:ee:64:29: 58:0e:a0:78:b0:7f:02:89:ff:e3:8e:03:6c:ae:bc:d2:6b:8b: a3:c3:88:8f -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICNfswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQwODE2MTQ0MDMzWhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRlMS1hOGE2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3VrDa1sw+RckQXvs3PjC7eN9QrniH9BLZbWKgtNHnGnw3Rfam158YI4ZJyF0 fdSAyT/CnGXuImKA4Yqb+W/xQC0AB43bwg6PVi6wjkZjz/TAu9lYHC/tFJJwNSh7 uuY3hV2fWmp6eZy6MKW5DOPvkxtqUnAYCTngyjo32/LtwRiJYsidno/pZq2d63OW Y0tryoWOOu516TTu90+tFT0J5MVzFS2AiEiPQCdOqDgRjgH7vtReNe1zfte851XV 8UCsXcdvYge0bxcRuj3eVRn7KgxiVKGnwIAnmzhQcbDymk4a+QYeulEqvPw3pZ+x PVHYsw2WHQEKtQyzGpkrvRvrKwIDAQABo4ICnTCCApkwHQYDVR0OBBYEFBuhNyH0 XkDjyI7nBL8e8LQdgySQMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvM0JDQjYxREEw MUQ0MTFFRkIyNjBEODNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEADGA3QMEADGA3jANBgkqhkiG9w0BAQsFAAOCAQEA2JqE Q70s4Z/KH5E1JwDBCvvGgJo6YnFa3ejumk7s7KTA0eyL7c+im+J0ghdAqhiv+s96 ZcKhoAkBfJHriol0KOwxBu56IWJPVYLcm9VpR2iQ3wYdl+VnFv9xTjMnKcyyl1FF mErb/ZHEoHT/TXIjuLS2VzPXdkgZ8Y+BDT65T3u0BI67m1hUxhbLuVUReTUNmPFZ 4RHl5zL12l8N9/DRaV2gQIvA1sgn1o+f//wAUZvltBsyKhU6Y7d3S+Qph9EH3Fsh knEIFgHUtWTX+0MhztPU+/UaiE/CEbHwzvl5hnqQLeAqrhEp7mQpWA6geLB/Aon/ 444DbK680muLo8OIjw== -----END CERTIFICATE-----Generated at Wed Nov 20 16:11:25 2024 by rpki-client on console-fra.rpki-client.org