$ rpki-client -vvf rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/D34236BE7D0511EEB381D02CC4F9AE02.roa File: D34236BE7D0511EEB381D02CC4F9AE02.roa (raw, json) Hash identifier: MXoyWFgv72XpKm4iYapo+Jr79E2SzPPDsg5QxMhWUpU= Subject key identifier: 72:BB:BA:A7:38:7D:65:6E:8E:EF:7D:35:59:88:B1:1F:53:5E:A8:D8 Certificate issuer: /CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Certificate serial: 35F5 Authority key identifier: EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/D34236BE7D0511EEB381D02CC4F9AE02.roa Signing time: Fri 16 Aug 2024 14:40:28 +0000 ROA not before: Fri 16 Aug 2024 14:40:28 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 21859 IP address blocks: 49.128.198.0/24 maxlen: 24 101.55.23.0/24 maxlen: 24 112.196.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:21:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13813 (0x35f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9149F3E/serialNumber=EB389FB339B3908D549A65390C92E15F9DF7C54B Validity Not Before: Aug 16 14:40:28 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66bf64db-ec06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ca:38:ed:80:94:e6:80:eb:44:7b:93:98:ba: c3:0a:c2:47:92:52:8a:33:57:f0:2e:9e:4f:cd:f2: 46:31:06:7a:58:f5:2a:76:39:97:dd:64:42:e9:91: eb:a9:29:b1:84:ab:91:51:42:4f:73:ea:1d:10:d6: 03:7b:8e:bb:47:4e:c7:dc:96:0f:3e:26:87:24:e4: 98:02:8e:80:4a:15:47:8f:83:a0:aa:3d:93:5b:d0: cc:a1:b6:32:08:59:b8:87:cb:db:8a:6d:5d:cd:10: 5c:ff:de:36:d9:60:c0:5c:ef:0d:40:90:18:a6:2e: d6:d8:d0:2b:c2:7b:da:00:94:f3:34:5a:53:68:ff: d4:f2:0e:71:29:29:4b:23:56:09:c8:ab:ac:38:68: 2c:3f:88:0f:3f:93:31:4f:60:21:5e:ac:43:2a:c5: 91:ee:34:dd:68:df:3b:99:22:93:5a:e4:5c:e7:ac: fc:c3:e5:4a:c2:eb:55:c2:25:dd:84:d3:30:f8:0c: d5:3f:51:9d:14:30:ae:0a:74:79:cd:4f:07:59:fb: 0c:5e:14:11:46:45:4b:e6:67:11:36:54:46:6b:43: e0:26:34:d5:34:71:1a:1f:af:b2:00:04:90:cd:7c: a7:e6:24:14:86:e6:5b:39:d5:c4:b9:e7:3e:bb:f8: 45:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:BB:BA:A7:38:7D:65:6E:8E:EF:7D:35:59:88:B1:1F:53:5E:A8:D8 X509v3 Authority Key Identifier: keyid:EB:38:9F:B3:39:B3:90:8D:54:9A:65:39:0C:92:E1:5F:9D:F7:C5:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/6zifszmzkI1UmmU5DJLhX533xUs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6zifszmzkI1UmmU5DJLhX533xUs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9149F3E/AC52B7481D8211E2BC6417D708B02CD2/D34236BE7D0511EEB381D02CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.128.198.0/24 101.55.23.0/24 112.196.194.0/24 Signature Algorithm: sha256WithRSAEncryption e1:4d:37:fe:c2:2d:c9:9b:4f:c3:1b:ef:49:16:11:24:25:60: 8c:bb:c9:8c:a9:bf:f4:27:32:11:e0:90:6f:a8:0b:d2:52:47: a2:1a:6e:a1:55:ec:aa:d2:94:60:b3:31:28:28:98:6f:59:99: 95:59:b5:1f:97:f3:dc:86:46:25:04:18:d0:a2:3c:92:fa:f2: df:04:86:f2:86:97:8a:1a:b2:fb:8f:94:65:94:91:21:f0:f6: 64:4e:b0:e2:25:7f:a0:1f:88:13:bd:ca:0d:36:93:a0:89:ad: ea:68:65:91:f4:2e:00:44:b4:c0:be:8f:b6:bb:16:dd:a0:30: 6c:1e:6b:1d:c2:1e:6c:25:5e:b0:28:93:9a:72:50:87:ec:d5: 04:26:b1:63:29:df:fe:58:cf:86:a0:f6:ae:82:63:2a:3e:93: 06:d2:2d:5d:ac:78:ae:ca:80:f0:f8:bc:d5:6e:6e:9a:0e:e9: 5d:79:41:06:b1:17:10:70:b7:26:c4:dc:80:f6:c6:57:2d:f7: c5:fe:b6:d6:f9:a9:88:72:db:f4:d4:05:a7:d7:ed:f5:b9:49: c4:65:3d:0c:d0:8f:c5:1c:03:d7:7b:79:c5:db:e0:73:b8:2a: 8a:a0:85:eb:7f:05:8c:11:34:35:8c:b1:3a:b5:c0:3a:0d:2e: 38:6a:92:59 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICNfUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDlGM0UxMTAvBgNVBAUTKEVCMzg5RkIzMzlCMzkwOEQ1NDlBNjUzOTBDOTJFMTVG OURGN0M1NEIwHhcNMjQwODE2MTQ0MDI4WhcNMjUwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmJmNjRkYi1lYzA2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3co47YCU5oDrRHuTmLrDCsJHklKKM1fwLp5PzfJGMQZ6WPUqdjmX3WRC6ZHr qSmxhKuRUUJPc+odENYDe467R07H3JYPPiaHJOSYAo6AShVHj4Ogqj2TW9DMobYy CFm4h8vbim1dzRBc/9422WDAXO8NQJAYpi7W2NArwnvaAJTzNFpTaP/U8g5xKSlL I1YJyKusOGgsP4gPP5MxT2AhXqxDKsWR7jTdaN87mSKTWuRc56z8w+VKwutVwiXd hNMw+AzVP1GdFDCuCnR5zU8HWfsMXhQRRkVL5mcRNlRGa0PgJjTVNHEaH6+yAASQ zXyn5iQUhuZbOdXEuec+u/hFPQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFHK7uqc4 fWVuju99NVmIsR9TXqjYMB8GA1UdIwQYMBaAFOs4n7M5s5CNVJplOQyS4V+d98VL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OUYzRS9BQzUyQjc0ODFE ODIxMUUyQkM2NDE3RDcwOEIwMkNEMi82emlmc3ptemtJMVVtbVU1REpMaFg1MzN4 VXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZ6aWZzem16a0kxVW1tVTVESkxoWDUzM3hVcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDlGM0UvQUM1MkI3NDgxRDgyMTFFMkJDNjQxN0Q3MDhCMDJDRDIvRDM0MjM2QkU3 RDA1MTFFRUIzODFEMDJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAxgMYDBABlNxcDBABwxMIwDQYJKoZIhvcNAQELBQADggEB AOFNN/7CLcmbT8Mb70kWESQlYIy7yYypv/QnMhHgkG+oC9JSR6IabqFV7KrSlGCz MSgomG9ZmZVZtR+X89yGRiUEGNCiPJL68t8EhvKGl4oasvuPlGWUkSHw9mROsOIl f6AfiBO9yg02k6CJrepoZZH0LgBEtMC+j7a7Ft2gMGweax3CHmwlXrAok5pyUIfs 1QQmsWMp3/5Yz4ag9q6CYyo+kwbSLV2seK7KgPD4vNVubpoO6V15QQaxFxBwtybE 3ID2xlct98X+ttb5qYhy2/TUBafX7fW5ScRlPQzQj8UcA9d7ecXb4HO4Koqghet/ BYwRNDWMsTq1wDoNLjhqklk= -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:08 2024 by rpki-client on console-ams.rpki-client.org