$ rpki-client -vvf rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/09B62A48833411ECBB74C786C4F9AE02.roa File: 09B62A48833411ECBB74C786C4F9AE02.roa (raw, json) Hash identifier: 4y99R2661TzfOkabp7/pgfm0pWxC4+jDx6PFu0Fa6p8= Subject key identifier: E4:67:A0:7D:FB:77:AD:80:C0:3D:EF:17:81:B8:94:31:2A:CB:C2:06 Certificate issuer: /CN=A91596C4/serialNumber=3EE26FBA4BE359DEAE500792EBFF78D00ACB760C Certificate serial: 0377 Authority key identifier: 3E:E2:6F:BA:4B:E3:59:DE:AE:50:07:92:EB:FF:78:D0:0A:CB:76:0C Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PuJvukvjWd6uUAeS6_940ArLdgw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/09B62A48833411ECBB74C786C4F9AE02.roa Signing time: Mon 21 Oct 2024 00:44:09 +0000 ROA not before: Mon 21 Oct 2024 00:44:09 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 1221 IP address blocks: 149.234.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/PuJvukvjWd6uUAeS6_940ArLdgw.crl rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/PuJvukvjWd6uUAeS6_940ArLdgw.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PuJvukvjWd6uUAeS6_940ArLdgw.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 19:45:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 887 (0x377) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91596C4/serialNumber=3EE26FBA4BE359DEAE500792EBFF78D00ACB760C Validity Not Before: Oct 21 00:44:09 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6715a3d9-d2ee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:51:80:dd:08:e0:57:e3:97:cd:eb:f7:9e:e8: 0b:61:dd:f7:c4:e4:bc:2b:56:5e:a4:9b:c0:7e:62: 6b:2e:68:d0:7f:91:89:9d:75:54:47:7b:d4:88:20: 29:c6:4e:2d:ae:fb:9d:23:d5:73:ab:a3:de:b8:1c: 35:0c:41:37:a5:c5:0f:e1:c9:9b:d4:dd:97:a8:3a: db:46:85:b7:f8:76:b6:9e:2b:c7:ea:6f:4a:9d:bb: 8b:88:a9:9f:0d:b5:d4:1a:10:70:c6:3c:5b:fc:d8: ba:40:8e:55:b0:f8:5c:25:af:d9:f6:ba:5d:83:da: 50:ee:30:78:ed:10:e9:99:b0:fa:63:e9:05:25:eb: 84:b4:db:61:ad:5f:1f:3b:81:b5:58:f7:43:81:7d: 49:4d:7c:cc:57:d7:16:f9:ed:a7:62:a9:ed:83:b1: d4:3b:e1:f9:be:41:3f:65:d8:9f:a7:83:f9:f0:d0: d1:96:33:86:68:bc:e7:0c:1e:7e:62:1c:32:7c:3e: 30:e3:2c:25:46:a6:e5:98:b7:a4:ea:6a:6b:7e:a2: 96:20:2b:a1:c9:8e:ac:eb:81:03:92:aa:ab:07:07: 82:49:98:c2:dc:87:ba:36:f0:b5:ab:16:ac:37:48: bf:20:3c:60:25:0b:07:09:dc:fc:a7:d7:33:0c:21: b4:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:67:A0:7D:FB:77:AD:80:C0:3D:EF:17:81:B8:94:31:2A:CB:C2:06 X509v3 Authority Key Identifier: keyid:3E:E2:6F:BA:4B:E3:59:DE:AE:50:07:92:EB:FF:78:D0:0A:CB:76:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/PuJvukvjWd6uUAeS6_940ArLdgw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/PuJvukvjWd6uUAeS6_940ArLdgw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91596C4/F3DDEEDE833011EC8FF39383C4F9AE02/09B62A48833411ECBB74C786C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 149.234.189.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:5a:be:6b:b6:5a:a2:d0:47:5b:7d:f2:8f:b0:f1:02:52:dc: c7:8f:50:01:80:f2:f5:d7:93:a0:aa:8a:c3:86:4c:c8:fa:f2: 73:2d:51:82:d0:43:7d:53:95:ae:f0:f6:8a:1a:f3:c8:85:9c: fd:d6:08:29:da:b5:e7:5b:87:40:7f:8c:53:84:66:1a:be:b6: 47:ce:fc:e9:95:39:77:e8:5d:10:82:6a:10:50:67:82:3a:0b: 78:f6:fc:fd:f4:f0:2d:70:04:ae:f0:4a:a8:82:1d:e1:37:56: 47:ab:34:0c:87:51:b5:59:8a:b2:80:35:e6:69:9e:72:d1:c9: 7c:7f:eb:9c:18:c4:b7:8a:ed:40:03:2a:35:28:6b:69:30:f9: 1b:d0:7c:9c:24:6f:0e:59:a5:0a:9f:d3:24:d0:81:e8:05:f9: 6e:cd:e4:2b:b7:c7:66:9f:91:ec:1a:18:1b:b7:0f:74:11:9d: 69:04:18:72:93:53:c5:56:50:a7:af:10:3e:ae:7a:f7:1a:d6: 36:e6:08:05:e2:44:e3:77:99:49:e1:c6:df:46:a7:55:83:b6: 9d:79:f3:b6:71:55:af:3e:d8:44:7b:18:aa:f1:48:a7:3e:25: ac:b8:04:5c:3b:8e:6e:62:b0:96:7d:8a:d7:cf:ed:33:5b:af: 63:10:e1:5b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA3cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTk2QzQxMTAvBgNVBAUTKDNFRTI2RkJBNEJFMzU5REVBRTUwMDc5MkVCRkY3OEQw MEFDQjc2MEMwHhcNMjQxMDIxMDA0NDA5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE1YTNkOS1kMmVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA21GA3QjgV+OXzev3nugLYd33xOS8K1ZepJvAfmJrLmjQf5GJnXVUR3vUiCAp xk4trvudI9Vzq6PeuBw1DEE3pcUP4cmb1N2XqDrbRoW3+Ha2nivH6m9KnbuLiKmf DbXUGhBwxjxb/Ni6QI5VsPhcJa/Z9rpdg9pQ7jB47RDpmbD6Y+kFJeuEtNthrV8f O4G1WPdDgX1JTXzMV9cW+e2nYqntg7HUO+H5vkE/Zdifp4P58NDRljOGaLznDB5+ YhwyfD4w4ywlRqblmLek6mprfqKWICuhyY6s64EDkqqrBweCSZjC3Ie6NvC1qxas N0i/IDxgJQsHCdz8p9czDCG02QIDAQABo4IClTCCApEwHQYDVR0OBBYEFORnoH37 d62AwD3vF4G4lDEqy8IGMB8GA1UdIwQYMBaAFD7ib7pL41nerlAHkuv/eNAKy3YM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1OTZDNC9GM0RERUVERTgz MzAxMUVDOEZGMzkzODNDNEY5QUUwMi9QdUp2dWt2aldkNnVVQWVTNl85NDBBckxk Z3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyL1B1SnZ1a3ZqV2Q2dVVBZVM2Xzk0MEFyTGRndy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTk2QzQvRjNEREVFREU4MzMwMTFFQzhGRjM5MzgzQzRGOUFFMDIvMDlCNjJBNDg4 MzM0MTFFQ0JCNzRDNzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBACV6r0wDQYJKoZIhvcNAQELBQADggEBAF1avmu2WqLQR1t9 8o+w8QJS3MePUAGA8vXXk6CqisOGTMj68nMtUYLQQ31Tla7w9ooa88iFnP3WCCna tedbh0B/jFOEZhq+tkfO/OmVOXfoXRCCahBQZ4I6C3j2/P308C1wBK7wSqiCHeE3 VkerNAyHUbVZirKANeZpnnLRyXx/65wYxLeK7UADKjUoa2kw+RvQfJwkbw5ZpQqf 0yTQgegF+W7N5Cu3x2afkewaGBu3D3QRnWkEGHKTU8VWUKevED6uevca1jbmCAXi RON3mUnhxt9Gp1WDtp1587ZxVa8+2ER7GKrxSKc+Jay4BFw7jm5isJZ9itfP7TNb r2MQ4Vs= -----END CERTIFICATE-----Generated at Thu Nov 21 01:31:54 2024 by rpki-client on console-fra.rpki-client.org