$ rpki-client -vvf rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/1930A6C2DE1411EA9309134EC4F9AE02.roa File: 1930A6C2DE1411EA9309134EC4F9AE02.roa (raw, json) Hash identifier: P8PLziuil4U42Nnqve/PHmI7Y1+H0hWzEptlameEesM= Subject key identifier: B8:AB:88:CC:98:99:87:F8:3F:17:5E:5F:A8:44:E9:B7:02:D7:75:D0 Certificate issuer: /CN=A91620E0/serialNumber=FD3B4EF8F79B0AE127E71E4B6C1869D81B22E880 Certificate serial: 0C53 Authority key identifier: FD:3B:4E:F8:F7:9B:0A:E1:27:E7:1E:4B:6C:18:69:D8:1B:22:E8:80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TtO-PebCuEn5x5LbBhp2Bsi6IA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/1930A6C2DE1411EA9309134EC4F9AE02.roa Signing time: Thu 30 Nov 2023 20:27:55 +0000 ROA not before: Thu 30 Nov 2023 20:27:55 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 64049 IP address blocks: 49.45.4.0/24 maxlen: 24 49.45.5.0/24 maxlen: 24 2405:200:900::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/_TtO-PebCuEn5x5LbBhp2Bsi6IA.crl rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/_TtO-PebCuEn5x5LbBhp2Bsi6IA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TtO-PebCuEn5x5LbBhp2Bsi6IA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 18:42:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3155 (0xc53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91620E0/serialNumber=FD3B4EF8F79B0AE127E71E4B6C1869D81B22E880 Validity Not Before: Nov 30 20:27:55 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6568f04b-cc61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:3c:c7:05:0e:ab:de:bc:0b:8c:d6:e8:18:fb: ca:9f:d0:2a:d1:48:a8:cb:98:e8:16:2a:ce:be:2d: 52:e2:f0:ad:62:cd:87:a2:ff:be:87:2f:56:c3:04: 57:4c:e1:bf:19:73:3d:6e:ad:a2:7a:93:22:ea:57: b1:7e:e4:fe:95:e9:bc:fd:cd:d0:22:ab:95:e3:93: bd:d7:9a:13:6c:d4:6b:0d:99:90:1e:0d:5c:77:12: f7:ce:de:15:e9:e9:c7:a8:3d:db:e8:90:76:37:87: 75:02:fb:6e:ab:9c:37:50:48:82:96:c6:d8:2d:c3: 50:b9:22:57:c9:a2:2d:ea:f3:bd:00:53:7d:1f:98: ef:70:ae:99:80:84:dc:88:14:f2:a7:58:e9:57:03: b5:a2:d3:94:0b:ba:9f:3e:dd:d5:6f:ca:90:8c:f5: b5:db:fc:a6:c0:16:0a:d1:c7:97:3a:18:2c:43:e7: cf:53:24:4b:23:4c:e6:52:66:51:e0:49:e8:d9:a3: 62:e3:ff:76:4f:5d:e2:03:e5:0c:bb:12:e9:de:e4: ef:b6:fc:ed:21:91:ab:79:80:6b:d8:32:3b:27:de: 2d:cd:c5:ce:ee:fe:95:b2:ef:3e:6c:52:e1:ab:67: 55:66:28:91:46:99:d4:a8:28:cc:4d:cc:ce:7a:e7: ec:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:AB:88:CC:98:99:87:F8:3F:17:5E:5F:A8:44:E9:B7:02:D7:75:D0 X509v3 Authority Key Identifier: keyid:FD:3B:4E:F8:F7:9B:0A:E1:27:E7:1E:4B:6C:18:69:D8:1B:22:E8:80 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/_TtO-PebCuEn5x5LbBhp2Bsi6IA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TtO-PebCuEn5x5LbBhp2Bsi6IA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91620E0/E1A384AC310E11EA9C3CE72FC4F9AE02/1930A6C2DE1411EA9309134EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.45.4.0/23 IPv6: 2405:200:900::/40 Signature Algorithm: sha256WithRSAEncryption 37:2a:0e:0d:82:ff:e9:78:44:7b:68:a2:38:fd:2a:29:3e:2d: 6b:7b:38:65:20:2d:28:f1:41:53:2e:71:da:93:03:41:60:d9: 6a:17:ea:6d:76:47:b1:a6:87:40:01:fc:df:ae:c9:5f:b2:17: df:47:62:08:7b:60:77:46:ee:12:a8:af:1c:ce:5c:c7:28:e5: 71:be:fc:83:d6:94:8d:02:4c:b4:e3:93:ca:2e:63:81:7a:21: 92:78:d1:eb:9e:fe:43:f5:28:35:8b:57:8e:5c:fa:c2:ba:a4: 53:cc:01:32:a9:8d:a7:53:9f:ba:d7:72:6e:35:b5:55:95:25: e1:b0:c6:27:3e:1c:44:cc:06:22:0b:a5:c3:30:67:41:ff:aa: 5d:50:f7:14:4e:33:95:86:9a:7b:84:f5:d5:6b:1c:49:db:c2: 42:63:24:89:ed:42:9d:63:cb:09:6d:cf:5e:20:7a:ed:99:d6: bd:83:86:f4:5d:3b:21:18:bc:ca:cf:b1:dd:64:7f:72:ac:58: 82:4c:85:95:47:42:04:ca:e9:27:ec:11:ae:a0:d1:90:be:38: 54:95:f6:e6:b8:c5:44:06:85:66:9b:41:a0:67:92:c6:1e:98: 7f:cc:b8:66:77:f6:aa:d4:b9:10:be:bd:cd:76:6c:15:b1:67: 2e:2c:15:5d -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICDFMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjIwRTAxMTAvBgNVBAUTKEZEM0I0RUY4Rjc5QjBBRTEyN0U3MUU0QjZDMTg2OUQ4 MUIyMkU4ODAwHhcNMjMxMTMwMjAyNzU1WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY4ZjA0Yi1jYzYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxzzHBQ6r3rwLjNboGPvKn9Aq0Uioy5joFirOvi1S4vCtYs2Hov++hy9WwwRX TOG/GXM9bq2iepMi6lexfuT+lem8/c3QIquV45O915oTbNRrDZmQHg1cdxL3zt4V 6enHqD3b6JB2N4d1Avtuq5w3UEiClsbYLcNQuSJXyaIt6vO9AFN9H5jvcK6ZgITc iBTyp1jpVwO1otOUC7qfPt3Vb8qQjPW12/ymwBYK0ceXOhgsQ+fPUyRLI0zmUmZR 4Eno2aNi4/92T13iA+UMuxLp3uTvtvztIZGreYBr2DI7J94tzcXO7v6Vsu8+bFLh q2dVZiiRRpnUqCjMTczOeufsUQIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFLiriMyY mYf4PxdeX6hE6bcC13XQMB8GA1UdIwQYMBaAFP07Tvj3mwrhJ+ceS2wYadgbIuiA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MjBFMC9FMUEzODRBQzMx MEUxMUVBOUMzQ0U3MkZDNEY5QUUwMi9fVHRPLVBlYkN1RW41eDVMYkJocDJCc2k2 SUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19UdE8tUGViQ3VFbjV4NUxiQmhwMkJzaTZJQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjIwRTAvRTFBMzg0QUMzMTBFMTFFQTlDM0NFNzJGQzRGOUFFMDIvMTkzMEE2QzJE RTE0MTFFQTkzMDkxMzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAExLQQwDgQCAAIwCAMGACQFAgAJMA0GCSqGSIb3DQEBCwUA A4IBAQA3Kg4Ngv/peER7aKI4/SopPi1rezhlIC0o8UFTLnHakwNBYNlqF+ptdkex podAAfzfrslfshffR2IIe2B3Ru4SqK8czlzHKOVxvvyD1pSNAky045PKLmOBeiGS eNHrnv5D9Sg1i1eOXPrCuqRTzAEyqY2nU5+613JuNbVVlSXhsMYnPhxEzAYiC6XD MGdB/6pdUPcUTjOVhpp7hPXVaxxJ28JCYySJ7UKdY8sJbc9eIHrtmda9g4b0XTsh GLzKz7HdZH9yrFiCTIWVR0IEyukn7BGuoNGQvjhUlfbmuMVEBoVmm0GgZ5LGHph/ zLhmd/aq1LkQvr3NdmwVsWcuLBVd -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:24 2024 by rpki-client on console-fra.rpki-client.org