$ rpki-client -vvf rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/50A2F64264BC11E8ACC7951EC4F9AE02.roa File: 50A2F64264BC11E8ACC7951EC4F9AE02.roa (raw, json) Hash identifier: mECvLTKiNtfSmorR6F/JjM52Np+0S4zr3je4uTIkUj8= Subject key identifier: 9C:DE:91:09:6E:CF:4F:B6:DC:2A:C8:32:C1:82:28:99:20:BC:6E:23 Certificate issuer: /CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Certificate serial: 2434 Authority key identifier: 40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/50A2F64264BC11E8ACC7951EC4F9AE02.roa Signing time: Tue 22 Oct 2024 15:53:03 +0000 ROA not before: Tue 22 Oct 2024 15:53:03 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 24218 IP address blocks: 61.11.208.0/20 maxlen: 20 116.0.96.0/19 maxlen: 19 119.110.0.0/18 maxlen: 18 119.110.128.0/18 maxlen: 18 124.158.224.0/19 maxlen: 19 124.158.224.0/22 maxlen: 22 202.76.224.0/20 maxlen: 20 203.223.128.0/19 maxlen: 19 203.223.141.0/24 maxlen: 24 2001:4498::/32 maxlen: 32 2401:5000::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:48:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9268 (0x2434) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91650A5/serialNumber=408C999C3C1EC01644945B3477A9F2234EB5791C Validity Not Before: Oct 22 15:53:03 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6717ca5e-f28a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:58:35:0f:21:4b:3c:29:10:42:b7:8e:61:85: 88:53:fc:f9:11:a7:53:62:e6:36:fb:6d:1a:54:e4: 79:03:95:70:7b:81:fe:c8:f7:b9:f0:99:cc:32:36: 38:3b:ea:ba:ee:e6:2c:f5:69:50:3e:7c:8e:c2:da: 1a:91:62:f2:57:60:d4:6d:6b:6f:8c:95:87:d2:22: 5c:8b:1e:13:2a:c3:1a:99:0f:82:e6:56:a2:8a:a5: 3a:12:16:3e:af:4e:28:57:4f:4d:c4:b3:91:39:13: 79:c2:9d:af:14:36:c9:b8:26:05:a2:27:13:98:f2: ee:b2:40:bd:5b:71:c8:e7:d1:05:9b:59:ad:cf:fd: 8b:90:7a:ca:09:98:32:fd:91:bb:56:d5:b0:66:d2: ba:9e:88:16:4b:b8:cc:f1:cc:fb:94:11:75:f4:de: 97:92:03:39:79:76:fd:2b:b2:b9:49:19:9b:be:85: 1c:bb:6d:4a:39:dc:be:27:20:4e:29:4e:d5:9e:ee: 8e:83:2d:ca:be:54:05:97:aa:33:2d:06:b1:38:c5: 8b:48:3b:e9:ca:6a:be:d6:33:68:64:21:ae:d6:9b: da:ae:13:ba:f2:93:d5:c5:90:ad:d1:e4:62:36:6d: 88:71:e6:d1:58:3c:b6:dc:da:8a:75:2b:bf:72:92: 5e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:DE:91:09:6E:CF:4F:B6:DC:2A:C8:32:C1:82:28:99:20:BC:6E:23 X509v3 Authority Key Identifier: keyid:40:8C:99:9C:3C:1E:C0:16:44:94:5B:34:77:A9:F2:23:4E:B5:79:1C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/QIyZnDwewBZElFs0d6nyI061eRw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QIyZnDwewBZElFs0d6nyI061eRw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91650A5/17DFB35A46E611E5B08DA17BC4F9AE02/50A2F64264BC11E8ACC7951EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.11.208.0/20 116.0.96.0/19 119.110.0.0/18 119.110.128.0/18 124.158.224.0/19 202.76.224.0/20 203.223.128.0/19 IPv6: 2001:4498::/32 2401:5000::/32 Signature Algorithm: sha256WithRSAEncryption 69:6f:be:7c:57:54:e5:d6:6a:b9:e1:2b:fd:a1:a4:4e:e2:9b: 71:2b:db:3d:3e:9c:81:07:8b:f5:f3:26:9c:91:b0:ea:eb:e7: 87:92:2c:2d:31:92:56:f7:70:66:9c:ab:10:3c:e9:3d:18:ff: 42:77:3b:f7:ec:31:c1:c0:fe:de:c3:80:65:2e:7e:4e:26:fa: b3:35:cb:34:72:84:18:ee:2d:8e:9e:51:f9:79:6e:e4:cf:6f: 05:19:24:c5:01:20:b8:cd:b1:71:36:8e:18:29:36:20:bd:56: d7:93:3b:e1:2b:5b:90:11:eb:f0:77:85:8d:29:ec:b0:be:d9: e3:25:de:3f:e8:e8:a2:75:65:23:f3:81:3c:cb:a0:ab:a2:7e: 87:cd:9b:aa:87:a5:40:4c:54:33:ef:18:90:f3:a2:04:9b:3f: 61:26:ee:07:28:f6:1b:74:c2:67:a9:ed:d3:e7:0f:70:2b:80: a7:ac:44:b8:bd:34:1f:da:dc:46:cd:fc:4b:1b:6d:6e:6d:34: e9:e6:f7:b4:48:98:66:ef:f7:a9:ff:52:9a:d2:63:13:50:39: 56:8a:37:da:b3:b2:a9:7d:23:f5:fe:e0:fd:fc:b9:6a:8b:08: c3:08:f0:9e:d4:45:fa:07:b0:02:b5:b7:e9:d8:62:2e:64:fd: 1c:c9:7d:3e -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgICJDQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjUwQTUxMTAvBgNVBAUTKDQwOEM5OTlDM0MxRUMwMTY0NDk0NUIzNDc3QTlGMjIz NEVCNTc5MUMwHhcNMjQxMDIyMTU1MzAzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3Y2E1ZS1mMjhhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFg1DyFLPCkQQreOYYWIU/z5EadTYuY2+20aVOR5A5Vwe4H+yPe58JnMMjY4 O+q67uYs9WlQPnyOwtoakWLyV2DUbWtvjJWH0iJcix4TKsMamQ+C5laiiqU6EhY+ r04oV09NxLORORN5wp2vFDbJuCYFoicTmPLuskC9W3HI59EFm1mtz/2LkHrKCZgy /ZG7VtWwZtK6nogWS7jM8cz7lBF19N6XkgM5eXb9K7K5SRmbvoUcu21KOdy+JyBO KU7Vnu6Ogy3KvlQFl6ozLQaxOMWLSDvpymq+1jNoZCGu1pvarhO68pPVxZCt0eRi Nm2IcebRWDy23NqKdSu/cpJerQIDAQABo4ICzzCCAsswHQYDVR0OBBYEFJzekQlu z0+23CrIMsGCKJkgvG4jMB8GA1UdIwQYMBaAFECMmZw8HsAWRJRbNHep8iNOtXkc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NTBBNS8xN0RGQjM1QTQ2 RTYxMUU1QjA4REExN0JDNEY5QUUwMi9RSXlabkR3ZXdCWkVsRnMwZDZueUkwNjFl UncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FJeVpuRHdld0JaRWxGczBkNm55STA2MWVSdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjUwQTUvMTdERkIzNUE0NkU2MTFFNUIwOERBMTdCQzRGOUFFMDIvNTBBMkY2NDI2 NEJDMTFFOEFDQzc5NTFFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwWQYIKwYBBQUHAQcBAf8E SjBIMDAEAgABMCoDBAQ9C9ADBAV0AGADBAZ3bgADBAZ3boADBAV8nuADBATKTOAD BAXL34AwFAQCAAIwDgMFACABRJgDBQAkAVAAMA0GCSqGSIb3DQEBCwUAA4IBAQBp b758V1Tl1mq54Sv9oaRO4ptxK9s9PpyBB4v18yackbDq6+eHkiwtMZJW93BmnKsQ POk9GP9Cdzv37DHBwP7ew4BlLn5OJvqzNcs0coQY7i2OnlH5eW7kz28FGSTFASC4 zbFxNo4YKTYgvVbXkzvhK1uQEevwd4WNKeywvtnjJd4/6OiidWUj84E8y6Cron6H zZuqh6VATFQz7xiQ86IEmz9hJu4HKPYbdMJnqe3T5w9wK4CnrES4vTQf2txGzfxL G21ubTTp5ve0SJhm7/ep/1Ka0mMTUDlWijfas7KpfSP1/uD9/LlqiwjDCPCe1EX6 B7ACtbfp2GIuZP0cyX0+ -----END CERTIFICATE-----Generated at Fri Nov 22 17:55:47 2024 by rpki-client on console-fra.rpki-client.org