$ rpki-client -vvf rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/B4FED5FC8E5311EBB81E6C70C4F9AE02.roa File: B4FED5FC8E5311EBB81E6C70C4F9AE02.roa (raw, json) Hash identifier: +LSpdxgmnQsDAx20JaVGpFVFr9fua3QqkhZrGQgsPA0= Subject key identifier: F2:D1:B8:15:C3:61:FC:FF:1F:AA:89:D2:32:38:0C:D9:7E:98:FA:39 Certificate issuer: /CN=A916814B/serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Certificate serial: 1568 Authority key identifier: E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/B4FED5FC8E5311EBB81E6C70C4F9AE02.roa Signing time: Wed 24 Jul 2024 08:57:37 +0000 ROA not before: Wed 24 Jul 2024 08:57:37 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 55446 IP address blocks: 49.128.108.0/22 maxlen: 22 49.128.108.0/24 maxlen: 24 49.128.109.0/24 maxlen: 24 49.128.110.0/24 maxlen: 24 49.128.111.0/24 maxlen: 24 2407:9a00::/32 maxlen: 32 2407:9a00:1::/48 maxlen: 48 2407:9a00:2::/48 maxlen: 48 2407:9a00:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Dec 2024 16:45:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5480 (0x1568) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916814B/serialNumber=E1832DB6A51E4A259E90FEC81E47C5469C52A689 Validity Not Before: Jul 24 08:57:37 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66a0c200-fbc8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:34:29:dc:49:c7:db:e4:0c:a6:92:91:bd:0a: 22:56:59:6c:47:fc:eb:e7:56:6a:8c:af:19:d6:80: 42:c8:d0:36:3a:df:c3:f6:b6:f4:3c:dc:ac:d8:63: c6:fa:b8:ea:ac:24:56:f6:4f:a4:93:21:48:7e:a5: 99:51:66:9e:b6:04:2f:b8:b2:2c:36:5e:9f:e0:42: 7f:e1:ab:90:d6:ff:c0:ab:90:1d:ec:62:22:36:40: b4:65:51:46:39:19:61:88:c6:3a:16:a7:93:2f:15: e4:fb:e3:a2:60:64:30:83:0a:2e:b4:71:d4:cd:e8: 7d:71:0b:74:cf:11:c0:ba:5d:94:1a:c1:28:32:43: db:6e:ce:66:e6:bf:f5:5f:41:3f:b7:aa:0a:27:7e: c4:5b:35:8d:ae:79:a2:a0:cc:48:ba:2f:48:78:4f: 23:72:b6:05:f6:05:ab:d3:09:1e:8e:9a:86:bd:5c: dc:ba:e1:a6:09:da:81:b2:e9:d2:7d:d6:1c:99:6d: 2f:4a:89:3b:42:f9:65:2d:59:15:12:3a:1e:ba:98: 59:1a:e7:d7:83:be:bc:a1:1d:0e:84:9d:c0:67:a8: 81:11:db:b5:ea:b1:c1:a8:55:ab:1c:57:c0:a9:c2: d0:25:da:ae:4a:c8:2e:fd:42:55:8e:fd:91:25:00: 23:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:D1:B8:15:C3:61:FC:FF:1F:AA:89:D2:32:38:0C:D9:7E:98:FA:39 X509v3 Authority Key Identifier: keyid:E1:83:2D:B6:A5:1E:4A:25:9E:90:FE:C8:1E:47:C5:46:9C:52:A6:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/4YMttqUeSiWekP7IHkfFRpxSpok.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4YMttqUeSiWekP7IHkfFRpxSpok.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916814B/02A2D970162F11E8B8DE2669C4F9AE02/B4FED5FC8E5311EBB81E6C70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.128.108.0/22 IPv6: 2407:9a00::/32 Signature Algorithm: sha256WithRSAEncryption a6:0a:ff:5a:33:3b:c8:3c:26:9f:59:4e:11:50:b9:44:56:b8: 9d:2c:86:67:54:b1:ab:c3:d5:0d:3a:82:e1:64:1d:ae:53:b1: 12:ae:82:a8:66:6e:c1:c3:72:7e:99:80:31:5b:19:bb:7a:8c: 28:20:22:d2:5e:30:ed:86:eb:64:93:22:49:6a:de:88:dc:8b: 94:f3:6e:73:2a:d0:59:9f:1d:31:de:be:01:e3:2e:dc:e1:dd: ef:28:d9:72:e5:25:01:66:4d:25:95:cd:5d:3b:6d:0f:2f:e7: c7:cb:d1:8f:09:d9:a6:1b:87:73:c8:8e:1a:7d:79:df:9c:ef: 04:d5:92:58:d8:67:78:34:99:2e:12:c6:9b:78:46:02:64:be: a6:f4:72:d6:18:dd:71:3f:e7:97:61:f9:5d:3e:f2:45:97:39: 9b:98:95:71:0d:b3:29:77:3e:2d:07:0d:f0:f4:a6:fa:5d:5d: d6:6f:92:98:c7:7a:61:92:56:d9:8a:38:3f:b2:a1:54:75:c9: 35:1d:e9:2a:94:44:c5:20:42:d8:d7:01:f8:b7:c9:e2:c5:33: 28:66:0d:89:20:e3:a5:b3:13:de:a7:a1:1e:af:55:7f:1c:02: e9:06:a7:47:00:6c:b4:2b:da:1a:e0:61:09:82:c3:d6:09:66: dd:b5:8e:48 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICFWgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjgxNEIxMTAvBgNVBAUTKEUxODMyREI2QTUxRTRBMjU5RTkwRkVDODFFNDdDNTQ2 OUM1MkE2ODkwHhcNMjQwNzI0MDg1NzM3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmEwYzIwMC1mYmM4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxjQp3EnH2+QMppKRvQoiVllsR/zr51ZqjK8Z1oBCyNA2Ot/D9rb0PNys2GPG +rjqrCRW9k+kkyFIfqWZUWaetgQvuLIsNl6f4EJ/4auQ1v/Aq5Ad7GIiNkC0ZVFG ORlhiMY6FqeTLxXk++OiYGQwgwoutHHUzeh9cQt0zxHAul2UGsEoMkPbbs5m5r/1 X0E/t6oKJ37EWzWNrnmioMxIui9IeE8jcrYF9gWr0wkejpqGvVzcuuGmCdqBsunS fdYcmW0vSok7QvllLVkVEjoeuphZGufXg768oR0OhJ3AZ6iBEdu16rHBqFWrHFfA qcLQJdquSsgu/UJVjv2RJQAjRQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPLRuBXD Yfz/H6qJ0jI4DNl+mPo5MB8GA1UdIwQYMBaAFOGDLbalHkolnpD+yB5HxUacUqaJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2ODE0Qi8wMkEyRDk3MDE2 MkYxMUU4QjhERTI2NjlDNEY5QUUwMi80WU10dHFVZVNpV2VrUDdJSGtmRlJweFNw b2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRZTXR0cVVlU2lXZWtQN0lIa2ZGUnB4U3Bvay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjgxNEIvMDJBMkQ5NzAxNjJGMTFFOEI4REUyNjY5QzRGOUFFMDIvQjRGRUQ1RkM4 RTUzMTFFQkI4MUU2QzcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAIxgGwwDQQCAAIwBwMFACQHmgAwDQYJKoZIhvcNAQELBQAD ggEBAKYK/1ozO8g8Jp9ZThFQuURWuJ0shmdUsavD1Q06guFkHa5TsRKugqhmbsHD cn6ZgDFbGbt6jCggItJeMO2G62STIklq3ojci5TzbnMq0FmfHTHevgHjLtzh3e8o 2XLlJQFmTSWVzV07bQ8v58fL0Y8J2aYbh3PIjhp9ed+c7wTVkljYZ3g0mS4Sxpt4 RgJkvqb0ctYY3XE/55dh+V0+8kWXOZuYlXENsyl3Pi0HDfD0pvpdXdZvkpjHemGS VtmKOD+yoVR1yTUd6SqURMUgQtjXAfi3yeLFMyhmDYkg46WzE96noR6vVX8cAukG p0cAbLQr2hrgYQmCw9YJZt21jkg= -----END CERTIFICATE-----Generated at Tue Nov 26 19:39:39 2024 by rpki-client on console-ams.rpki-client.org