$ rpki-client -vvf rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/4B5B64C25F6411EFBC739B4FC4F9AE02.roa File: 4B5B64C25F6411EFBC739B4FC4F9AE02.roa (raw, json) Hash identifier: VYna6cWYFndEMpqakjNTMdAcPe4hQVZ6c7OGBrC7QsU= Subject key identifier: 55:BA:A6:93:4D:2A:64:FB:C6:2F:5A:BF:EE:65:D5:A9:F9:B2:2D:52 Certificate issuer: /CN=A9179672/serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Certificate serial: 32 Authority key identifier: 91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/4B5B64C25F6411EFBC739B4FC4F9AE02.roa Signing time: Wed 09 Oct 2024 06:49:46 +0000 ROA not before: Wed 09 Oct 2024 06:49:46 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 4771 IP address blocks: 192.206.156.0/24 maxlen: 24 192.206.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Oct 2024 06:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9179672/serialNumber=91AA7783FB027819838C4A91C91C60D41FB3EEAB Validity Not Before: Oct 9 06:49:46 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6706278a-7d8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:52:85:30:43:ac:59:ef:e0:41:ca:06:ec:5e: b2:21:dd:28:b4:42:bb:4d:2e:1b:79:61:cc:61:39: 0c:5f:f8:37:b8:d9:9b:85:1c:15:e3:9f:46:a6:85: 5c:91:6c:fa:b0:03:ab:2d:7c:f9:3b:dc:90:5a:ec: ab:bd:d3:f5:5f:38:fd:8b:bb:2d:41:21:d2:e3:d9: b2:5a:1a:22:f5:48:7d:8b:5a:f8:39:44:07:29:36: de:d3:aa:ed:c5:40:3a:78:72:b5:35:b3:bf:94:ea: 9f:a1:40:74:77:09:06:b7:ba:25:78:91:62:21:ea: da:1f:02:ed:75:7f:cc:5c:45:7f:9a:e7:e2:03:56: 8b:a7:22:b2:3e:d3:68:f3:1f:23:a4:c5:f0:1d:c0: 4d:3e:40:11:37:39:cb:04:68:0e:e4:4a:c7:71:ca: b6:6d:29:8e:f1:25:09:9f:74:e3:52:0d:0f:a7:60: 3f:4a:90:cf:1d:ff:fe:50:21:7f:42:33:f7:0a:d5: 01:13:58:7d:21:1f:20:cd:ca:d1:39:93:b4:62:16: cd:b8:db:5a:1d:92:ae:c1:a5:6b:7f:fc:bb:73:5d: 16:05:33:b4:e6:3c:16:50:91:00:1e:9b:66:d7:81: fd:37:4f:d1:f1:db:1e:a8:34:1a:b6:37:cc:94:2f: b5:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:BA:A6:93:4D:2A:64:FB:C6:2F:5A:BF:EE:65:D5:A9:F9:B2:2D:52 X509v3 Authority Key Identifier: keyid:91:AA:77:83:FB:02:78:19:83:8C:4A:91:C9:1C:60:D4:1F:B3:EE:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/kap3g_sCeBmDjEqRyRxg1B-z7qs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/kap3g_sCeBmDjEqRyRxg1B-z7qs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9179672/E5F45AD05F5411EF8D18BE23C4F9AE02/4B5B64C25F6411EFBC739B4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.206.156.0/23 Signature Algorithm: sha256WithRSAEncryption 93:be:f3:26:85:8e:96:f0:db:ce:ee:e1:05:d5:8b:be:ed:71: bd:14:72:b2:80:cc:65:9d:20:90:a2:98:08:b7:8b:79:0c:ab: 89:27:7f:6b:ce:2b:e1:39:a2:a9:da:c7:4f:e3:97:2d:11:69: 05:6b:ab:f7:71:b3:13:cf:55:ed:eb:4a:31:67:1a:a0:46:63: 03:da:bd:c4:5e:53:42:b0:84:2a:ef:e3:a1:5b:dd:9b:84:04: 37:d1:bb:26:03:99:ad:13:58:57:0f:56:07:50:4f:f7:33:10: f0:98:9e:b5:1c:7b:35:46:66:4a:54:a2:cb:29:66:ca:f8:b6: 94:3f:b0:a8:0d:a9:a1:50:40:94:f6:a6:08:a8:40:0f:15:10: ee:76:15:8b:0d:74:66:84:b9:bc:e2:79:5c:c4:6f:54:ed:bb: 28:93:41:82:73:62:6e:be:a6:57:a5:68:5c:2c:e1:20:1b:e4: e1:3a:f8:63:1d:5a:89:df:ad:bc:18:f6:f3:ff:15:2f:89:57: 99:97:27:a3:a8:21:b8:9f:88:e9:eb:bb:2d:18:63:64:47:cc: 8b:77:d1:f0:a5:be:f9:2d:5e:f6:d8:7a:28:02:9e:39:30:f8: d5:9a:86:07:38:e2:b9:6d:5a:94:5a:7f:08:5d:86:ba:48:3a: 36:cf:fd:4c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 OTY3MjExMC8GA1UEBRMoOTFBQTc3ODNGQjAyNzgxOTgzOEM0QTkxQzkxQzYwRDQx RkIzRUVBQjAeFw0yNDEwMDkwNjQ5NDZaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3MDYyNzhhLTdkOGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDUUoUwQ6xZ7+BBygbsXrIh3Si0QrtNLht5YcxhOQxf+De42ZuFHBXjn0amhVyR bPqwA6stfPk73JBa7Ku90/VfOP2Luy1BIdLj2bJaGiL1SH2LWvg5RAcpNt7Tqu3F QDp4crU1s7+U6p+hQHR3CQa3uiV4kWIh6tofAu11f8xcRX+a5+IDVounIrI+02jz HyOkxfAdwE0+QBE3OcsEaA7kSsdxyrZtKY7xJQmfdONSDQ+nYD9KkM8d//5QIX9C M/cK1QETWH0hHyDNytE5k7RiFs2421odkq7BpWt//LtzXRYFM7TmPBZQkQAem2bX gf03T9Hx2x6oNBq2N8yUL7XVAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVbqmk00q ZPvGL1q/7mXVqfmyLVIwHwYDVR0jBBgwFoAUkap3g/sCeBmDjEqRyRxg1B+z7qsw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc5NjcyL0U1RjQ1QUQwNUY1 NDExRUY4RDE4QkUyM0M0RjlBRTAyL2thcDNnX3NDZUJtRGpFcVJ5UnhnMUItejdx cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIva2FwM2dfc0NlQm1EakVxUnlSeGcxQi16N3FzLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 OTY3Mi9FNUY0NUFEMDVGNTQxMUVGOEQxOEJFMjNDNEY5QUUwMi80QjVCNjRDMjVG NjQxMUVGQkM3MzlCNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAcDOnDANBgkqhkiG9w0BAQsFAAOCAQEAk77zJoWOlvDbzu7h BdWLvu1xvRRysoDMZZ0gkKKYCLeLeQyriSd/a84r4TmiqdrHT+OXLRFpBWur93Gz E89V7etKMWcaoEZjA9q9xF5TQrCEKu/joVvdm4QEN9G7JgOZrRNYVw9WB1BP9zMQ 8JietRx7NUZmSlSiyylmyvi2lD+wqA2poVBAlPamCKhADxUQ7nYViw10ZoS5vOJ5 XMRvVO27KJNBgnNibr6mV6VoXCzhIBvk4Tr4Yx1aid+tvBj28/8VL4lXmZcno6gh uJ+I6eu7LRhjZEfMi3fR8KW++S1e9th6KAKeOTD41ZqGBzjiuW1alFp/CF2Gukg6 Ns/9TA== -----END CERTIFICATE-----Generated at Mon Oct 21 07:54:13 2024 by rpki-client on console-ams.rpki-client.org