$ rpki-client -vvf rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa File: E366C4B83B2611E9906E7B81C4F9AE02.roa (raw, json) Hash identifier: skPQL/OHQUZ2T4jdEo8Lb73ed/7BdXi85p0W2u9vqxs= Subject key identifier: 75:9C:6A:46:C6:B4:9C:33:FF:3C:D1:88:F5:7C:64:78:A3:9A:0C:CE Certificate issuer: /CN=A9187386/serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Certificate serial: 0F65 Authority key identifier: DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa Signing time: Sat 02 Mar 2024 18:26:10 +0000 ROA not before: Sat 02 Mar 2024 18:26:10 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 38229 IP address blocks: 192.248.0.0/17 maxlen: 17 192.248.0.0/22 maxlen: 22 192.248.4.0/22 maxlen: 22 192.248.8.0/21 maxlen: 21 192.248.16.0/20 maxlen: 20 192.248.32.0/19 maxlen: 19 192.248.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 15:56:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3941 (0xf65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187386/serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Validity Not Before: Mar 2 18:26:10 2024 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=65e36f41-5221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5a:b6:7a:6b:6d:42:e5:01:71:a0:95:70:21: 99:a9:6a:76:45:7b:42:c6:30:fc:15:40:6c:9b:f3: f1:3d:07:11:47:41:2e:f8:ed:66:55:cf:eb:23:ac: 4e:d0:f5:f4:91:36:74:9a:23:95:5e:ca:d6:68:e1: 24:f4:ee:a4:6b:09:fc:21:32:82:50:40:1d:a8:9e: c0:a7:6e:69:b9:4a:37:97:fb:94:bd:5c:ff:f6:28: 10:10:ab:ef:52:fb:10:04:8a:cc:fd:0b:70:6c:da: 0a:83:e7:37:78:c4:86:a3:51:5f:be:8b:6d:e1:e9: ad:61:d1:44:76:b1:31:49:79:85:e3:19:58:ef:d6: 13:02:43:19:81:42:19:67:f6:ef:50:0e:f6:ea:d7: 89:df:e0:fe:06:45:e7:c8:24:63:f5:a1:fc:06:58: b7:68:39:9a:69:f3:47:12:e1:f0:db:ff:93:d6:1a: 78:87:0c:fc:66:f5:21:1e:1c:1a:a7:a5:06:45:54: 51:17:c0:32:c2:3b:de:17:8f:5a:87:00:80:29:2d: 38:05:a8:89:63:88:ba:7e:ff:f7:21:0e:dc:a2:1e: a2:ca:51:c9:c1:fd:d4:14:d0:ff:29:dd:80:82:b6: 9f:cd:b1:c4:cb:19:c9:17:30:5c:51:8d:e3:5d:2b: f7:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9C:6A:46:C6:B4:9C:33:FF:3C:D1:88:F5:7C:64:78:A3:9A:0C:CE X509v3 Authority Key Identifier: keyid:DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.248.0.0/17 Signature Algorithm: sha256WithRSAEncryption 27:93:5f:4f:71:09:76:c2:5a:00:5e:a5:92:15:0f:a9:ea:b4: 0b:0a:0c:a5:3a:ed:1b:cf:8f:9f:53:51:25:9e:98:43:8b:63: 48:c4:62:e7:9d:ef:1a:a7:66:19:af:de:6a:94:af:ce:62:9a: cd:77:f8:91:76:79:a0:31:94:8e:b6:cf:d5:c9:85:ec:5b:91: 88:03:09:1a:8b:5e:22:0a:2f:ca:94:ec:89:73:ec:50:dd:a6: bc:6a:e2:9c:34:b0:a6:84:70:c7:67:ce:76:2c:9c:4e:c5:42: 1b:2f:43:d0:98:4b:d4:cd:85:cb:b3:08:f5:56:c0:c2:04:27: fb:15:45:d4:87:33:49:0a:26:97:7d:84:f0:a2:d1:d3:eb:1b: ad:62:65:cb:d5:f6:1b:92:50:f6:b8:52:09:99:41:76:0e:76: 87:a8:ba:d9:49:ac:d4:3c:5f:57:93:b9:c9:70:00:ec:86:4c: 20:20:c0:2c:3b:e2:ba:a4:cf:04:62:3d:37:3b:04:0a:24:ea: be:dc:17:98:fd:bb:54:9f:03:78:3e:12:96:e9:40:1b:8d:84: 03:52:bc:f6:9b:ff:d5:55:e3:e4:53:3f:55:40:15:18:7f:38: dc:f5:d6:c4:a0:5a:d6:65:13:9b:26:3c:c5:6f:ab:8c:e5:3a: 58:43:69:fd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD2UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczODYxMTAvBgNVBAUTKERFMEM4RjQyQkNBMDVCMkY1NTgxRTZCQ0NCNEMxNEE2 RTY3MUI2MTkwHhcNMjQwMzAyMTgyNjEwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNmY0MS01MjIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzVq2emttQuUBcaCVcCGZqWp2RXtCxjD8FUBsm/PxPQcRR0Eu+O1mVc/rI6xO 0PX0kTZ0miOVXsrWaOEk9O6kawn8ITKCUEAdqJ7Ap25puUo3l/uUvVz/9igQEKvv UvsQBIrM/QtwbNoKg+c3eMSGo1Ffvott4emtYdFEdrExSXmF4xlY79YTAkMZgUIZ Z/bvUA726teJ3+D+BkXnyCRj9aH8Bli3aDmaafNHEuHw2/+T1hp4hwz8ZvUhHhwa p6UGRVRRF8AywjveF49ahwCAKS04BaiJY4i6fv/3IQ7coh6iylHJwf3UFND/Kd2A grafzbHEyxnJFzBcUY3jXSv3sQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHWcakbG tJwz/zzRiPV8ZHijmgzOMB8GA1UdIwQYMBaAFN4Mj0K8oFsvVYHmvMtMFKbmcbYZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzM4Ni80OUNENkEzQzNC MjYxMUU5QjIwRDI2ODFDNEY5QUUwMi8zZ3lQUXJ5Z1d5OVZnZWE4eTB3VXB1Wnh0 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNneVBRcnlnV3k5VmdlYTh5MHdVcHVaeHRoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczODYvNDlDRDZBM0MzQjI2MTFFOUIyMEQyNjgxQzRGOUFFMDIvRTM2NkM0Qjgz QjI2MTFFOTkwNkU3QjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAfA+AAwDQYJKoZIhvcNAQELBQADggEBACeTX09xCXbCWgBe pZIVD6nqtAsKDKU67RvPj59TUSWemEOLY0jEYued7xqnZhmv3mqUr85ims13+JF2 eaAxlI62z9XJhexbkYgDCRqLXiIKL8qU7Ilz7FDdprxq4pw0sKaEcMdnznYsnE7F QhsvQ9CYS9TNhcuzCPVWwMIEJ/sVRdSHM0kKJpd9hPCi0dPrG61iZcvV9huSUPa4 UgmZQXYOdoeoutlJrNQ8X1eTuclwAOyGTCAgwCw74rqkzwRiPTc7BAok6r7cF5j9 u1SfA3g+EpbpQBuNhANSvPab/9VV4+RTP1VAFRh/ONz11sSgWtZlE5smPMVvq4zl OlhDaf0= -----END CERTIFICATE-----Generated at Thu May 16 20:25:48 2024 by rpki-client on console-ams.rpki-client.org