$ rpki-client -vvf rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa File: E366C4B83B2611E9906E7B81C4F9AE02.roa (raw, json) Hash identifier: 0HRB4yQNmTs94kn47WtW3j4lNGNrzmTjcfELkQSYx6w= Subject key identifier: C0:83:38:EC:F9:B9:F8:1E:1B:E4:6C:8E:7B:31:9E:1F:8F:DA:A1:FD Certificate issuer: /CN=A9187386/serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Certificate serial: 0FC8 Authority key identifier: DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa Signing time: Sat 31 Aug 2024 18:06:00 +0000 ROA not before: Sat 31 Aug 2024 18:06:00 +0000 ROA not after: Wed 01 Jan 2025 00:00:00 +0000 asID: 38229 IP address blocks: 192.248.0.0/17 maxlen: 17 192.248.0.0/22 maxlen: 22 192.248.4.0/22 maxlen: 22 192.248.8.0/21 maxlen: 21 192.248.16.0/20 maxlen: 20 192.248.32.0/19 maxlen: 19 192.248.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4040 (0xfc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9187386/serialNumber=DE0C8F42BCA05B2F5581E6BCCB4C14A6E671B619 Validity Not Before: Aug 31 18:06:00 2024 GMT Not After : Jan 1 00:00:00 2025 GMT Subject: CN=66d35b88-b0db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:7f:b2:c4:f3:59:fe:23:10:33:ca:53:56:36: 01:82:20:03:0c:cf:6f:0b:a9:57:91:9f:d6:32:6a: af:74:62:b4:07:5a:60:4d:60:27:76:87:41:01:8d: 42:d0:a1:76:9b:10:93:4e:4f:14:95:74:37:07:f8: 7c:d1:8b:16:14:4e:e3:93:0d:06:8e:2d:9e:0b:a9: 82:da:0f:e5:44:8b:d9:3c:7c:d3:b9:c5:50:d9:85: 6a:eb:59:81:bb:a5:c6:84:d1:ef:4d:cc:75:7f:15: 33:22:6e:47:89:af:69:63:cb:d0:4c:77:9f:a0:ca: b5:8e:cb:2d:6f:e1:b9:fb:b5:63:1b:9a:ae:cf:53: 4b:f8:f3:3f:36:27:e9:5b:47:b1:2f:f7:9e:9b:7f: b0:a2:a9:f2:41:f4:f4:8e:54:b2:6d:17:db:3a:a6: f9:e9:d6:e8:91:bc:97:1c:f9:06:cf:ee:4f:6b:38: 69:d8:26:ce:03:ee:46:30:f7:9e:14:67:33:57:9a: 1e:91:fe:78:41:37:87:cc:c9:16:fd:5a:a5:4d:a8: a2:ed:35:43:9e:57:d3:30:ac:eb:55:09:bf:9b:59: da:4d:2c:74:65:4f:52:b5:16:39:ef:2d:6b:8c:f9: fa:82:c2:ef:48:72:a6:c9:61:3b:20:b4:02:25:06: 21:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:83:38:EC:F9:B9:F8:1E:1B:E4:6C:8E:7B:31:9E:1F:8F:DA:A1:FD X509v3 Authority Key Identifier: keyid:DE:0C:8F:42:BC:A0:5B:2F:55:81:E6:BC:CB:4C:14:A6:E6:71:B6:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/3gyPQrygWy9Vgea8y0wUpuZxthk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3gyPQrygWy9Vgea8y0wUpuZxthk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9187386/49CD6A3C3B2611E9B20D2681C4F9AE02/E366C4B83B2611E9906E7B81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 192.248.0.0/17 Signature Algorithm: sha256WithRSAEncryption 4a:50:c9:74:26:f5:4e:16:b1:d8:01:c6:00:fa:19:ae:bd:01: 52:6f:9e:85:06:14:0d:a8:9f:f7:3b:f8:0c:ee:e6:32:57:0e: ed:2e:c1:50:90:96:c0:a7:d1:96:f6:a4:1e:95:43:1a:6a:ab: d3:5d:b8:a0:f6:97:0f:5a:70:6f:45:e1:ee:d7:46:12:ec:20: 92:2c:8d:ad:46:e5:08:88:50:94:c2:4d:41:cf:ed:f7:2f:d6: ea:7e:90:b2:89:7f:f9:1f:70:92:6c:8e:22:ff:a8:e6:da:71: 83:6c:e1:49:a2:1e:84:ed:44:0d:59:4e:da:62:c7:71:94:eb: 58:09:7e:a7:7d:56:89:64:f8:a2:5f:a2:19:cc:f5:bf:70:08: 97:b0:d9:39:a6:ee:18:c7:b2:f9:35:1b:f0:e8:54:83:40:4d: a0:04:f8:76:38:2d:ba:df:41:87:57:f9:34:a3:94:b3:1d:1a: 5a:ec:ad:7d:4a:17:10:1b:1e:fa:3d:c4:2b:de:1b:b3:bc:8f: 66:76:71:29:e0:39:86:07:bb:38:ee:7d:f1:07:2f:06:a8:97: 9b:10:3a:83:d4:aa:42:de:dd:0f:51:da:37:2b:03:4f:8e:55: e9:e9:17:97:83:c8:13:e1:3b:09:72:f5:aa:50:1c:6b:74:bf: 3e:7b:4b:1e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD8gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODczODYxMTAvBgNVBAUTKERFMEM4RjQyQkNBMDVCMkY1NTgxRTZCQ0NCNEMxNEE2 RTY3MUI2MTkwHhcNMjQwODMxMTgwNjAwWhcNMjUwMTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQzNWI4OC1iMGRiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnH+yxPNZ/iMQM8pTVjYBgiADDM9vC6lXkZ/WMmqvdGK0B1pgTWAndodBAY1C 0KF2mxCTTk8UlXQ3B/h80YsWFE7jkw0Gji2eC6mC2g/lRIvZPHzTucVQ2YVq61mB u6XGhNHvTcx1fxUzIm5Hia9pY8vQTHefoMq1jsstb+G5+7VjG5quz1NL+PM/Nifp W0exL/eem3+woqnyQfT0jlSybRfbOqb56dbokbyXHPkGz+5Pazhp2CbOA+5GMPee FGczV5oekf54QTeHzMkW/VqlTaii7TVDnlfTMKzrVQm/m1naTSx0ZU9StRY57y1r jPn6gsLvSHKmyWE7ILQCJQYhmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMCDOOz5 ufgeG+Rsjnsxnh+P2qH9MB8GA1UdIwQYMBaAFN4Mj0K8oFsvVYHmvMtMFKbmcbYZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzM4Ni80OUNENkEzQzNC MjYxMUU5QjIwRDI2ODFDNEY5QUUwMi8zZ3lQUXJ5Z1d5OVZnZWE4eTB3VXB1Wnh0 aGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzNneVBRcnlnV3k5VmdlYTh5MHdVcHVaeHRoay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODczODYvNDlDRDZBM0MzQjI2MTFFOUIyMEQyNjgxQzRGOUFFMDIvRTM2NkM0Qjgz QjI2MTFFOTkwNkU3QjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAfA+AAwDQYJKoZIhvcNAQELBQADggEBAEpQyXQm9U4WsdgB xgD6Ga69AVJvnoUGFA2on/c7+Azu5jJXDu0uwVCQlsCn0Zb2pB6VQxpqq9NduKD2 lw9acG9F4e7XRhLsIJIsja1G5QiIUJTCTUHP7fcv1up+kLKJf/kfcJJsjiL/qOba cYNs4UmiHoTtRA1ZTtpix3GU61gJfqd9Volk+KJfohnM9b9wCJew2Tmm7hjHsvk1 G/DoVINATaAE+HY4LbrfQYdX+TSjlLMdGlrsrX1KFxAbHvo9xCveG7O8j2Z2cSng OYYHuzjuffEHLwaol5sQOoPUqkLe3Q9R2jcrA0+OVenpF5eDyBPhOwly9apQHGt0 vz57Sx4= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:01 2024 by rpki-client on console-fra.rpki-client.org