$ rpki-client -vvf rpki.apnic.net/member_repository/A9192A47/15907C22B82111EFAAE6F567C4F9AE02/43631816B82211EFB74FF56BC4F9AE02.roa File: 43631816B82211EFB74FF56BC4F9AE02.roa (raw, json) Hash identifier: +OL0LwWDdzCSmXdG5gDsUEjfzy5Uq5zJxTv17RF0xXQ= Subject key identifier: FE:E8:81:38:D2:7E:3E:7F:1B:BC:72:4D:1F:8D:E1:22:8F:43:DA:56 Certificate issuer: /CN=A9192A47/serialNumber=7F77592042E3C87BE56EED81D9CCB0E97402CDD7 Certificate serial: 02 Authority key identifier: 7F:77:59:20:42:E3:C8:7B:E5:6E:ED:81:D9:CC:B0:E9:74:02:CD:D7 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/f3dZIELjyHvlbu2B2cyw6XQCzdc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9192A47/15907C22B82111EFAAE6F567C4F9AE02/43631816B82211EFB74FF56BC4F9AE02.roa Signing time: Thu 12 Dec 2024 00:44:37 +0000 ROA not before: Thu 12 Dec 2024 00:44:37 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 15695 IP address blocks: 86.48.241.0/24 maxlen: 24 86.48.242.0/24 maxlen: 24 86.48.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9192A47/15907C22B82111EFAAE6F567C4F9AE02/f3dZIELjyHvlbu2B2cyw6XQCzdc.crl rsync://rpki.apnic.net/member_repository/A9192A47/15907C22B82111EFAAE6F567C4F9AE02/f3dZIELjyHvlbu2B2cyw6XQCzdc.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/f3dZIELjyHvlbu2B2cyw6XQCzdc.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 12 Feb 2025 06:20:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9192A47 Validity Not Before: Dec 12 00:44:37 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=675a31f5-f7e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:d9:cf:bf:13:a7:e1:42:34:a5:83:f0:28:3f: 7d:37:29:1f:8a:32:ed:72:71:7b:65:b7:4a:e4:51: 31:7a:20:58:cf:4d:0f:08:1c:f1:0d:58:7e:32:99: f8:9b:84:a3:13:14:a8:92:b7:66:7f:5b:66:ec:64: 8a:fc:c2:e5:50:5a:39:60:d5:92:21:e9:02:83:a6: 85:23:43:71:10:ca:4f:24:d5:89:8b:79:47:53:44: 88:de:75:a2:e2:35:5b:28:fe:30:f2:74:51:a3:2f: 76:7c:91:6e:c0:a2:40:a1:b9:22:ec:56:d2:bf:ba: eb:55:8a:d6:62:95:44:fc:2d:0f:50:49:9b:d2:09: 89:9f:e4:d7:0f:d6:60:fe:29:38:c8:2f:ae:9f:5f: 53:a4:84:25:65:27:eb:90:09:cd:2b:bb:0d:68:d2: 70:71:18:d5:9a:55:1a:e5:ab:83:b1:ec:2f:7e:14: e2:d4:ba:ed:43:bb:6b:b4:12:b0:95:09:34:78:8b: 51:df:45:97:f8:03:ce:c0:61:1d:2f:f3:64:13:c5: 7f:37:61:9c:7c:93:82:79:87:c8:c3:aa:a7:01:75: c1:07:62:0e:eb:c3:e1:c2:f7:74:15:12:34:29:7b: a4:c4:cf:94:08:f7:4e:5b:b3:bf:30:58:63:a8:11: ba:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E8:81:38:D2:7E:3E:7F:1B:BC:72:4D:1F:8D:E1:22:8F:43:DA:56 X509v3 Authority Key Identifier: keyid:7F:77:59:20:42:E3:C8:7B:E5:6E:ED:81:D9:CC:B0:E9:74:02:CD:D7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9192A47/15907C22B82111EFAAE6F567C4F9AE02/f3dZIELjyHvlbu2B2cyw6XQCzdc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/f3dZIELjyHvlbu2B2cyw6XQCzdc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9192A47/15907C22B82111EFAAE6F567C4F9AE02/43631816B82211EFB74FF56BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 86.48.241.0-86.48.243.255 Signature Algorithm: sha256WithRSAEncryption 4c:c2:64:14:5e:83:49:aa:e1:8b:61:eb:49:70:fc:9b:05:34: 2e:dd:26:83:1a:e5:a9:5b:b2:2c:1d:d2:a6:0a:44:07:bb:54: 94:e2:2c:8b:32:37:84:a7:5b:b7:b2:20:23:d3:f4:48:b2:12: b7:9c:e9:db:22:61:f1:90:aa:68:25:6f:68:47:81:ec:2f:7b: d7:26:9f:ec:62:30:f7:b7:3e:a6:58:34:b2:99:77:af:2b:bd: be:1c:81:d9:cb:6f:ab:c2:db:95:ea:08:d3:89:1b:2b:e1:d6: 75:4b:49:d6:1b:f2:65:91:1c:a9:e1:51:56:c2:5f:77:24:08: 3b:25:30:31:88:de:6b:39:f2:e1:c2:04:d9:62:dc:5d:b8:15: 01:6e:53:d3:84:ca:9f:97:f8:94:62:8a:71:96:6b:9a:92:b4: ff:77:5e:91:70:35:bd:aa:7a:a8:2e:47:ee:1f:75:e6:de:dd: 7e:d2:8e:b5:21:44:a9:6a:12:8d:95:b1:c1:03:f6:de:ec:4c: 76:96:b0:1f:d2:ea:1e:e9:8c:1f:09:b0:25:39:b1:6a:da:4a: 68:e6:49:47:7f:69:f6:90:bf:d3:57:88:8b:5f:35:5f:b8:b9: 6d:4d:a6:b7:4f:34:a6:8a:0f:a7:af:53:ff:1e:9c:ec:b0:33: 01:f9:e0:8e -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 MkE0NzExMC8GA1UEBRMoN0Y3NzU5MjA0MkUzQzg3QkU1NkVFRDgxRDlDQ0IwRTk3 NDAyQ0RENzAeFw0yNDEyMTIwMDQ0MzdaFw0yNTEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY3NWEzMWY1LWY3ZTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCp2c+/E6fhQjSlg/AoP303KR+KMu1ycXtlt0rkUTF6IFjPTQ8IHPENWH4ymfib hKMTFKiSt2Z/W2bsZIr8wuVQWjlg1ZIh6QKDpoUjQ3EQyk8k1YmLeUdTRIjedaLi NVso/jDydFGjL3Z8kW7AokChuSLsVtK/uutVitZilUT8LQ9QSZvSCYmf5NcP1mD+ KTjIL66fX1OkhCVlJ+uQCc0ruw1o0nBxGNWaVRrlq4Ox7C9+FOLUuu1Du2u0ErCV CTR4i1HfRZf4A87AYR0v82QTxX83YZx8k4J5h8jDqqcBdcEHYg7rw+HC93QVEjQp e6TEz5QI905bs78wWGOoEbrnAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQU/uiBONJ+ Pn8bvHJNH43hIo9D2lYwHwYDVR0jBBgwFoAUf3dZIELjyHvlbu2B2cyw6XQCzdcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTkyQTQ3LzE1OTA3QzIyQjgy MTExRUZBQUU2RjU2N0M0RjlBRTAyL2YzZFpJRUxqeUh2bGJ1MkIyY3l3NlhRQ3pk Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvZjNkWklFTGp5SHZsYnUyQjJjeXc2WFFDemRjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 MkE0Ny8xNTkwN0MyMkI4MjExMUVGQUFFNkY1NjdDNEY5QUUwMi80MzYzMTgxNkI4 MjIxMUVGQjc0RkY1NkJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQAVjDxAwQCVjDwMA0GCSqGSIb3DQEBCwUAA4IBAQBMwmQU XoNJquGLYetJcPybBTQu3SaDGuWpW7IsHdKmCkQHu1SU4iyLMjeEp1u3siAj0/RI shK3nOnbImHxkKpoJW9oR4HsL3vXJp/sYjD3tz6mWDSymXevK72+HIHZy2+rwtuV 6gjTiRsr4dZ1S0nWG/JlkRyp4VFWwl93JAg7JTAxiN5rOfLhwgTZYtxduBUBblPT hMqfl/iUYopxlmuakrT/d16RcDW9qnqoLkfuH3Xm3t1+0o61IUSpahKNlbHBA/be 7Ex2lrAf0uoe6YwfCbAlObFq2kpo5klHf2n2kL/TV4iLXzVfuLltTaa3TzSmig+n r1P/HpzssDMB+eCO -----END CERTIFICATE-----Generated at Thu Feb 6 00:49:53 2025 by rpki-client