$ rpki-client -vvf rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa File: E26173CE050611EAA0470B49C4F9AE02.roa (raw, json) Hash identifier: GVChdBO2bhURzGNe0VHFcsesdp2H0VHw258XlbtWPtg= Subject key identifier: 25:F5:B8:31:14:A8:46:53:C5:13:EE:7A:C7:92:BB:02:4B:D6:9F:0E Certificate issuer: /CN=A91B3CB5/serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Certificate serial: 0BEC Authority key identifier: 13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa Signing time: Thu 10 Oct 2024 18:57:14 +0000 ROA not before: Thu 10 Oct 2024 18:57:14 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 56132 IP address blocks: 49.127.0.0/16 maxlen: 16 59.191.208.0/20 maxlen: 20 59.191.220.0/22 maxlen: 22 103.35.228.0/22 maxlen: 22 118.138.0.0/16 maxlen: 16 118.138.232.0/21 maxlen: 21 118.138.240.0/21 maxlen: 21 118.139.0.0/17 maxlen: 17 2404:2400::/32 maxlen: 32 2404:2400::/40 maxlen: 40 2404:2400::/44 maxlen: 44 2404:2400::/48 maxlen: 48 2404:2400:100::/40 maxlen: 40 2404:2400:100::/44 maxlen: 44 2404:2400:100::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:25:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3052 (0xbec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B3CB5/serialNumber=1355D5187D2E63D7E6D49078D8E71FA051C456E3 Validity Not Before: Oct 10 18:57:14 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=6708238a-e251 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:d2:22:cc:ea:6a:7f:bf:77:c5:9d:b9:04:f6: cd:6d:f6:cb:aa:f0:ca:a1:f3:f9:64:78:4d:16:2d: 96:91:c2:95:a1:15:e5:5f:31:27:08:ca:8c:34:10: 52:71:f6:3f:48:29:cc:fe:3e:cd:22:83:e9:d3:29: 78:1e:23:ed:14:e7:6b:c5:b3:c3:1e:ff:ac:f2:d3: ea:c8:9d:f7:f2:4c:cf:de:11:3e:f5:1f:a8:83:1b: eb:b1:bf:3d:87:dc:1a:34:52:39:db:33:5f:e9:a3: 3b:b3:e5:17:4b:97:4c:2b:f2:10:32:30:0b:e5:d4: a0:2a:1e:9e:21:58:57:65:0a:2d:a0:82:e9:5f:32: 6d:4c:b2:b4:50:46:ab:72:03:3e:ab:b0:e2:16:15: 2c:ea:9f:6c:1f:20:10:14:d2:d2:e9:55:c2:62:d9: ee:0e:f0:09:c6:96:bb:a5:7a:b7:ec:0a:21:29:82: 76:05:8b:29:04:e7:8b:e8:4d:86:fc:51:a8:cb:ec: 8b:37:c5:d6:bf:30:76:cb:9d:f8:16:22:a2:b4:6b: 07:78:f0:db:3a:f3:b2:0f:e7:d1:ee:bb:8d:5d:21: e0:4e:72:17:f7:06:5b:6c:c3:2f:90:8f:87:d3:25: 5f:73:f9:f5:d3:ec:1f:25:71:75:53:1b:97:08:87: ad:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:F5:B8:31:14:A8:46:53:C5:13:EE:7A:C7:92:BB:02:4B:D6:9F:0E X509v3 Authority Key Identifier: keyid:13:55:D5:18:7D:2E:63:D7:E6:D4:90:78:D8:E7:1F:A0:51:C4:56:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E1XVGH0uY9fm1JB42OcfoFHEVuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E1XVGH0uY9fm1JB42OcfoFHEVuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B3CB5/632650F8050511EAAA934C43C4F9AE02/E26173CE050611EAA0470B49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.127.0.0/16 59.191.208.0/20 103.35.228.0/22 118.138.0.0-118.139.127.255 IPv6: 2404:2400::/32 Signature Algorithm: sha256WithRSAEncryption 2d:2e:1e:5c:2a:cb:c3:c7:fe:d2:5f:5d:07:fd:74:e9:92:ec: 0c:90:a6:0e:12:63:d1:76:79:c5:3a:e9:bb:94:55:44:58:bf: c9:71:e8:76:a9:ff:98:4d:bb:a8:3c:98:fd:47:a1:84:f4:f8: 77:49:95:ff:c4:bf:8a:bc:f9:24:75:60:0c:4d:62:1a:b6:c4: 6a:32:f1:c4:cf:dc:10:be:2f:e4:af:57:91:e8:97:09:9c:9f: 2f:95:73:14:da:36:c6:86:22:38:62:c9:36:82:63:0e:d7:3f: 67:b9:51:8e:0c:63:30:f2:69:93:57:f2:c6:e6:38:c3:3e:0f: 9a:7b:57:8d:3f:54:cf:e9:d4:23:8c:a8:3e:ca:d5:3f:d5:a8: c5:20:62:28:24:06:6f:dd:16:18:82:39:f3:79:9c:73:a8:7c: 6a:6b:74:5b:b8:fd:e8:6d:3e:41:bd:b2:98:06:12:bb:b7:2d: 55:fb:2c:02:e4:b3:03:85:26:a9:6f:da:ae:76:61:f6:e2:50: c9:d3:6e:d7:ac:f5:ee:ef:53:4a:ce:38:c3:67:ff:7f:0a:54: e7:35:cc:36:20:a9:dd:e4:1e:a5:7e:4f:c4:26:0e:0f:e7:17: f0:d6:32:a9:f1:cf:82:24:47:14:f8:e5:2d:a3:b8:d0:57:d5: 7f:8a:24:81 -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICC+wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjNDQjUxMTAvBgNVBAUTKDEzNTVENTE4N0QyRTYzRDdFNkQ0OTA3OEQ4RTcxRkEw NTFDNDU2RTMwHhcNMjQxMDEwMTg1NzE0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA4MjM4YS1lMjUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3NIizOpqf793xZ25BPbNbfbLqvDKofP5ZHhNFi2WkcKVoRXlXzEnCMqMNBBS cfY/SCnM/j7NIoPp0yl4HiPtFOdrxbPDHv+s8tPqyJ338kzP3hE+9R+ogxvrsb89 h9waNFI52zNf6aM7s+UXS5dMK/IQMjAL5dSgKh6eIVhXZQotoILpXzJtTLK0UEar cgM+q7DiFhUs6p9sHyAQFNLS6VXCYtnuDvAJxpa7pXq37AohKYJ2BYspBOeL6E2G /FGoy+yLN8XWvzB2y534FiKitGsHePDbOvOyD+fR7ruNXSHgTnIX9wZbbMMvkI+H 0yVfc/n10+wfJXF1UxuXCIetWQIDAQABo4ICvDCCArgwHQYDVR0OBBYEFCX1uDEU qEZTxRPueseSuwJL1p8OMB8GA1UdIwQYMBaAFBNV1Rh9LmPX5tSQeNjnH6BRxFbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCM0NCNS82MzI2NTBGODA1 MDUxMUVBQUE5MzRDNDNDNEY5QUUwMi9FMVhWR0gwdVk5Zm0xSkI0Mk9jZm9GSEVW dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UxWFZHSDB1WTlmbTFKQjQyT2Nmb0ZIRVZ1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjNDQjUvNjMyNjUwRjgwNTA1MTFFQUFBOTM0QzQzQzRGOUFFMDIvRTI2MTczQ0Uw NTA2MTFFQUEwNDcwQjQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DAwAxfwMEBDu/0AMEAmcj5DALAwMBdooDBAd2iwAwDQQCAAIw BwMFACQEJAAwDQYJKoZIhvcNAQELBQADggEBAC0uHlwqy8PH/tJfXQf9dOmS7AyQ pg4SY9F2ecU66buUVURYv8lx6Hap/5hNu6g8mP1HoYT0+HdJlf/Ev4q8+SR1YAxN Yhq2xGoy8cTP3BC+L+SvV5Holwmcny+VcxTaNsaGIjhiyTaCYw7XP2e5UY4MYzDy aZNX8sbmOMM+D5p7V40/VM/p1COMqD7K1T/VqMUgYigkBm/dFhiCOfN5nHOofGpr dFu4/ehtPkG9spgGEru3LVX7LALkswOFJqlv2q52YfbiUMnTbtes9e7vU0rOOMNn /38KVOc1zDYgqd3kHqV+T8QmDg/nF/DWMqnxz4IkRxT45S2juNBX1X+KJIE= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org