$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa File: 491E49AECDCA11ED8F57D386C4F9AE02.roa (raw, json) Hash identifier: GOobL3IcAmOzxEXI8Av9eECmrglVLT+e8Yk36aU9ns8= Subject key identifier: 06:E2:E0:E2:53:A1:F1:89:E0:A8:65:90:E7:8F:08:A2:7B:4F:60:73 Certificate issuer: /CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Certificate serial: 34E3 Authority key identifier: 53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa Signing time: Wed 02 Oct 2024 14:50:33 +0000 ROA not before: Wed 02 Oct 2024 14:50:33 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 18049 IP address blocks: 61.71.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 14:24:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13539 (0x34e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6F47/serialNumber=538B076E0AADD8FAE2970C9543E849A90FE73752 Validity Not Before: Oct 2 14:50:33 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66fd5db9-bb56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:36:eb:4b:df:44:d1:42:8e:17:23:d9:51:ec: 48:15:0e:f1:49:af:6d:66:98:e4:7b:93:da:26:ab: 7d:38:f3:d6:f6:b9:4f:b8:27:6c:7c:85:96:c8:09: a2:51:8b:dc:38:98:5e:0c:cd:8d:cc:5a:81:a8:22: 69:e8:f0:db:53:7d:00:4d:a4:39:a2:1f:a4:2a:1e: 79:2f:c2:1b:9f:9f:a2:6e:cc:83:22:15:21:b9:22: be:89:ab:ef:3b:5d:db:0a:74:1f:fb:ff:c9:1c:df: 1d:02:2a:70:fc:ba:24:22:74:f7:ac:89:a1:5d:d9: 48:15:0b:42:fa:c2:be:ea:7b:dc:13:b4:15:34:33: 34:df:ca:7f:5a:83:5e:e6:71:1c:e5:90:1b:6c:c6: 3e:36:7d:da:c2:76:1f:22:9e:06:29:a4:52:9c:8f: 21:f9:8f:e0:a9:91:ca:9f:64:b3:fa:50:29:2a:b4: 57:d0:ae:31:46:84:9b:d7:f3:d7:85:51:b6:39:fb: 24:f5:5c:45:82:c7:55:f1:ab:d5:9e:77:8b:6d:27: a3:76:9f:46:25:c1:df:8b:ab:cc:5e:76:67:cf:1f: ea:4c:21:e9:8d:29:e2:a6:ce:03:10:07:2e:68:fa: 36:92:73:b7:7c:b2:74:2c:0c:a7:cc:55:76:64:2a: e8:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E2:E0:E2:53:A1:F1:89:E0:A8:65:90:E7:8F:08:A2:7B:4F:60:73 X509v3 Authority Key Identifier: keyid:53:8B:07:6E:0A:AD:D8:FA:E2:97:0C:95:43:E8:49:A9:0F:E7:37:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4sHbgqt2PrilwyVQ-hJqQ_nN1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6F47/B4A86C381D8411E2969FC5DA08B02CD2/491E49AECDCA11ED8F57D386C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.71.0.0/19 Signature Algorithm: sha256WithRSAEncryption 1b:6a:c3:79:37:71:24:1f:f6:17:99:a7:88:fc:c0:cd:26:bc: 03:5b:ae:af:97:40:a3:00:15:de:72:cd:52:fc:4b:ba:94:aa: f6:23:ab:61:d8:64:2b:91:52:03:8c:e0:85:84:d7:b5:03:10: 68:35:1d:99:97:f8:fc:26:82:77:c5:d9:12:d5:99:32:5b:1a: 24:88:e2:08:6a:10:19:7f:05:53:1d:1f:41:7e:c0:d8:f1:4e: af:a5:29:8d:f6:5f:16:13:2c:69:14:8b:89:5b:c2:5e:ac:fc: b3:c2:6c:44:82:a8:85:07:9e:51:9f:2a:c3:3e:d8:09:d5:9c: 6b:13:3b:5e:7a:0b:cb:77:db:63:30:44:dd:dd:d8:7e:01:20: f1:de:0b:39:1c:5c:ad:60:71:25:46:81:d1:83:ae:db:7a:1b: 07:ea:84:db:4c:40:bf:82:9a:69:a2:b5:0f:47:89:bd:89:02: 36:76:f9:43:47:68:36:a3:8c:28:9c:55:34:11:43:86:27:2e: 35:87:32:e5:b8:a3:7f:37:c5:c1:53:24:bc:79:2d:b8:75:47: 23:84:73:44:08:31:9a:51:ec:17:7e:23:84:b5:74:bb:df:61: 78:86:fa:86:ab:c3:dd:ec:c1:33:3d:fd:11:db:ee:aa:ec:15: 1b:f7:f5:73 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNOMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjZGNDcxMTAvBgNVBAUTKDUzOEIwNzZFMEFBREQ4RkFFMjk3MEM5NTQzRTg0OUE5 MEZFNzM3NTIwHhcNMjQxMDAyMTQ1MDMzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmZkNWRiOS1iYjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtTbrS99E0UKOFyPZUexIFQ7xSa9tZpjke5PaJqt9OPPW9rlPuCdsfIWWyAmi UYvcOJheDM2NzFqBqCJp6PDbU30ATaQ5oh+kKh55L8Ibn5+ibsyDIhUhuSK+iavv O13bCnQf+//JHN8dAipw/LokInT3rImhXdlIFQtC+sK+6nvcE7QVNDM038p/WoNe 5nEc5ZAbbMY+Nn3awnYfIp4GKaRSnI8h+Y/gqZHKn2Sz+lApKrRX0K4xRoSb1/PX hVG2Ofsk9VxFgsdV8avVnneLbSejdp9GJcHfi6vMXnZnzx/qTCHpjSnips4DEAcu aPo2knO3fLJ0LAynzFV2ZCro0QIDAQABo4IClTCCApEwHQYDVR0OBBYEFAbi4OJT ofGJ4KhlkOePCKJ7T2BzMB8GA1UdIwQYMBaAFFOLB24Krdj64pcMlUPoSakP5zdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNkY0Ny9CNEE4NkMzODFE ODQxMUUyOTY5RkM1REEwOEIwMkNEMi9VNHNIYmdxdDJQcmlsd3lWUS1oSnFRX25O MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0c0hiZ3F0MlByaWx3eVZRLWhKcVFfbk4xSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjZGNDcvQjRBODZDMzgxRDg0MTFFMjk2OUZDNURBMDhCMDJDRDIvNDkxRTQ5QUVD RENBMTFFRDhGNTdEMzg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAU9RwAwDQYJKoZIhvcNAQELBQADggEBABtqw3k3cSQf9heZ p4j8wM0mvANbrq+XQKMAFd5yzVL8S7qUqvYjq2HYZCuRUgOM4IWE17UDEGg1HZmX +PwmgnfF2RLVmTJbGiSI4ghqEBl/BVMdH0F+wNjxTq+lKY32XxYTLGkUi4lbwl6s /LPCbESCqIUHnlGfKsM+2AnVnGsTO156C8t322MwRN3d2H4BIPHeCzkcXK1gcSVG gdGDrtt6GwfqhNtMQL+CmmmitQ9Hib2JAjZ2+UNHaDajjCicVTQRQ4YnLjWHMuW4 o383xcFTJLx5Lbh1RyOEc0QIMZpR7Bd+I4S1dLvfYXiG+oarw93swTM9/RHb7qrs FRv39XM= -----END CERTIFICATE-----Generated at Fri Nov 22 16:50:03 2024 by rpki-client on console-ams.rpki-client.org