$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/849EBBA60CCA11ED97820077C4F9AE02.roa File: 849EBBA60CCA11ED97820077C4F9AE02.roa (raw, json) Hash identifier: +7m2OTWuKLLYbb41sDTiQAOToUAeHchnEjf9Iro+vW4= Subject key identifier: 0B:76:BE:24:24:BA:C8:DA:DC:76:E1:1F:F6:68:0E:D0:AF:5D:E3:16 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0DB5 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/849EBBA60CCA11ED97820077C4F9AE02.roa Signing time: Thu 28 Dec 2023 18:56:38 +0000 ROA not before: Thu 28 Dec 2023 18:56:38 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133772 IP address blocks: 61.14.172.0/24 maxlen: 24 125.252.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 17:59:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3509 (0xdb5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Dec 28 18:56:38 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658dc4e6-5341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:8a:8f:2a:17:8a:b3:2d:5e:bf:a4:e2:33: a3:32:d3:68:6c:81:4a:8a:2a:d2:63:2b:f9:62:85: 47:26:b1:1c:09:c4:15:d8:29:47:c6:dd:84:af:e8: ef:2f:98:e5:35:e6:eb:88:9b:85:66:f2:73:ff:1a: a1:7e:9c:5e:a5:cd:77:47:54:cf:fa:94:ed:74:d2: 4a:aa:67:d0:17:e3:2d:ec:dd:e0:fd:dc:17:2e:c8: 84:4d:94:4b:b1:25:7d:da:e9:49:91:c6:29:e2:02: de:dc:5d:10:4f:70:6e:02:10:2e:ce:37:61:12:0a: 9a:94:e7:91:60:16:2d:5c:03:83:dc:b0:d6:79:6a: f1:fb:56:ea:99:5a:3d:a5:21:df:0c:4a:92:a2:03: 1c:46:e5:18:4d:42:73:b2:4a:cf:f3:63:3c:99:d2: e5:8a:69:68:e9:c7:88:27:25:ef:d7:15:50:43:b5: 7c:99:4f:8f:d3:b1:16:30:15:11:04:03:3d:e0:b7: 0a:ee:61:05:62:bd:8e:e0:e1:83:2d:7f:23:1e:69: ec:e9:35:4c:bb:10:b0:7c:6a:ba:20:c2:bb:d3:20: f6:b8:39:e5:b0:1e:a7:07:93:82:a1:42:e2:be:2a: 72:20:6a:8a:bf:92:5c:68:50:12:57:80:a7:3e:34: 43:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:76:BE:24:24:BA:C8:DA:DC:76:E1:1F:F6:68:0E:D0:AF:5D:E3:16 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/849EBBA60CCA11ED97820077C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 61.14.172.0/24 125.252.69.0/24 Signature Algorithm: sha256WithRSAEncryption 20:ce:a9:4e:e0:a6:5c:7d:38:0e:fe:cd:06:f3:ca:c1:ba:64: 86:e8:fb:c5:4e:02:06:c2:99:e0:fe:54:88:3e:81:22:e3:88: 77:61:fe:b7:90:b8:d8:30:4b:61:93:b9:09:db:a7:db:6d:95: e1:69:3b:4a:6b:7c:4e:13:9b:43:77:92:c6:85:4c:d2:1e:ed: 70:38:45:04:12:fd:87:86:aa:38:79:ce:97:8c:97:43:b5:67: d3:dc:58:97:33:c6:80:c5:e8:7c:69:3d:b2:ce:0b:ca:97:aa: a3:79:5e:33:0b:3d:65:f4:e5:c1:b5:79:58:01:0c:be:c5:7c: de:20:2f:2f:8f:58:74:30:96:8a:54:2a:86:1d:c5:5b:dc:12: 7d:96:02:dc:ba:a3:7a:93:cf:5d:46:43:dd:97:3c:9b:56:41: 8f:97:35:af:7a:d8:83:0f:f7:16:40:b2:01:61:6f:8b:e6:c7: ed:06:7f:d5:18:0f:90:34:ee:8b:f3:90:3f:5c:24:f5:2c:1f: f2:da:a3:c1:32:17:89:49:7d:30:46:76:2e:35:01:f2:55:45: 4d:4a:1a:b5:fe:c2:64:a2:e9:4a:ab:d5:2f:3b:ae:80:c6:d9: 33:ac:bb:57:bb:47:66:85:5e:33:a7:ca:8b:f8:93:d6:4d:7f: 63:fb:aa:84 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDbUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjMxMjI4MTg1NjM4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzRlNi01MzQxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuR6KjyoXirMtXr+k4jOjMtNobIFKiirSYyv5YoVHJrEcCcQV2ClHxt2Er+jv L5jlNebriJuFZvJz/xqhfpxepc13R1TP+pTtdNJKqmfQF+Mt7N3g/dwXLsiETZRL sSV92ulJkcYp4gLe3F0QT3BuAhAuzjdhEgqalOeRYBYtXAOD3LDWeWrx+1bqmVo9 pSHfDEqSogMcRuUYTUJzskrP82M8mdLlimlo6ceIJyXv1xVQQ7V8mU+P07EWMBUR BAM94LcK7mEFYr2O4OGDLX8jHmns6TVMuxCwfGq6IMK70yD2uDnlsB6nB5OCoULi vipyIGqKv5JcaFASV4CnPjRD2wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAt2viQk usja3HbhH/ZoDtCvXeMWMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvODQ5RUJCQTYw Q0NBMTFFRDk3ODIwMDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAA9DqwDBAB9/EUwDQYJKoZIhvcNAQELBQADggEBACDOqU7g plx9OA7+zQbzysG6ZIbo+8VOAgbCmeD+VIg+gSLjiHdh/reQuNgwS2GTuQnbp9tt leFpO0prfE4Tm0N3ksaFTNIe7XA4RQQS/YeGqjh5zpeMl0O1Z9PcWJczxoDF6Hxp PbLOC8qXqqN5XjMLPWX05cG1eVgBDL7FfN4gLy+PWHQwlopUKoYdxVvcEn2WAty6 o3qTz11GQ92XPJtWQY+XNa962IMP9xZAsgFhb4vmx+0Gf9UYD5A07ovzkD9cJPUs H/Lao8EyF4lJfTBGdi41AfJVRU1KGrX+wmSi6Uqr1S87roDG2TOsu1e7R2aFXjOn yov4k9ZNf2P7qoQ= -----END CERTIFICATE-----Generated at Wed Nov 20 20:07:28 2024 by rpki-client on console-fra.rpki-client.org