$ rpki-client -vvf rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/48D65BC2D28F11EB9F83683DC4F9AE02.roa File: 48D65BC2D28F11EB9F83683DC4F9AE02.roa (raw, json) Hash identifier: QWVO48Lwadq4KUtj+VF2u0phUptaO0Lunt38Hpl0ScQ= Subject key identifier: D4:6A:EF:AC:8C:DE:18:2C:B0:D6:D3:25:4B:47:25:81:A0:7B:6D:8B Certificate issuer: /CN=A91DDCB6/serialNumber=18DC531D44F05962E97F23845736141D3E02681B Certificate serial: 062C Authority key identifier: 18:DC:53:1D:44:F0:59:62:E9:7F:23:84:57:36:14:1D:3E:02:68:1B Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GNxTHUTwWWLpfyOEVzYUHT4CaBs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/48D65BC2D28F11EB9F83683DC4F9AE02.roa Signing time: Tue 08 Oct 2024 20:59:53 +0000 ROA not before: Tue 08 Oct 2024 20:59:53 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 17439 IP address blocks: 217.18.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/GNxTHUTwWWLpfyOEVzYUHT4CaBs.crl rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/GNxTHUTwWWLpfyOEVzYUHT4CaBs.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GNxTHUTwWWLpfyOEVzYUHT4CaBs.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 17:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1580 (0x62c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DDCB6/serialNumber=18DC531D44F05962E97F23845736141D3E02681B Validity Not Before: Oct 8 20:59:53 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=67059d48-b960 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:10:7e:01:40:c1:93:86:25:ee:c7:3c:18:1a: 3f:4a:b9:dd:e5:d7:19:0b:fa:34:0a:46:02:e9:af: 4b:e4:9e:7a:ea:fa:e2:3d:5f:bb:32:ea:aa:d8:50: 9f:a3:6f:77:ec:bc:af:ee:30:a5:1e:ca:67:aa:00: f0:42:f8:f1:20:5d:3d:90:35:9b:52:5a:e9:78:14: a1:33:a4:fc:89:2a:9f:28:cb:0e:f2:1a:d4:d2:5e: f9:d5:63:df:60:78:51:3c:14:18:96:83:95:2b:26: 08:5d:8c:bd:db:66:dc:36:3c:08:1f:33:58:bf:bd: 68:2d:21:34:5c:15:cc:4e:53:e4:c2:76:eb:a7:5e: 02:58:6e:09:f2:32:36:c8:b8:3e:e1:76:34:22:c4: a8:26:78:e7:c4:5c:e1:dd:f4:31:f4:5b:36:1c:ac: b0:48:94:eb:78:8f:d0:e4:ca:53:8a:f6:b3:17:6a: 8e:dd:f0:42:49:7b:ee:52:a4:b0:2a:a8:78:98:ca: 85:11:f1:5f:5f:bb:d6:d2:e4:26:c4:2e:11:a2:d7: a2:f7:43:ec:03:8d:09:35:94:3a:89:49:90:d1:5e: dc:2c:6a:3f:17:e8:03:27:f5:05:0f:1f:e8:a9:27: e4:d1:d8:52:55:a2:17:d4:0d:88:c4:97:0a:9d:e3: 32:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:6A:EF:AC:8C:DE:18:2C:B0:D6:D3:25:4B:47:25:81:A0:7B:6D:8B X509v3 Authority Key Identifier: keyid:18:DC:53:1D:44:F0:59:62:E9:7F:23:84:57:36:14:1D:3E:02:68:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/GNxTHUTwWWLpfyOEVzYUHT4CaBs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/GNxTHUTwWWLpfyOEVzYUHT4CaBs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DDCB6/6E9AC80671D811EB8047721DC4F9AE02/48D65BC2D28F11EB9F83683DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 217.18.52.0/22 Signature Algorithm: sha256WithRSAEncryption a0:89:6d:dc:37:50:0f:b1:b7:e4:f9:57:a7:52:4e:43:c9:04: 0d:8e:e7:46:59:38:24:c7:a5:1b:7b:85:3b:15:fb:50:8b:fe: 6e:9b:a5:e3:99:34:2c:22:2b:ec:1f:2a:0d:12:9b:b3:29:21: 14:d7:af:37:47:33:5f:ff:d7:c3:c5:e0:08:a3:fb:ca:49:57: db:16:27:44:15:b6:6e:d6:f4:19:7c:6d:6b:00:f1:a9:49:26: 99:fc:8e:4f:2b:1f:85:1f:c5:d5:9c:86:cc:88:97:11:01:68: 12:88:a9:03:b2:91:4e:b0:43:67:8b:e6:b6:d4:71:68:23:d8: a8:cc:fd:5b:1f:c9:6f:63:b7:e9:30:d4:b3:c0:b8:0a:f7:9c: b8:2a:74:f2:31:76:dd:8b:d7:12:e7:e8:8a:68:7c:3c:dc:24: f2:ac:22:11:a5:fa:d2:4d:b9:f5:c5:07:75:41:e8:c9:12:88: 16:6d:66:7c:86:fd:d1:1b:63:99:ea:22:00:a8:5c:10:b9:08: b4:7a:75:61:17:4f:03:8f:fb:8f:f1:79:b2:c8:51:5a:74:2c: 76:3c:e4:1a:b3:19:fa:30:d8:d9:2e:e8:a4:00:c9:51:da:91: 38:ac:7a:72:09:eb:ce:9b:b4:bf:3b:1e:5c:b1:54:27:14:2c: 8c:20:bc:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RERDQjYxMTAvBgNVBAUTKDE4REM1MzFENDRGMDU5NjJFOTdGMjM4NDU3MzYxNDFE M0UwMjY4MUIwHhcNMjQxMDA4MjA1OTUzWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA1OWQ0OC1iOTYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArxB+AUDBk4Yl7sc8GBo/Srnd5dcZC/o0CkYC6a9L5J566vriPV+7Muqq2FCf o2937Lyv7jClHspnqgDwQvjxIF09kDWbUlrpeBShM6T8iSqfKMsO8hrU0l751WPf YHhRPBQYloOVKyYIXYy922bcNjwIHzNYv71oLSE0XBXMTlPkwnbrp14CWG4J8jI2 yLg+4XY0IsSoJnjnxFzh3fQx9Fs2HKywSJTreI/Q5MpTivazF2qO3fBCSXvuUqSw Kqh4mMqFEfFfX7vW0uQmxC4Rotei90PsA40JNZQ6iUmQ0V7cLGo/F+gDJ/UFDx/o qSfk0dhSVaIX1A2IxJcKneMyRQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNRq76yM 3hgssNbTJUtHJYGge22LMB8GA1UdIwQYMBaAFBjcUx1E8Fli6X8jhFc2FB0+Amgb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERENCNi82RTlBQzgwNjcx RDgxMUVCODA0NzcyMURDNEY5QUUwMi9HTnhUSFVUd1dXTHBmeU9FVnpZVUhUNENh QnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzMjJBNUY0MUQ2NjExRTJBM0YyN0Y3Qzcy RkQxRkYyL0dOeFRIVVR3V1dMcGZ5T0VWellVSFQ0Q2FCcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RERDQjYvNkU5QUM4MDY3MUQ4MTFFQjgwNDc3MjFEQzRGOUFFMDIvNDhENjVCQzJE MjhGMTFFQjlGODM2ODNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALZEjQwDQYJKoZIhvcNAQELBQADggEBAKCJbdw3UA+xt+T5 V6dSTkPJBA2O50ZZOCTHpRt7hTsV+1CL/m6bpeOZNCwiK+wfKg0Sm7MpIRTXrzdH M1//18PF4Aij+8pJV9sWJ0QVtm7W9Bl8bWsA8alJJpn8jk8rH4UfxdWchsyIlxEB aBKIqQOykU6wQ2eL5rbUcWgj2KjM/VsfyW9jt+kw1LPAuAr3nLgqdPIxdt2L1xLn 6IpofDzcJPKsIhGl+tJNufXFB3VB6MkSiBZtZnyG/dEbY5nqIgCoXBC5CLR6dWEX TwOP+4/xebLIUVp0LHY85BqzGfow2Nku6KQAyVHakTisenIJ686btL87HlyxVCcU LIwgvKc= -----END CERTIFICATE-----Generated at Sun Nov 24 21:45:14 2024 by rpki-client on console-ams.rpki-client.org