$ rpki-client -vvf rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1B4B4FC2152F11ECB72E546FC4F9AE02.roa File: 1B4B4FC2152F11ECB72E546FC4F9AE02.roa (raw, json) Hash identifier: 08icoQFu/lUzJ7/49iluwBG/IFFfyhiQgRTkubc2rPw= Subject key identifier: 6B:E5:E8:DA:46:1B:3F:7C:C6:C6:79:D6:36:40:88:95:73:F1:AC:36 Certificate issuer: /CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Certificate serial: 3424 Authority key identifier: D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1B4B4FC2152F11ECB72E546FC4F9AE02.roa Signing time: Thu 24 Oct 2024 15:31:07 +0000 ROA not before: Thu 24 Oct 2024 15:31:07 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 17890 IP address blocks: 210.7.48.0/21 maxlen: 21 210.7.48.0/24 maxlen: 24 210.7.49.0/24 maxlen: 24 210.7.50.0/24 maxlen: 24 210.7.51.0/24 maxlen: 24 210.7.52.0/24 maxlen: 24 210.7.53.0/24 maxlen: 24 210.7.54.0/24 maxlen: 24 210.7.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 15:07:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13348 (0x3424) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E27F3/serialNumber=D40234584AF60591F37DD3FBA27EBCB85CC7656A Validity Not Before: Oct 24 15:31:07 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671a683b-4b0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:ff:d2:38:aa:f6:56:64:21:78:1b:5b:94:27: 3f:11:1f:7b:74:78:df:8f:ca:37:9b:bf:b7:d1:40: 5d:ac:7c:f7:76:f8:ed:80:b9:5a:4d:05:49:a3:3e: 46:2e:e3:4c:f9:5f:b5:8b:30:fe:60:81:ae:8b:a9: 42:7c:72:9a:c4:f1:87:da:fd:4a:1f:2a:3c:48:6c: 82:7a:a9:ed:ea:fc:73:7b:b1:78:49:00:9b:70:b7: 5f:d9:b4:fc:fd:a4:3f:47:a9:b4:8c:3e:57:88:86: bc:bc:70:25:bd:93:12:a6:df:4e:7b:f3:39:a0:7b: 28:8a:4f:94:e5:99:f8:e0:37:33:de:44:e6:a1:9e: bd:32:9c:89:8a:aa:8a:e1:f9:f3:cf:9d:c8:d7:8a: cd:47:10:d9:44:82:03:d6:48:95:a5:2e:8d:92:d8: cb:b8:9a:9e:d2:97:87:f2:23:71:d6:41:09:01:15: 4d:2a:38:24:ed:b2:a0:ff:5c:46:36:06:fe:9b:64: cf:2d:d7:6f:d2:a0:b1:a1:0f:67:21:e4:c4:d0:53: 87:24:b2:4a:93:af:89:2a:1d:a5:5b:3e:76:db:41: 9b:d0:f0:d3:b6:5a:be:57:31:61:a4:41:d4:2c:af: b7:cf:b0:1a:7a:eb:b9:5f:7c:83:82:fc:b3:0a:8c: 68:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:E5:E8:DA:46:1B:3F:7C:C6:C6:79:D6:36:40:88:95:73:F1:AC:36 X509v3 Authority Key Identifier: keyid:D4:02:34:58:4A:F6:05:91:F3:7D:D3:FB:A2:7E:BC:B8:5C:C7:65:6A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1AI0WEr2BZHzfdP7on68uFzHZWo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1AI0WEr2BZHzfdP7on68uFzHZWo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E27F3/A6DE1CE81DA111E2A32EF29308B02CD2/1B4B4FC2152F11ECB72E546FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 210.7.48.0/21 Signature Algorithm: sha256WithRSAEncryption 93:dc:a8:01:4d:16:8b:bc:0e:cb:84:45:dd:bb:f1:ae:93:23: 4f:5a:d2:8b:4b:c1:9b:d3:89:09:9d:9c:eb:d6:69:46:e8:f6: d1:08:8d:17:d4:8a:d7:ee:3e:f3:60:e4:30:cf:88:90:29:23: f0:9d:4a:d2:21:89:8c:8d:19:0e:ef:61:70:b8:cd:27:db:a5: 6e:d0:ca:6b:2b:e9:ca:1f:28:84:ff:c5:43:22:cd:44:f6:08: a5:e5:56:8b:d7:79:90:e9:0b:81:52:15:dc:d3:11:d2:6e:d1: a5:13:dc:87:57:22:c1:ec:a8:a4:4d:86:38:a8:1b:c7:e4:1a: 95:74:c6:37:e8:f1:22:1a:b8:22:f9:ac:b3:47:60:0b:6d:3b: 2e:5a:3b:e6:98:34:2b:4e:34:1e:07:c1:56:dd:af:72:36:fb: 5a:79:d9:86:06:d4:39:5f:73:5c:45:98:7c:e2:81:c6:aa:58: 89:4d:74:ac:85:85:5d:5c:d1:ee:12:88:43:29:24:da:e0:33: 3f:8a:8a:be:ca:00:db:0e:9b:05:db:3a:a0:1c:18:07:c3:0f: d1:14:14:76:f7:f5:a7:4e:9d:e3:c1:fd:a6:ee:e3:62:74:d2: 35:ca:bc:ad:20:4d:ed:cd:0f:eb:f3:39:95:4a:b1:77:41:50: 97:9c:27:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNCQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI3RjMxMTAvBgNVBAUTKEQ0MDIzNDU4NEFGNjA1OTFGMzdERDNGQkEyN0VCQ0I4 NUNDNzY1NkEwHhcNMjQxMDI0MTUzMTA3WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhNjgzYi00YjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7//SOKr2VmQheBtblCc/ER97dHjfj8o3m7+30UBdrHz3dvjtgLlaTQVJoz5G LuNM+V+1izD+YIGui6lCfHKaxPGH2v1KHyo8SGyCeqnt6vxze7F4SQCbcLdf2bT8 /aQ/R6m0jD5XiIa8vHAlvZMSpt9Oe/M5oHsoik+U5Zn44Dcz3kTmoZ69MpyJiqqK 4fnzz53I14rNRxDZRIID1kiVpS6NktjLuJqe0peH8iNx1kEJARVNKjgk7bKg/1xG Ngb+m2TPLddv0qCxoQ9nIeTE0FOHJLJKk6+JKh2lWz5220Gb0PDTtlq+VzFhpEHU LK+3z7Aaeuu5X3yDgvyzCoxoKwIDAQABo4IClTCCApEwHQYDVR0OBBYEFGvl6NpG Gz98xsZ51jZAiJVz8aw2MB8GA1UdIwQYMBaAFNQCNFhK9gWR833T+6J+vLhcx2Vq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjdGMy9BNkRFMUNFODFE QTExMUUyQTMyRUYyOTMwOEIwMkNEMi8xQUkwV0VyMkJaSHpmZFA3b242OHVGekha V28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFBSTBXRXIyQlpIemZkUDdvbjY4dUZ6SFpXby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI3RjMvQTZERTFDRTgxREExMTFFMkEzMkVGMjkzMDhCMDJDRDIvMUI0QjRGQzIx NTJGMTFFQ0I3MkU1NDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAPSBzAwDQYJKoZIhvcNAQELBQADggEBAJPcqAFNFou8DsuE Rd278a6TI09a0otLwZvTiQmdnOvWaUbo9tEIjRfUitfuPvNg5DDPiJApI/CdStIh iYyNGQ7vYXC4zSfbpW7Qymsr6cofKIT/xUMizUT2CKXlVovXeZDpC4FSFdzTEdJu 0aUT3IdXIsHsqKRNhjioG8fkGpV0xjfo8SIauCL5rLNHYAttOy5aO+aYNCtONB4H wVbdr3I2+1p52YYG1Dlfc1xFmHzigcaqWIlNdKyFhV1c0e4SiEMpJNrgMz+Kir7K ANsOmwXbOqAcGAfDD9EUFHb39adOnePB/abu42J00jXKvK0gTe3ND+vzOZVKsXdB UJecJ4Q= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org