$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/41B2F448ECE611EA882BEA79C4F9AE02.roa File: 41B2F448ECE611EA882BEA79C4F9AE02.roa (raw, json) Hash identifier: 2OWyaPGRLrrFKnf1EOOsWE1CZ/F4XEfW9jNRJp2rUvY= Subject key identifier: 98:00:D3:58:06:F1:4C:24:43:AE:94:20:CC:D0:C7:33:7A:AE:D4:34 Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Certificate serial: 0AB6 Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/41B2F448ECE611EA882BEA79C4F9AE02.roa Signing time: Tue 02 Jul 2024 20:08:13 +0000 ROA not before: Tue 02 Jul 2024 20:08:13 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 4818 IP address blocks: 49.124.0.0/15 maxlen: 15 115.164.0.0/16 maxlen: 17 115.164.51.0/24 maxlen: 24 115.164.52.0/24 maxlen: 24 115.164.53.0/24 maxlen: 24 115.164.54.0/24 maxlen: 24 115.164.55.0/24 maxlen: 24 115.164.56.0/24 maxlen: 24 182.62.0.0/15 maxlen: 15 2001:4458::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:05:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2742 (0xab6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Validity Not Before: Jul 2 20:08:13 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66845e2d-6c62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1b:73:09:0f:7c:ee:bb:2d:7b:eb:0d:f3:f5: 36:82:af:30:22:28:d8:66:33:91:a8:d8:cf:99:8e: c2:ca:56:d0:2f:fb:b2:3f:52:ab:ef:a9:6c:3f:48: 76:81:92:ab:d1:af:df:b6:47:c1:88:15:e2:dd:44: b8:51:c1:f5:72:ba:c9:c3:94:53:81:77:4e:59:32: e0:b0:b3:c2:60:b1:21:c5:34:52:42:ac:02:ce:d4: 37:38:a7:4f:3d:55:ec:3c:7f:2c:77:6b:5d:5d:bb: b4:3a:cd:c6:92:d5:95:7f:cb:c1:c9:9a:3b:a2:64: 6c:c6:53:61:89:24:f2:d5:8c:01:90:3b:f6:11:36: 3d:98:01:12:7b:47:60:80:18:ce:68:b2:92:94:0a: af:01:3c:4e:eb:ff:8f:64:e1:dd:51:70:a4:c5:4c: e7:fe:82:ae:43:2b:fb:3b:b4:01:91:c4:11:95:de: 81:ac:1c:4d:7c:e2:1a:03:b7:1d:05:a0:6b:e2:aa: 6b:be:e7:72:c3:71:44:eb:fb:4a:6d:d0:34:38:88: 5a:c1:56:ae:f3:d4:a8:1e:46:47:83:36:8a:65:74: da:1c:11:1e:69:f6:24:7f:10:4b:67:2f:dd:ad:e1: ef:9a:6a:34:e0:2f:ce:f9:61:e7:cd:80:ca:df:fd: 4c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:00:D3:58:06:F1:4C:24:43:AE:94:20:CC:D0:C7:33:7A:AE:D4:34 X509v3 Authority Key Identifier: keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/41B2F448ECE611EA882BEA79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.124.0.0/15 115.164.0.0/16 182.62.0.0/15 IPv6: 2001:4458::/32 Signature Algorithm: sha256WithRSAEncryption 4e:b3:7d:f8:2e:2c:23:8c:a8:c8:aa:8c:6f:c3:b5:5e:fe:42: fb:26:2d:db:24:5c:24:78:4a:13:98:f6:ad:b7:c5:9f:6f:69: 56:dd:96:78:be:86:c8:fd:30:0a:96:b9:68:e1:de:c5:a0:e8: 79:c1:a8:01:ed:be:c7:b9:55:5b:14:f0:06:0e:fe:e5:f0:4f: 50:85:57:6d:48:c8:71:18:9d:91:06:8e:6d:0f:89:56:d2:4c: e4:aa:34:f9:ef:af:41:01:84:78:67:cd:24:7d:42:91:3a:7f: 17:08:c6:d7:9b:6a:27:e5:95:7b:59:49:d5:8b:1a:60:d2:93: a5:f6:05:cb:d6:3e:c5:c8:cd:a8:c0:5b:1f:24:9d:bf:07:52: 0e:d4:24:20:de:7d:9d:72:c6:f2:49:11:2f:cd:7c:89:06:d0: 85:33:a5:7e:06:28:c0:91:d8:ff:42:bc:35:ee:05:33:ac:7f: 2b:98:d0:26:b1:32:88:89:f0:e2:f9:e5:e3:08:4e:a1:51:40: 55:c0:66:b9:90:a1:e7:ce:8f:6f:1a:4c:76:a1:39:0e:0a:53: f1:6e:52:a7:66:e9:11:68:db:50:43:3d:79:10:42:4a:e2:40: 75:f8:8d:d9:62:3d:e1:10:a6:92:94:92:b9:21:81:af:46:5e: 4a:29:ee:21 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICCrYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3ODYxMTAvBgNVBAUTKDkxQzNDOTY2Nzc2RjAxMUZDNTM1MDIxRDg1RjVBRTdC RkJBREE1N0UwHhcNMjQwNzAyMjAwODEzWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02Njg0NWUyZC02YzYyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtRtzCQ987rste+sN8/U2gq8wIijYZjORqNjPmY7CylbQL/uyP1Kr76lsP0h2 gZKr0a/ftkfBiBXi3US4UcH1crrJw5RTgXdOWTLgsLPCYLEhxTRSQqwCztQ3OKdP PVXsPH8sd2tdXbu0Os3GktWVf8vByZo7omRsxlNhiSTy1YwBkDv2ETY9mAESe0dg gBjOaLKSlAqvATxO6/+PZOHdUXCkxUzn/oKuQyv7O7QBkcQRld6BrBxNfOIaA7cd BaBr4qprvudyw3FE6/tKbdA0OIhawVau89SoHkZHgzaKZXTaHBEeafYkfxBLZy/d reHvmmo04C/O+WHnzYDK3/1MLQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFJgA01gG 8UwkQ66UIMzQxzN6rtQ0MB8GA1UdIwQYMBaAFJHDyWZ3bwEfxTUCHYX1rnv7raV+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc4Ni9CMEQ3MjNFRTM1 REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFSX0ZOUUlkaGZXdWVfdXRw WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjUEpabmR2QVJfRk5RSWRoZld1ZV91dHBYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3ODYvQjBENzIzRUUzNURBMTFFQUFCODg0ODRBQzRGOUFFMDIvNDFCMkY0NDhF Q0U2MTFFQTg4MkJFQTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMBUEAgABMA8DAwExfAMDAHOkAwMBtj4wDQQCAAIwBwMFACABRFgwDQYJKoZI hvcNAQELBQADggEBAE6zffguLCOMqMiqjG/DtV7+QvsmLdskXCR4ShOY9q23xZ9v aVbdlni+hsj9MAqWuWjh3sWg6HnBqAHtvse5VVsU8AYO/uXwT1CFV21IyHEYnZEG jm0PiVbSTOSqNPnvr0EBhHhnzSR9QpE6fxcIxtebaifllXtZSdWLGmDSk6X2BcvW PsXIzajAWx8knb8HUg7UJCDefZ1yxvJJES/NfIkG0IUzpX4GKMCR2P9CvDXuBTOs fyuY0CaxMoiJ8OL55eMITqFRQFXAZrmQoefOj28aTHahOQ4KU/FuUqdm6RFo21BD PXkQQkriQHX4jdliPeEQppKUkrkhga9GXkop7iE= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:34 2024 by rpki-client on console-fra.rpki-client.org