$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/41B2F448ECE611EA882BEA79C4F9AE02.roa File: 41B2F448ECE611EA882BEA79C4F9AE02.roa (raw, json) Hash identifier: x3Xod+tEcwAdcLZi2ebHVsvCXbzUOYa2UDAp51s/ijQ= Subject key identifier: FE:6B:A2:CB:16:6D:87:1F:03:88:E9:EB:19:02:89:F6:62:29:5C:F9 Certificate issuer: /CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Certificate serial: 09E9 Authority key identifier: 91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/41B2F448ECE611EA882BEA79C4F9AE02.roa Signing time: Mon 12 Jun 2023 21:11:49 +0000 ROA not before: Mon 12 Jun 2023 21:11:49 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 4818 IP address blocks: 49.124.0.0/15 maxlen: 15 115.164.0.0/16 maxlen: 17 115.164.51.0/24 maxlen: 24 115.164.52.0/24 maxlen: 24 115.164.53.0/24 maxlen: 24 115.164.54.0/24 maxlen: 24 115.164.55.0/24 maxlen: 24 115.164.56.0/24 maxlen: 24 182.62.0.0/15 maxlen: 15 2001:4458::/32 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2537 (0x9e9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA786/serialNumber=91C3C966776F011FC535021D85F5AE7BFBADA57E Validity Not Before: Jun 12 21:11:49 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64878a15-e291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e5:15:5e:29:1a:3a:03:7f:3a:7e:2f:32:3c: 50:ca:43:29:11:81:94:b3:ca:66:6f:fe:2b:d0:0e: 19:95:b7:83:57:ca:61:73:e7:24:31:72:33:43:0a: 33:60:b0:cb:fd:ae:27:21:88:f4:cd:e1:83:09:2a: 77:dd:f0:0c:23:71:43:fc:65:49:22:59:10:f7:cc: ef:b2:e7:5a:88:08:a3:37:68:67:2f:c9:90:07:1e: d6:73:4c:2f:c9:e3:40:49:be:be:00:c7:1c:40:ce: 7b:ee:1b:5d:0b:eb:a9:f4:7e:04:79:fd:75:da:2f: 44:5b:6c:ff:6f:3c:f6:2d:d0:20:88:26:79:25:1b: 78:43:68:9b:66:67:7c:b4:d5:b7:1d:db:b9:1b:6a: d9:08:7a:cd:e0:42:76:d2:2d:df:33:a6:9f:0c:25: ec:13:a4:3e:81:13:a6:8e:d7:e6:62:61:11:4a:b4: c9:34:08:96:ad:99:04:9b:c6:49:4d:d7:b9:ac:74: a4:1a:c0:15:52:32:37:f4:07:de:35:7d:8d:e0:94: 77:64:af:ad:6d:72:d9:27:f6:b6:45:92:4f:03:66: e7:29:e7:83:11:7f:a4:c3:c4:88:00:1e:0d:af:66: ac:8d:1b:95:85:be:84:ca:51:ca:d5:b7:67:a0:9f: 9c:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:6B:A2:CB:16:6D:87:1F:03:88:E9:EB:19:02:89:F6:62:29:5C:F9 X509v3 Authority Key Identifier: keyid:91:C3:C9:66:77:6F:01:1F:C5:35:02:1D:85:F5:AE:7B:FB:AD:A5:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/kcPJZndvAR_FNQIdhfWue_utpX4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kcPJZndvAR_FNQIdhfWue_utpX4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA786/B0D723EE35DA11EAAB88484AC4F9AE02/41B2F448ECE611EA882BEA79C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.124.0.0/15 115.164.0.0/16 182.62.0.0/15 IPv6: 2001:4458::/32 Signature Algorithm: sha256WithRSAEncryption 5c:9c:a2:cb:21:10:17:60:ba:03:f8:a7:ca:4a:f8:25:84:81: 67:70:ef:e5:d9:37:da:7a:23:a0:5d:a5:17:1a:b6:24:09:0d: 54:d7:72:e9:e3:d1:72:2b:6f:b7:37:e1:0b:d7:05:35:22:4f: 61:6d:a8:aa:d7:5b:dc:54:e9:53:72:c8:f1:a3:99:e2:cb:17: 29:37:9b:7e:82:2f:aa:5e:0a:1b:01:ea:af:a8:2e:4e:af:00: 54:70:c1:15:65:19:b4:1e:4b:82:fb:e5:85:55:28:a6:74:17: 9d:c4:cd:95:42:dd:64:29:5f:c9:95:7a:49:b1:72:5a:1d:cf: 73:e1:d0:1f:03:6f:ba:3f:56:c5:58:f2:b9:3c:f7:a7:8b:59: 09:75:76:bb:1f:ea:f9:37:8d:90:93:ac:06:b9:e0:e0:2d:df: 56:57:82:78:2e:a6:30:5f:ce:a6:52:bc:96:23:b9:63:60:3b: a5:4a:52:f2:32:d4:c9:1c:96:5c:e2:97:1e:18:59:9c:16:02: 85:d8:a8:b0:9d:7e:fc:5d:57:bf:e1:6d:9c:2a:27:78:f1:b9: 07:84:12:e7:b3:10:20:fd:8b:21:e9:23:dd:f1:cb:4e:8c:c9: c0:db:f7:3c:c4:f1:4f:d4:ef:e5:d0:9b:77:3f:37:f3:cb:a7: 5e:b0:60:76 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICCekwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE3ODYxMTAvBgNVBAUTKDkxQzNDOTY2Nzc2RjAxMUZDNTM1MDIxRDg1RjVBRTdC RkJBREE1N0UwHhcNMjMwNjEyMjExMTQ5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDg3OGExNS1lMjkxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt+UVXikaOgN/On4vMjxQykMpEYGUs8pmb/4r0A4ZlbeDV8phc+ckMXIzQwoz YLDL/a4nIYj0zeGDCSp33fAMI3FD/GVJIlkQ98zvsudaiAijN2hnL8mQBx7Wc0wv yeNASb6+AMccQM577htdC+up9H4Eef112i9EW2z/bzz2LdAgiCZ5JRt4Q2ibZmd8 tNW3Hdu5G2rZCHrN4EJ20i3fM6afDCXsE6Q+gROmjtfmYmERSrTJNAiWrZkEm8ZJ Tde5rHSkGsAVUjI39AfeNX2N4JR3ZK+tbXLZJ/a2RZJPA2bnKeeDEX+kw8SIAB4N r2asjRuVhb6EylHK1bdnoJ+cXQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFP5rossW bYcfA4jp6xkCifZiKVz5MB8GA1UdIwQYMBaAFJHDyWZ3bwEfxTUCHYX1rnv7raV+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTc4Ni9CMEQ3MjNFRTM1 REExMUVBQUI4ODQ4NEFDNEY5QUUwMi9rY1BKWm5kdkFSX0ZOUUlkaGZXdWVfdXRw WDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2tjUEpabmR2QVJfRk5RSWRoZld1ZV91dHBYNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE3ODYvQjBENzIzRUUzNURBMTFFQUFCODg0ODRBQzRGOUFFMDIvNDFCMkY0NDhF Q0U2MTFFQTg4MkJFQTc5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMBUEAgABMA8DAwExfAMDAHOkAwMBtj4wDQQCAAIwBwMFACABRFgwDQYJKoZI hvcNAQELBQADggEBAFycosshEBdgugP4p8pK+CWEgWdw7+XZN9p6I6BdpRcatiQJ DVTXcunj0XIrb7c34QvXBTUiT2FtqKrXW9xU6VNyyPGjmeLLFyk3m36CL6peChsB 6q+oLk6vAFRwwRVlGbQeS4L75YVVKKZ0F53EzZVC3WQpX8mVekmxclodz3Ph0B8D b7o/VsVY8rk896eLWQl1drsf6vk3jZCTrAa54OAt31ZXgngupjBfzqZSvJYjuWNg O6VKUvIy1Mkcllzilx4YWZwWAoXYqLCdfvxdV7/hbZwqJ3jxuQeEEuezECD9iyHp I93xy06MycDb9zzE8U/U7+XQm3c/N/PLp16wYHY= -----END CERTIFICATE-----Generated at Sat May 18 21:31:32 2024 by rpki-client on console-ams.rpki-client.org