$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/49678FBCB72B11EC8C8E3017C4F9AE02.roa File: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (raw, json) Hash identifier: 6y2+7m6fZBqF1vnJPBAlEhf0LTJdURa/vtEhojNLyMc= Subject key identifier: 8F:E3:C4:36:9C:6E:94:6E:D0:4E:84:43:56:A5:3C:9B:AF:2A:3A:66 Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 133F Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/49678FBCB72B11EC8C8E3017C4F9AE02.roa Signing time: Sun 04 Aug 2024 15:51:47 +0000 ROA not before: Sun 04 Aug 2024 15:51:47 +0000 ROA not after: Fri 31 Oct 2025 00:00:00 +0000 asID: 6453 IP address blocks: 130.248.126.0/23 maxlen: 23 130.248.126.0/24 maxlen: 24 192.150.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:23:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4927 (0x133f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Aug 4 15:51:47 2024 GMT Not After : Oct 31 00:00:00 2025 GMT Subject: CN=66afa393-a359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:62:a8:a8:4d:97:77:90:99:ee:9b:88:56:8e: 44:37:ce:d6:33:de:d8:21:f0:87:33:eb:ae:38:07: 11:da:42:18:b7:d0:28:0c:a2:14:82:53:3e:af:69: c6:cc:5a:09:49:42:c4:fe:3f:ed:21:b9:ca:85:42: b6:6a:32:82:a5:03:d5:d8:22:7d:8e:b3:66:5c:a7: 08:1b:a5:cc:a7:5c:4c:f7:71:58:94:a9:96:1e:f7: dc:8c:4c:2c:db:88:f9:80:e8:8b:b1:e7:d2:2b:76: 75:fc:db:f5:26:10:fa:68:4e:18:2c:40:7e:04:bd: ee:36:cc:5d:72:6c:f9:01:d1:99:81:e3:f3:d6:ac: 9d:5e:be:6c:52:2f:a2:8f:47:ae:5c:4c:26:11:a7: 0b:53:52:d3:fc:4f:41:7d:c0:a4:e3:41:46:df:be: 40:cb:d2:bd:3e:71:f4:79:40:9d:7c:58:54:cb:5d: 9b:f9:75:e7:64:08:f1:eb:80:2d:78:e2:ab:68:35: 28:50:2f:82:e0:53:e8:78:b4:ae:50:35:56:24:1b: 98:e5:7e:91:e1:fa:47:2a:af:f1:0c:b7:c2:f9:38: f6:d9:c7:22:aa:d6:94:bb:66:f4:0c:87:cc:17:49: 63:39:fb:14:07:5b:8a:ba:ef:f1:07:70:55:15:6d: 92:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:E3:C4:36:9C:6E:94:6E:D0:4E:84:43:56:A5:3C:9B:AF:2A:3A:66 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/49678FBCB72B11EC8C8E3017C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.248.126.0/23 192.150.16.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:ba:ce:b9:e3:d7:ad:82:82:cf:a2:96:9f:ee:5f:a3:40:7c: af:d7:8e:d7:a2:04:da:bc:63:17:8d:11:84:ca:66:07:2e:cb: 67:70:1e:ee:94:d3:5d:a3:5c:96:5a:b4:4f:b8:e7:01:01:29: 3f:34:db:48:ff:45:f4:b3:21:c5:b6:9b:db:43:2f:59:47:6b: 18:32:c0:a6:98:2a:89:74:f6:90:f8:b4:6b:69:d4:21:b1:1a: bf:43:c3:a9:61:5e:93:20:e2:51:40:d1:2a:d0:49:69:6e:81: c8:ec:5c:a8:bf:ed:42:47:df:f1:b3:05:04:5f:de:a4:11:8c: 14:5d:7a:cc:81:b4:d3:db:73:94:29:dc:6c:b6:c4:16:66:ba: 0a:30:19:ce:8f:8e:ac:ba:4c:fd:15:f3:49:6d:72:2e:7f:7d: f8:76:0d:43:5e:1a:5b:07:19:fb:4c:74:82:a8:c3:84:1b:5d: 9c:ad:69:ad:3c:2c:b4:52:56:f3:ae:49:e1:0a:19:bb:3e:b2: e7:41:50:a1:08:fb:9f:4e:a7:ea:9f:e0:b6:03:ef:57:5f:1d: 32:8e:5b:27:af:56:69:4a:10:aa:6e:41:25:e4:65:e3:b8:1b: 75:99:19:be:0e:78:70:3e:26:09:02:95:f1:14:00:91:76:4a: d6:e1:e5:c8 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEz8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjQwODA0MTU1MTQ3WhcNMjUxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmFmYTM5My1hMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8mKoqE2Xd5CZ7puIVo5EN87WM97YIfCHM+uuOAcR2kIYt9AoDKIUglM+r2nG zFoJSULE/j/tIbnKhUK2ajKCpQPV2CJ9jrNmXKcIG6XMp1xM93FYlKmWHvfcjEws 24j5gOiLsefSK3Z1/Nv1JhD6aE4YLEB+BL3uNsxdcmz5AdGZgePz1qydXr5sUi+i j0euXEwmEacLU1LT/E9BfcCk40FG375Ay9K9PnH0eUCdfFhUy12b+XXnZAjx64At eOKraDUoUC+C4FPoeLSuUDVWJBuY5X6R4fpHKq/xDLfC+Tj22cciqtaUu2b0DIfM F0ljOfsUB1uKuu/xB3BVFW2SpwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI/jxDac bpRu0E6EQ1alPJuvKjpmMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5QkQvMDc0OTU4OTA5MTgyMTFFODkxQzRFQzEwQzRGOUFFMDIvNDk2NzhGQkNC NzJCMTFFQzhDOEUzMDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGC+H4DBADAlhAwDQYJKoZIhvcNAQELBQADggEBABq6zrnj 162Cgs+ilp/uX6NAfK/XjteiBNq8YxeNEYTKZgcuy2dwHu6U012jXJZatE+45wEB KT8020j/RfSzIcW2m9tDL1lHaxgywKaYKol09pD4tGtp1CGxGr9Dw6lhXpMg4lFA 0SrQSWlugcjsXKi/7UJH3/GzBQRf3qQRjBRdesyBtNPbc5Qp3Gy2xBZmugowGc6P jqy6TP0V80ltci5/ffh2DUNeGlsHGftMdIKow4QbXZytaa08LLRSVvOuSeEKGbs+ sudBUKEI+59Op+qf4LYD71dfHTKOWyevVmlKEKpuQSXkZeO4G3WZGb4OeHA+JgkC lfEUAJF2Stbh5cg= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:59 2024 by rpki-client on console-ams.rpki-client.org