$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/49678FBCB72B11EC8C8E3017C4F9AE02.roa File: 49678FBCB72B11EC8C8E3017C4F9AE02.roa (raw, json) Hash identifier: PWN8OADdXsFH8SqIr4epF2+j2//RugTAUQN7gJuxg+E= Subject key identifier: 88:4D:92:F8:2B:5B:61:C5:20:41:FF:53:44:98:76:77:77:7C:8B:F2 Certificate issuer: /CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Certificate serial: 12AF Authority key identifier: DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/49678FBCB72B11EC8C8E3017C4F9AE02.roa Signing time: Fri 10 Nov 2023 14:14:21 +0000 ROA not before: Fri 10 Nov 2023 14:14:21 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 6453 IP address blocks: 130.248.126.0/23 maxlen: 23 130.248.126.0/24 maxlen: 24 192.150.16.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4783 (0x12af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA9BD/serialNumber=DA4B5C2123BA9D0F802378DADDD4801B5670A3ED Validity Not Before: Nov 10 14:14:21 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=654e3abd-7dab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:e0:f5:7c:da:3d:e6:92:33:6b:81:25:ce:71: 1a:3b:8b:94:dc:f4:bc:6f:03:ee:65:13:dd:25:82: 4d:c7:4e:54:85:73:79:6a:0b:97:6b:8e:59:df:aa: 98:37:a1:4f:a3:51:cf:33:f0:56:16:d9:61:5b:1c: 10:ba:20:c8:5d:9f:97:50:9e:13:90:1b:92:5d:ae: 0a:7c:10:6c:58:f9:60:e9:0b:bf:be:c9:01:ef:db: bf:2a:43:74:e6:0e:b9:1c:77:c6:85:ec:0a:fd:60: 99:91:3a:b2:67:3d:99:66:7e:a8:1a:f2:82:c1:b0: b6:fb:2a:51:68:9a:02:4a:e9:bd:47:c5:e9:d6:74: 4b:6b:b4:05:54:38:91:04:42:52:95:1e:f0:60:86: cc:05:16:d0:f0:4c:6f:b8:e4:7b:9a:45:b2:fa:6d: c7:fe:af:90:e9:2c:6e:d4:c6:78:a8:8e:f6:38:44: fb:4b:4e:ad:f9:58:1d:fa:c6:ae:44:0a:4e:a2:da: fb:ec:fd:3f:9d:f6:54:7c:16:53:03:d3:9b:92:56: cd:38:2f:5d:8f:c2:5a:63:74:ed:14:23:b5:d0:96: 4a:78:11:ad:38:80:00:9c:a9:15:c8:9c:e9:2f:d9: 4b:02:fb:30:69:17:57:3c:5d:9c:60:26:fd:e0:e9: ec:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:4D:92:F8:2B:5B:61:C5:20:41:FF:53:44:98:76:77:77:7C:8B:F2 X509v3 Authority Key Identifier: keyid:DA:4B:5C:21:23:BA:9D:0F:80:23:78:DA:DD:D4:80:1B:56:70:A3:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/2ktcISO6nQ-AI3ja3dSAG1Zwo-0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA9BD/07495890918211E891C4EC10C4F9AE02/49678FBCB72B11EC8C8E3017C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 130.248.126.0/23 192.150.16.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:2b:b4:e3:4f:36:26:a3:91:0f:da:4d:9b:ae:d3:3b:eb:6e: 0e:7a:d5:48:f6:5a:a4:10:d6:a0:7e:f9:3a:b1:e4:59:b0:43: 2b:c0:42:50:4d:40:6e:8a:b5:0e:0d:e1:aa:91:98:02:28:13: 2d:5e:bb:ed:2d:f2:bc:8e:e9:82:78:93:d9:39:c1:cd:a5:60: 6d:9e:93:4d:1f:0a:2a:51:ef:f3:ab:6d:ff:92:bd:65:41:c7: 9d:7a:fb:56:df:17:d5:6f:ea:a2:d5:f7:58:21:f2:3e:0a:81: 7d:66:89:91:90:ab:0a:b0:06:e4:26:c7:98:e0:00:c9:6a:58: 63:a8:88:08:bc:08:7b:0a:92:8e:67:00:ac:3f:4c:47:79:4a: ae:f7:60:a5:5e:91:fb:dc:7e:0c:e1:ae:40:16:68:25:cd:ee: 62:6f:db:85:22:a4:f1:42:22:43:45:98:7c:da:92:5a:3d:49: 08:12:d8:42:92:88:3d:8a:21:ef:ba:f2:1a:54:5e:60:7b:a3: 4e:37:77:81:0a:f4:c8:f3:a9:7b:b0:53:04:ff:03:41:06:e3: eb:70:05:58:91:07:5d:9c:c2:79:e6:67:5a:3b:48:17:d9:8f: c3:0b:9a:3b:9c:00:00:84:5d:b6:ef:a0:e4:6a:dc:7d:94:7a: bb:96:53:1d -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUE5QkQxMTAvBgNVBAUTKERBNEI1QzIxMjNCQTlEMEY4MDIzNzhEQURERDQ4MDFC NTY3MEEzRUQwHhcNMjMxMTEwMTQxNDIxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRlM2FiZC03ZGFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuuD1fNo95pIza4ElznEaO4uU3PS8bwPuZRPdJYJNx05UhXN5aguXa45Z36qY N6FPo1HPM/BWFtlhWxwQuiDIXZ+XUJ4TkBuSXa4KfBBsWPlg6Qu/vskB79u/KkN0 5g65HHfGhewK/WCZkTqyZz2ZZn6oGvKCwbC2+ypRaJoCSum9R8Xp1nRLa7QFVDiR BEJSlR7wYIbMBRbQ8ExvuOR7mkWy+m3H/q+Q6Sxu1MZ4qI72OET7S06t+Vgd+sau RApOotr77P0/nfZUfBZTA9ObklbNOC9dj8JaY3TtFCO10JZKeBGtOIAAnKkVyJzp L9lLAvswaRdXPF2cYCb94OnsQwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIhNkvgr W2HFIEH/U0SYdnd3fIvyMB8GA1UdIwQYMBaAFNpLXCEjup0PgCN42t3UgBtWcKPt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQTlCRC8wNzQ5NTg5MDkx ODIxMUU4OTFDNEVDMTBDNEY5QUUwMi8ya3RjSVNPNm5RLUFJM2phM2RTQUcxWndv LTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3Qzcy RkQxRkYyLzJrdGNJU082blEtQUkzamEzZFNBRzFad28tMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUE5QkQvMDc0OTU4OTA5MTgyMTFFODkxQzRFQzEwQzRGOUFFMDIvNDk2NzhGQkNC NzJCMTFFQzhDOEUzMDE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAGC+H4DBADAlhAwDQYJKoZIhvcNAQELBQADggEBAE0rtONP NiajkQ/aTZuu0zvrbg561Uj2WqQQ1qB++Tqx5FmwQyvAQlBNQG6KtQ4N4aqRmAIo Ey1eu+0t8ryO6YJ4k9k5wc2lYG2ek00fCipR7/Orbf+SvWVBx516+1bfF9Vv6qLV 91gh8j4KgX1miZGQqwqwBuQmx5jgAMlqWGOoiAi8CHsKko5nAKw/TEd5Sq73YKVe kfvcfgzhrkAWaCXN7mJv24UipPFCIkNFmHzaklo9SQgS2EKSiD2KIe+68hpUXmB7 o043d4EK9MjzqXuwUwT/A0EG4+twBViRB12cwnnmZ1o7SBfZj8MLmjucAACEXbbv oORq3H2UeruWUx0= -----END CERTIFICATE-----Generated at Sat May 18 17:20:36 2024 by rpki-client on console-ams.rpki-client.org