$ rpki-client -vvf rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/0861EEFA881A11EFA769B787C4F9AE02.roa File: 0861EEFA881A11EFA769B787C4F9AE02.roa (raw, json) Hash identifier: dRy4ONb4v34L30ZpAyIfzGQhzoL7vsaHAN/Vx2HOo3w= Subject key identifier: BA:AA:AF:CC:59:A2:4F:5A:1F:2D:51:C2:84:E6:8F:91:76:D7:02:05 Certificate issuer: /CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Certificate serial: 1837 Authority key identifier: C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/0861EEFA881A11EFA769B787C4F9AE02.roa Signing time: Fri 11 Oct 2024 21:44:46 +0000 ROA not before: Fri 11 Oct 2024 21:44:46 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138475 IP address blocks: 49.255.74.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 16:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6199 (0x1837) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EAE3D/serialNumber=C7269B124C420C55E29FB51D3C1B0D9D476CBD00 Validity Not Before: Oct 11 21:44:46 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=67099c4e-c439 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:8d:0d:3b:51:5c:3c:5d:20:09:4d:40:03:c0: 73:7e:fd:ff:13:71:ad:d6:97:d3:e2:ae:d2:31:9b: 8a:a3:e9:43:c5:b1:01:9f:86:6a:80:84:09:d0:48: e6:df:c1:19:96:d4:16:ee:d8:e2:ff:2d:03:6f:a7: f2:7d:39:f1:0a:08:d8:ce:93:ec:ca:97:e7:72:2b: e9:11:39:79:c9:32:f6:59:99:56:fc:a7:9e:b3:b7: 6e:17:6b:a7:3d:3f:8d:73:80:e3:65:fb:0c:50:cb: 26:3a:96:03:86:a7:23:14:51:b2:8f:e9:f6:9a:d7: 17:2d:30:dc:1c:f9:3e:63:a9:42:87:20:ea:77:98: a0:61:85:08:e0:fc:4d:cf:2f:0d:5e:78:bd:6e:cf: df:8a:e8:d3:93:21:b2:9c:f4:94:44:c6:c1:08:fa: 36:16:71:9f:14:37:e2:e6:3f:db:e0:0e:b9:19:11: 82:74:a0:88:ec:09:89:06:82:b2:e3:1f:c1:97:45: f3:a2:35:93:8e:e8:70:5d:49:d8:0d:bb:13:36:5f: 64:da:4a:8b:aa:80:18:45:97:48:d6:84:7c:e0:38: 6c:f0:30:b6:a0:e2:51:dc:93:96:fc:59:fc:9d:bd: 04:2b:06:85:70:51:14:51:2f:2f:72:2a:0b:11:79: 28:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:AA:AF:CC:59:A2:4F:5A:1F:2D:51:C2:84:E6:8F:91:76:D7:02:05 X509v3 Authority Key Identifier: keyid:C7:26:9B:12:4C:42:0C:55:E2:9F:B5:1D:3C:1B:0D:9D:47:6C:BD:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/xyabEkxCDFXin7UdPBsNnUdsvQA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xyabEkxCDFXin7UdPBsNnUdsvQA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EAE3D/97B6E0CE75DE11E8B704A246C4F9AE02/0861EEFA881A11EFA769B787C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.255.74.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:23:20:35:7e:25:9a:e1:13:6f:f6:c7:ad:ca:1f:78:a4:5a: 7f:ae:c3:fb:cf:45:91:00:45:51:0a:89:1f:7a:68:c4:66:7c: 82:9b:18:2b:06:9c:d7:0c:50:82:c7:c2:94:4c:14:2a:03:dd: 07:70:b8:48:ba:8f:7d:60:fd:5b:b3:c0:58:9b:78:3b:b1:06: 8c:f6:20:e2:da:4e:d1:71:6b:d8:5b:58:34:59:b4:a4:98:8f: 0c:fd:99:51:9d:d0:e8:46:6e:a6:2f:11:fb:d7:f7:d2:ec:98: cc:8e:7d:78:ac:e9:14:37:b5:6b:e2:36:39:63:58:0a:e4:3d: 00:38:34:55:9a:92:49:39:b5:f5:29:9e:43:26:11:34:ec:e2: 9f:99:c7:94:6a:a4:e6:b8:67:1a:ed:36:bc:a2:4c:0e:68:35: 85:f0:58:28:d7:ba:a2:0d:87:fe:a8:21:72:46:18:7d:b2:b3: 4a:98:ff:35:8c:d8:72:86:14:87:c9:9a:09:ac:12:b9:a7:58: 48:87:91:c7:72:fb:17:5c:0f:60:bb:dd:64:a0:e8:6b:e4:e8: f3:e7:a7:e6:24:7a:6b:b2:59:e3:58:09:c1:e9:cd:01:c9:96: 8e:c1:80:17:f5:b0:e2:64:d2:25:d7:18:63:e3:60:a1:27:f2: bb:22:56:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGDcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUFFM0QxMTAvBgNVBAUTKEM3MjY5QjEyNEM0MjBDNTVFMjlGQjUxRDNDMUIwRDlE NDc2Q0JEMDAwHhcNMjQxMDExMjE0NDQ2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA5OWM0ZS1jNDM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwI0NO1FcPF0gCU1AA8Bzfv3/E3Gt1pfT4q7SMZuKo+lDxbEBn4ZqgIQJ0Ejm 38EZltQW7tji/y0Db6fyfTnxCgjYzpPsypfncivpETl5yTL2WZlW/Kees7duF2un PT+Nc4DjZfsMUMsmOpYDhqcjFFGyj+n2mtcXLTDcHPk+Y6lChyDqd5igYYUI4PxN zy8NXni9bs/fiujTkyGynPSURMbBCPo2FnGfFDfi5j/b4A65GRGCdKCI7AmJBoKy 4x/Bl0XzojWTjuhwXUnYDbsTNl9k2kqLqoAYRZdI1oR84Dhs8DC2oOJR3JOW/Fn8 nb0EKwaFcFEUUS8vcioLEXkoxQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLqqr8xZ ok9aHy1RwoTmj5F21wIFMB8GA1UdIwQYMBaAFMcmmxJMQgxV4p+1HTwbDZ1HbL0A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQUUzRC85N0I2RTBDRTc1 REUxMUU4QjcwNEEyNDZDNEY5QUUwMi94eWFiRWt4Q0RGWGluN1VkUEJzTm5VZHN2 UUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3h5YWJFa3hDREZYaW43VWRQQnNOblVkc3ZRQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUFFM0QvOTdCNkUwQ0U3NURFMTFFOEI3MDRBMjQ2QzRGOUFFMDIvMDg2MUVFRkE4 ODFBMTFFRkE3NjlCNzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAx/0owDQYJKoZIhvcNAQELBQADggEBAD0jIDV+JZrhE2/2 x63KH3ikWn+uw/vPRZEARVEKiR96aMRmfIKbGCsGnNcMUILHwpRMFCoD3QdwuEi6 j31g/VuzwFibeDuxBoz2IOLaTtFxa9hbWDRZtKSYjwz9mVGd0OhGbqYvEfvX99Ls mMyOfXis6RQ3tWviNjljWArkPQA4NFWakkk5tfUpnkMmETTs4p+Zx5RqpOa4Zxrt NryiTA5oNYXwWCjXuqINh/6oIXJGGH2ys0qY/zWM2HKGFIfJmgmsErmnWEiHkcdy +xdcD2C73WSg6Gvk6PPnp+YkemuyWeNYCcHpzQHJlo7BgBf1sOJk0iXXGGPjYKEn 8rsiVlM= -----END CERTIFICATE-----Generated at Fri Nov 22 17:56:22 2024 by rpki-client on console-fra.rpki-client.org