$ rpki-client -vvf rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa File: B5569B88096311EE9ECB644DC4F9AE02.roa (raw, json) Hash identifier: 0YyUbP/GJ+UuQCl7qEg3Lew5r+V1ykLIOBRod/oh4qQ= Subject key identifier: D7:E3:D5:96:E9:C6:9A:0D:19:3C:C4:3B:62:8E:57:47:8F:DC:0F:AE Certificate issuer: /CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Certificate serial: 6D Authority key identifier: 1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa Signing time: Mon 01 Jan 2024 06:27:20 +0000 ROA not before: Mon 01 Jan 2024 06:27:20 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 400318 IP address blocks: 49.0.56.0/21 maxlen: 21 49.0.56.0/24 maxlen: 24 49.0.57.0/24 maxlen: 24 49.0.58.0/24 maxlen: 24 49.0.59.0/24 maxlen: 24 49.0.60.0/24 maxlen: 24 49.0.61.0/24 maxlen: 24 49.0.62.0/24 maxlen: 24 49.0.63.0/24 maxlen: 29 103.36.54.0/23 maxlen: 29 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:07:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 109 (0x6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F5280/serialNumber=1A4843E89F2444B2CDDB8118AA8A2F44180E8498 Validity Not Before: Jan 1 06:27:20 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65925b48-393b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:59:01:ed:86:c8:35:eb:ba:50:9a:4b:72:24: 41:04:29:f6:b1:fa:e3:fa:ba:71:e4:a1:98:37:0c: 45:e3:7a:60:7d:44:1d:35:fa:bf:13:27:53:93:bb: de:e7:05:4b:c9:b8:36:1b:96:74:e2:5c:16:7e:ca: 90:38:50:f5:de:b6:98:b1:ae:e9:56:bb:76:b4:bc: a7:97:fa:14:66:f5:46:8a:a4:c3:fe:8d:cf:bc:d4: 02:b8:9c:90:41:b4:28:68:08:d2:1a:b7:16:6c:93: f0:90:dd:db:a8:3d:17:7c:ca:7a:d6:77:f2:f5:2e: 2c:f3:92:16:d7:8a:b3:14:d4:7f:0b:c4:60:c2:05: d5:e8:d6:f1:39:02:bf:ea:48:57:26:11:2f:eb:c2: fe:96:1f:14:2a:de:f0:5e:48:40:b5:7a:18:db:2a: 5d:bb:ca:1e:b4:fe:bf:32:aa:14:75:0e:a1:52:4b: 34:c0:9e:ef:b5:ba:df:64:5a:df:e0:dd:e7:af:3c: 34:9b:1d:51:14:de:96:2f:f3:99:e6:7d:fe:28:e9: d0:53:82:c4:a1:68:74:ca:65:9d:0e:bc:03:65:e5: 96:c3:8e:55:fc:3c:a7:68:33:4f:6d:aa:44:8e:6d: 78:cd:af:1e:40:58:e7:bc:10:0f:d0:6f:af:02:26: 82:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E3:D5:96:E9:C6:9A:0D:19:3C:C4:3B:62:8E:57:47:8F:DC:0F:AE X509v3 Authority Key Identifier: keyid:1A:48:43:E8:9F:24:44:B2:CD:DB:81:18:AA:8A:2F:44:18:0E:84:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/GkhD6J8kRLLN24EYqoovRBgOhJg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GkhD6J8kRLLN24EYqoovRBgOhJg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F5280/C04B1B76095F11EEAD0ED04CC4F9AE02/B5569B88096311EE9ECB644DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 49.0.56.0/21 103.36.54.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:37:09:ca:33:82:11:db:df:7a:d1:ba:0d:88:43:db:82:7b: df:c9:93:2e:1c:88:a0:1e:db:b9:02:d0:bf:84:95:ce:f2:5c: 05:3e:b4:b1:fa:2c:2a:45:da:4b:ef:1b:c8:5f:37:f0:c9:5c: 08:7d:c8:9f:b6:6b:cf:93:bd:c8:59:0f:86:71:d7:05:4e:11: ca:7b:32:e9:a5:ed:0e:e1:43:37:ec:e7:65:5c:60:f3:d2:4b: cb:63:47:59:04:42:19:5d:f3:5b:6d:f6:07:bc:f1:33:42:97: e5:5e:3d:74:95:7a:c5:cd:82:fc:41:3b:c9:0f:27:02:09:7a: 09:2c:44:88:2b:0e:70:f2:54:ad:a2:c3:c0:41:00:29:a7:64: 93:9a:72:14:46:d0:32:dc:3d:6f:93:f3:40:59:0e:12:49:04: 3c:65:6e:e8:cd:dd:06:21:70:77:5e:19:49:04:27:ef:11:af: 3f:c5:e3:50:eb:a1:8d:2a:93:0d:f5:1c:ae:68:fc:ba:38:d5: 4e:0b:ff:cc:a2:49:6a:90:e9:47:bf:7f:54:93:d1:1c:76:e9: 32:28:01:5a:a0:af:8a:84:25:f7:7e:bb:39:5b:46:66:a5:3f: 35:f2:10:03:32:c5:bf:85:1c:4f:d8:f6:03:98:1d:da:df:7c: cd:1f:c0:4f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBbTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG NTI4MDExMC8GA1UEBRMoMUE0ODQzRTg5RjI0NDRCMkNEREI4MTE4QUE4QTJGNDQx ODBFODQ5ODAeFw0yNDAxMDEwNjI3MjBaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTI1YjQ4LTM5M2IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBWQHthsg167pQmktyJEEEKfax+uP6unHkoZg3DEXjemB9RB01+r8TJ1OTu97n BUvJuDYblnTiXBZ+ypA4UPXetpixrulWu3a0vKeX+hRm9UaKpMP+jc+81AK4nJBB tChoCNIatxZsk/CQ3duoPRd8ynrWd/L1LizzkhbXirMU1H8LxGDCBdXo1vE5Ar/q SFcmES/rwv6WHxQq3vBeSEC1ehjbKl27yh60/r8yqhR1DqFSSzTAnu+1ut9kWt/g 3eevPDSbHVEU3pYv85nmff4o6dBTgsShaHTKZZ0OvANl5ZbDjlX8PKdoM09tqkSO bXjNrx5AWOe8EA/Qb68CJoIrAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU1+PVlunG mg0ZPMQ7Yo5XR4/cD64wHwYDVR0jBBgwFoAUGkhD6J8kRLLN24EYqoovRBgOhJgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUY1MjgwL0MwNEIxQjc2MDk1 RjExRUVBRDBFRDA0Q0M0RjlBRTAyL0draEQ2SjhrUkxMTjI0RVlxb292UkJnT2hK Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvR2toRDZKOGtSTExOMjRFWXFvb3ZSQmdPaEpnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG NTI4MC9DMDRCMUI3NjA5NUYxMUVFQUQwRUQwNENDNEY5QUUwMi9CNTU2OUI4ODA5 NjMxMUVFOUVDQjY0NERDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAzEAOAMEAWckNjANBgkqhkiG9w0BAQsFAAOCAQEAKzcJyjOC EdvfetG6DYhD24J738mTLhyIoB7buQLQv4SVzvJcBT60sfosKkXaS+8byF838Mlc CH3In7Zrz5O9yFkPhnHXBU4Rynsy6aXtDuFDN+znZVxg89JLy2NHWQRCGV3zW232 B7zxM0KX5V49dJV6xc2C/EE7yQ8nAgl6CSxEiCsOcPJUraLDwEEAKadkk5pyFEbQ Mtw9b5PzQFkOEkkEPGVu6M3dBiFwd14ZSQQn7xGvP8XjUOuhjSqTDfUcrmj8ujjV Tgv/zKJJapDpR79/VJPRHHbpMigBWqCvioQl9367OVtGZqU/NfIQAzLFv4UcT9j2 A5gd2t98zR/ATw== -----END CERTIFICATE-----Generated at Thu Nov 21 05:06:09 2024 by rpki-client on console-fra.rpki-client.org