$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/22613D48AC7311EE8A97A86FC4F9AE02.roa File: 22613D48AC7311EE8A97A86FC4F9AE02.roa (raw, json) Hash identifier: qH8bTzeJwQq4yPFCI68zrZ8cO2fNeItv6aPd6ODZ6WU= Subject key identifier: AE:B3:16:AD:E0:44:02:DD:7E:31:EE:66:AE:B6:90:C0:D6:F6:33:A0 Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: 41 Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/22613D48AC7311EE8A97A86FC4F9AE02.roa Signing time: Sat 06 Jan 2024 09:08:20 +0000 ROA not before: Sat 06 Jan 2024 09:08:20 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 2914 IP address blocks: 43.239.250.0/24 maxlen: 24 114.31.208.0/22 maxlen: 22 2404:3600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65 (0x41) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Jan 6 09:08:20 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65991883-41c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:eb:06:51:ec:19:3d:cc:70:71:35:1f:02:5c: 16:51:2e:dc:95:a7:64:e8:3f:7e:93:ac:f0:5d:32: 38:06:5d:56:55:6a:8e:c2:ba:32:b8:e1:90:d2:03: ce:79:e9:f7:6c:49:a1:4f:5b:50:c8:6d:08:1a:29: ae:ba:73:ee:29:ff:ab:16:82:fb:16:1f:6c:14:d2: ec:9f:6f:17:58:dc:4d:45:35:02:e3:75:26:de:f4: 21:07:d8:cf:64:d6:2c:ea:25:0a:8b:d9:92:ab:80: 26:a7:d9:9c:6c:da:7d:9d:c7:15:09:cf:58:e0:fc: 7b:e5:2b:ec:e1:ab:2b:26:d9:fe:52:e7:90:d0:10: 14:2e:00:2f:4f:d4:f7:4c:72:39:f6:b9:3e:43:e5: a9:74:c9:d2:6b:46:d7:ec:75:f5:50:8a:e1:c0:ca: 61:a4:92:c3:b1:a2:0e:72:21:4a:43:57:6a:0b:86: 32:cf:cb:85:68:70:50:24:a4:85:ce:e5:43:7d:47: 72:af:3f:29:c9:92:47:9a:2b:9d:7c:c6:b5:c8:d9: e4:a8:d8:67:0f:af:ec:6c:4f:a2:25:5a:0b:2f:c5: 54:5e:fd:d1:d5:7f:95:e5:25:48:d8:e2:70:b9:4f: 4d:98:a9:5e:5d:7a:e5:0c:86:ff:37:8b:eb:5e:db: 99:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:B3:16:AD:E0:44:02:DD:7E:31:EE:66:AE:B6:90:C0:D6:F6:33:A0 X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/22613D48AC7311EE8A97A86FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 114.31.208.0/22 IPv6: 2404:3600::/32 Signature Algorithm: sha256WithRSAEncryption 34:7a:d6:bd:19:92:7d:a0:98:b9:e3:23:dd:4d:3b:4f:25:78: ad:75:1a:e7:6d:cd:87:9f:b4:fe:55:89:30:82:52:bc:f4:2e: 31:c2:c7:e9:d8:a6:01:01:fd:97:31:0e:26:aa:65:d5:2a:31: df:4b:6e:a0:11:19:45:cc:67:a3:d3:3b:d5:ed:31:83:70:a1: ee:77:38:3a:ea:59:fa:34:ee:4a:a3:44:7f:ee:36:6a:5c:f8: 30:63:63:2c:94:22:37:c3:8e:3d:c9:66:81:9d:07:85:5a:4e: 86:02:e8:98:e2:9b:48:53:d3:ff:69:f3:ee:89:f8:9f:9f:36: 43:16:d2:0f:f9:ec:08:b2:9b:b1:df:6b:3f:f3:3e:76:f7:12: eb:8e:12:93:7a:fe:33:66:f0:4e:4c:cd:aa:c9:2b:50:92:bc: 9e:99:05:3b:e3:86:90:9b:df:ef:e2:23:ef:01:7d:a7:04:23: c9:e3:50:c0:ee:41:36:db:83:3d:81:b2:f0:91:43:5f:2a:8e: e1:13:c7:8d:e1:4d:6a:1a:d4:6a:47:cb:ab:f1:42:61:7b:e8: 5d:73:84:5c:01:ce:f7:56:f0:e5:44:d3:63:ee:f0:fa:86:07: cf:95:42:dd:00:ae:73:1e:57:3c:d7:04:7e:d4:aa:04:be:d8: 5c:7e:20:54 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBQTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUJDRTExMC8GA1UEBRMoMzAwNzQyRTRBRDU0N0FFNDlERDgyQzgyRjdFQ0VCMDk1 QjkwMkEyMDAeFw0yNDAxMDYwOTA4MjBaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1OTkxODgzLTQxYzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDo6wZR7Bk9zHBxNR8CXBZRLtyVp2ToP36TrPBdMjgGXVZVao7CujK44ZDSA855 6fdsSaFPW1DIbQgaKa66c+4p/6sWgvsWH2wU0uyfbxdY3E1FNQLjdSbe9CEH2M9k 1izqJQqL2ZKrgCan2Zxs2n2dxxUJz1jg/HvlK+zhqysm2f5S55DQEBQuAC9P1PdM cjn2uT5D5al0ydJrRtfsdfVQiuHAymGkksOxog5yIUpDV2oLhjLPy4VocFAkpIXO 5UN9R3KvPynJkkeaK518xrXI2eSo2GcPr+xsT6IlWgsvxVRe/dHVf5XlJUjY4nC5 T02YqV5deuUMhv83i+te25mPAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUrrMWreBE At1+Me5mrraQwNb2M6AwHwYDVR0jBBgwFoAUMAdC5K1UeuSd2CyC9+zrCVuQKiAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQkNFLzkwMDk5QzQwNTdE RDExRUVCQUZGRTQyREM0RjlBRTAyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTUFkQzVLMVVldVNkMkN5QzktenJDVnVRS2lBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJDRS85MDA5OUM0MDU3REQxMUVFQkFGRkU0MkRDNEY5QUUwMi8yMjYxM0Q0OEFD NzMxMUVFOEE5N0E4NkZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEACvv+gMEAnIf0DANBAIAAjAHAwUAJAQ2ADANBgkqhkiG9w0B AQsFAAOCAQEANHrWvRmSfaCYueMj3U07TyV4rXUa523Nh5+0/lWJMIJSvPQuMcLH 6dimAQH9lzEOJqpl1Sox30tuoBEZRcxno9M71e0xg3Ch7nc4OupZ+jTuSqNEf+42 alz4MGNjLJQiN8OOPclmgZ0HhVpOhgLomOKbSFPT/2nz7on4n582QxbSD/nsCLKb sd9rP/M+dvcS644Sk3r+M2bwTkzNqskrUJK8npkFO+OGkJvf7+Ij7wF9pwQjyeNQ wO5BNtuDPYGy8JFDXyqO4RPHjeFNahrUakfLq/FCYXvoXXOEXAHO91bw5UTTY+7w +oYHz5VC3QCucx5XPNcEftSqBL7YXH4gVA== -----END CERTIFICATE-----Generated at Sun May 5 08:21:03 2024 by rpki-client on console-ams.rpki-client.org