$ rpki-client -vvf rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/9BD4B85894D611EE85EDE844C4F9AE02.roa File: 9BD4B85894D611EE85EDE844C4F9AE02.roa (raw, json) Hash identifier: rpiYBDsqN0Qgx3RcPEzlC3AIVSlHVQLYFZRws5f6fHA= Subject key identifier: 3A:A5:81:A8:B6:34:EC:32:03:5B:38:30:CC:CC:48:7F:0A:11:CE:EF Certificate issuer: /CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Certificate serial: 06 Authority key identifier: 43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/9BD4B85894D611EE85EDE844C4F9AE02.roa Signing time: Thu 07 Dec 2023 07:59:55 +0000 ROA not before: Thu 07 Dec 2023 07:59:55 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 151986 IP address blocks: 43.248.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91237A2/serialNumber=4382F9AA3016FCBF31F924CF132E95BF92709ADD Validity Not Before: Dec 7 07:59:55 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65717b7b-94d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:07:2c:11:29:77:cb:bc:33:4c:4f:8a:97:39: 1b:96:30:1d:79:41:a7:2c:d6:42:a4:8f:9e:73:f8: 8a:6b:f6:e7:a8:7b:d1:f5:2a:ee:2a:f1:0f:b8:9e: 67:f3:94:dc:9f:26:bf:0f:c2:a6:da:de:32:e5:a4: cf:47:80:b1:c5:87:8a:d3:51:5c:cd:4c:fc:e1:9d: 8c:67:de:18:a2:f8:2a:a0:54:11:0e:61:6d:ae:dd: cc:0a:11:68:a8:fe:1b:72:60:74:3a:f0:1a:5f:d7: fa:09:e1:e3:f0:26:d9:d7:b3:8a:cb:49:3e:8a:93: 8f:94:fb:fe:fc:de:7a:49:55:f9:3e:7a:57:e8:db: c2:2b:18:b0:d4:58:01:e8:04:64:1e:45:33:2f:f2: a4:39:d5:87:d3:ea:de:3c:f8:d0:3a:d4:2d:e3:cb: 02:1f:6e:8f:84:ca:a8:df:2c:d4:0d:82:1c:da:69: 60:c7:47:7f:00:23:c3:4a:49:e7:9b:b9:8f:cf:4c: 04:b9:bb:2f:64:09:1f:cd:98:c6:54:b9:44:68:86: 6f:1f:c0:cf:96:f6:62:27:94:49:d4:13:b4:02:be: 0b:c9:37:df:11:10:c5:f2:05:d3:63:c6:91:b7:85: 58:5e:7f:2d:38:7c:ae:84:57:8e:00:23:7f:6c:c9: 2f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:A5:81:A8:B6:34:EC:32:03:5B:38:30:CC:CC:48:7F:0A:11:CE:EF X509v3 Authority Key Identifier: keyid:43:82:F9:AA:30:16:FC:BF:31:F9:24:CF:13:2E:95:BF:92:70:9A:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q4L5qjAW_L8x-STPEy6Vv5Jwmt0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91237A2/49E6E3D6933C11EEB4210F29C4F9AE02/9BD4B85894D611EE85EDE844C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.248.56.0/24 Signature Algorithm: sha256WithRSAEncryption a6:09:79:fe:5d:db:94:4f:57:f9:2b:65:70:9e:fb:5f:69:d6: df:7c:71:12:07:2d:3f:d7:0a:2b:65:61:83:be:c1:d5:3d:62: d9:6d:17:e7:94:40:19:78:7b:ec:58:95:ea:de:78:38:4d:23: 68:ff:7a:90:98:04:ca:29:67:8e:6b:f2:3c:c9:24:de:0a:ac: e0:16:35:66:0a:95:42:35:14:bf:5d:ed:15:2b:b5:36:f5:c8: 0f:4f:01:cb:fc:1d:78:01:88:71:5e:15:db:7e:16:6b:9f:7a: c5:7d:59:b6:1f:43:81:ec:2d:c3:03:8c:21:32:0f:0a:d3:ad: 8f:b2:f3:57:f3:6b:2c:42:78:63:9b:e4:25:35:46:de:af:20: 16:bc:94:8a:56:c6:57:cb:e0:fa:ce:31:42:be:b3:9f:36:1c: c6:ef:12:2f:3e:c7:3d:17:f5:33:1e:8a:a2:d5:82:cd:4d:84: 59:0f:34:13:0a:af:aa:72:d6:85:03:9f:38:ee:b4:fc:69:2f: 8c:99:b7:f3:13:f3:08:07:7a:7a:e8:06:7a:96:6a:7f:73:cc: f0:89:e3:e3:76:74:69:bf:f7:80:11:16:14:a8:36:26:76:d3: 9a:dc:60:b3:fb:dd:8e:f6:e4:db:14:05:86:4e:ec:61:6e:81: 4b:5a:9b:80 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MzdBMjExMC8GA1UEBRMoNDM4MkY5QUEzMDE2RkNCRjMxRjkyNENGMTMyRTk1QkY5 MjcwOUFERDAeFw0yMzEyMDcwNzU5NTVaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NzE3YjdiLTk0ZDAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPBywRKXfLvDNMT4qXORuWMB15Qacs1kKkj55z+Ipr9ueoe9H1Ku4q8Q+4nmfz lNyfJr8Pwqba3jLlpM9HgLHFh4rTUVzNTPzhnYxn3hii+CqgVBEOYW2u3cwKEWio /htyYHQ68Bpf1/oJ4ePwJtnXs4rLST6Kk4+U+/783npJVfk+elfo28IrGLDUWAHo BGQeRTMv8qQ51YfT6t48+NA61C3jywIfbo+EyqjfLNQNghzaaWDHR38AI8NKSeeb uY/PTAS5uy9kCR/NmMZUuURohm8fwM+W9mInlEnUE7QCvgvJN98REMXyBdNjxpG3 hVhefy04fK6EV44AI39syS+/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUOqWBqLY0 7DIDWzgwzMxIfwoRzu8wHwYDVR0jBBgwFoAUQ4L5qjAW/L8x+STPEy6Vv5Jwmt0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIzN0EyLzQ5RTZFM0Q2OTMz QzExRUVCNDIxMEYyOUM0RjlBRTAyL1E0TDVxakFXX0w4eC1TVFBFeTZWdjVKd210 MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvUTRMNXFqQVdfTDh4LVNUUEV5NlZ2NUp3bXQwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MzdBMi80OUU2RTNENjkzM0MxMUVFQjQyMTBGMjlDNEY5QUUwMi85QkQ0Qjg1ODk0 RDYxMUVFODVFREU4NDRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEACv4ODANBgkqhkiG9w0BAQsFAAOCAQEApgl5/l3blE9X+Stl cJ77X2nW33xxEgctP9cKK2Vhg77B1T1i2W0X55RAGXh77FiV6t54OE0jaP96kJgE yilnjmvyPMkk3gqs4BY1ZgqVQjUUv13tFSu1NvXID08By/wdeAGIcV4V234Wa596 xX1Zth9DgewtwwOMITIPCtOtj7LzV/NrLEJ4Y5vkJTVG3q8gFryUilbGV8vg+s4x Qr6znzYcxu8SLz7HPRf1Mx6KotWCzU2EWQ80EwqvqnLWhQOfOO60/GkvjJm38xPz CAd6eugGepZqf3PM8Inj43Z0ab/3gBEWFKg2JnbTmtxgs/vdjvbk2xQFhk7sYW6B S1qbgA== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:09 2024 by rpki-client on console-ams.rpki-client.org