$ rpki-client -vvf rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/AF976FA2023311ED945EBE12C4F9AE02.roa File: AF976FA2023311ED945EBE12C4F9AE02.roa (raw, json) Hash identifier: N04kVTLDjl3tqLVRBpBLoHcWt+k6YZVwq9yF1azC5Dw= Subject key identifier: 82:5A:B7:D6:E8:F1:6C:0D:E3:0B:A6:F2:CD:70:DD:8F:47:0B:09:40 Certificate issuer: /CN=A9127726/serialNumber=BD87855CB681E23359BFEC1A34F1992B671E5EEE Certificate serial: 3432 Authority key identifier: BD:87:85:5C:B6:81:E2:33:59:BF:EC:1A:34:F1:99:2B:67:1E:5E:EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vYeFXLaB4jNZv-waNPGZK2ceXu4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/AF976FA2023311ED945EBE12C4F9AE02.roa Signing time: Sun 02 Jun 2024 16:21:18 +0000 ROA not before: Sun 02 Jun 2024 16:21:18 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 134135 IP address blocks: 43.245.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/vYeFXLaB4jNZv-waNPGZK2ceXu4.crl rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/vYeFXLaB4jNZv-waNPGZK2ceXu4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vYeFXLaB4jNZv-waNPGZK2ceXu4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:12:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13362 (0x3432) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9127726/serialNumber=BD87855CB681E23359BFEC1A34F1992B671E5EEE Validity Not Before: Jun 2 16:21:18 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665c9bfe-2557 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:73:57:5e:b5:28:a6:32:d5:e7:72:05:d0:7f: f2:03:62:bd:8d:75:b4:f5:35:f6:81:be:27:2c:aa: c1:de:c9:60:3f:d3:ef:87:d4:c4:a1:b0:ee:52:d0: d5:66:82:69:87:85:85:1d:54:31:48:31:41:01:32: dc:48:74:f4:18:d5:5d:26:82:35:7f:99:22:b1:a0: fe:3a:30:47:a4:ba:60:3f:31:35:69:35:e6:6e:4c: 90:1c:b1:8a:c6:c6:5d:f6:a8:43:83:85:50:da:55: 8d:19:12:f1:f0:b8:31:57:3d:40:19:6f:eb:f1:cd: 3c:85:51:89:76:c7:a5:ad:44:bb:78:d0:6c:34:28: 4e:ba:a8:d5:f6:1f:f5:4b:5e:10:23:36:39:6b:d4: c0:61:ed:f7:b0:44:e7:2f:fe:24:ca:66:25:de:ef: 8b:fb:a9:00:1f:98:f8:50:ff:df:3c:6e:69:6e:3a: 7f:63:a9:0d:2f:49:c0:95:77:e3:e2:2f:48:e3:68: 83:30:90:90:b2:e7:70:0d:95:19:a2:ba:2b:06:9b: 61:33:68:e9:30:7d:82:8e:14:13:66:ed:47:74:d1: e0:29:3d:0a:24:53:50:c2:bb:56:85:6c:40:ed:ca: bf:09:f6:0d:ed:20:04:02:95:a2:b4:3e:69:2d:98: 6a:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:5A:B7:D6:E8:F1:6C:0D:E3:0B:A6:F2:CD:70:DD:8F:47:0B:09:40 X509v3 Authority Key Identifier: keyid:BD:87:85:5C:B6:81:E2:33:59:BF:EC:1A:34:F1:99:2B:67:1E:5E:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/vYeFXLaB4jNZv-waNPGZK2ceXu4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vYeFXLaB4jNZv-waNPGZK2ceXu4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9127726/F9FFF6AC1DA711E2963AFAA108B02CD2/AF976FA2023311ED945EBE12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.118.0/24 Signature Algorithm: sha256WithRSAEncryption 03:1f:17:22:20:39:f2:d5:25:a8:d9:bc:4d:d4:9b:71:30:2e: 74:14:1d:0f:06:55:cd:f7:a5:44:4a:32:1c:5f:e1:79:ff:b2: 1c:b4:35:26:3c:f6:fc:85:6d:e2:11:a5:6e:b1:d1:2c:11:f5: e9:ff:12:55:f7:87:10:1a:f3:c3:97:19:86:e2:c7:e8:fa:8a: 67:41:9b:be:70:bc:3d:4d:ab:85:42:fc:b7:cc:7c:61:3c:ce: 80:e1:90:93:24:f8:10:42:7c:39:7a:c9:4c:5e:6d:50:6d:96: 42:df:57:f8:27:c7:8c:f8:7c:ce:61:da:e5:14:fe:3a:bf:41: b9:71:06:f9:f4:11:f6:0a:8c:7b:e9:d6:b4:a5:05:cc:74:af: b2:4b:61:96:95:a2:e6:4b:cb:ac:c3:bb:00:8d:b3:3f:00:77: f3:a3:3b:ea:6b:7e:d9:9e:65:42:92:d8:c8:92:14:39:f3:a7: 56:72:7d:d6:c3:0c:08:22:d3:7d:de:64:cd:6d:49:71:9e:53: 2d:3d:55:30:2e:6f:53:5d:a6:f5:2a:80:ca:96:3e:ce:14:49: 10:00:4d:ae:2e:e0:d4:91:cd:d8:19:0f:81:eb:f7:25:e3:38: a6:73:34:f6:6e:01:5c:f6:68:85:77:15:ac:2c:f6:fd:37:e3: 81:83:f0:70 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICNDIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjc3MjYxMTAvBgNVBAUTKEJEODc4NTVDQjY4MUUyMzM1OUJGRUMxQTM0RjE5OTJC NjcxRTVFRUUwHhcNMjQwNjAyMTYyMTE4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVjOWJmZS0yNTU3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA53NXXrUopjLV53IF0H/yA2K9jXW09TX2gb4nLKrB3slgP9Pvh9TEobDuUtDV ZoJph4WFHVQxSDFBATLcSHT0GNVdJoI1f5kisaD+OjBHpLpgPzE1aTXmbkyQHLGK xsZd9qhDg4VQ2lWNGRLx8LgxVz1AGW/r8c08hVGJdselrUS7eNBsNChOuqjV9h/1 S14QIzY5a9TAYe33sETnL/4kymYl3u+L+6kAH5j4UP/fPG5pbjp/Y6kNL0nAlXfj 4i9I42iDMJCQsudwDZUZororBpthM2jpMH2CjhQTZu1HdNHgKT0KJFNQwrtWhWxA 7cq/CfYN7SAEApWitD5pLZhq8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIJat9bo 8WwN4wum8s1w3Y9HCwlAMB8GA1UdIwQYMBaAFL2HhVy2geIzWb/sGjTxmStnHl7u MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzcyNi9GOUZGRjZBQzFE QTcxMUUyOTYzQUZBQTEwOEIwMkNEMi92WWVGWExhQjRqTlp2LXdhTlBHWksyY2VY dTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZZZUZYTGFCNGpOWnYtd2FOUEdaSzJjZVh1NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjc3MjYvRjlGRkY2QUMxREE3MTFFMjk2M0FGQUExMDhCMDJDRDIvQUY5NzZGQTIw MjMzMTFFRDk0NUVCRTEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr9XYwDQYJKoZIhvcNAQELBQADggEBAAMfFyIgOfLVJajZ vE3Um3EwLnQUHQ8GVc33pURKMhxf4Xn/shy0NSY89vyFbeIRpW6x0SwR9en/ElX3 hxAa88OXGYbix+j6imdBm75wvD1Nq4VC/LfMfGE8zoDhkJMk+BBCfDl6yUxebVBt lkLfV/gnx4z4fM5h2uUU/jq/QblxBvn0EfYKjHvp1rSlBcx0r7JLYZaVouZLy6zD uwCNsz8Ad/OjO+prftmeZUKS2MiSFDnzp1ZyfdbDDAgi033eZM1tSXGeUy09VTAu b1NdpvUqgMqWPs4USRAATa4u4NSRzdgZD4Hr9yXjOKZzNPZuAVz2aIV3Faws9v03 44GD8HA= -----END CERTIFICATE-----Generated at Sun Nov 24 17:19:58 2024 by rpki-client on console-fra.rpki-client.org