$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/4F384016337211EE9B07310DC4F9AE02.roa File: 4F384016337211EE9B07310DC4F9AE02.roa (raw, json) Hash identifier: YefqwZ8UWks/NrdmLnLNuD3khv8s+KmJ/7yQZl8tA1w= Subject key identifier: 85:9D:63:3D:6D:39:56:6D:0A:D2:1C:C0:42:71:40:63:41:EE:D3:AB Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 04C1 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/4F384016337211EE9B07310DC4F9AE02.roa Signing time: Tue 05 Sep 2023 00:51:43 +0000 ROA not before: Tue 05 Sep 2023 00:51:43 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 61317 IP address blocks: 43.247.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 00:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1217 (0x4c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 5 00:51:43 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f67b9f-da6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4a:15:ed:75:fa:90:31:c7:4c:9d:ff:c0:e5: b3:3a:c3:0c:86:ea:68:52:ca:57:ca:65:61:80:5c: 0f:ab:1f:99:b9:19:45:57:a6:06:59:e1:33:e9:94: e0:14:5f:4a:d4:e7:fd:4e:c1:f3:0d:e7:53:71:f9: 80:47:57:76:dc:4e:f1:b0:5d:ea:b1:e2:f0:be:a9: 3c:88:04:ef:34:3d:8a:2c:8a:ad:b3:1f:b3:7d:aa: fe:63:49:39:e9:d1:b4:ef:b3:c9:16:cb:e9:58:b6: 49:d4:19:b9:2f:f9:fe:98:55:09:20:d1:c4:c9:5c: 50:9e:7e:cc:eb:7a:97:3d:b0:70:95:e1:9f:e7:a6: b8:f4:84:31:9d:8d:ec:86:64:24:d4:3a:a8:20:2d: 35:72:f6:1e:f4:6a:c0:93:c1:13:98:af:72:8e:1c: b3:a5:08:2b:85:6c:39:30:2f:65:7f:ed:1c:21:f9: 23:da:f0:5d:a5:d8:6f:8b:c2:2c:48:cc:d2:2f:05: 87:ae:d0:18:27:f8:18:db:2e:26:63:74:21:29:bd: 6e:da:87:7b:26:72:82:1e:64:e0:7c:25:43:7f:9e: 2a:0e:f3:65:a2:1b:f6:3d:f5:7b:47:a6:46:fd:08: af:c5:87:c1:45:a0:83:45:10:20:a1:5b:24:cd:47: d5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:9D:63:3D:6D:39:56:6D:0A:D2:1C:C0:42:71:40:63:41:EE:D3:AB X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/4F384016337211EE9B07310DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.133.0/24 Signature Algorithm: sha256WithRSAEncryption c3:db:19:bb:af:bc:e2:11:e4:d4:3b:ad:6c:ea:37:d8:06:c4: c4:d0:f7:7b:37:c5:bb:58:62:fd:33:f3:70:40:f1:76:1a:0b: 4d:54:16:11:a6:73:35:cf:81:63:bd:4a:8b:12:94:dc:73:35: 87:c0:7c:e8:89:b2:7c:bd:95:9b:f2:43:b0:c6:a8:80:5c:f6: 3c:54:d4:e4:4e:d0:3d:fa:2b:50:2d:91:c6:61:18:e2:71:52: d8:46:d2:93:b7:73:18:76:73:a8:06:dd:db:88:aa:03:9a:7d: a7:69:f5:89:b5:9d:48:d0:c6:f5:7f:de:bd:02:a6:b4:f8:23: e5:d3:da:72:49:97:ef:80:cf:b7:d2:2b:f7:b1:19:bd:56:ab: 25:20:15:2a:53:b9:e4:6a:78:25:27:b7:e0:8c:59:ab:99:6a: 47:8b:2a:b6:cf:5f:1f:21:82:7d:7a:e0:54:7e:d0:f9:dd:c7: 12:2a:d9:7f:c5:5d:0f:7d:35:7c:1f:af:ac:65:28:26:3f:30: 27:28:f8:cf:39:ae:ff:19:ff:a0:04:32:a7:58:67:51:d3:93: 6b:18:58:aa:80:a1:4e:c5:f8:b1:85:2a:dd:f4:3e:60:3f:f8: 45:03:2f:a2:a8:c5:91:ea:bf:cb:7b:31:b5:ac:b8:9f:9b:01: 5f:0e:0c:2f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjMwOTA1MDA1MTQzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2N2I5Zi1kYTZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2UoV7XX6kDHHTJ3/wOWzOsMMhupoUspXymVhgFwPqx+ZuRlFV6YGWeEz6ZTg FF9K1Of9TsHzDedTcfmAR1d23E7xsF3qseLwvqk8iATvND2KLIqtsx+zfar+Y0k5 6dG077PJFsvpWLZJ1Bm5L/n+mFUJINHEyVxQnn7M63qXPbBwleGf56a49IQxnY3s hmQk1DqoIC01cvYe9GrAk8ETmK9yjhyzpQgrhWw5MC9lf+0cIfkj2vBdpdhvi8Is SMzSLwWHrtAYJ/gY2y4mY3QhKb1u2od7JnKCHmTgfCVDf54qDvNlohv2PfV7R6ZG /QivxYfBRaCDRRAgoVskzUfVqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFIWdYz1t OVZtCtIcwEJxQGNB7tOrMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvNEYzODQwMTYz MzcyMTFFRTlCMDczMTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr94UwDQYJKoZIhvcNAQELBQADggEBAMPbGbuvvOIR5NQ7 rWzqN9gGxMTQ93s3xbtYYv0z83BA8XYaC01UFhGmczXPgWO9SosSlNxzNYfAfOiJ sny9lZvyQ7DGqIBc9jxU1ORO0D36K1AtkcZhGOJxUthG0pO3cxh2c6gG3duIqgOa fadp9Ym1nUjQxvV/3r0CprT4I+XT2nJJl++Az7fSK/exGb1WqyUgFSpTueRqeCUn t+CMWauZakeLKrbPXx8hgn164FR+0PndxxIq2X/FXQ99NXwfr6xlKCY/MCco+M85 rv8Z/6AEMqdYZ1HTk2sYWKqAoU7F+LGFKt30PmA/+EUDL6KoxZHqv8t7MbWsuJ+b AV8ODC8= -----END CERTIFICATE-----Generated at Fri May 3 03:10:46 2024 by rpki-client on console-ams.rpki-client.org