$ rpki-client -vvf rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/0463FF50526C11EC80A31615C4F9AE02.roa File: 0463FF50526C11EC80A31615C4F9AE02.roa (raw, json) Hash identifier: jaH7TvTiRCR0VN9+WpSIw3MSWWWyT2dB3UWe4924gA0= Subject key identifier: 8A:76:A7:C1:65:4A:80:5F:17:DD:68:97:A3:75:40:A2:83:16:52:A4 Certificate issuer: /CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Certificate serial: 0521 Authority key identifier: 2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/0463FF50526C11EC80A31615C4F9AE02.roa Signing time: Wed 02 Aug 2023 23:40:17 +0000 ROA not before: Wed 02 Aug 2023 23:40:17 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 36351 IP address blocks: 43.245.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 00:15:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1313 (0x521) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9147DCA/serialNumber=2C3A2A8121CCF8A9BFC7CB6691854AF5E4D219F9 Validity Not Before: Aug 2 23:40:17 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cae961-d8dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1d:e5:9c:06:3a:d8:46:91:b8:53:13:ea:9b: c1:a8:16:a2:aa:18:e9:b9:93:22:89:47:21:4c:ee: cb:58:c2:4b:0f:40:ad:96:a0:bb:97:f2:b0:19:e3: d2:76:d4:f3:f5:69:5b:d9:22:aa:b7:84:2d:5d:31: 65:6d:a0:74:10:f5:01:17:9c:ad:b2:32:31:fb:36: 63:9b:0e:67:94:e5:2d:77:58:22:1e:e5:31:3f:7f: 15:42:51:05:86:b6:7e:2c:b2:e6:08:25:6a:57:3e: 64:2a:f4:0e:bf:ea:b8:91:ad:b2:2f:99:a1:1d:08: b3:c9:5a:ab:08:96:5f:14:9a:1f:fb:ea:ad:38:37: 65:04:df:74:86:a6:ea:91:6d:ab:12:c0:ee:64:e7: ce:ff:d5:08:8e:f7:8d:fc:32:02:cb:57:83:9c:02: 66:b7:56:5b:0c:df:69:da:09:58:e8:f2:e5:7e:c9: a9:62:50:cc:ab:fe:b0:2e:eb:38:9d:28:a7:6a:a9: 20:ef:02:c4:f9:ec:0c:2a:9d:35:7e:a4:c6:09:8c: 9b:98:24:17:34:49:dd:c7:95:29:73:6b:43:c3:d0: f3:9b:32:56:2a:c8:e8:c4:11:52:44:44:1a:a4:a1: a7:72:d2:d8:8f:01:2b:ac:4e:d1:49:75:96:88:67: d4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:76:A7:C1:65:4A:80:5F:17:DD:68:97:A3:75:40:A2:83:16:52:A4 X509v3 Authority Key Identifier: keyid:2C:3A:2A:81:21:CC:F8:A9:BF:C7:CB:66:91:85:4A:F5:E4:D2:19:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/LDoqgSHM-Km_x8tmkYVK9eTSGfk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LDoqgSHM-Km_x8tmkYVK9eTSGfk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9147DCA/1C75EDA67D6A11EBA4A5980CC4F9AE02/0463FF50526C11EC80A31615C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.168.0/24 Signature Algorithm: sha256WithRSAEncryption 44:bc:8d:31:1b:bb:80:ce:52:92:07:11:80:63:f2:ca:c4:a4: cf:0c:b0:68:52:18:bd:4a:5b:7c:04:dd:8e:57:42:3e:99:95: 2e:1e:1d:6c:79:63:c9:ca:20:ef:e3:fb:fc:6c:06:89:ef:14: 4c:23:a9:91:91:69:15:7b:2d:e0:f8:b9:61:03:fe:59:bb:b6: 39:2d:bf:45:01:30:88:05:24:f5:84:de:be:96:30:85:35:8f: 39:50:a6:ff:e3:9c:41:2f:29:0e:12:49:6b:42:2f:9b:6a:90: 75:76:16:6e:31:47:f1:d8:17:32:b8:f1:67:51:b2:fe:fb:52: d0:4c:71:bc:96:56:72:f1:b7:c1:d5:50:02:08:87:0c:d6:08: a4:66:57:fa:d2:3c:d3:66:6c:85:c3:bc:5c:83:bc:05:2a:3e: b1:e2:0b:c9:83:2c:22:f5:6c:44:e8:d3:88:16:43:54:0e:1b: 3a:8e:72:fa:07:15:1e:93:56:b1:3d:31:c6:26:15:08:30:47: 5d:7d:09:2f:59:06:fd:d3:89:35:53:a8:67:1e:f2:00:3e:73: 59:11:9f:39:e9:02:9c:98:16:62:5b:46:be:f5:4a:d7:ea:8f: 63:54:5e:44:38:fe:3e:17:5f:8f:20:d9:a5:b5:c5:14:70:cf: 8c:eb:d3:88 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBSEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDdEQ0ExMTAvBgNVBAUTKDJDM0EyQTgxMjFDQ0Y4QTlCRkM3Q0I2NjkxODU0QUY1 RTREMjE5RjkwHhcNMjMwODAyMjM0MDE3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZTk2MS1kOGRkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuR3lnAY62EaRuFMT6pvBqBaiqhjpuZMiiUchTO7LWMJLD0CtlqC7l/KwGePS dtTz9Wlb2SKqt4QtXTFlbaB0EPUBF5ytsjIx+zZjmw5nlOUtd1giHuUxP38VQlEF hrZ+LLLmCCVqVz5kKvQOv+q4ka2yL5mhHQizyVqrCJZfFJof++qtODdlBN90hqbq kW2rEsDuZOfO/9UIjveN/DICy1eDnAJmt1ZbDN9p2glY6PLlfsmpYlDMq/6wLus4 nSinaqkg7wLE+ewMKp01fqTGCYybmCQXNEndx5Upc2tDw9DzmzJWKsjoxBFSREQa pKGnctLYjwErrE7RSXWWiGfU8wIDAQABo4IClTCCApEwHQYDVR0OBBYEFIp2p8Fl SoBfF91ol6N1QKKDFlKkMB8GA1UdIwQYMBaAFCw6KoEhzPipv8fLZpGFSvXk0hn5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0N0RDQS8xQzc1RURBNjdE NkExMUVCQTRBNTk4MENDNEY5QUUwMi9MRG9xZ1NITS1LbV94OHRta1lWSzllVFNH ZmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEb3FnU0hNLUttX3g4dG1rWVZLOWVUU0dmay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDdEQ0EvMUM3NUVEQTY3RDZBMTFFQkE0QTU5ODBDQzRGOUFFMDIvMDQ2M0ZGNTA1 MjZDMTFFQzgwQTMxNjE1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr9agwDQYJKoZIhvcNAQELBQADggEBAES8jTEbu4DOUpIH EYBj8srEpM8MsGhSGL1KW3wE3Y5XQj6ZlS4eHWx5Y8nKIO/j+/xsBonvFEwjqZGR aRV7LeD4uWED/lm7tjktv0UBMIgFJPWE3r6WMIU1jzlQpv/jnEEvKQ4SSWtCL5tq kHV2Fm4xR/HYFzK48WdRsv77UtBMcbyWVnLxt8HVUAIIhwzWCKRmV/rSPNNmbIXD vFyDvAUqPrHiC8mDLCL1bETo04gWQ1QOGzqOcvoHFR6TVrE9McYmFQgwR119CS9Z Bv3TiTVTqGce8gA+c1kRnznpApyYFmJbRr71Stfqj2NUXkQ4/j4XX48g2aW1xRRw z4zr04g= -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:49 2024 by rpki-client on console-ams.rpki-client.org