$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/67DE34666F4811ED92CB5C4BC4F9AE02.roa File: 67DE34666F4811ED92CB5C4BC4F9AE02.roa (raw, json) Hash identifier: X1P90qLPLyDLrBZNe7S7u/nWx4JzoTYwJOFBoCDfJqk= Subject key identifier: B1:0F:D4:C6:74:4B:3A:26:CA:86:C1:15:D1:02:14:42:9D:70:80:F8 Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 02B6 Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/67DE34666F4811ED92CB5C4BC4F9AE02.roa Signing time: Mon 13 May 2024 04:08:44 +0000 ROA not before: Mon 13 May 2024 04:08:44 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 203141 IP address blocks: 43.243.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 10 Jun 2024 04:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 694 (0x2b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: May 13 04:08:44 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6641924c-a4af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2b:37:32:8b:72:fb:58:b2:ab:8e:1c:40:77: 0f:05:b5:14:b2:89:82:4e:b0:0d:f6:e6:87:59:4e: dd:4d:4a:66:54:1e:ef:ab:71:c4:e2:0d:bd:8e:5e: 46:c8:14:b6:50:39:2d:f3:87:51:15:60:a5:92:3a: 88:59:05:64:a8:bd:a2:21:9d:db:4c:d9:e0:46:bd: 88:15:9b:77:ff:4c:b5:77:b5:f5:e2:1e:de:ba:5d: e1:0a:f0:61:4b:59:a0:cd:c6:5e:61:fa:2f:33:9f: 11:df:46:d3:ea:40:5e:4b:de:de:7f:62:04:a2:42: bd:0e:cb:d2:aa:56:ad:d7:ca:76:db:91:51:f7:d6: 06:76:15:45:c1:5f:bf:53:fb:fa:8f:e8:e7:73:c3: 8f:77:e4:5a:86:5a:e2:1d:58:04:3b:5f:e2:da:fb: 86:ff:a4:0e:36:23:2f:75:0e:8d:66:e4:79:57:79: 7b:a5:1f:66:ad:c9:3e:27:8f:0f:6b:60:a0:a6:50: e1:dd:6c:d2:8d:f8:bb:66:37:34:17:6c:d3:ca:c9: 57:2b:6a:34:0c:7f:69:2b:b5:70:2d:4d:2a:47:ab: 39:2e:2d:62:bb:e5:55:69:c3:3c:a2:98:a1:d9:62: ee:e3:04:23:56:95:9c:cc:bf:19:08:da:63:71:16: 89:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:0F:D4:C6:74:4B:3A:26:CA:86:C1:15:D1:02:14:42:9D:70:80:F8 X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/67DE34666F4811ED92CB5C4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.192.0/24 Signature Algorithm: sha256WithRSAEncryption 88:f0:d1:7b:f0:f0:63:de:69:d0:d8:0c:bf:fb:f1:07:3a:ca: c5:c7:32:77:a4:ff:cd:6c:d7:20:9e:30:91:b3:ee:1d:8f:4d: db:25:35:1b:31:04:8d:a6:a2:1a:99:78:ac:8f:ac:b0:36:ee: 76:14:71:6b:ad:7f:9f:ce:61:e9:0d:7a:74:bb:25:d8:8d:d7: f4:d3:04:86:02:b3:ad:0b:bf:fa:8a:34:0b:4d:e1:4d:78:f1: 4f:7a:b8:dd:08:29:83:ff:83:5b:e6:94:14:72:61:06:f2:6a: 42:93:b8:e1:1f:26:75:f0:83:ef:68:f5:d1:2a:55:d6:60:df: 36:d5:20:2b:25:83:a0:f2:1b:72:1e:0c:d8:ce:35:05:75:52: d4:c0:20:b6:43:e2:f4:06:85:55:5d:36:0a:e3:dc:df:d6:fa: 12:b4:c6:2a:4b:f1:47:19:7a:a5:a9:32:79:71:70:c3:63:cb: 4f:3b:60:3f:07:22:2a:ce:51:bf:3a:55:bf:8a:6b:11:21:23: 54:d1:ad:b4:98:98:0a:fc:2d:1a:2c:99:4f:3e:42:e1:30:07: e9:24:6a:15:ba:ee:1f:de:db:b3:d4:c8:22:81:6f:2f:16:42: fd:d0:88:43:0b:91:0c:ff:93:b1:f5:25:f4:05:86:41:e2:b2: 1a:6a:4e:08 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICArYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjQwNTEzMDQwODQ0WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxOTI0Yy1hNGFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtCs3Moty+1iyq44cQHcPBbUUsomCTrAN9uaHWU7dTUpmVB7vq3HE4g29jl5G yBS2UDkt84dRFWClkjqIWQVkqL2iIZ3bTNngRr2IFZt3/0y1d7X14h7eul3hCvBh S1mgzcZeYfovM58R30bT6kBeS97ef2IEokK9DsvSqlat18p225FR99YGdhVFwV+/ U/v6j+jnc8OPd+RahlriHVgEO1/i2vuG/6QONiMvdQ6NZuR5V3l7pR9mrck+J48P a2CgplDh3WzSjfi7Zjc0F2zTyslXK2o0DH9pK7VwLU0qR6s5Li1iu+VVacM8opih 2WLu4wQjVpWczL8ZCNpjcRaJtQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLEP1MZ0 SzomyobBFdECFEKdcID4MB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvNjdERTM0NjY2 RjQ4MTFFRDkyQ0I1QzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr88AwDQYJKoZIhvcNAQELBQADggEBAIjw0Xvw8GPeadDY DL/78Qc6ysXHMnek/81s1yCeMJGz7h2PTdslNRsxBI2mohqZeKyPrLA27nYUcWut f5/OYekNenS7JdiN1/TTBIYCs60Lv/qKNAtN4U148U96uN0IKYP/g1vmlBRyYQby akKTuOEfJnXwg+9o9dEqVdZg3zbVICslg6DyG3IeDNjONQV1UtTAILZD4vQGhVVd Ngrj3N/W+hK0xipL8UcZeqWpMnlxcMNjy087YD8HIirOUb86Vb+KaxEhI1TRrbSY mAr8LRosmU8+QuEwB+kkahW67h/e27PUyCKBby8WQv3QiEMLkQz/k7H1JfQFhkHi shpqTgg= -----END CERTIFICATE-----Generated at Mon Jun 3 05:38:35 2024 by rpki-client on console-ams.rpki-client.org