$ rpki-client -vvf rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa File: C1D49C12AEDF11EE96155C68C4F9AE02.roa (raw, json) Hash identifier: dzuBA92ULhmJzmxGgdHpyawAKCUbaQ8RTfKuM5up9R0= Subject key identifier: 14:6F:38:11:53:FC:C2:58:FF:C4:9F:4D:D6:D7:36:CC:5F:7C:67:5A Certificate issuer: /CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Certificate serial: 3E Authority key identifier: 0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa Signing time: Thu 25 Apr 2024 08:10:24 +0000 ROA not before: Thu 25 Apr 2024 08:10:24 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 132787 IP address blocks: 43.242.244.0/24 maxlen: 24 43.242.245.0/24 maxlen: 24 43.242.246.0/24 maxlen: 24 43.242.247.0/24 maxlen: 24 103.24.172.0/24 maxlen: 24 103.24.173.0/24 maxlen: 24 103.24.174.0/24 maxlen: 24 103.24.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:50:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62 (0x3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9185413/serialNumber=0F99B1FECFA57004F643D82BF511CDD474786DA0 Validity Not Before: Apr 25 08:10:24 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662a0ff0-8a08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:66:09:7c:09:3d:9d:b6:cd:c1:ab:b7:80:04: c9:98:de:b3:2e:fd:67:c5:62:2d:bd:e9:35:44:69: f0:12:4e:a1:91:c0:73:12:7a:95:36:94:55:ae:fb: 01:01:e1:ae:18:b3:58:c9:5a:f9:ed:7f:60:3a:21: 32:be:d6:04:24:12:85:ce:c7:91:bd:0c:49:98:50: c9:e2:8e:2c:d9:4a:f3:28:08:18:94:f3:26:eb:8d: 4c:3a:54:07:d5:df:ce:13:6e:79:97:87:fd:05:2c: c0:41:69:91:23:ec:df:a5:1b:90:74:97:33:dd:d6: fc:45:7c:28:e5:92:9e:77:db:16:6d:0f:d1:7a:e3: d6:f0:2c:b4:5b:ec:0a:dc:c5:1e:bf:3e:c2:87:12: 2d:99:df:44:bc:c1:46:c3:c6:a1:c1:9e:fc:a4:5b: 7f:2b:34:63:92:9f:91:98:53:01:fe:00:ca:15:29: 51:8c:83:84:66:9c:01:59:73:2e:79:0a:bb:28:18: ef:e4:23:b6:dd:e2:2e:47:6a:c7:c7:ff:b2:ad:1e: 32:87:aa:9e:49:b9:ce:d2:9d:61:99:91:32:82:51: ac:18:e6:01:93:ea:e4:26:08:f8:2a:76:59:30:dd: 1a:94:f2:bc:c4:46:85:cd:07:f5:ca:3f:1a:9a:d7: 0c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:6F:38:11:53:FC:C2:58:FF:C4:9F:4D:D6:D7:36:CC:5F:7C:67:5A X509v3 Authority Key Identifier: keyid:0F:99:B1:FE:CF:A5:70:04:F6:43:D8:2B:F5:11:CD:D4:74:78:6D:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/D5mx_s-lcAT2Q9gr9RHN1HR4baA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D5mx_s-lcAT2Q9gr9RHN1HR4baA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9185413/759AD24CAB9E11EE963D317DC4F9AE02/C1D49C12AEDF11EE96155C68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.244.0/22 103.24.172.0/22 Signature Algorithm: sha256WithRSAEncryption 53:28:9a:f8:35:c0:08:42:4f:80:46:4f:a1:71:24:09:a8:32: da:7c:b9:81:46:fa:a9:de:2e:c9:d0:11:fb:c8:8e:85:bf:0c: 9c:9f:62:24:6c:84:48:14:9a:ff:a1:5c:dc:ca:66:72:e4:ce: a5:44:20:b6:8e:9a:31:64:aa:1d:5f:79:1e:4d:0b:ab:b4:18: 99:c1:2f:fa:89:ce:2f:90:21:c6:45:86:69:cb:5d:f8:dc:f2: 0a:29:e6:fa:40:63:ad:50:fb:7c:d4:93:15:0f:8f:67:bc:54: c4:03:6a:3e:90:ca:b5:75:ba:2d:f6:51:a5:be:0f:d5:62:46: e1:5a:b1:50:92:9d:cb:f4:5d:05:d2:79:b5:0c:97:8a:fb:dd: 00:c7:d1:67:5c:33:a1:a1:59:54:0a:62:80:43:ba:77:3c:ac: 9a:32:ed:4a:f2:88:91:91:e1:89:31:58:78:61:f3:69:c0:39: b5:bc:8a:4c:fa:a8:ba:fa:e1:3f:fd:9c:88:bd:49:78:d9:ed: 1d:60:05:38:05:28:88:69:a6:a8:82:a6:a7:90:34:de:ae:09: 0f:bc:24:e0:cd:fe:df:0e:8b:23:71:90:fd:ab:65:d8:95:ff: 5a:b6:10:2f:b7:02:8f:f9:76:93:ef:71:8e:42:85:74:27:33: 04:86:d2:1f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBPjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NTQxMzExMC8GA1UEBRMoMEY5OUIxRkVDRkE1NzAwNEY2NDNEODJCRjUxMUNERDQ3 NDc4NkRBMDAeFw0yNDA0MjUwODEwMjRaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MmEwZmYwLThhMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDLZgl8CT2dts3Bq7eABMmY3rMu/WfFYi296TVEafASTqGRwHMSepU2lFWu+wEB 4a4Ys1jJWvntf2A6ITK+1gQkEoXOx5G9DEmYUMnijizZSvMoCBiU8ybrjUw6VAfV 384TbnmXh/0FLMBBaZEj7N+lG5B0lzPd1vxFfCjlkp532xZtD9F649bwLLRb7Arc xR6/PsKHEi2Z30S8wUbDxqHBnvykW38rNGOSn5GYUwH+AMoVKVGMg4RmnAFZcy55 CrsoGO/kI7bd4i5HasfH/7KtHjKHqp5Juc7SnWGZkTKCUawY5gGT6uQmCPgqdlkw 3RqU8rzERoXNB/XKPxqa1wytAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUFG84EVP8 wlj/xJ9N1tc2zF98Z1owHwYDVR0jBBgwFoAUD5mx/s+lcAT2Q9gr9RHN1HR4baAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg1NDEzLzc1OUFEMjRDQUI5 RTExRUU5NjNEMzE3REM0RjlBRTAyL0Q1bXhfcy1sY0FUMlE5Z3I5UkhOMUhSNGJh QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRDVteF9zLWxjQVQyUTlncjlSSE4xSFI0YmFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NTQxMy83NTlBRDI0Q0FCOUUxMUVFOTYzRDMxN0RDNEY5QUUwMi9DMUQ0OUMxMkFF REYxMUVFOTYxNTVDNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAivy9AMEAmcYrDANBgkqhkiG9w0BAQsFAAOCAQEAUyia+DXA CEJPgEZPoXEkCagy2ny5gUb6qd4uydAR+8iOhb8MnJ9iJGyESBSa/6Fc3MpmcuTO pUQgto6aMWSqHV95Hk0Lq7QYmcEv+onOL5AhxkWGactd+NzyCinm+kBjrVD7fNST FQ+PZ7xUxANqPpDKtXW6LfZRpb4P1WJG4VqxUJKdy/RdBdJ5tQyXivvdAMfRZ1wz oaFZVApigEO6dzysmjLtSvKIkZHhiTFYeGHzacA5tbyKTPqouvrhP/2ciL1JeNnt HWAFOAUoiGmmqIKmp5A03q4JD7wk4M3+3w6LI3GQ/atl2JX/WrYQL7cCj/l2k+9x jkKFdCczBIbSHw== -----END CERTIFICATE-----Generated at Sat Nov 23 05:02:52 2024 by rpki-client on console-fra.rpki-client.org