$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1B2EC2A457E411EEB143C80EC4F9AE02.roa File: 1B2EC2A457E411EEB143C80EC4F9AE02.roa (raw, json) Hash identifier: +nC5Ez4dTzk1QXCfqd57YJyGdI1zJZCyQc1k+AwOLNI= Subject key identifier: 02:3C:74:08:DA:E3:D6:EA:13:AD:09:AC:EB:25:34:CA:AE:0B:9C:00 Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: 0E Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1B2EC2A457E411EEB143C80EC4F9AE02.roa Signing time: Tue 03 Oct 2023 06:06:29 +0000 ROA not before: Tue 03 Oct 2023 06:06:29 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 174 IP address blocks: 43.239.250.0/24 maxlen: 24 114.31.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Oct 3 06:06:29 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651baf64-a2fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c7:86:9e:9a:fd:1f:16:43:f8:35:c7:79:c8: 90:1c:cf:e0:a7:f6:96:24:c1:c5:f7:de:64:3c:d3: 35:5f:e8:41:a7:c8:e0:a7:be:55:7d:c1:b4:50:80: 31:d4:35:ed:5a:04:18:16:f9:a4:36:42:00:c4:be: 84:33:9a:f3:1c:02:2d:9a:cf:00:57:ef:d9:62:50: 27:12:4d:1e:1a:59:3e:2c:76:14:8f:65:dd:72:46: e3:4c:df:1d:b5:3c:bd:d6:5c:62:7b:57:4b:66:54: 1a:0b:d8:70:a5:f9:38:a5:bb:a2:be:b4:c7:03:1d: 13:4f:e9:8c:63:51:7c:c8:03:95:59:b0:53:80:34: 15:cd:fe:ea:80:a3:76:f4:85:86:7d:1a:80:b7:ee: 05:f5:37:9d:34:e8:57:f8:d2:91:05:84:df:3e:63: f0:f8:ec:ff:ba:54:5f:1d:37:a1:29:e6:e5:67:68: c0:99:5c:00:95:d8:91:05:46:85:f1:93:52:ce:67: f8:4b:e9:78:01:54:80:24:b5:18:84:1d:eb:34:48: 34:77:32:08:8f:7e:cb:00:f3:c1:3f:f9:97:78:ce: 6f:a1:22:e6:9a:5f:ca:19:a8:9f:aa:4d:db:73:c3: dd:dd:d1:2c:a7:d2:2b:b3:cd:3e:bd:40:45:f5:1d: f5:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:3C:74:08:DA:E3:D6:EA:13:AD:09:AC:EB:25:34:CA:AE:0B:9C:00 X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1B2EC2A457E411EEB143C80EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 114.31.208.0/22 Signature Algorithm: sha256WithRSAEncryption 0c:98:3e:85:75:1b:6b:3b:b8:6c:37:c4:bc:f8:0d:a0:dc:41: db:cc:fc:87:82:8c:45:1e:73:68:9a:fa:94:24:c5:76:51:34: 3b:41:e9:93:1b:ef:77:89:18:35:e3:91:dc:0e:32:e7:4d:1b: fb:4f:bb:a6:bd:77:26:ca:58:3b:91:3e:9e:59:38:b6:e2:42: 0d:14:d5:f0:42:b6:c6:f0:ef:96:05:cf:f5:99:85:0b:57:ad: 63:10:47:58:10:b8:6c:33:52:14:26:59:84:9f:60:fb:7c:19: 77:4c:eb:01:b7:6d:ff:0a:df:b0:b7:4c:27:58:95:53:42:2e: 4c:78:21:f1:2b:69:bf:2b:02:e8:f1:c8:3e:a1:f4:5b:46:8f: 7f:08:f1:e1:a0:c6:1f:45:d1:a3:30:4a:90:74:26:0e:b2:d0: 3a:ea:df:d9:6e:be:c8:07:9c:62:b1:6d:16:be:26:10:17:56: 6b:15:b0:ca:39:a4:bb:60:f6:be:ef:f4:eb:ae:64:b6:6e:03: d0:18:ab:d5:c8:fc:7c:06:09:e5:bd:2c:61:ef:f5:bc:c7:fc: 75:e1:9f:cb:65:8f:8d:41:51:2f:a1:47:1f:2b:8f:fb:6b:85: 98:72:b5:ca:ed:3c:0e:3d:9e:00:33:5a:11:40:5e:6a:85:e2: 80:65:37:0f -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUJDRTExMC8GA1UEBRMoMzAwNzQyRTRBRDU0N0FFNDlERDgyQzgyRjdFQ0VCMDk1 QjkwMkEyMDAeFw0yMzEwMDMwNjA2MjlaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MWJhZjY0LWEyZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCux4aemv0fFkP4Ncd5yJAcz+Cn9pYkwcX33mQ80zVf6EGnyOCnvlV9wbRQgDHU Ne1aBBgW+aQ2QgDEvoQzmvMcAi2azwBX79liUCcSTR4aWT4sdhSPZd1yRuNM3x21 PL3WXGJ7V0tmVBoL2HCl+Tilu6K+tMcDHRNP6YxjUXzIA5VZsFOANBXN/uqAo3b0 hYZ9GoC37gX1N5006Ff40pEFhN8+Y/D47P+6VF8dN6Ep5uVnaMCZXACV2JEFRoXx k1LOZ/hL6XgBVIAktRiEHes0SDR3MgiPfssA88E/+Zd4zm+hIuaaX8oZqJ+qTdtz w93d0Syn0iuzzT69QEX1HfV3AgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUAjx0CNrj 1uoTrQms6yU0yq4LnAAwHwYDVR0jBBgwFoAUMAdC5K1UeuSd2CyC9+zrCVuQKiAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQkNFLzkwMDk5QzQwNTdE RDExRUVCQUZGRTQyREM0RjlBRTAyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTUFkQzVLMVVldVNkMkN5QzktenJDVnVRS2lBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJDRS85MDA5OUM0MDU3REQxMUVFQkFGRkU0MkRDNEY5QUUwMi8xQjJFQzJBNDU3 RTQxMUVFQjE0M0M4MEVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEACvv+gMEAnIf0DANBgkqhkiG9w0BAQsFAAOCAQEADJg+hXUb azu4bDfEvPgNoNxB28z8h4KMRR5zaJr6lCTFdlE0O0Hpkxvvd4kYNeOR3A4y500b +0+7pr13JspYO5E+nlk4tuJCDRTV8EK2xvDvlgXP9ZmFC1etYxBHWBC4bDNSFCZZ hJ9g+3wZd0zrAbdt/wrfsLdMJ1iVU0IuTHgh8StpvysC6PHIPqH0W0aPfwjx4aDG H0XRozBKkHQmDrLQOurf2W6+yAecYrFtFr4mEBdWaxWwyjmku2D2vu/0665ktm4D 0Bir1cj8fAYJ5b0sYe/1vMf8deGfy2WPjUFRL6FHHyuP+2uFmHK1yu08Dj2eADNa EUBeaoXigGU3Dw== -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:27 2024 by rpki-client on console-ams.rpki-client.org