$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1E541192D5A111EE9D73FA44C4F9AE02.roa File: 1E541192D5A111EE9D73FA44C4F9AE02.roa (raw, json) Hash identifier: 49AeR+SLROGHj73gnfqPWUPwJlbIStmGkOwHiSlKPJU= Subject key identifier: 25:C5:AC:83:BF:9E:7B:28:EA:46:AD:4B:36:16:B9:94:2C:5C:0B:41 Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: 5E Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1E541192D5A111EE9D73FA44C4F9AE02.roa Signing time: Tue 27 Feb 2024 18:50:47 +0000 ROA not before: Tue 27 Feb 2024 18:50:47 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 212238 IP address blocks: 43.239.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 94 (0x5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Feb 27 18:50:47 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65de2f07-acb0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6b:4e:e0:19:0c:6d:a8:77:d2:3c:c9:3b:90: bc:26:c3:9c:ab:67:be:95:66:9d:d4:d5:67:5a:2b: dd:50:1a:1d:91:d7:f8:6a:5d:7c:1c:cd:ca:06:7b: 93:00:56:0b:86:b4:fd:8d:56:e7:36:f7:d1:2e:2a: 68:35:0b:9c:c5:a2:5b:49:33:b9:dc:dc:87:67:8c: f4:81:b5:b4:02:26:8d:3a:83:72:46:bf:46:a5:b3: f2:5b:9f:15:d4:ec:f6:39:60:36:e6:97:c0:e3:5d: 22:20:47:b4:5c:67:48:10:7a:fa:dd:92:57:fe:8f: 52:4f:ca:59:38:ff:fc:90:3b:13:0c:b7:01:8d:29: 41:4b:67:81:b7:1b:f6:25:ed:6c:fb:d7:fd:9b:3d: 3d:82:3f:e0:93:06:d6:7c:69:d7:38:d9:5b:8a:73: 45:4f:aa:f0:a0:3f:76:9d:2c:df:29:1f:d1:7b:75: fa:bc:21:2a:a8:c5:73:96:27:f6:e8:c1:82:d7:27: e9:24:ab:40:07:61:b5:61:84:6b:9b:1c:ea:5f:55: e1:89:1c:fb:67:a2:d5:ee:19:db:27:0e:dd:ea:a0: 49:4f:0d:6c:b6:df:ba:4a:70:a5:dd:41:ba:b4:eb: 93:b3:bf:93:ea:de:3a:95:42:01:c5:09:0e:07:32: a1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:C5:AC:83:BF:9E:7B:28:EA:46:AD:4B:36:16:B9:94:2C:5C:0B:41 X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/1E541192D5A111EE9D73FA44C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 Signature Algorithm: sha256WithRSAEncryption 81:6f:74:61:c7:b8:fc:fd:72:45:68:6b:2b:4c:51:a6:c1:19: 14:17:0e:de:1d:8a:52:b0:04:20:e5:44:ca:6c:83:a5:72:df: bd:a3:16:ab:3a:18:76:3f:bf:1b:36:0e:85:a8:cb:c8:a4:e2: 1c:5a:de:a4:65:f9:4f:bd:dc:ed:c2:47:f8:33:03:c2:a4:97: 6b:a9:47:2b:98:4f:40:e4:9f:6b:ab:dd:ef:cf:ba:18:4b:87: 95:84:83:bb:02:eb:fb:27:c4:2d:8b:26:05:16:0d:bf:80:8e: f5:71:cc:44:f2:85:60:e4:d2:c3:9b:e5:6d:6f:d6:21:0f:af: a6:07:6a:02:f3:93:ee:4f:2a:ea:c9:da:23:5a:e0:50:76:4c: 78:92:07:67:39:fe:c0:bb:4e:af:b7:e0:e7:7f:f8:41:84:8b: 75:39:48:bb:5c:fa:cb:74:ba:3f:34:65:fe:33:d3:85:16:48: e4:92:f4:0a:64:f3:83:a7:fd:d3:a7:c3:bd:26:d2:58:4f:3a: b0:96:95:16:a2:94:d8:5f:84:35:73:83:59:27:b0:d3:60:25: fd:a1:84:3e:e1:d0:68:7c:aa:ee:7e:05:b0:82:8a:a4:27:cd: 09:12:f1:40:4b:ea:6d:ed:9c:05:02:ce:56:ff:a0:19:7e:c5: 7f:a7:d8:40 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBXjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUJDRTExMC8GA1UEBRMoMzAwNzQyRTRBRDU0N0FFNDlERDgyQzgyRjdFQ0VCMDk1 QjkwMkEyMDAeFw0yNDAyMjcxODUwNDdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZGUyZjA3LWFjYjAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDka07gGQxtqHfSPMk7kLwmw5yrZ76VZp3U1WdaK91QGh2R1/hqXXwczcoGe5MA VguGtP2NVuc299EuKmg1C5zFoltJM7nc3IdnjPSBtbQCJo06g3JGv0als/JbnxXU 7PY5YDbml8DjXSIgR7RcZ0gQevrdklf+j1JPylk4//yQOxMMtwGNKUFLZ4G3G/Yl 7Wz71/2bPT2CP+CTBtZ8adc42VuKc0VPqvCgP3adLN8pH9F7dfq8ISqoxXOWJ/bo wYLXJ+kkq0AHYbVhhGubHOpfVeGJHPtnotXuGdsnDt3qoElPDWy237pKcKXdQbq0 65Ozv5Pq3jqVQgHFCQ4HMqHHAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUJcWsg7+e eyjqRq1LNha5lCxcC0EwHwYDVR0jBBgwFoAUMAdC5K1UeuSd2CyC9+zrCVuQKiAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQkNFLzkwMDk5QzQwNTdE RDExRUVCQUZGRTQyREM0RjlBRTAyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTUFkQzVLMVVldVNkMkN5QzktenJDVnVRS2lBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJDRS85MDA5OUM0MDU3REQxMUVFQkFGRkU0MkRDNEY5QUUwMi8xRTU0MTE5MkQ1 QTExMUVFOUQ3M0ZBNDRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEACvv+jANBgkqhkiG9w0BAQsFAAOCAQEAgW90Yce4/P1yRWhr K0xRpsEZFBcO3h2KUrAEIOVEymyDpXLfvaMWqzoYdj+/GzYOhajLyKTiHFrepGX5 T73c7cJH+DMDwqSXa6lHK5hPQOSfa6vd78+6GEuHlYSDuwLr+yfELYsmBRYNv4CO 9XHMRPKFYOTSw5vlbW/WIQ+vpgdqAvOT7k8q6snaI1rgUHZMeJIHZzn+wLtOr7fg 53/4QYSLdTlIu1z6y3S6PzRl/jPThRZI5JL0CmTzg6f906fDvSbSWE86sJaVFqKU 2F+ENXODWSew02Al/aGEPuHQaHyq7n4FsIKKpCfNCRLxQEvqbe2cBQLOVv+gGX7F f6fYQA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:18:27 2024 by rpki-client on console-ams.rpki-client.org