$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa File: 5EF938889E9E11EE80C94682C4F9AE02.roa (raw, json) Hash identifier: 0OHyUAsMDz90pl7WUhkUQKtG+cIcNWQcQJ/RowindZQ= Subject key identifier: 83:C6:98:AF:14:62:E3:47:C6:72:7A:8F:AF:4A:4F:DD:87:AB:BC:02 Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: 36 Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa Signing time: Tue 19 Dec 2023 18:42:33 +0000 ROA not before: Tue 19 Dec 2023 18:42:33 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 5650 IP address blocks: 43.239.250.0/24 maxlen: 24 114.31.208.0/22 maxlen: 22 2404:3600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54 (0x36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Dec 19 18:42:33 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6581e419-4e7a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:67:cd:70:6c:27:c3:f4:47:1d:8e:b9:32:2e: 12:14:f5:55:d1:d8:d0:64:49:0d:4b:e9:94:27:77: 41:1c:84:b7:a4:2e:31:de:7e:66:51:a6:c5:61:f6: 99:71:b7:ba:27:92:1b:ae:35:67:dd:e5:03:12:8a: 59:4a:d1:50:e7:75:c9:40:fa:d4:b2:a4:dd:49:71: 52:e1:24:be:9d:5e:02:31:86:cc:8d:5f:1b:0c:d5: 40:9e:b3:03:d0:4c:3e:b7:9c:84:d6:37:5d:69:f6: 25:97:22:af:3d:fa:eb:a4:bd:36:e6:8c:17:83:ff: d8:7b:d8:5a:00:b1:e5:b4:dc:5d:f2:58:1e:dd:82: c4:30:72:cf:8a:25:ab:09:35:32:55:5d:72:46:0a: 06:5d:c1:3a:78:0d:aa:9d:cb:10:8c:1f:27:4f:28: d9:d5:aa:6f:25:9b:80:53:64:84:84:da:1a:4d:d5: 37:30:a3:30:27:54:65:be:b3:8f:d4:26:dd:af:53: 4e:31:11:ea:30:aa:21:85:60:46:3d:5f:44:96:c3: 25:5c:e9:11:f5:2e:2c:f3:da:c6:95:8c:ce:9d:f6: b8:67:31:01:f8:26:e8:ae:15:b9:83:7d:b9:a1:3d: bf:93:6f:91:ff:2e:92:b3:06:d3:e0:86:e6:47:f8: 8a:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:C6:98:AF:14:62:E3:47:C6:72:7A:8F:AF:4A:4F:DD:87:AB:BC:02 X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 114.31.208.0/22 IPv6: 2404:3600::/32 Signature Algorithm: sha256WithRSAEncryption 65:7a:78:85:85:ce:99:76:38:78:68:55:3a:47:97:86:55:9c: 15:9e:e2:79:cc:29:f7:a1:47:ac:b9:ba:c5:d7:19:a1:64:94: 45:77:0d:ae:87:64:18:fd:62:10:7b:d1:f6:9b:d3:5c:5f:1d: cf:95:39:e1:88:ae:2e:59:bf:f5:f4:8c:51:49:8d:06:62:2e: 70:cc:f0:9a:1e:0d:43:21:1a:49:dc:a2:73:f2:91:0f:a2:ec: a3:4b:28:fc:02:b2:a4:7d:e0:42:f0:38:53:b0:18:34:ae:cf: c8:b7:74:1e:ac:51:53:75:b7:ed:92:3e:9e:5d:1a:72:ee:7f: 81:8e:b8:7c:0f:c9:1a:9a:80:74:3e:88:3f:96:88:db:eb:a8: b6:e1:a5:54:0b:23:50:90:38:97:2a:68:a8:33:b8:93:41:e1: 04:b6:88:b3:f9:27:9c:24:15:75:d2:34:2e:2d:52:4a:cc:8b: 8d:7c:31:65:75:0a:64:be:dc:28:44:37:b7:22:04:f9:84:3d: b8:e4:a8:42:cc:81:ef:e8:ac:e7:c0:72:c6:61:8f:8c:9b:57: aa:9d:7e:40:5b:7f:e8:33:94:6a:d8:12:09:6b:5a:31:18:80: 29:d6:9a:bb:02:dc:55:2d:bb:52:1a:1f:80:8b:36:25:14:e9: 16:79:f3:9d -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgIBNjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx QUJDRTExMC8GA1UEBRMoMzAwNzQyRTRBRDU0N0FFNDlERDgyQzgyRjdFQ0VCMDk1 QjkwMkEyMDAeFw0yMzEyMTkxODQyMzNaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ODFlNDE5LTRlN2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDtZ81wbCfD9EcdjrkyLhIU9VXR2NBkSQ1L6ZQnd0EchLekLjHefmZRpsVh9plx t7onkhuuNWfd5QMSillK0VDndclA+tSypN1JcVLhJL6dXgIxhsyNXxsM1UCeswPQ TD63nITWN11p9iWXIq89+uukvTbmjBeD/9h72FoAseW03F3yWB7dgsQwcs+KJasJ NTJVXXJGCgZdwTp4DaqdyxCMHydPKNnVqm8lm4BTZISE2hpN1TcwozAnVGW+s4/U Jt2vU04xEeowqiGFYEY9X0SWwyVc6RH1Lizz2saVjM6d9rhnMQH4JuiuFbmDfbmh Pb+Tb5H/LpKzBtPghuZH+IpZAgMBAAGjggKqMIICpjAdBgNVHQ4EFgQUg8aYrxRi 40fGcnqPr0pP3YervAIwHwYDVR0jBBgwFoAUMAdC5K1UeuSd2CyC9+zrCVuQKiAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFBQkNFLzkwMDk5QzQwNTdE RDExRUVCQUZGRTQyREM0RjlBRTAyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtp QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvTUFkQzVLMVVldVNkMkN5QzktenJDVnVRS2lBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx QUJDRS85MDA5OUM0MDU3REQxMUVFQkFGRkU0MkRDNEY5QUUwMi81RUY5Mzg4ODlF OUUxMUVFODBDOTQ2ODJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA0BggrBgEFBQcBBwEB/wQl MCMwEgQCAAEwDAMEACvv+gMEAnIf0DANBAIAAjAHAwUAJAQ2ADANBgkqhkiG9w0B AQsFAAOCAQEAZXp4hYXOmXY4eGhVOkeXhlWcFZ7iecwp96FHrLm6xdcZoWSURXcN rodkGP1iEHvR9pvTXF8dz5U54YiuLlm/9fSMUUmNBmIucMzwmh4NQyEaSdyic/KR D6Lso0so/AKypH3gQvA4U7AYNK7PyLd0HqxRU3W37ZI+nl0acu5/gY64fA/JGpqA dD6IP5aI2+uotuGlVAsjUJA4lypoqDO4k0HhBLaIs/knnCQVddI0Li1SSsyLjXwx ZXUKZL7cKEQ3tyIE+YQ9uOSoQsyB7+is58ByxmGPjJtXqp1+QFt/6DOUatgSCWta MRiAKdaauwLcVS27UhofgIs2JRTpFnnznQ== -----END CERTIFICATE-----Generated at Sun May 19 08:26:42 2024 by rpki-client on console-fra.rpki-client.org