$ rpki-client -vvf rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa File: 5EF938889E9E11EE80C94682C4F9AE02.roa (raw, json) Hash identifier: /trQaf5mAYLhUwtPoYNSiRtn86zeNkrUACHp5ubxqmw= Subject key identifier: 0B:B5:A6:5E:8D:84:C3:BC:57:F1:21:82:0C:8E:DA:EB:12:61:C8:6F Certificate issuer: /CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Certificate serial: D4 Authority key identifier: 30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa Signing time: Sat 05 Oct 2024 04:38:39 +0000 ROA not before: Sat 05 Oct 2024 04:38:39 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 5650 IP address blocks: 43.239.250.0/24 maxlen: 24 114.31.208.0/22 maxlen: 22 2404:3600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 03:41:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 212 (0xd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ABCE/serialNumber=300742E4AD547AE49DD82C82F7ECEB095B902A20 Validity Not Before: Oct 5 04:38:39 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6700c2cf-69e9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:e5:38:f1:8e:a2:b0:f8:06:11:b7:34:0e:00: f0:91:ca:d0:d1:9a:dc:a9:3c:a0:04:fe:1e:f3:1f: ab:06:ae:0b:cd:f6:1c:85:0f:f3:2b:8c:2f:62:72: 7a:46:16:10:11:16:64:5c:4d:c9:9e:39:cf:97:02: 74:17:83:e3:b3:8d:db:28:34:86:61:78:37:75:ab: 5b:07:27:52:9d:12:04:2a:2b:06:50:e4:f9:6b:28: 45:f1:45:3b:ac:1f:44:78:90:db:97:b4:0f:78:fc: d5:5a:3c:ed:ab:73:1a:16:fa:1a:16:a9:be:64:2c: 5d:94:e3:a2:57:6a:5f:e3:de:12:c9:02:ed:88:c8: 10:0e:c0:75:6d:22:25:0a:a5:30:c7:9e:dd:88:73: 15:34:e5:27:27:f4:88:a2:fc:1e:39:8b:4e:0b:6e: b5:9c:e2:2d:c4:4a:f0:ef:0e:4e:0e:10:24:42:d9: c8:d8:f3:22:c9:4a:3b:db:8f:d1:f2:b0:e7:a8:14: ad:15:7e:49:91:b8:81:b0:4e:33:44:ef:76:92:8e: 7f:84:c4:4e:7f:a3:bd:6e:17:8c:55:a3:22:8e:28: a4:47:c4:77:0a:30:83:0b:58:e3:a7:66:5d:93:35: 26:14:f9:3c:e8:f2:3e:68:75:cc:b1:a3:0e:36:02: 0b:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:B5:A6:5E:8D:84:C3:BC:57:F1:21:82:0C:8E:DA:EB:12:61:C8:6F X509v3 Authority Key Identifier: keyid:30:07:42:E4:AD:54:7A:E4:9D:D8:2C:82:F7:EC:EB:09:5B:90:2A:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/MAdC5K1UeuSd2CyC9-zrCVuQKiA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MAdC5K1UeuSd2CyC9-zrCVuQKiA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ABCE/90099C4057DD11EEBAFFE42DC4F9AE02/5EF938889E9E11EE80C94682C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.250.0/24 114.31.208.0/22 IPv6: 2404:3600::/32 Signature Algorithm: sha256WithRSAEncryption 9c:3b:b8:f5:08:b4:c2:0e:5e:96:20:02:4e:d4:bb:ee:c2:e2: a0:c9:a9:52:f7:61:cb:f4:9c:9c:89:63:71:f5:f8:03:5d:50: a8:58:f0:60:77:aa:71:41:6c:05:51:b0:a7:aa:e6:3b:f2:39: 5f:e9:c3:bb:0b:0f:8f:65:cb:ad:df:39:75:4a:11:47:12:c8: c3:16:a2:4e:7e:0c:30:9e:90:bb:1f:48:28:9e:e0:50:b6:75: 17:71:b9:09:e9:b0:dc:f7:db:17:0d:f5:46:9b:d5:cf:68:27: 1e:08:4f:1a:16:52:a8:b9:de:c6:fc:12:66:28:2e:da:e8:b7: f1:e3:ea:36:21:d2:d0:c8:bc:e5:78:11:15:cb:39:f3:a5:32: fa:98:af:ca:8b:17:3a:d4:fb:85:fb:5d:5c:be:02:3d:03:00: c9:5f:d5:0d:56:e9:d1:84:da:fe:19:0c:c7:56:e0:f4:d5:0a: 21:5d:63:d2:82:08:bf:f3:b4:dd:0e:26:12:7a:4b:69:f3:c0: 25:75:38:3f:a8:93:31:0c:a4:60:d4:9f:0a:a2:ca:d8:c6:96: 3b:98:1b:a7:60:06:b0:c5:ad:51:f1:ec:7d:4d:75:dd:82:2e: 5b:25:e6:ca:b0:79:50:48:77:82:45:32:f4:94:40:5b:d8:2c: ed:d2:aa:51 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICANQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUFCQ0UxMTAvBgNVBAUTKDMwMDc0MkU0QUQ1NDdBRTQ5REQ4MkM4MkY3RUNFQjA5 NUI5MDJBMjAwHhcNMjQxMDA1MDQzODM5WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwYzJjZi02OWU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4eU48Y6isPgGEbc0DgDwkcrQ0ZrcqTygBP4e8x+rBq4LzfYchQ/zK4wvYnJ6 RhYQERZkXE3JnjnPlwJ0F4Pjs43bKDSGYXg3datbBydSnRIEKisGUOT5ayhF8UU7 rB9EeJDbl7QPePzVWjztq3MaFvoaFqm+ZCxdlOOiV2pf494SyQLtiMgQDsB1bSIl CqUwx57diHMVNOUnJ/SIovweOYtOC261nOItxErw7w5ODhAkQtnI2PMiyUo724/R 8rDnqBStFX5JkbiBsE4zRO92ko5/hMROf6O9bheMVaMijiikR8R3CjCDC1jjp2Zd kzUmFPk86PI+aHXMsaMONgILDwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAu1pl6N hMO8V/EhggyO2usSYchvMB8GA1UdIwQYMBaAFDAHQuStVHrkndgsgvfs6wlbkCog MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQUJDRS85MDA5OUM0MDU3 REQxMUVFQkFGRkU0MkRDNEY5QUUwMi9NQWRDNUsxVWV1U2QyQ3lDOS16ckNWdVFL aUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01BZEM1SzFVZXVTZDJDeUM5LXpyQ1Z1UUtpQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUFCQ0UvOTAwOTlDNDA1N0REMTFFRUJBRkZFNDJEQzRGOUFFMDIvNUVGOTM4ODg5 RTlFMTFFRTgwQzk0NjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAAr7/oDBAJyH9AwDQQCAAIwBwMFACQENgAwDQYJKoZIhvcN AQELBQADggEBAJw7uPUItMIOXpYgAk7Uu+7C4qDJqVL3Ycv0nJyJY3H1+ANdUKhY 8GB3qnFBbAVRsKeq5jvyOV/pw7sLD49ly63fOXVKEUcSyMMWok5+DDCekLsfSCie 4FC2dRdxuQnpsNz32xcN9Uab1c9oJx4ITxoWUqi53sb8EmYoLtrot/Hj6jYh0tDI vOV4ERXLOfOlMvqYr8qLFzrU+4X7XVy+Aj0DAMlf1Q1W6dGE2v4ZDMdW4PTVCiFd Y9KCCL/ztN0OJhJ6S2nzwCV1OD+okzEMpGDUnwqiytjGljuYG6dgBrDFrVHx7H1N dd2CLlsl5sqweVBId4JFMvSUQFvYLO3SqlE= -----END CERTIFICATE-----Generated at Thu Nov 21 05:37:00 2024 by rpki-client on console-ams.rpki-client.org