$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/36681EC6684211EEA8658A78C4F9AE02.roa File: 36681EC6684211EEA8658A78C4F9AE02.roa (raw, json) Hash identifier: vHj4xyE4cEEC7fg7MS6uyrE7iNO4U7DE8jLdB+AYCuk= Subject key identifier: C7:54:49:83:5A:54:AE:4C:62:5A:9B:A2:8D:EB:57:D6:A3:E9:A6:FB Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06AF Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/36681EC6684211EEA8658A78C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:42:56 +0000 ROA not before: Thu 24 Oct 2024 23:42:56 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 137547 IP address blocks: 43.229.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1711 (0x6af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:42:56 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb80-8db4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e3:1f:06:16:d0:87:ba:2d:2e:60:43:e2:5b: ca:b9:db:b9:33:af:5d:27:85:3f:85:a9:1c:93:08: c9:e2:09:3b:38:5c:57:ec:30:8d:ca:1f:b2:c4:cb: d5:34:f9:6b:c6:2b:d4:41:ed:b3:77:78:d7:1f:cd: 0d:df:c6:82:b6:97:65:74:8e:e3:63:a9:ca:08:ec: d0:cd:be:8c:fe:50:54:06:4d:5c:9f:7e:4b:c1:64: 5c:b0:6f:d8:53:86:75:51:da:8b:2d:4d:ac:a6:30: 5e:d1:e4:21:d8:f6:6d:45:ed:23:3d:3f:b6:f4:4e: 08:04:58:9a:cb:59:b4:a7:3c:e9:be:52:83:e2:68: 71:a2:e4:35:ef:9b:7b:80:12:92:0a:f8:4e:0e:b3: 50:04:b8:03:33:6a:bd:46:a0:83:90:f5:71:77:d2: 98:8b:64:60:4f:d9:74:af:e2:69:63:33:a2:07:74: 76:08:13:f8:2e:b3:90:9b:81:95:8a:9e:c4:ec:e0: a2:b4:44:58:32:da:9f:6b:14:8f:60:db:9c:97:62: 1a:5d:27:3a:f3:1b:d8:5f:09:e4:22:a5:1a:ad:3c: fd:da:d3:23:19:33:fc:a1:c2:5a:8e:5e:af:1f:bc: 21:2f:b1:9b:53:12:03:8d:56:4a:79:f5:c8:c0:1a: c9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:54:49:83:5A:54:AE:4C:62:5A:9B:A2:8D:EB:57:D6:A3:E9:A6:FB X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/36681EC6684211EEA8658A78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.153.0/24 Signature Algorithm: sha256WithRSAEncryption 85:eb:2c:ce:fe:ea:be:e2:54:ac:fa:06:65:54:4c:9d:81:1b: 37:69:25:a4:ea:26:83:d1:f6:ec:05:c4:34:bc:29:c3:e6:63: 12:d2:81:07:c9:9c:0c:c4:91:7d:47:37:aa:aa:59:3f:9c:18: 57:a1:fa:ad:95:8e:80:6d:2a:11:01:bd:eb:b2:bf:76:c6:d6: 53:8f:e8:0e:37:97:66:bd:04:1e:6c:33:86:c2:23:b6:bf:07: b7:21:8c:7d:bc:97:28:36:f5:a1:e5:2b:08:0e:bd:e5:95:af: be:c8:db:da:8c:10:62:28:0b:8e:68:5f:b8:97:34:7a:40:c9: cb:c6:0d:1f:71:e0:a0:78:78:97:5b:fd:51:f0:cb:42:a7:8f: 2a:33:60:93:9f:c4:b3:fc:6e:05:be:7c:21:d1:0d:26:20:b8: 39:21:76:0f:c5:6e:26:6a:e7:59:3b:d3:0f:ae:54:c6:24:4f: 9e:10:38:8e:30:bc:8c:b5:10:fb:bf:9d:f6:40:f1:e0:5f:56: c2:b3:89:f1:e3:44:34:45:db:4e:90:b3:8a:4e:ad:4a:6b:fc: a1:00:8b:40:2b:96:2f:a7:20:1b:33:46:f6:27:af:ca:5c:d4: 6a:f3:da:d5:af:14:9e:0d:92:c4:6c:9e:9d:61:82:f3:08:21: 19:cb:41:77 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBq8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MjU2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI4MC04ZGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2eMfBhbQh7otLmBD4lvKudu5M69dJ4U/hakckwjJ4gk7OFxX7DCNyh+yxMvV NPlrxivUQe2zd3jXH80N38aCtpdldI7jY6nKCOzQzb6M/lBUBk1cn35LwWRcsG/Y U4Z1UdqLLU2spjBe0eQh2PZtRe0jPT+29E4IBFiay1m0pzzpvlKD4mhxouQ175t7 gBKSCvhODrNQBLgDM2q9RqCDkPVxd9KYi2RgT9l0r+JpYzOiB3R2CBP4LrOQm4GV ip7E7OCitERYMtqfaxSPYNucl2IaXSc68xvYXwnkIqUarTz92tMjGTP8ocJajl6v H7whL7GbUxIDjVZKefXIwBrJwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMdUSYNa VK5MYlqboo3rV9aj6ab7MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvMzY2ODFFQzY2 ODQyMTFFRUE4NjU4QTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5ZkwDQYJKoZIhvcNAQELBQADggEBAIXrLM7+6r7iVKz6 BmVUTJ2BGzdpJaTqJoPR9uwFxDS8KcPmYxLSgQfJnAzEkX1HN6qqWT+cGFeh+q2V joBtKhEBveuyv3bG1lOP6A43l2a9BB5sM4bCI7a/B7chjH28lyg29aHlKwgOveWV r77I29qMEGIoC45oX7iXNHpAycvGDR9x4KB4eJdb/VHwy0KnjyozYJOfxLP8bgW+ fCHRDSYguDkhdg/FbiZq51k70w+uVMYkT54QOI4wvIy1EPu/nfZA8eBfVsKzifHj RDRF206Qs4pOrUpr/KEAi0Arli+nIBszRvYnr8pc1Grz2tWvFJ4NksRsnp1hgvMI IRnLQXc= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org