$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/36681EC6684211EEA8658A78C4F9AE02.roa File: 36681EC6684211EEA8658A78C4F9AE02.roa (raw, json) Hash identifier: cZwQEg8sHtbXhkduexebN0uW0AV/rChX/06QWYYnaBw= Subject key identifier: 47:DA:AE:D9:83:82:D9:2B:45:05:FB:D3:EC:71:53:7C:1B:33:38:89 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 052D Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/36681EC6684211EEA8658A78C4F9AE02.roa Signing time: Fri 13 Oct 2023 00:52:59 +0000 ROA not before: Fri 13 Oct 2023 00:52:59 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 137547 IP address blocks: 43.229.153.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1325 (0x52d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 13 00:52:59 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652894eb-a9f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:59:03:b0:dc:9b:ea:50:c7:d1:e7:74:51:0b: 3d:12:ee:ff:97:18:e7:b6:fc:48:d9:e6:9d:4b:c0: 92:53:64:98:6f:55:61:0c:57:94:ba:25:32:1c:47: a8:e2:1d:42:4c:83:c2:8a:1a:6b:3c:7c:4f:65:fc: 0e:60:ce:c7:74:c8:c1:65:87:5d:07:62:31:b3:ce: 60:11:4b:d0:c2:b6:19:8a:d8:41:c7:36:79:64:e0: 8c:12:a9:f0:db:29:4f:96:06:28:ef:ae:e5:03:7a: a6:2e:3a:e0:10:03:d7:de:34:92:ed:53:30:84:0a: 5a:7c:67:a1:24:80:b0:75:f6:06:39:e3:92:9f:fd: 0d:7b:1f:f2:de:13:8f:e1:4c:89:0e:be:b1:36:44: d2:37:55:55:f5:74:20:17:b9:0b:5a:9d:4a:4c:0a: 4c:47:0a:04:ce:d8:15:3e:66:cf:89:c8:4a:c1:b6: 43:c8:c7:2e:66:95:25:94:24:23:b5:ba:14:12:98: 94:fd:b6:31:b8:dc:75:f3:92:a6:fa:76:e7:7a:42: 47:87:a1:4b:99:28:6a:e2:a1:0d:7c:32:1f:8a:aa: 9f:1f:b8:6e:d4:9a:c1:29:fd:4e:82:52:04:28:1f: 37:7f:ea:fe:ac:5e:c8:6e:96:d1:06:28:97:94:df: f7:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:DA:AE:D9:83:82:D9:2B:45:05:FB:D3:EC:71:53:7C:1B:33:38:89 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/36681EC6684211EEA8658A78C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.153.0/24 Signature Algorithm: sha256WithRSAEncryption 9c:40:2f:20:fc:d1:c8:06:13:21:02:d7:59:3b:33:83:64:26: e0:dd:b8:00:b6:6b:54:86:68:8e:1b:c1:dd:09:5b:9c:7e:f1: 42:fd:07:95:8e:41:d2:d7:c3:49:18:37:a6:3a:d6:fa:c5:d8: 66:28:7b:b5:48:2e:c0:41:b0:0c:71:c3:f2:ab:55:4c:e6:4b: f4:e8:28:e8:68:18:34:1a:cf:7a:b1:44:cc:12:b4:ff:d1:01: db:b3:d7:a5:71:15:39:24:f2:59:1a:3a:f3:f1:1b:b5:2f:5f: 26:65:53:d3:9c:92:14:3c:34:12:eb:3c:0a:88:b3:2d:bc:c9: 68:52:b5:fc:f7:61:5a:7b:1d:71:01:9c:b0:d0:e8:a2:b4:2f: 58:d9:c8:38:47:8f:d1:04:34:9c:df:80:05:46:83:e0:36:82: c5:d2:48:eb:ee:99:19:7f:24:ca:01:18:85:d6:d2:f2:fa:90: 3c:95:b0:53:43:54:4e:2c:d7:00:ed:32:68:08:75:81:3a:8e: 64:38:ba:64:34:3b:fd:e4:fe:70:81:9d:b5:8b:62:cb:e4:d7: f9:ce:a4:21:61:1a:4c:a5:cf:03:fe:c6:44:ef:5d:7b:d6:63: 88:3f:3e:a8:01:6c:fa:51:e6:09:f0:0b:2a:32:a1:2f:52:ac: 6c:19:8f:b1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBS0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjMxMDEzMDA1MjU5WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4OTRlYi1hOWY4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0FkDsNyb6lDH0ed0UQs9Eu7/lxjntvxI2eadS8CSU2SYb1VhDFeUuiUyHEeo 4h1CTIPCihprPHxPZfwOYM7HdMjBZYddB2Ixs85gEUvQwrYZithBxzZ5ZOCMEqnw 2ylPlgYo767lA3qmLjrgEAPX3jSS7VMwhApafGehJICwdfYGOeOSn/0Nex/y3hOP 4UyJDr6xNkTSN1VV9XQgF7kLWp1KTApMRwoEztgVPmbPichKwbZDyMcuZpUllCQj tboUEpiU/bYxuNx185Km+nbnekJHh6FLmShq4qENfDIfiqqfH7hu1JrBKf1OglIE KB83f+r+rF7IbpbRBiiXlN/30wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEfartmD gtkrRQX70+xxU3wbMziJMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvMzY2ODFFQzY2 ODQyMTFFRUE4NjU4QTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5ZkwDQYJKoZIhvcNAQELBQADggEBAJxALyD80cgGEyEC 11k7M4NkJuDduAC2a1SGaI4bwd0JW5x+8UL9B5WOQdLXw0kYN6Y61vrF2GYoe7VI LsBBsAxxw/KrVUzmS/ToKOhoGDQaz3qxRMwStP/RAduz16VxFTkk8lkaOvPxG7Uv XyZlU9OckhQ8NBLrPAqIsy28yWhStfz3YVp7HXEBnLDQ6KK0L1jZyDhHj9EENJzf gAVGg+A2gsXSSOvumRl/JMoBGIXW0vL6kDyVsFNDVE4s1wDtMmgIdYE6jmQ4umQ0 O/3k/nCBnbWLYsvk1/nOpCFhGkylzwP+xkTvXXvWY4g/PqgBbPpR5gnwCyoyoS9S rGwZj7E= -----END CERTIFICATE-----Generated at Fri May 17 02:38:37 2024 by rpki-client on console-fra.rpki-client.org