$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/4A4A33C0661B11EFA314D413C4F9AE02.roa File: 4A4A33C0661B11EFA314D413C4F9AE02.roa (raw, json) Hash identifier: V3MyuzSbuyBJdX0TVIgDsWn1sFnejA+xA1PeyLmmTUo= Subject key identifier: CB:CC:5F:9D:D4:04:F0:04:63:AC:44:FB:D9:55:40:05:AF:F6:33:16 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 064A Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/4A4A33C0661B11EFA314D413C4F9AE02.roa Signing time: Thu 29 Aug 2024 15:28:07 +0000 ROA not before: Thu 29 Aug 2024 15:28:07 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 142132 IP address blocks: 43.252.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 23 Sep 2024 21:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1610 (0x64a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Aug 29 15:28:07 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=66d09387-8cbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:fd:78:ac:12:3f:71:c3:d6:bf:1a:f9:63:81: 6c:d8:08:22:ad:46:53:a2:dd:c9:9c:4b:64:47:76: 54:24:99:cf:e9:6a:df:2d:d9:13:4b:90:61:33:84: 8a:34:7f:c5:6b:28:db:77:b8:dc:3c:ea:0a:ca:e3: c2:5a:33:e3:4c:3a:8a:27:5a:1b:d5:e8:4d:30:69: 5e:40:6e:e4:f8:bb:4f:08:36:d2:a6:9b:b9:a0:4b: 10:bb:fd:e3:06:03:f8:29:2c:43:c2:da:d3:d4:7f: c0:8a:ef:f0:c2:13:f2:63:31:c5:ba:b5:12:31:54: a5:9a:e7:27:f8:0b:31:19:9d:ef:74:8e:a0:bb:65: 86:c6:8c:95:1f:bd:e2:d1:84:d3:3e:21:d7:87:29: a0:b4:4b:77:fe:ff:f2:2c:16:57:51:f8:db:64:5c: f7:8f:ad:e7:69:c4:16:87:9f:2b:34:78:64:2b:49: 8a:a5:85:74:19:43:03:b0:be:1a:d6:f1:d6:17:c3: d4:4b:6e:e6:a7:99:d1:9e:0c:13:86:ee:68:ef:6e: 40:f2:c9:9c:33:9e:3f:86:9f:a3:a8:07:84:94:7d: 37:cf:e3:40:87:62:49:be:d4:19:ff:ce:54:38:1a: b7:06:1b:af:7d:e9:fb:25:b6:2e:ff:43:89:cf:ef: a4:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:CC:5F:9D:D4:04:F0:04:63:AC:44:FB:D9:55:40:05:AF:F6:33:16 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/4A4A33C0661B11EFA314D413C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.211.0/24 Signature Algorithm: sha256WithRSAEncryption 77:a2:f4:cb:14:ce:6d:48:af:5b:1a:f9:bd:6a:25:9f:12:0d: a0:91:7f:29:56:c2:95:a7:49:62:a4:71:1c:58:de:1b:1e:22: ca:a0:a0:0d:b4:65:e3:17:2b:db:96:59:57:72:a2:1b:44:89: ff:1f:e0:69:bf:ed:e9:56:ff:24:1c:8b:6d:e5:3b:78:30:3f: c0:92:bf:60:f8:81:6a:a9:48:9e:3b:ce:0c:d9:d7:2a:82:84: e2:c0:e2:a4:c2:e8:f7:f1:84:a4:ec:7b:39:f1:68:d7:bd:45: e8:14:a2:5e:64:14:90:62:02:0b:53:f3:42:96:eb:44:5c:dd: 5e:8a:c0:36:58:89:4f:a6:98:c6:40:db:70:d9:25:4a:64:4b: 15:bc:79:4e:92:8b:53:47:ab:69:83:91:44:e9:54:6c:3d:1c: 9a:39:97:a7:71:0d:23:84:5a:07:fb:bb:9a:ff:3c:23:63:36: 9f:28:0c:8b:a5:19:80:2c:0c:40:f6:df:ef:a3:3a:30:b4:92: 3a:67:e7:65:03:fc:d7:c5:1c:18:5d:82:b7:e1:ed:98:1d:81: 06:36:12:e6:7f:ea:3e:6b:21:d3:fb:ba:9c:d5:46:b0:26:ce: 3e:a0:fa:ee:07:15:55:95:4c:26:84:fb:05:0e:04:e0:60:e6: 5f:2b:81:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBkowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQwODI5MTUyODA3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQwOTM4Ny04Y2JkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuv14rBI/ccPWvxr5Y4Fs2AgirUZTot3JnEtkR3ZUJJnP6WrfLdkTS5BhM4SK NH/Fayjbd7jcPOoKyuPCWjPjTDqKJ1ob1ehNMGleQG7k+LtPCDbSppu5oEsQu/3j BgP4KSxDwtrT1H/Aiu/wwhPyYzHFurUSMVSlmucn+AsxGZ3vdI6gu2WGxoyVH73i 0YTTPiHXhymgtEt3/v/yLBZXUfjbZFz3j63nacQWh58rNHhkK0mKpYV0GUMDsL4a 1vHWF8PUS27mp5nRngwThu5o725A8smcM54/hp+jqAeElH03z+NAh2JJvtQZ/85U OBq3Bhuvfen7JbYu/0OJz++kpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMvMX53U BPAEY6xE+9lVQAWv9jMWMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNEE0QTMzQzA2 NjFCMTFFRkEzMTRENDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr/NMwDQYJKoZIhvcNAQELBQADggEBAHei9MsUzm1Ir1sa +b1qJZ8SDaCRfylWwpWnSWKkcRxY3hseIsqgoA20ZeMXK9uWWVdyohtEif8f4Gm/ 7elW/yQci23lO3gwP8CSv2D4gWqpSJ47zgzZ1yqChOLA4qTC6PfxhKTseznxaNe9 RegUol5kFJBiAgtT80KW60Rc3V6KwDZYiU+mmMZA23DZJUpkSxW8eU6Si1NHq2mD kUTpVGw9HJo5l6dxDSOEWgf7u5r/PCNjNp8oDIulGYAsDED23++jOjC0kjpn52UD /NfFHBhdgrfh7ZgdgQY2EuZ/6j5rIdP7upzVRrAmzj6g+u4HFVWVTCaE+wUOBOBg 5l8rgdE= -----END CERTIFICATE-----Generated at Tue Sep 17 00:06:42 2024 by rpki-client on console-fra.rpki-client.org