$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/4A4A33C0661B11EFA314D413C4F9AE02.roa File: 4A4A33C0661B11EFA314D413C4F9AE02.roa (raw, json) Hash identifier: VNTbmafGr2Ck68du6AOcxR3XdT37BiEBd7yF9e6N088= Subject key identifier: D4:62:1A:A1:7B:89:45:D0:B9:D3:3F:9C:F7:2A:D2:A5:D1:4A:DD:5F Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06B3 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/4A4A33C0661B11EFA314D413C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:42:59 +0000 ROA not before: Thu 24 Oct 2024 23:42:59 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 142132 IP address blocks: 43.252.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1715 (0x6b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:42:59 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb83-b18c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fd:fb:ab:5a:34:89:8d:50:a3:49:2a:d4:17: 3a:11:6f:be:60:b8:86:ab:94:b1:70:d5:f5:97:ea: 7c:03:cd:7a:ac:43:8a:d0:37:fc:40:c5:5c:e9:3c: a4:ef:b1:16:fd:09:65:fc:b2:12:03:b9:01:b0:e9: 5f:74:bf:43:a1:26:f2:68:8f:fd:2d:73:68:52:88: ac:11:f6:d4:dc:bc:9c:5e:46:ce:9a:3e:a2:a0:15: 07:bf:f8:d8:2a:c3:c1:75:c2:d2:5a:e5:85:c5:98: 46:ab:01:31:05:12:46:6c:06:85:4b:39:f4:00:8b: b7:31:97:92:8d:17:7b:a2:17:3c:ea:9d:62:be:1f: f2:44:4e:9a:9f:eb:9b:df:b7:68:0d:04:88:7b:c1: 54:7b:6b:be:b2:be:df:af:6d:74:9c:89:65:77:f2: 21:26:fb:26:af:c2:d0:e4:d7:78:d6:93:27:31:79: 44:0e:f2:88:b0:90:13:e6:0c:09:bd:0d:fe:6e:2b: 24:9e:3c:9c:82:07:20:c1:7d:56:6d:16:dd:6f:ce: 76:94:db:0f:a6:cb:1d:d5:ec:49:43:78:de:e8:70: b7:bd:f7:cb:3f:c4:70:0a:56:67:8c:92:c7:0d:73: b4:2c:b6:19:66:73:e0:62:f9:d7:9a:a9:f0:df:a9: a6:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:62:1A:A1:7B:89:45:D0:B9:D3:3F:9C:F7:2A:D2:A5:D1:4A:DD:5F X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/4A4A33C0661B11EFA314D413C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.211.0/24 Signature Algorithm: sha256WithRSAEncryption 53:e4:a1:6f:03:2b:ac:95:7e:dd:5f:69:dd:5e:de:1e:e7:4a: ec:0c:f2:92:9b:ba:31:e2:74:03:00:2d:b2:91:55:1d:b1:3a: 4d:7a:58:77:01:0a:0c:59:17:63:b8:b9:fb:c4:90:13:93:80: 4f:91:3b:35:f5:20:1f:f3:0b:1d:1a:2d:3b:32:02:57:2c:44: b3:d1:2a:25:34:71:8a:26:79:48:ae:87:84:cf:b0:78:0c:d6: c8:58:e7:a4:67:ec:be:4d:df:1c:84:dc:d6:e2:07:3d:bb:f8: 14:30:a2:8a:df:cd:ec:3f:da:6a:0c:e3:e8:05:6e:10:58:79: a4:12:3a:97:d8:db:3d:3e:80:38:23:67:2b:a5:8e:7d:93:72: 3f:9a:a2:b4:82:53:3c:7f:71:5b:43:98:f7:de:97:24:7e:82: 0b:e0:e0:5a:45:b6:01:72:21:0d:0c:a4:75:63:86:b8:e2:63: f0:35:5a:35:24:b5:82:94:f3:0f:36:ec:0d:76:41:11:98:6b: ae:c5:eb:6c:26:73:f1:de:c6:65:2e:d9:dc:13:81:0a:e9:dc: 08:3a:16:0e:71:b1:2a:90:4e:36:de:97:fd:ab:07:c4:9a:15: 45:a0:d3:95:bc:a8:a5:e4:97:35:74:18:02:57:ce:73:c6:f9: b5:90:5b:ce -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBrMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MjU5WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI4My1iMThjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtf37q1o0iY1Qo0kq1Bc6EW++YLiGq5SxcNX1l+p8A816rEOK0Df8QMVc6Tyk 77EW/Qll/LISA7kBsOlfdL9DoSbyaI/9LXNoUoisEfbU3LycXkbOmj6ioBUHv/jY KsPBdcLSWuWFxZhGqwExBRJGbAaFSzn0AIu3MZeSjRd7ohc86p1ivh/yRE6an+ub 37doDQSIe8FUe2u+sr7fr210nIlld/IhJvsmr8LQ5Nd41pMnMXlEDvKIsJAT5gwJ vQ3+bisknjycggcgwX1WbRbdb852lNsPpssd1exJQ3je6HC3vffLP8RwClZnjJLH DXO0LLYZZnPgYvnXmqnw36mmIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNRiGqF7 iUXQudM/nPcq0qXRSt1fMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvNEE0QTMzQzA2 NjFCMTFFRkEzMTRENDEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr/NMwDQYJKoZIhvcNAQELBQADggEBAFPkoW8DK6yVft1f ad1e3h7nSuwM8pKbujHidAMALbKRVR2xOk16WHcBCgxZF2O4ufvEkBOTgE+ROzX1 IB/zCx0aLTsyAlcsRLPRKiU0cYomeUiuh4TPsHgM1shY56Rn7L5N3xyE3NbiBz27 +BQwoorfzew/2moM4+gFbhBYeaQSOpfY2z0+gDgjZyuljn2Tcj+aorSCUzx/cVtD mPfelyR+ggvg4FpFtgFyIQ0MpHVjhrjiY/A1WjUktYKU8w827A12QRGYa67F62wm c/HexmUu2dwTgQrp3Ag6Fg5xsSqQTjbel/2rB8SaFUWg05W8qKXklzV0GAJXznPG +bWQW84= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org