$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7E08719E390311EF9DD1A882C4F9AE02.roa File: 7E08719E390311EF9DD1A882C4F9AE02.roa (raw, json) Hash identifier: S4VX1CO0OF3+Ep6xnyvx/Uv1NHR9lS+F0nBxbNUE0l8= Subject key identifier: FF:C7:CF:28:6D:EF:70:C4:4A:45:C6:AD:DC:C7:72:76:52:5A:7C:61 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06A9 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7E08719E390311EF9DD1A882C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:42:51 +0000 ROA not before: Thu 24 Oct 2024 23:42:51 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 131646 IP address blocks: 43.229.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1705 (0x6a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:42:51 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb7a-7dbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:95:2e:27:3d:96:32:aa:1f:7e:50:b6:9f:90: b1:e2:85:2f:e4:58:5a:a0:5f:69:d8:c9:3d:8c:54: c4:a8:9c:39:1a:52:08:ec:0d:cc:19:26:98:66:ea: 3a:b1:78:7d:82:51:e0:8f:56:f0:de:61:49:7f:f2: 0d:89:2c:6a:6a:94:b3:eb:98:10:c5:10:69:d5:fd: ae:ad:ac:17:d4:43:33:33:b6:d5:83:ce:a1:77:08: 23:d3:5d:9c:4a:f2:85:42:5f:43:46:4f:b6:32:4c: f5:9d:b2:da:fb:1f:dd:54:6d:60:43:94:55:f9:e9: 63:7f:8b:cd:9b:68:da:2b:be:f0:bb:99:07:ea:4c: a9:7e:8f:8a:69:2b:4a:0e:b4:5a:7c:ba:2d:44:2b: 45:4f:54:65:bc:de:ac:46:61:66:72:30:ab:7e:aa: 45:6c:d3:03:de:33:c0:1d:8b:7c:c6:85:30:00:40: 74:eb:3f:5c:2f:51:25:15:e8:4c:07:2d:b0:32:80: bd:8c:20:ca:85:ea:1f:df:d2:fb:36:e3:bc:50:c7: 4f:b3:fc:cf:70:05:48:b3:cb:f9:ef:db:a3:7f:ab: af:56:ff:e5:22:9b:6f:9b:fc:9e:e0:57:f6:c1:21: 16:71:c1:e2:5d:4d:73:8b:ed:7c:7a:03:86:58:17: 3a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:C7:CF:28:6D:EF:70:C4:4A:45:C6:AD:DC:C7:72:76:52:5A:7C:61 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/7E08719E390311EF9DD1A882C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.155.0/24 Signature Algorithm: sha256WithRSAEncryption 63:55:98:23:fb:96:79:e3:25:4c:7a:65:c3:4e:5b:7d:0a:65: 70:a1:8a:61:c9:de:df:6f:dd:54:48:46:76:4a:e7:d1:f0:93: dd:69:35:69:0a:fb:da:7d:33:80:6e:3c:8a:ab:84:28:48:c1: a5:14:7c:1d:e0:fc:73:f5:1f:d0:9e:7e:87:b2:5d:b1:80:86: bd:70:ef:01:4d:da:c8:6a:1e:a6:ac:6d:38:b8:74:d7:c6:a3: cc:8a:52:c2:f5:4e:bf:9d:42:80:ef:23:6d:0a:c4:75:72:88: 61:bc:8c:ef:6f:5e:f6:71:8f:0f:80:14:06:27:96:a1:25:8f: 76:57:69:3a:35:63:48:fe:4f:93:62:61:54:22:25:d0:35:4e: 25:45:07:2c:29:ea:7d:58:b9:39:22:78:77:2d:5b:b9:84:52: 7a:89:69:f9:d9:e8:79:44:48:c7:fa:a6:52:10:74:a7:eb:8e: 3c:ae:fc:f5:7d:23:1e:82:91:40:28:7e:52:d6:e5:b0:07:83: bb:c1:18:19:65:f0:97:c7:e0:0f:be:ec:08:4c:4f:80:aa:c9: 75:52:ea:4a:fa:a6:a3:72:fb:11:ef:be:66:fd:5f:bd:8f:af: 6e:55:31:63:d7:26:bd:9a:6f:7b:bd:4c:e4:68:7f:c8:c5:d0: 20:ba:a3:d0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBqkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MjUxWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI3YS03ZGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmZUuJz2WMqofflC2n5Cx4oUv5FhaoF9p2Mk9jFTEqJw5GlII7A3MGSaYZuo6 sXh9glHgj1bw3mFJf/INiSxqapSz65gQxRBp1f2urawX1EMzM7bVg86hdwgj012c SvKFQl9DRk+2Mkz1nbLa+x/dVG1gQ5RV+eljf4vNm2jaK77wu5kH6kypfo+KaStK DrRafLotRCtFT1RlvN6sRmFmcjCrfqpFbNMD3jPAHYt8xoUwAEB06z9cL1ElFehM By2wMoC9jCDKheof39L7NuO8UMdPs/zPcAVIs8v579ujf6uvVv/lIptvm/ye4Ff2 wSEWccHiXU1zi+18egOGWBc6hQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP/Hzyht 73DESkXGrdzHcnZSWnxhMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvN0UwODcxOUUz OTAzMTFFRjlERDFBODgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5ZswDQYJKoZIhvcNAQELBQADggEBAGNVmCP7lnnjJUx6 ZcNOW30KZXChimHJ3t9v3VRIRnZK59Hwk91pNWkK+9p9M4BuPIqrhChIwaUUfB3g /HP1H9CefoeyXbGAhr1w7wFN2shqHqasbTi4dNfGo8yKUsL1Tr+dQoDvI20KxHVy iGG8jO9vXvZxjw+AFAYnlqElj3ZXaTo1Y0j+T5NiYVQiJdA1TiVFBywp6n1YuTki eHctW7mEUnqJafnZ6HlESMf6plIQdKfrjjyu/PV9Ix6CkUAoflLW5bAHg7vBGBll 8JfH4A++7AhMT4CqyXVS6kr6pqNy+xHvvmb9X72Pr25VMWPXJr2ab3u9TORof8jF 0CC6o9A= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org