$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/83EC44C8134C11EF81B18276C4F9AE02.roa File: 83EC44C8134C11EF81B18276C4F9AE02.roa (raw, json) Hash identifier: 4PiyophquWuYIG0+K5ceNOm7ogfnJHTsjtfCsP+bCrw= Subject key identifier: 5C:E7:60:2F:A3:DB:FD:45:94:56:9B:88:04:7F:FE:B9:F8:FB:EF:96 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06AB Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/83EC44C8134C11EF81B18276C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:42:52 +0000 ROA not before: Thu 24 Oct 2024 23:42:52 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 132825 IP address blocks: 43.252.208.0/24 maxlen: 24 103.228.65.0/24 maxlen: 24 103.234.52.0/24 maxlen: 24 103.234.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1707 (0x6ab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:42:52 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb7c-88a9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:64:65:b0:7d:cb:c7:d2:33:55:2e:83:95:9c: 4e:00:dd:04:5b:99:6d:b6:60:04:38:52:58:0e:5b: 31:db:1c:54:f9:98:2f:e4:ac:08:6b:60:92:3e:5c: f2:52:ba:a8:cc:f0:d5:7e:04:40:20:6d:2a:61:bf: 23:cb:a2:18:ef:89:fc:ec:6a:e7:12:65:d1:60:0e: b5:33:99:7a:6e:24:e4:13:92:d6:44:20:a6:11:ed: e9:8e:10:69:17:25:83:8e:bd:84:0e:2e:af:46:ab: 9e:33:ec:d0:e3:d6:0d:65:58:da:d5:2c:f0:c8:fa: 1e:93:64:44:5a:9e:6a:db:ab:2d:ff:50:c9:a8:11: c6:8f:2d:cc:3c:9c:69:3a:28:7a:bc:bd:a3:cd:a4: f2:a3:14:d6:c8:4f:bc:e2:78:4f:fe:7b:a8:35:e6: af:1f:fa:53:53:5e:df:b3:6d:ac:a0:89:ec:ee:8c: ac:6e:d8:31:ca:94:43:39:40:30:4e:f9:35:1b:6d: b0:3a:2c:c1:df:0c:d5:74:a9:6e:bf:0a:28:61:63: ca:e4:ad:28:e0:7f:37:3b:37:a5:38:68:bd:bf:39: 13:12:65:2b:72:83:82:8c:3b:38:5e:7f:b4:31:d3: 8d:15:c3:48:de:27:81:0d:b5:4e:b8:a8:32:b3:c4: 04:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:E7:60:2F:A3:DB:FD:45:94:56:9B:88:04:7F:FE:B9:F8:FB:EF:96 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/83EC44C8134C11EF81B18276C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.208.0/24 103.228.65.0/24 103.234.52.0/24 103.234.55.0/24 Signature Algorithm: sha256WithRSAEncryption 27:76:97:3d:ab:2e:6e:aa:6f:39:0d:40:b8:ba:04:6a:bd:93: ae:9f:40:9d:69:ed:0f:e9:8d:d3:b9:d6:b2:f3:7d:65:4c:2e: 72:59:ec:d6:a9:70:54:e0:44:72:9e:70:fd:c5:7d:c4:78:4d: 96:12:09:c4:5c:d8:f6:83:cb:be:5a:45:51:0c:df:76:dd:63: 63:fc:fe:97:ff:2e:e0:31:c8:e2:b7:16:1d:e7:d5:1a:60:ec: dc:5b:79:55:12:5c:24:7c:56:6c:dd:a8:51:e9:c7:a8:d2:20: 0d:d0:90:08:b7:85:60:e5:69:e7:a6:0c:27:92:f4:0f:e6:fc: 93:89:fb:bd:d4:f8:ea:ce:78:6e:86:ae:bd:13:99:46:f9:8f: f9:e6:25:5c:70:a7:1e:e9:3c:fe:7b:51:c5:27:9a:2c:2a:b0: 02:25:d4:15:ba:22:ad:06:e8:b2:bf:fd:cd:42:6f:81:a9:ab: 93:e1:11:1b:5e:89:4a:23:3f:ad:3a:b4:75:f3:f1:2e:e7:73: 05:5d:cd:1d:a8:58:01:c9:83:3e:aa:6c:fd:f6:b2:6c:5a:06: 3e:d5:c9:d4:b4:91:b9:7a:7b:23:f1:ef:bc:2d:ca:cd:fe:97: 77:65:b5:90:b0:29:7b:41:55:b2:56:32:8c:37:d4:be:be:be: cc:47:0e:bd -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBqswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MjUyWhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI3Yy04OGE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtmRlsH3Lx9IzVS6DlZxOAN0EW5lttmAEOFJYDlsx2xxU+Zgv5KwIa2CSPlzy UrqozPDVfgRAIG0qYb8jy6IY74n87GrnEmXRYA61M5l6biTkE5LWRCCmEe3pjhBp FyWDjr2EDi6vRqueM+zQ49YNZVja1SzwyPoek2REWp5q26st/1DJqBHGjy3MPJxp Oih6vL2jzaTyoxTWyE+84nhP/nuoNeavH/pTU17fs22soIns7oysbtgxypRDOUAw Tvk1G22wOizB3wzVdKluvwooYWPK5K0o4H83OzelOGi9vzkTEmUrcoOCjDs4Xn+0 MdONFcNI3ieBDbVOuKgys8QElwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFFznYC+j 2/1FlFabiAR//rn4+++WMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvODNFQzQ0Qzgx MzRDMTFFRjgxQjE4Mjc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAr/NADBABn5EEDBABn6jQDBABn6jcwDQYJKoZIhvcNAQEL BQADggEBACd2lz2rLm6qbzkNQLi6BGq9k66fQJ1p7Q/pjdO51rLzfWVMLnJZ7Nap cFTgRHKecP3FfcR4TZYSCcRc2PaDy75aRVEM33bdY2P8/pf/LuAxyOK3Fh3n1Rpg 7NxbeVUSXCR8VmzdqFHpx6jSIA3QkAi3hWDlaeemDCeS9A/m/JOJ+73U+OrOeG6G rr0TmUb5j/nmJVxwpx7pPP57UcUnmiwqsAIl1BW6Iq0G6LK//c1Cb4Gpq5PhERte iUojP606tHXz8S7ncwVdzR2oWAHJgz6qbP32smxaBj7VydS0kbl6eyPx77wtys3+ l3dltZCwKXtBVbJWMow31L6+vsxHDr0= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org