$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9EB8A27A675C11EE81835581C4F9AE02.roa File: 9EB8A27A675C11EE81835581C4F9AE02.roa (raw, json) Hash identifier: l4b+BquoD9LmGbk70X1v+uqSpcNjvJ7PwCy3IJg2R9w= Subject key identifier: F3:05:DC:B0:9D:42:B4:F1:15:1B:C7:B3:9A:E8:A1:D8:FA:0D:99:0C Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 0530 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9EB8A27A675C11EE81835581C4F9AE02.roa Signing time: Fri 13 Oct 2023 00:53:02 +0000 ROA not before: Fri 13 Oct 2023 00:53:02 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 147002 IP address blocks: 43.229.154.0/24 maxlen: 24 103.20.222.0/24 maxlen: 24 103.48.169.0/24 maxlen: 24 103.225.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1328 (0x530) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 13 00:53:02 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652894ee-21bb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4c:14:b2:d9:c4:ee:cf:66:6d:80:87:3c:51: 3f:1e:5b:7e:cc:98:92:5a:d1:0e:cf:4d:b6:3b:af: 32:8f:a8:df:23:02:b9:53:ba:44:e3:f3:54:a9:ff: d3:c4:e8:c1:46:5f:83:2d:c8:a7:4f:24:7e:70:e5: 36:ee:28:aa:ae:19:7c:19:16:86:3f:88:aa:35:30: d1:05:31:39:3f:57:ae:14:89:a2:f4:02:a6:b2:63: 47:36:d3:cd:68:d5:c1:be:f0:f8:eb:b1:53:08:6b: 20:72:e7:e7:db:61:09:5d:ee:81:f9:15:18:93:4c: 3f:2d:98:3f:28:95:39:b0:74:a5:35:a4:de:09:9d: 28:a1:a0:ee:1c:5c:01:1f:80:8f:19:b7:a3:a0:d2: c5:12:6f:95:ea:d9:6b:9c:22:47:cd:8c:6d:fe:e3: 55:0f:a2:79:9f:19:30:07:89:fe:3e:22:4d:a6:48: f6:ed:af:61:07:69:c8:cf:02:64:6f:27:05:93:29: 90:e2:21:5e:bb:8c:ff:a8:7b:4b:ce:8f:4d:fc:bc: a3:e3:37:44:ad:52:19:af:77:f4:85:ce:71:eb:25: 40:08:07:2b:56:d1:cf:a5:c1:2a:09:03:b8:2f:f5: 4f:f4:da:3c:a3:50:35:f4:58:b7:5a:97:05:a1:dc: d2:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:05:DC:B0:9D:42:B4:F1:15:1B:C7:B3:9A:E8:A1:D8:FA:0D:99:0C X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/9EB8A27A675C11EE81835581C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.154.0/24 103.20.222.0/24 103.48.169.0/24 103.225.199.0/24 Signature Algorithm: sha256WithRSAEncryption b4:b1:a1:02:eb:6c:1b:55:de:bc:d6:52:f5:cc:84:78:07:98: 7a:0f:6c:84:e0:15:7d:ed:41:82:e6:fa:55:90:97:a5:89:0e: 40:23:ac:0e:98:5f:0c:cb:7b:56:8d:3f:d8:b7:de:47:cb:a0: 4b:fc:df:8b:10:ed:10:10:e5:d8:67:45:c0:4b:e3:04:a2:b3: bd:cc:59:e0:83:3d:3c:70:4d:8d:fb:09:1b:15:9c:97:cd:7f: bc:52:16:87:f1:c4:ab:88:df:2d:db:83:ef:e6:52:78:3b:41: d5:13:4e:1e:73:0c:95:55:e7:8a:e2:e2:31:dc:a7:58:c9:f7: f1:80:d0:58:f5:26:38:13:fb:fd:6d:2f:fa:0f:54:81:16:bd: c6:6f:89:25:e8:51:1b:b7:0e:2d:8e:24:1c:1c:21:0f:9f:c9: 59:60:6b:b2:49:23:22:29:e9:18:ab:d4:4b:43:0f:1b:f4:44: 9e:0b:a3:17:09:71:03:4a:d9:7a:56:da:62:66:36:8f:b3:3f: f9:01:4a:5f:ad:9a:50:85:70:ed:21:42:28:82:aa:2f:00:39: 8c:45:b8:7d:dc:bc:8b:30:46:06:fb:fe:ff:14:5d:26:81:1d: 53:da:6c:75:d8:8a:28:ed:d1:65:9f:24:ef:95:47:28:bc:69: 98:1c:12:7d -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBTAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjMxMDEzMDA1MzAyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI4OTRlZS0yMWJiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8kwUstnE7s9mbYCHPFE/Hlt+zJiSWtEOz022O68yj6jfIwK5U7pE4/NUqf/T xOjBRl+DLcinTyR+cOU27iiqrhl8GRaGP4iqNTDRBTE5P1euFImi9AKmsmNHNtPN aNXBvvD467FTCGsgcufn22EJXe6B+RUYk0w/LZg/KJU5sHSlNaTeCZ0ooaDuHFwB H4CPGbejoNLFEm+V6tlrnCJHzYxt/uNVD6J5nxkwB4n+PiJNpkj27a9hB2nIzwJk bycFkymQ4iFeu4z/qHtLzo9N/Lyj4zdErVIZr3f0hc5x6yVACAcrVtHPpcEqCQO4 L/VP9No8o1A19Fi3WpcFodzSswIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFPMF3LCd QrTxFRvHs5roodj6DZkMMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvOUVCOEEyN0E2 NzVDMTFFRTgxODM1NTgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAAr5ZoDBABnFN4DBABnMKkDBABn4ccwDQYJKoZIhvcNAQEL BQADggEBALSxoQLrbBtV3rzWUvXMhHgHmHoPbITgFX3tQYLm+lWQl6WJDkAjrA6Y XwzLe1aNP9i33kfLoEv834sQ7RAQ5dhnRcBL4wSis73MWeCDPTxwTY37CRsVnJfN f7xSFofxxKuI3y3bg+/mUng7QdUTTh5zDJVV54ri4jHcp1jJ9/GA0Fj1JjgT+/1t L/oPVIEWvcZviSXoURu3Di2OJBwcIQ+fyVlga7JJIyIp6Rir1EtDDxv0RJ4LoxcJ cQNK2XpW2mJmNo+zP/kBSl+tmlCFcO0hQiiCqi8AOYxFuH3cvIswRgb7/v8UXSaB HVPabHXYiijt0WWfJO+VRyi8aZgcEn0= -----END CERTIFICATE-----Generated at Fri May 17 02:38:37 2024 by rpki-client on console-fra.rpki-client.org