$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/BB4096CC69CD11EF8F64CD84C4F9AE02.roa File: BB4096CC69CD11EF8F64CD84C4F9AE02.roa (raw, json) Hash identifier: 09ZVyjF5gVpVLFgZCVLQ4ORM4PSIe53Dw6S2OFQnY2s= Subject key identifier: A6:FA:98:1C:05:21:17:0B:50:F4:55:CF:E9:9F:44:6A:D9:59:08:19 Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06B8 Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/BB4096CC69CD11EF8F64CD84C4F9AE02.roa Signing time: Thu 24 Oct 2024 23:43:06 +0000 ROA not before: Thu 24 Oct 2024 23:43:06 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 21859 IP address blocks: 36.255.193.0/24 maxlen: 24 43.229.152.0/24 maxlen: 24 150.107.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1720 (0x6b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:43:06 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb8a-a3fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5a:c1:cd:b8:9f:8f:d5:e9:60:e2:3a:6e:ae: 44:37:ac:b5:53:f2:aa:0b:83:f3:74:c3:d2:ac:5f: 92:f2:43:9a:f0:cc:24:e9:21:42:b1:bb:4c:ca:90: 90:70:9d:69:5c:0d:ac:8d:e7:85:b0:ef:e9:98:8a: 79:d0:98:48:aa:7a:9c:b4:b4:73:45:16:a4:66:10: 64:6f:59:d8:50:56:90:80:a0:a9:9c:60:9a:ca:98: 94:e1:30:26:42:40:50:6b:d7:54:f6:4f:f3:59:cc: 6c:a7:de:09:0a:d2:ee:34:8e:4b:51:38:b9:42:b5: 34:3e:00:43:bc:8e:fd:4f:7e:25:68:95:6d:cc:5d: ba:ee:98:43:0f:00:10:8e:dc:2f:4c:94:08:37:ef: 16:eb:43:4e:58:f6:86:ba:63:d0:b7:b0:37:08:99: a5:23:9e:70:b7:0b:fc:74:b6:00:d6:55:56:1c:0e: 60:13:2e:b2:b5:51:07:1b:c3:3a:64:dc:87:cf:3f: fa:30:9e:49:38:e0:7e:6c:93:08:82:ac:54:e5:92: 31:67:48:40:a7:8b:80:0b:89:85:9e:de:f8:2c:8a: b5:79:15:ee:4e:65:e3:ba:e3:33:a0:36:74:d2:7d: 1c:58:a9:b2:84:6d:15:12:ec:9c:95:11:a0:e4:c6: 50:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:FA:98:1C:05:21:17:0B:50:F4:55:CF:E9:9F:44:6A:D9:59:08:19 X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/BB4096CC69CD11EF8F64CD84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.193.0/24 43.229.152.0/24 150.107.0.0/24 Signature Algorithm: sha256WithRSAEncryption 28:f0:8f:47:c1:6a:6b:b5:db:56:c2:4a:51:a9:ba:cc:3a:cb: eb:79:e1:76:db:5a:11:12:9f:78:61:40:0e:03:e4:c0:f9:7d: e9:26:71:6c:a0:15:63:9b:52:8c:11:58:91:59:e7:8c:dd:09: 56:94:d0:c5:3c:80:77:51:e3:94:95:70:e3:3a:e5:02:28:bd: 89:f9:40:87:b2:c5:d8:c4:b4:6f:df:1b:14:05:4b:5c:fc:b5: 75:39:91:4a:51:7a:09:58:ac:03:e6:32:b6:93:9a:3e:41:15: 84:9f:71:bc:60:be:e5:41:e2:71:e9:90:7a:0b:bb:65:dd:76: 90:a8:c6:96:66:22:71:d8:44:bc:a4:1b:29:36:43:a0:91:81: ec:f6:91:0a:57:55:20:66:e9:71:cb:19:c6:36:ee:c5:a6:d4: cd:14:7a:c6:53:69:41:52:b3:85:04:c9:68:83:a3:bf:d7:dd: d0:1e:55:3e:19:99:a8:80:3a:06:41:c3:ad:6d:68:b3:5a:cd: 42:59:30:33:5d:8d:d1:55:36:8d:88:c5:0a:16:c8:fa:2a:4a: 15:ba:ca:ba:ff:cd:d7:94:9c:74:bb:b3:2d:d4:36:dc:06:73: 9f:8e:0c:e8:6f:57:81:85:3d:a7:f3:41:fd:76:a7:40:4c:81: f7:c4:97:57 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICBrgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MzA2WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI4YS1hM2ZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5lrBzbifj9XpYOI6bq5EN6y1U/KqC4PzdMPSrF+S8kOa8Mwk6SFCsbtMypCQ cJ1pXA2sjeeFsO/pmIp50JhIqnqctLRzRRakZhBkb1nYUFaQgKCpnGCaypiU4TAm QkBQa9dU9k/zWcxsp94JCtLuNI5LUTi5QrU0PgBDvI79T34laJVtzF267phDDwAQ jtwvTJQIN+8W60NOWPaGumPQt7A3CJmlI55wtwv8dLYA1lVWHA5gEy6ytVEHG8M6 ZNyHzz/6MJ5JOOB+bJMIgqxU5ZIxZ0hAp4uAC4mFnt74LIq1eRXuTmXjuuMzoDZ0 0n0cWKmyhG0VEuyclRGg5MZQEQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFKb6mBwF IRcLUPRVz+mfRGrZWQgZMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvQkI0MDk2Q0M2 OUNEMTFFRjhGNjRDRDg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAk/8EDBAAr5ZgDBACWawAwDQYJKoZIhvcNAQELBQADggEB ACjwj0fBamu121bCSlGpusw6y+t54XbbWhESn3hhQA4D5MD5fekmcWygFWObUowR WJFZ54zdCVaU0MU8gHdR45SVcOM65QIovYn5QIeyxdjEtG/fGxQFS1z8tXU5kUpR eglYrAPmMraTmj5BFYSfcbxgvuVB4nHpkHoLu2XddpCoxpZmInHYRLykGyk2Q6CR gez2kQpXVSBm6XHLGcY27sWm1M0UesZTaUFSs4UEyWiDo7/X3dAeVT4ZmaiAOgZB w61taLNazUJZMDNdjdFVNo2IxQoWyPoqShW6yrr/zdeUnHS7sy3UNtwGc5+ODOhv V4GFPafzQf12p0BMgffEl1c= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org