$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/E1238468F00511EE8BFD5F6FC4F9AE02.roa File: E1238468F00511EE8BFD5F6FC4F9AE02.roa (raw, json) Hash identifier: NrLjMRjkzXMsXdPRIKu91AJs8S50YyJ5xust/sYGenU= Subject key identifier: 38:AF:AA:B2:C3:58:E2:26:EE:7B:C7:A8:26:7C:A2:5B:47:0D:9E:9F Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 06AD Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/E1238468F00511EE8BFD5F6FC4F9AE02.roa Signing time: Thu 24 Oct 2024 23:42:54 +0000 ROA not before: Thu 24 Oct 2024 23:42:54 +0000 ROA not after: Tue 30 Dec 2025 00:00:00 +0000 asID: 136173 IP address blocks: 36.255.192.0/24 maxlen: 24 43.229.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1709 (0x6ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Oct 24 23:42:54 2024 GMT Not After : Dec 30 00:00:00 2025 GMT Subject: CN=671adb7e-962c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:33:73:16:91:47:f7:c3:14:95:9a:37:9a:6a: cb:78:40:31:08:4c:fa:ee:53:91:81:96:35:b4:57: c5:1a:17:17:96:60:fc:d2:55:fa:dc:ee:c8:be:7c: b7:81:f7:5d:95:e4:0d:43:e8:f6:43:c5:b9:2d:ac: e1:0f:77:d7:8f:6e:76:fc:08:b7:10:45:85:96:d2: 0f:e5:ca:17:de:48:bc:59:7c:45:56:2d:c9:ab:95: 65:03:62:8e:35:ea:cf:44:87:15:84:de:27:0b:1d: c5:01:66:de:4e:3f:d4:9c:68:14:2b:e8:35:ea:44: 64:12:13:e1:fe:5c:e7:c4:13:32:14:79:91:01:db: 9b:f6:33:7c:16:66:d8:ff:97:4b:a2:cf:b9:c8:2d: e0:09:9e:ab:d6:68:87:be:63:c4:74:a4:fe:36:18: 12:07:4e:01:35:46:79:7e:5b:cf:4b:43:2a:93:86: 8f:0d:9f:f6:7f:0b:73:0a:44:fd:e3:30:fd:20:18: ab:a7:7e:e3:12:70:72:1e:b8:ed:09:78:a1:c3:2c: f7:d7:a4:12:e1:a0:39:c9:da:6b:2d:86:d4:c6:05: 1b:50:4f:59:40:13:8a:11:a6:04:8e:10:fc:5f:ab: 13:a6:c4:25:13:5f:df:66:7e:7c:5d:ee:6b:c1:01: 97:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:AF:AA:B2:C3:58:E2:26:EE:7B:C7:A8:26:7C:A2:5B:47:0D:9E:9F X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/E1238468F00511EE8BFD5F6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.192.0/24 43.229.155.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:3c:9e:c2:c7:50:24:15:8e:68:25:06:60:c8:e1:d1:5d:4b: f0:16:ed:9d:15:a9:ae:8d:1c:ef:dd:9d:15:40:f3:d1:bd:f2: f8:54:df:5f:49:b0:56:d3:3a:cc:59:10:d7:6c:f9:19:62:7e: 8e:7f:a1:20:d6:46:e4:b6:13:c9:66:22:f7:c2:f3:54:d0:c0: fe:33:8c:ad:54:42:71:ae:be:0b:2b:14:1d:3a:50:d2:c3:64: 23:f9:70:cb:c3:46:86:86:09:39:be:d1:a5:2f:d2:cc:e0:43: db:70:91:99:d8:c4:88:b4:2c:da:47:b3:67:c0:36:a2:15:76: 62:b0:f2:2a:a7:3a:e5:fd:ee:80:d1:3b:90:22:22:48:6d:ac: 48:82:22:e9:10:c3:d6:26:a0:69:e3:4d:d4:a6:51:a3:8c:56: a4:77:37:45:9a:db:00:df:dc:c1:01:b3:3e:75:0d:0a:a9:29: ef:e3:1d:1c:a8:8b:b6:63:da:00:36:5c:81:16:16:00:6c:10: cf:47:18:e5:bc:ca:e8:4a:f0:15:79:40:21:4f:65:23:ae:9e: 80:a0:74:60:eb:06:1f:74:88:6f:6c:81:03:9f:5d:ba:3b:62: 80:82:6b:77:5e:65:e1:56:b3:7d:f8:10:36:86:8d:f3:dc:23: 99:59:32:18 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBq0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQxMDI0MjM0MjU0WhcNMjUxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NzFhZGI3ZS05NjJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0DNzFpFH98MUlZo3mmrLeEAxCEz67lORgZY1tFfFGhcXlmD80lX63O7Ivny3 gfddleQNQ+j2Q8W5LazhD3fXj252/Ai3EEWFltIP5coX3ki8WXxFVi3Jq5VlA2KO NerPRIcVhN4nCx3FAWbeTj/UnGgUK+g16kRkEhPh/lznxBMyFHmRAdub9jN8FmbY /5dLos+5yC3gCZ6r1miHvmPEdKT+NhgSB04BNUZ5flvPS0Mqk4aPDZ/2fwtzCkT9 4zD9IBirp37jEnByHrjtCXihwyz316QS4aA5ydprLYbUxgUbUE9ZQBOKEaYEjhD8 X6sTpsQlE1/fZn58Xe5rwQGX7QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDivqrLD WOIm7nvHqCZ8oltHDZ6fMB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvRTEyMzg0NjhG MDA1MTFFRThCRkQ1RjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAk/8ADBAAr5ZswDQYJKoZIhvcNAQELBQADggEBAF88nsLH UCQVjmglBmDI4dFdS/AW7Z0Vqa6NHO/dnRVA89G98vhU319JsFbTOsxZENds+Rli fo5/oSDWRuS2E8lmIvfC81TQwP4zjK1UQnGuvgsrFB06UNLDZCP5cMvDRoaGCTm+ 0aUv0szgQ9twkZnYxIi0LNpHs2fANqIVdmKw8iqnOuX97oDRO5AiIkhtrEiCIukQ w9YmoGnjTdSmUaOMVqR3N0Wa2wDf3MEBsz51DQqpKe/jHRyoi7Zj2gA2XIEWFgBs EM9HGOW8yuhK8BV5QCFPZSOunoCgdGDrBh90iG9sgQOfXbo7YoCCa3deZeFWs334 EDaGjfPcI5lZMhg= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:36 2024 by rpki-client on console-ams.rpki-client.org