$ rpki-client -vvf rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/E1238468F00511EE8BFD5F6FC4F9AE02.roa File: E1238468F00511EE8BFD5F6FC4F9AE02.roa (raw, json) Hash identifier: 90nuiDC9kBPMJ1SVbIzuJ+ne8LTpNuT65qbbaSYEEBM= Subject key identifier: B8:51:4B:A5:9C:7E:5B:2E:42:94:6A:A1:08:95:27:07:F7:B3:61:BC Certificate issuer: /CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Certificate serial: 05BC Authority key identifier: 87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/E1238468F00511EE8BFD5F6FC4F9AE02.roa Signing time: Tue 02 Apr 2024 03:15:11 +0000 ROA not before: Tue 02 Apr 2024 03:15:11 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 136173 IP address blocks: 36.255.192.0/24 maxlen: 24 43.229.155.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1468 (0x5bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911B412/serialNumber=873D595AF5569C20239F53DD80EB1177D80B0934 Validity Not Before: Apr 2 03:15:11 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=660b783f-6366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:68:4b:21:6f:63:7c:e0:91:ea:32:5a:84:be: 97:e2:71:8f:c7:6b:7c:2a:bc:7b:d8:28:f9:65:c9: b4:49:09:a5:55:ef:ed:fd:1e:f5:bc:06:60:c9:5e: b8:76:0f:ac:af:04:14:d2:76:31:f2:93:d2:6c:2e: 5e:d2:f4:88:c8:3c:ec:4e:28:7f:6c:27:b2:f3:eb: 38:f3:b9:fa:f3:6b:9f:a9:84:1c:bd:a1:4f:77:28: 35:57:aa:9f:ee:cb:c2:80:52:10:b7:1b:15:b7:0a: 56:26:99:ec:16:f4:0f:48:09:8d:61:70:7d:93:fd: 51:5a:50:b7:79:8d:eb:77:de:e2:3a:23:68:f2:64: 7b:17:0d:d2:b1:ce:cb:64:33:d8:89:78:f1:07:e3: ed:d9:e2:16:66:b5:8c:21:d6:48:21:a7:69:07:58: dd:86:c4:d2:8b:c9:6f:bb:51:bd:0a:b5:d6:26:cf: 62:28:a0:54:55:7e:55:c7:a5:81:85:0c:ab:d8:cb: dc:2d:3f:d6:2f:04:e1:02:da:52:04:80:9e:49:f6: 31:9f:19:78:dc:fc:06:0f:09:fd:84:3d:ab:8a:4b: fb:f0:fc:a3:63:b3:3e:a4:69:42:ab:b4:76:17:be: e3:58:dd:f2:65:58:f6:ca:b8:9e:b5:69:40:e0:cb: dd:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:51:4B:A5:9C:7E:5B:2E:42:94:6A:A1:08:95:27:07:F7:B3:61:BC X509v3 Authority Key Identifier: keyid:87:3D:59:5A:F5:56:9C:20:23:9F:53:DD:80:EB:11:77:D8:0B:09:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hz1ZWvVWnCAjn1PdgOsRd9gLCTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911B412/C1EA033CD2EA11EBA206B178C4F9AE02/E1238468F00511EE8BFD5F6FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 36.255.192.0/24 43.229.155.0/24 Signature Algorithm: sha256WithRSAEncryption 3d:92:9f:32:34:da:a3:18:56:77:23:6a:42:e4:85:5f:18:e0: 3d:ff:16:48:40:9c:88:ed:38:ba:1e:e9:d4:87:46:2c:b3:a1: 89:48:41:49:80:f1:04:f1:6e:5e:c1:d9:e4:45:3a:2a:c1:7c: 26:7b:f4:1a:3e:a2:ca:a1:d3:37:3f:be:ef:78:0d:3f:00:86: 22:61:9b:87:f1:97:a4:31:07:e4:db:02:16:f3:8c:1f:ea:15: 61:02:bc:25:5a:18:ea:ab:2b:95:48:52:25:68:67:e7:5c:9f: 8c:e1:eb:8c:6a:27:d7:ad:0e:21:89:ad:ad:8f:d4:ec:29:f7: 4a:20:f5:ee:a1:b1:5c:67:00:35:8b:b1:62:f7:13:3d:0f:7f: 1f:02:8f:bd:f5:bf:1e:6e:c0:4d:d4:d8:07:cc:a5:96:be:95: ae:8f:b9:6b:fd:da:0c:f0:f9:e5:60:43:79:e9:df:5e:03:cb: 3f:4b:4c:2d:f9:e9:87:b8:4a:43:e2:4b:0f:c0:ec:2f:98:8d: 1e:e5:ab:f0:78:6e:f5:25:a5:91:e6:69:69:43:40:7e:0b:42: b0:35:62:65:4d:8b:3b:81:46:08:7b:d8:77:ed:c6:ee:ef:95: d6:03:a9:77:e3:8a:2e:1d:63:27:0d:29:2a:25:56:76:2d:1e: aa:a4:4e:ea -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBbwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUI0MTIxMTAvBgNVBAUTKDg3M0Q1OTVBRjU1NjlDMjAyMzlGNTNERDgwRUIxMTc3 RDgwQjA5MzQwHhcNMjQwNDAyMDMxNTExWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBiNzgzZi02MzY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqmhLIW9jfOCR6jJahL6X4nGPx2t8Krx72Cj5Zcm0SQmlVe/t/R71vAZgyV64 dg+srwQU0nYx8pPSbC5e0vSIyDzsTih/bCey8+s487n682ufqYQcvaFPdyg1V6qf 7svCgFIQtxsVtwpWJpnsFvQPSAmNYXB9k/1RWlC3eY3rd97iOiNo8mR7Fw3Ssc7L ZDPYiXjxB+Pt2eIWZrWMIdZIIadpB1jdhsTSi8lvu1G9CrXWJs9iKKBUVX5Vx6WB hQyr2MvcLT/WLwThAtpSBICeSfYxnxl43PwGDwn9hD2rikv78PyjY7M+pGlCq7R2 F77jWN3yZVj2yrietWlA4MvdPQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLhRS6Wc flsuQpRqoQiVJwf3s2G8MB8GA1UdIwQYMBaAFIc9WVr1VpwgI59T3YDrEXfYCwk0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQjQxMi9DMUVBMDMzQ0Qy RUExMUVCQTIwNkIxNzhDNEY5QUUwMi9oejFaV3ZWV25DQWpuMVBkZ09zUmQ5Z0xD VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h6MVpXdlZXbkNBam4xUGRnT3NSZDlnTENUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUI0MTIvQzFFQTAzM0NEMkVBMTFFQkEyMDZCMTc4QzRGOUFFMDIvRTEyMzg0NjhG MDA1MTFFRThCRkQ1RjZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAk/8ADBAAr5ZswDQYJKoZIhvcNAQELBQADggEBAD2SnzI0 2qMYVncjakLkhV8Y4D3/FkhAnIjtOLoe6dSHRiyzoYlIQUmA8QTxbl7B2eRFOirB fCZ79Bo+osqh0zc/vu94DT8AhiJhm4fxl6QxB+TbAhbzjB/qFWECvCVaGOqrK5VI UiVoZ+dcn4zh64xqJ9etDiGJra2P1Owp90og9e6hsVxnADWLsWL3Ez0Pfx8Cj731 vx5uwE3U2AfMpZa+la6PuWv92gzw+eVgQ3np314Dyz9LTC356Ye4SkPiSw/A7C+Y jR7lq/B4bvUlpZHmaWlDQH4LQrA1YmVNizuBRgh72Hftxu7vldYDqXfjii4dYycN KSolVnYtHqqkTuo= -----END CERTIFICATE-----Generated at Fri May 17 02:01:40 2024 by rpki-client on console-ams.rpki-client.org