$ rpki-client -vvf rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AAF07158AFEB11EEBCAD8169C4F9AE02.roa File: AAF07158AFEB11EEBCAD8169C4F9AE02.roa (raw, json) Hash identifier: ZtiK8rwojk9vk+8x3OZJpJzAAm04W0wNqieKrAANUXI= Subject key identifier: 12:00:81:30:88:98:FE:F6:33:78:D6:75:34:CE:C1:B0:7E:79:97:D4 Certificate issuer: /CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Certificate serial: 26D5 Authority key identifier: 99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AAF07158AFEB11EEBCAD8169C4F9AE02.roa Signing time: Thu 22 Feb 2024 12:53:49 +0000 ROA not before: Thu 22 Feb 2024 12:53:49 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 142594 IP address blocks: 45.249.89.0/24 maxlen: 24 103.217.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9941 (0x26d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C28D/serialNumber=99DFB6BF7950E6B40195A59024F4B750863D3D93 Validity Not Before: Feb 22 12:53:49 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=65d743dd-f865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:bf:a5:44:14:c5:e4:07:cf:65:a8:e5:ee:0b: 9c:b8:49:23:00:fe:06:9f:76:4e:21:5f:3b:09:23: 92:17:bd:86:66:f4:dd:d6:90:eb:47:92:80:3c:82: 28:f7:21:23:70:32:b8:6f:d6:47:87:23:a6:26:40: 5f:07:37:fc:4b:2a:8e:d2:2e:e6:d3:67:c3:46:1e: cd:dc:8e:2a:5a:51:ab:66:c5:8c:fd:f7:7e:dd:c3: 08:3a:8c:4c:7a:6e:78:74:1f:b0:25:ae:c5:4a:af: 17:9c:c9:bd:23:e2:4d:09:40:30:2f:7d:cc:f0:fc: cd:e4:5d:3f:84:65:40:28:98:90:fb:bc:bb:1b:48: 10:b9:2c:41:5f:70:16:09:3b:ad:21:52:b5:29:f1: 5e:99:f9:b6:cb:58:51:f4:ca:07:24:71:7a:65:41: a8:99:53:48:b6:03:41:66:bb:3b:46:a6:92:ef:24: 5d:9d:c2:73:a7:db:cf:40:3d:92:8c:19:ab:10:68: 81:8d:52:97:09:43:c3:06:14:82:3c:10:fe:3c:b5: 86:6d:7c:8a:41:7b:9a:63:13:7a:64:67:44:b5:8a: 1d:8c:1f:ae:48:9c:36:25:44:f8:a9:c0:26:e0:25: 5c:4c:33:58:62:c7:08:d1:b6:94:31:51:ab:aa:d9: 40:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:00:81:30:88:98:FE:F6:33:78:D6:75:34:CE:C1:B0:7E:79:97:D4 X509v3 Authority Key Identifier: keyid:99:DF:B6:BF:79:50:E6:B4:01:95:A5:90:24:F4:B7:50:86:3D:3D:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/md-2v3lQ5rQBlaWQJPS3UIY9PZM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/md-2v3lQ5rQBlaWQJPS3UIY9PZM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C28D/BDAB67F63A8011E5AE390155C4F9AE02/AAF07158AFEB11EEBCAD8169C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.249.89.0/24 103.217.254.0/24 Signature Algorithm: sha256WithRSAEncryption 33:18:f3:7f:43:0a:46:e7:fd:df:72:a8:48:08:2e:74:7c:73: a9:fd:eb:7b:29:f6:b4:14:a5:fe:d4:23:4f:ee:4f:af:6c:4e: 8e:ee:41:8c:e8:6a:af:1c:2b:5c:a6:8f:d7:41:59:87:de:db: f6:e3:34:87:1b:a3:cc:20:d0:50:16:2f:5c:b4:f1:4d:0e:50: d3:34:ee:2e:61:00:62:cb:a7:aa:97:27:10:d4:5b:e1:05:cd: e3:05:4a:22:75:02:ba:c5:00:b4:61:4f:fe:4e:0a:66:2b:0b: 7c:ed:d7:a2:41:03:8d:a4:4a:03:29:6a:2a:eb:91:9e:f0:82: 93:c1:de:ee:55:0b:e2:04:7a:fc:bf:c4:38:84:18:34:52:8c: d9:cd:70:21:45:2c:0e:73:a6:74:cf:c3:43:28:ee:44:14:7d: a0:96:0a:a9:33:91:6c:98:22:95:5b:db:13:4d:31:68:71:80: 60:4c:a1:29:c8:9a:0d:78:68:30:4a:8b:f9:dc:11:0b:d1:9a: bf:49:c6:d3:3b:c0:c9:e2:61:81:12:f7:8c:a5:4c:1b:07:ed: 78:47:6c:43:ee:39:d9:c4:3d:3a:26:a3:4b:55:2d:76:0f:72: c3:00:74:0c:c8:f0:a2:53:3c:89:56:7a:60:23:e6:12:03:42: 06:2d:27:3f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICJtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUMyOEQxMTAvBgNVBAUTKDk5REZCNkJGNzk1MEU2QjQwMTk1QTU5MDI0RjRCNzUw ODYzRDNEOTMwHhcNMjQwMjIyMTI1MzQ5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWQ3NDNkZC1mODY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7+lRBTF5AfPZajl7gucuEkjAP4Gn3ZOIV87CSOSF72GZvTd1pDrR5KAPIIo 9yEjcDK4b9ZHhyOmJkBfBzf8SyqO0i7m02fDRh7N3I4qWlGrZsWM/fd+3cMIOoxM em54dB+wJa7FSq8XnMm9I+JNCUAwL33M8PzN5F0/hGVAKJiQ+7y7G0gQuSxBX3AW CTutIVK1KfFemfm2y1hR9MoHJHF6ZUGomVNItgNBZrs7RqaS7yRdncJzp9vPQD2S jBmrEGiBjVKXCUPDBhSCPBD+PLWGbXyKQXuaYxN6ZGdEtYodjB+uSJw2JUT4qcAm 4CVcTDNYYscI0baUMVGrqtlASQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBIAgTCI mP72M3jWdTTOwbB+eZfUMB8GA1UdIwQYMBaAFJnftr95UOa0AZWlkCT0t1CGPT2T MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzI4RC9CREFCNjdGNjNB ODAxMUU1QUUzOTAxNTVDNEY5QUUwMi9tZC0ydjNsUTVyUUJsYVdRSlBTM1VJWTlQ Wk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21kLTJ2M2xRNXJRQmxhV1FKUFMzVUlZOVBaTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUMyOEQvQkRBQjY3RjYzQTgwMTFFNUFFMzkwMTU1QzRGOUFFMDIvQUFGMDcxNThB RkVCMTFFRUJDQUQ4MTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAt+VkDBABn2f4wDQYJKoZIhvcNAQELBQADggEBADMY839D Ckbn/d9yqEgILnR8c6n963sp9rQUpf7UI0/uT69sTo7uQYzoaq8cK1ymj9dBWYfe 2/bjNIcbo8wg0FAWL1y08U0OUNM07i5hAGLLp6qXJxDUW+EFzeMFSiJ1ArrFALRh T/5OCmYrC3zt16JBA42kSgMpairrkZ7wgpPB3u5VC+IEevy/xDiEGDRSjNnNcCFF LA5zpnTPw0Mo7kQUfaCWCqkzkWyYIpVb2xNNMWhxgGBMoSnImg14aDBKi/ncEQvR mr9JxtM7wMniYYES94ylTBsH7XhHbEPuOdnEPTomo0tVLXYPcsMAdAzI8KJTPIlW emAj5hIDQgYtJz8= -----END CERTIFICATE-----Generated at Tue Apr 30 19:20:46 2024 by rpki-client on console-ams.rpki-client.org