$ rpki-client -vvf rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/43CEF64C5E7111EDAD328E21C4F9AE02.roa File: 43CEF64C5E7111EDAD328E21C4F9AE02.roa (raw, json) Hash identifier: 2v9nZEXKE2n7zN/qeQ9UGMLEIjdnl9icDJiQyK5zYRY= Subject key identifier: AD:36:A6:FE:0E:CA:14:8D:7B:48:1E:78:A3:93:57:8B:97:CD:AF:CA Certificate issuer: /CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Certificate serial: 01BF Authority key identifier: E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/43CEF64C5E7111EDAD328E21C4F9AE02.roa Signing time: Thu 09 Nov 2023 03:54:08 +0000 ROA not before: Thu 09 Nov 2023 03:54:08 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 55002 IP address blocks: 43.230.60.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 04:31:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 447 (0x1bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911C6E1/serialNumber=E34B28542056CE9E0650FEFC0AB124216CB5F9C1 Validity Not Before: Nov 9 03:54:08 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654c57e0-27f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:00:9f:49:78:54:ed:ab:7f:c8:87:79:6a:ca: a1:cc:92:4a:8f:55:c9:0f:38:9a:85:34:62:00:de: 6e:1c:65:fe:38:de:76:81:83:34:89:26:87:f0:d8: 3c:98:ed:a9:b3:60:12:cf:6f:93:b6:ab:a8:05:74: 4e:a1:4c:a9:a1:5f:9e:14:e5:5f:3a:d3:88:c1:fa: 46:fa:d9:de:10:9a:37:15:77:c9:45:a7:32:fc:1d: 88:51:1a:8e:e1:c3:1f:41:1a:36:07:ef:d8:92:23: e0:a4:30:36:f4:29:36:73:d9:cf:b5:f3:a7:c3:fc: b7:bf:05:c3:cd:93:e3:78:9b:2b:e8:0a:c6:2a:a6: 53:47:82:c7:ee:1c:41:fb:2e:af:ed:5b:ce:96:7b: ad:87:cd:ad:c4:fc:7c:07:0a:a5:e4:43:08:5a:d2: 48:24:d7:84:81:7c:7e:ac:38:d1:98:66:b0:40:09: 97:53:46:d9:d3:56:b1:1a:43:da:47:a1:64:b5:4b: 8d:0b:a5:2f:55:8a:04:6f:be:ce:b9:04:1e:64:fd: 07:bb:62:c4:99:66:d5:28:89:74:c3:bb:aa:1b:56: d1:67:ea:e9:8e:c0:0e:24:8f:40:af:80:6f:35:a7: 68:fb:07:78:c8:99:8b:91:7a:fb:e9:14:8e:2e:f0: f5:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:36:A6:FE:0E:CA:14:8D:7B:48:1E:78:A3:93:57:8B:97:CD:AF:CA X509v3 Authority Key Identifier: keyid:E3:4B:28:54:20:56:CE:9E:06:50:FE:FC:0A:B1:24:21:6C:B5:F9:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/40soVCBWzp4GUP78CrEkIWy1-cE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/40soVCBWzp4GUP78CrEkIWy1-cE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911C6E1/A57D86D8E7DE11EC8D8C5C5DC4F9AE02/43CEF64C5E7111EDAD328E21C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.60.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:bb:4b:94:78:12:5c:19:d6:f2:b7:ae:9d:2b:19:a6:ca:e4: 36:8a:58:57:34:5d:17:21:e0:c0:9c:8d:0e:f3:a7:89:5b:97: 37:74:7b:62:50:67:c7:20:cf:3b:a7:c0:f2:8b:23:36:97:a2: 2d:be:47:7b:e3:12:67:6a:20:22:9f:be:8e:f1:f9:1b:af:d6: 2f:db:46:0c:cc:7a:e9:fe:4e:c6:0a:68:f7:b7:8a:12:73:64: c1:8c:0e:c9:66:07:5b:b3:82:13:9e:72:d2:0a:1f:1b:d1:e0: 3c:3b:e5:d5:5f:a2:ea:3d:df:5d:51:91:d1:73:83:30:1b:8f: fb:82:d5:10:a2:32:85:ec:98:b3:a1:5a:39:87:3c:8e:d3:02: 6b:1b:80:aa:36:29:84:14:2d:18:be:6d:d4:4b:46:41:78:63: f5:02:8c:f7:16:e7:85:fd:e7:1d:c6:1d:f7:c4:3f:9e:55:40: de:1f:bd:af:29:98:46:97:57:e9:d6:a0:00:d6:cc:2e:bf:82: 54:a7:c5:1b:d0:a7:4d:84:0e:27:a7:7d:ec:ec:35:4e:cc:1a: 5a:7d:8f:c8:6a:0b:ec:61:58:cf:d0:60:b1:47:34:8e:a5:f7: 22:9f:ca:32:bf:7f:cf:2e:6f:a7:b2:5b:df:56:04:cc:1c:9d: a7:21:8c:15 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAb8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUM2RTExMTAvBgNVBAUTKEUzNEIyODU0MjA1NkNFOUUwNjUwRkVGQzBBQjEyNDIx NkNCNUY5QzEwHhcNMjMxMTA5MDM1NDA4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRjNTdlMC0yN2YzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxACfSXhU7at/yId5asqhzJJKj1XJDziahTRiAN5uHGX+ON52gYM0iSaH8Ng8 mO2ps2ASz2+TtquoBXROoUypoV+eFOVfOtOIwfpG+tneEJo3FXfJRacy/B2IURqO 4cMfQRo2B+/YkiPgpDA29Ck2c9nPtfOnw/y3vwXDzZPjeJsr6ArGKqZTR4LH7hxB +y6v7VvOlnuth82txPx8Bwql5EMIWtJIJNeEgXx+rDjRmGawQAmXU0bZ01axGkPa R6FktUuNC6UvVYoEb77OuQQeZP0Hu2LEmWbVKIl0w7uqG1bRZ+rpjsAOJI9Ar4Bv Nado+wd4yJmLkXr76RSOLvD18wIDAQABo4IClTCCApEwHQYDVR0OBBYEFK02pv4O yhSNe0geeKOTV4uXza/KMB8GA1UdIwQYMBaAFONLKFQgVs6eBlD+/AqxJCFstfnB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQzZFMS9BNTdEODZEOEU3 REUxMUVDOEQ4QzVDNURDNEY5QUUwMi80MHNvVkNCV3pwNEdVUDc4Q3JFa0lXeTEt Y0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQwc29WQ0JXenA0R1VQNzhDckVrSVd5MS1jRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUM2RTEvQTU3RDg2RDhFN0RFMTFFQzhEOEM1QzVEQzRGOUFFMDIvNDNDRUY2NEM1 RTcxMTFFREFEMzI4RTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr5jwwDQYJKoZIhvcNAQELBQADggEBAIq7S5R4ElwZ1vK3 rp0rGabK5DaKWFc0XRch4MCcjQ7zp4lblzd0e2JQZ8cgzzunwPKLIzaXoi2+R3vj EmdqICKfvo7x+Ruv1i/bRgzMeun+TsYKaPe3ihJzZMGMDslmB1uzghOectIKHxvR 4Dw75dVfouo9311RkdFzgzAbj/uC1RCiMoXsmLOhWjmHPI7TAmsbgKo2KYQULRi+ bdRLRkF4Y/UCjPcW54X95x3GHffEP55VQN4fva8pmEaXV+nWoADWzC6/glSnxRvQ p02EDienfezsNU7MGlp9j8hqC+xhWM/QYLFHNI6l9yKfyjK/f88ub6eyW99WBMwc nachjBU= -----END CERTIFICATE-----Generated at Wed May 29 06:12:04 2024 by rpki-client on console-ams.rpki-client.org