$ rpki-client -vvf rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/211E0AC268F911EF986C8281C4F9AE02.roa File: 211E0AC268F911EF986C8281C4F9AE02.roa (raw, json) Hash identifier: jAlP8P7kw3AxRnbKS+vw8rsRAMvtB/8nbNImX/e+/TQ= Subject key identifier: E7:A6:93:6A:AA:6D:B7:8D:1D:A3:42:6F:36:DF:12:63:AE:61:36:00 Certificate issuer: /CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Certificate serial: 0272 Authority key identifier: 84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/211E0AC268F911EF986C8281C4F9AE02.roa Signing time: Mon 02 Sep 2024 07:01:08 +0000 ROA not before: Mon 02 Sep 2024 07:01:08 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132838 IP address blocks: 43.249.113.0/24 maxlen: 24 43.249.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:12:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 626 (0x272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912442A/serialNumber=8485A39ED6B62128EDF4F99B2C2A811F5C201570 Validity Not Before: Sep 2 07:01:08 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66d562b4-ba3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:84:cc:f6:30:06:41:93:20:d1:f8:24:9a:df: 2e:c1:59:d0:e2:b9:a0:c0:07:4b:34:57:56:56:da: 78:aa:1d:a0:f3:42:d0:b2:ff:b0:90:f9:bc:e5:b1: 96:69:52:e7:74:eb:b7:1a:a7:3e:62:08:d7:a6:04: 40:2c:e0:11:a7:6e:48:f5:cc:4f:b4:41:52:10:0a: 07:02:67:14:b2:af:ef:30:7a:3f:bb:45:23:65:ce: a4:0b:81:5c:66:0b:1e:8a:ca:33:67:f0:53:9d:e2: 09:a7:3e:f1:b0:38:f4:0c:48:fc:a2:85:d2:27:3a: 26:62:66:e7:10:5e:b5:c1:7d:3e:9f:c5:05:cf:ba: 64:8b:ee:27:b7:0d:02:88:cd:b0:d7:5d:36:1b:74: 9b:3c:94:62:75:e7:bd:c2:c6:f9:95:81:32:3c:05: 63:22:68:f1:3e:27:3e:46:2f:d2:5e:80:d1:fb:fb: 4d:b6:ab:d7:a9:59:df:c9:ad:09:a9:ba:52:26:ed: 20:47:40:c7:16:83:0b:ae:2f:75:ca:bc:38:14:1f: 93:fc:da:cc:c5:5e:aa:7a:b8:61:2c:bc:0d:de:c0: fb:f8:40:60:80:03:fc:3d:b1:2b:16:7b:dc:bb:62: 07:17:68:79:69:a3:52:3d:b0:46:7f:37:a6:4c:5f: 44:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:A6:93:6A:AA:6D:B7:8D:1D:A3:42:6F:36:DF:12:63:AE:61:36:00 X509v3 Authority Key Identifier: keyid:84:85:A3:9E:D6:B6:21:28:ED:F4:F9:9B:2C:2A:81:1F:5C:20:15:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/hIWjnta2ISjt9PmbLCqBH1wgFXA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hIWjnta2ISjt9PmbLCqBH1wgFXA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912442A/20F2CB00EB9C11ECA682120CC4F9AE02/211E0AC268F911EF986C8281C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.113.0-43.249.114.255 Signature Algorithm: sha256WithRSAEncryption 5b:9b:fe:01:3b:78:3d:f1:db:65:f1:c9:ce:87:b1:2a:9f:32: 87:00:2e:a6:bc:3b:ba:09:f0:5d:49:63:83:e1:45:e0:83:47: d5:c6:67:fd:64:1e:15:d7:b9:59:1f:01:c8:7f:0d:ef:ee:c8: 45:96:e2:26:71:20:19:ec:db:ff:a7:bb:1e:3e:4c:2c:b5:6a: 29:69:e8:c2:e1:9f:fe:35:de:ba:15:40:31:13:bf:24:25:fa: a5:34:57:72:37:f7:63:ff:1f:b6:59:1a:55:7c:07:b3:c6:4b: ce:d5:17:e4:34:6c:73:d3:6c:b6:c5:f3:ae:c1:a7:87:86:ba: c3:d8:2f:fc:d4:10:4b:31:78:53:de:50:12:4e:f3:30:e7:d5: cc:bb:aa:95:a4:4b:42:11:30:71:a8:e0:26:e6:78:89:35:d1: a1:5e:d8:12:d1:b7:46:4e:37:7e:cf:c7:2b:d1:63:ef:bb:3a: bc:0d:49:ab:66:7e:7e:0c:84:41:d5:14:55:3a:92:39:75:f0: da:04:ed:c6:12:99:44:f4:d5:85:2f:da:fe:74:22:6a:6d:ac: bc:b1:de:0b:89:d4:bb:13:a4:e6:5e:f1:66:05:ce:8b:4a:df: 85:71:2f:4d:d5:6d:1e:4c:4a:78:5f:11:f9:f3:75:0d:1d:1f: eb:74:a0:b0 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgICAnIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjQ0MkExMTAvBgNVBAUTKDg0ODVBMzlFRDZCNjIxMjhFREY0Rjk5QjJDMkE4MTFG NUMyMDE1NzAwHhcNMjQwOTAyMDcwMTA4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ1NjJiNC1iYTNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9ITM9jAGQZMg0fgkmt8uwVnQ4rmgwAdLNFdWVtp4qh2g80LQsv+wkPm85bGW aVLndOu3Gqc+YgjXpgRALOARp25I9cxPtEFSEAoHAmcUsq/vMHo/u0UjZc6kC4Fc ZgseisozZ/BTneIJpz7xsDj0DEj8ooXSJzomYmbnEF61wX0+n8UFz7pki+4ntw0C iM2w1102G3SbPJRidee9wsb5lYEyPAVjImjxPic+Ri/SXoDR+/tNtqvXqVnfya0J qbpSJu0gR0DHFoMLri91yrw4FB+T/NrMxV6qerhhLLwN3sD7+EBggAP8PbErFnvc u2IHF2h5aaNSPbBGfzemTF9E+wIDAQABo4ICnTCCApkwHQYDVR0OBBYEFOemk2qq bbeNHaNCbzbfEmOuYTYAMB8GA1UdIwQYMBaAFISFo57WtiEo7fT5mywqgR9cIBVw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNDQyQS8yMEYyQ0IwMEVC OUMxMUVDQTY4MjEyMENDNEY5QUUwMi9oSVdqbnRhMklTanQ5UG1iTENxQkgxd2dG WEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2hJV2pudGEySVNqdDlQbWJMQ3FCSDF3Z0ZYQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjQ0MkEvMjBGMkNCMDBFQjlDMTFFQ0E2ODIxMjBDQzRGOUFFMDIvMjExRTBBQzI2 OEY5MTFFRjk4NkM4MjgxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJwYIKwYBBQUHAQcBAf8E GDAWMBQEAgABMA4wDAMEACv5cQMEACv5cjANBgkqhkiG9w0BAQsFAAOCAQEAW5v+ ATt4PfHbZfHJzoexKp8yhwAuprw7ugnwXUljg+FF4INH1cZn/WQeFde5WR8ByH8N 7+7IRZbiJnEgGezb/6e7Hj5MLLVqKWnowuGf/jXeuhVAMRO/JCX6pTRXcjf3Y/8f tlkaVXwHs8ZLztUX5DRsc9NstsXzrsGnh4a6w9gv/NQQSzF4U95QEk7zMOfVzLuq laRLQhEwcajgJuZ4iTXRoV7YEtG3Rk43fs/HK9Fj77s6vA1Jq2Z+fgyEQdUUVTqS OXXw2gTtxhKZRPTVhS/a/nQiam2svLHeC4nUuxOk5l7xZgXOi0rfhXEvTdVtHkxK eF8R+fN1DR0f63SgsA== -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:35 2024 by rpki-client on console-ams.rpki-client.org