$ rpki-client -vvf rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/13321D24572211EA88CE445FC4F9AE02.roa File: 13321D24572211EA88CE445FC4F9AE02.roa (raw, json) Hash identifier: PxUVVNoyJKRaoEj5rSN33CxmvUZP8WI87texd/MUtbc= Subject key identifier: 71:D6:5A:5D:9F:BB:EF:E6:D0:5C:E3:E6:B4:52:A4:25:B5:7F:AC:2C Certificate issuer: /CN=A912986D/serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Certificate serial: 0973 Authority key identifier: 17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/13321D24572211EA88CE445FC4F9AE02.roa Signing time: Wed 16 Aug 2023 20:17:43 +0000 ROA not before: Wed 16 Aug 2023 20:17:43 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 396982 IP address blocks: 43.229.32.0/22 maxlen: 22 43.229.32.0/23 maxlen: 23 43.229.34.0/23 maxlen: 23 103.9.96.0/22 maxlen: 22 117.120.16.0/21 maxlen: 21 223.29.216.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 20:45:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2419 (0x973) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912986D/serialNumber=1717ACAC053F131E2261452736513E4E8F626CDB Validity Not Before: Aug 16 20:17:43 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64dd2ee6-929e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:21:ad:00:6e:e4:c4:a2:f7:e4:85:b6:6a:17: 3e:72:b7:c9:d3:82:51:d0:7d:90:85:c6:54:c1:54: 79:f5:52:c0:c8:ba:10:d9:c9:1b:8e:c3:10:dd:39: 40:8e:30:59:e3:14:54:d1:49:69:13:dd:7d:6b:3c: 99:a9:90:cd:a2:cb:0c:4d:18:aa:50:1a:b8:be:fd: 98:f4:19:ce:98:a7:67:e9:2b:76:95:23:ed:43:ad: a5:5f:9e:b3:a9:79:ff:13:2e:7c:9f:0f:f4:b9:48: 6d:37:2e:53:17:a4:a9:00:37:8f:c9:0b:40:eb:78: c1:52:96:24:c6:e0:ea:a9:64:01:da:5a:ca:d4:4f: 8c:64:ef:c0:74:68:9d:a8:10:3a:1f:ae:a1:79:9a: fe:fb:79:cb:cb:db:50:97:7c:fe:6c:37:8d:b6:85: 41:c6:98:64:19:ef:a8:0f:7b:d3:4d:14:5e:59:92: 9d:b9:38:1e:2d:14:90:4d:09:f0:43:96:02:a1:64: e4:ae:fd:a5:b5:99:08:3a:cd:05:2f:95:0e:84:03: f6:90:1b:d2:68:60:ac:c0:96:68:70:4a:04:cf:7c: e9:43:5b:fe:ff:30:b5:a8:3e:63:34:e1:f7:db:57: 21:42:c1:8c:70:3f:38:8b:59:c4:38:4c:75:98:e2: 79:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D6:5A:5D:9F:BB:EF:E6:D0:5C:E3:E6:B4:52:A4:25:B5:7F:AC:2C X509v3 Authority Key Identifier: keyid:17:17:AC:AC:05:3F:13:1E:22:61:45:27:36:51:3E:4E:8F:62:6C:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/FxesrAU_Ex4iYUUnNlE-To9ibNs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FxesrAU_Ex4iYUUnNlE-To9ibNs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912986D/A0074D18533B11EABAA75B3AC4F9AE02/13321D24572211EA88CE445FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.32.0/22 103.9.96.0/22 117.120.16.0/21 223.29.216.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:9a:ac:4a:45:ab:7b:19:4d:3f:5c:d1:d8:20:cf:fc:e7:7e: b6:b7:c4:86:3e:55:b6:63:ee:bc:17:67:3e:a2:bc:dc:8c:0b: 8e:d6:65:ba:7e:7c:ab:6a:ce:83:52:09:47:02:9d:d1:11:be: be:8a:33:66:0f:5d:9b:46:c0:82:20:fe:c8:29:12:a6:87:4f: 1f:7c:40:ac:b9:16:54:10:27:23:59:0f:63:71:0b:ac:a7:41: eb:a3:30:96:85:fc:80:ef:e8:65:f8:09:be:96:03:f5:90:95: 17:fd:a3:39:83:59:49:06:46:24:fa:8b:73:89:37:03:81:95: ea:7f:d8:e8:1e:57:8e:e2:b4:99:38:4d:20:77:33:18:05:1e: 3b:eb:bb:3a:53:3f:82:ba:e7:1c:4b:14:22:43:2a:95:f2:6f: 5c:d5:18:5d:a7:51:da:a0:4d:68:ad:ff:8f:65:d7:7c:21:a0: ec:b8:e7:b4:ad:89:cb:91:fb:09:ca:3f:2b:04:26:a1:74:96: 02:4e:c3:ef:cd:d0:17:e4:f9:c7:d9:43:2f:ac:97:d4:e0:14: 9e:71:ec:11:ca:e4:e9:d6:43:17:82:3b:c8:ef:44:d0:dc:0d: 1d:6f:f0:50:ef:53:61:ef:ae:ef:0a:5d:53:96:97:a7:f8:03: a8:c8:5f:0a -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICCXMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4NkQxMTAvBgNVBAUTKDE3MTdBQ0FDMDUzRjEzMUUyMjYxNDUyNzM2NTEzRTRF OEY2MjZDREIwHhcNMjMwODE2MjAxNzQzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkMmVlNi05MjllMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmyGtAG7kxKL35IW2ahc+crfJ04JR0H2QhcZUwVR59VLAyLoQ2ckbjsMQ3TlA jjBZ4xRU0UlpE919azyZqZDNossMTRiqUBq4vv2Y9BnOmKdn6St2lSPtQ62lX56z qXn/Ey58nw/0uUhtNy5TF6SpADePyQtA63jBUpYkxuDqqWQB2lrK1E+MZO/AdGid qBA6H66heZr++3nLy9tQl3z+bDeNtoVBxphkGe+oD3vTTRReWZKduTgeLRSQTQnw Q5YCoWTkrv2ltZkIOs0FL5UOhAP2kBvSaGCswJZocEoEz3zpQ1v+/zC1qD5jNOH3 21chQsGMcD84i1nEOEx1mOJ5bQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFHHWWl2f u+/m0Fzj5rRSpCW1f6wsMB8GA1UdIwQYMBaAFBcXrKwFPxMeImFFJzZRPk6PYmzb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOTg2RC9BMDA3NEQxODUz M0IxMUVBQkFBNzVCM0FDNEY5QUUwMi9GeGVzckFVX0V4NGlZVVVuTmxFLVRvOWli TnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Z4ZXNyQVVfRXg0aVlVVW5ObEUtVG85aWJOcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4NkQvQTAwNzREMTg1MzNCMTFFQUJBQTc1QjNBQzRGOUFFMDIvMTMzMjFEMjQ1 NzIyMTFFQTg4Q0U0NDVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr5SADBAJnCWADBAN1eBADBALfHdgwDQYJKoZIhvcNAQEL BQADggEBACqarEpFq3sZTT9c0dggz/znfra3xIY+VbZj7rwXZz6ivNyMC47WZbp+ fKtqzoNSCUcCndERvr6KM2YPXZtGwIIg/sgpEqaHTx98QKy5FlQQJyNZD2NxC6yn QeujMJaF/IDv6GX4Cb6WA/WQlRf9ozmDWUkGRiT6i3OJNwOBlep/2OgeV47itJk4 TSB3MxgFHjvruzpTP4K65xxLFCJDKpXyb1zVGF2nUdqgTWit/49l13whoOy457St icuR+wnKPysEJqF0lgJOw+/N0Bfk+cfZQy+sl9TgFJ5x7BHK5OnWQxeCO8jvRNDc DR1v8FDvU2Hvru8KXVOWl6f4A6jIXwo= -----END CERTIFICATE-----Generated at Wed Apr 24 23:34:22 2024 by rpki-client on console-ams.rpki-client.org