$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa File: E2D5171C2F3211ED958A415DC4F9AE02.roa (raw, json) Hash identifier: Jhd+zmEk5Tr6WUgFESV3Hz6/KEOnMbj2hHPJhFLnDKY= Subject key identifier: 91:2A:0F:6C:A5:A8:C0:34:34:34:6C:CD:41:60:22:CD:95:50:82:52 Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0B13 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa Signing time: Thu 16 May 2024 20:29:22 +0000 ROA not before: Thu 16 May 2024 20:29:22 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141711 IP address blocks: 43.246.224.0/24 maxlen: 24 43.246.225.0/24 maxlen: 24 43.246.226.0/24 maxlen: 24 43.246.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:58:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2835 (0xb13) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: May 16 20:29:22 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66466ca2-bee2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:51:06:d9:c7:be:dd:50:c1:af:c2:4b:9e:0c: 4e:06:10:ec:c9:2f:62:1f:f3:85:0e:7d:b6:e8:d8: 1a:0b:e8:cb:31:57:41:c1:60:37:c0:50:c3:5d:0a: db:3b:ce:6c:37:7d:77:63:d0:05:93:0a:67:51:4e: 11:18:4d:76:f9:04:9e:44:f5:ac:57:af:b9:e2:d0: 57:eb:68:14:f1:ea:15:7e:b5:c2:59:1b:b8:7f:30: 5b:0a:69:e3:03:ed:01:fe:89:ad:30:19:c4:ad:5c: 40:fe:15:ea:db:32:9a:f2:4d:42:a3:9b:18:92:c8: 3b:b8:85:a6:63:bf:17:99:50:bd:b8:6b:cf:68:7d: 85:37:05:04:c2:95:55:a6:a9:f4:c2:87:fe:d4:4f: 45:17:65:49:d4:2d:95:13:36:b8:50:b6:9f:79:92: 0f:90:e8:37:74:fd:83:e3:db:79:8b:ab:ef:49:f5: b1:0d:6e:91:4c:52:11:c5:ac:76:83:57:a3:58:61: 88:04:b6:19:ab:17:69:4d:08:40:4b:0b:4f:e6:d2: fd:de:46:44:10:54:60:66:fd:f5:1c:6d:0a:ef:e2: 5a:d1:08:6e:d2:85:0f:7a:ed:ec:7f:2a:80:55:e8: a8:5d:de:16:35:2c:4d:0e:63:50:aa:78:4d:a8:84: f5:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:2A:0F:6C:A5:A8:C0:34:34:34:6C:CD:41:60:22:CD:95:50:82:52 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.224.0/22 Signature Algorithm: sha256WithRSAEncryption 54:44:35:00:3b:66:71:f7:45:62:9a:fc:03:eb:c7:6b:40:93: d4:8d:6d:c3:5a:e0:3d:7f:29:e8:86:d6:14:37:1b:91:9a:69: 53:ae:e7:d9:4b:81:c6:62:fc:f5:f4:20:c0:68:7a:fe:30:cd: 40:57:74:b0:d3:c0:6b:6b:86:4e:96:41:e4:6f:e0:0d:cc:6e: 9d:f6:ed:c1:5b:d1:5c:64:f0:56:f6:e5:29:7d:b6:40:d2:83: 23:86:8a:e3:7d:e9:2e:59:ea:4a:38:03:77:da:b8:2c:36:c1: 52:c0:e5:8d:7a:ba:71:07:89:27:70:40:a8:3d:3e:ad:6f:09: 06:18:1e:ce:2a:8e:a8:e8:fb:a1:68:35:cd:40:94:ef:b3:d7: eb:29:72:21:a2:d9:5a:1f:81:46:d7:8a:ff:77:f1:c9:a8:9e: 84:47:ec:10:4f:f8:9c:df:42:56:42:ff:d2:33:8e:61:4e:81: 38:42:10:a5:f5:d6:01:b5:f1:4f:82:08:62:b4:c2:34:84:76: c9:70:de:66:19:9c:59:f5:df:9c:17:07:a0:85:da:47:9b:40: cf:52:5e:40:8a:a1:74:e7:78:37:1d:72:3e:7e:5e:1f:2c:3a: 63:9d:1d:11:67:fe:3d:4c:41:d3:70:94:f5:68:18:1c:b3:1d: 66:ff:b9:05 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCxMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjQwNTE2MjAyOTIyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2NmNhMi1iZWUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwlEG2ce+3VDBr8JLngxOBhDsyS9iH/OFDn226NgaC+jLMVdBwWA3wFDDXQrb O85sN313Y9AFkwpnUU4RGE12+QSeRPWsV6+54tBX62gU8eoVfrXCWRu4fzBbCmnj A+0B/omtMBnErVxA/hXq2zKa8k1Co5sYksg7uIWmY78XmVC9uGvPaH2FNwUEwpVV pqn0wof+1E9FF2VJ1C2VEza4ULafeZIPkOg3dP2D49t5i6vvSfWxDW6RTFIRxax2 g1ejWGGIBLYZqxdpTQhASwtP5tL93kZEEFRgZv31HG0K7+Ja0Qhu0oUPeu3sfyqA VeioXd4WNSxNDmNQqnhNqIT1RwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJEqD2yl qMA0NDRszUFgIs2VUIJSMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4REEvMzRGMzYxMkUyNjgxMTFFQTkwM0Q3MDU4QzRGOUFFMDIvRTJENTE3MUMy RjMyMTFFRDk1OEE0MTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr9uAwDQYJKoZIhvcNAQELBQADggEBAFRENQA7ZnH3RWKa /APrx2tAk9SNbcNa4D1/KeiG1hQ3G5GaaVOu59lLgcZi/PX0IMBoev4wzUBXdLDT wGtrhk6WQeRv4A3Mbp327cFb0Vxk8Fb25Sl9tkDSgyOGiuN96S5Z6ko4A3fauCw2 wVLA5Y16unEHiSdwQKg9Pq1vCQYYHs4qjqjo+6FoNc1AlO+z1+spciGi2VofgUbX iv938cmonoRH7BBP+JzfQlZC/9IzjmFOgThCEKX11gG18U+CCGK0wjSEdslw3mYZ nFn135wXB6CF2kebQM9SXkCKoXTneDcdcj5+Xh8sOmOdHRFn/j1MQdNwlPVoGByz HWb/uQU= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:22 2024 by rpki-client on console-ams.rpki-client.org