$ rpki-client -vvf rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa File: E2D5171C2F3211ED958A415DC4F9AE02.roa (raw, json) Hash identifier: YJYDpUw9hKSTBug9CbQ8eBzRXA4RtwGClBJTAtMVBPU= Subject key identifier: 9A:A7:53:4B:5E:1F:59:28:3D:C7:B7:C4:23:8E:0E:7A:D1:99:4A:32 Certificate issuer: /CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Certificate serial: 0A43 Authority key identifier: FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa Signing time: Sat 20 May 2023 21:11:50 +0000 ROA not before: Sat 20 May 2023 21:11:50 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 141711 IP address blocks: 43.246.224.0/24 maxlen: 24 43.246.225.0/24 maxlen: 24 43.246.226.0/24 maxlen: 24 43.246.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 20:25:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2627 (0xa43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91298DA/serialNumber=FCAA086226DF02AF8394FAB22D1FB96E0B7D65DD Validity Not Before: May 20 21:11:50 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64693795-f1dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2e:04:f2:a7:09:9e:ff:b0:60:ca:f4:cd:c2: 9f:84:d6:33:b9:1c:5f:39:fb:8a:37:22:2c:e7:38: d9:14:b0:d2:d2:7c:fa:c1:0e:be:aa:88:a2:f4:dc: 0c:74:9d:05:b8:a9:e1:36:bb:c9:52:38:5d:41:fb: 10:a9:71:dc:b4:07:e3:fb:84:bf:8f:65:32:2f:0a: a4:5d:9b:14:0e:fb:8e:0c:67:dd:e3:16:44:98:b9: 99:5f:da:f3:f5:9f:c4:c7:36:79:56:1c:f9:43:f1: 26:d6:3d:d9:01:9c:fc:5a:dd:18:f2:b7:21:b0:89: cb:40:42:a5:02:85:5b:2b:1e:62:9b:ce:1e:51:c5: 33:80:f4:d6:a0:89:14:6f:d4:c7:c2:11:87:42:9b: c2:bc:c6:bd:85:cc:19:f3:2b:10:df:a3:ce:dd:bf: 67:16:1c:08:74:28:49:6f:2a:f0:0a:df:5b:f4:07: 89:7c:3e:f3:97:f4:16:e9:45:cd:46:90:91:16:47: d1:7b:53:9a:55:41:1a:f0:1d:4c:29:a4:bb:66:fd: 59:e7:95:59:f5:99:06:bc:d1:e5:d0:73:19:c5:b8: 63:af:84:62:5a:bf:b5:51:0b:35:09:37:e3:65:d7: 8c:e7:e5:73:13:1e:fb:78:ab:1a:59:01:11:80:ca: 36:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:A7:53:4B:5E:1F:59:28:3D:C7:B7:C4:23:8E:0E:7A:D1:99:4A:32 X509v3 Authority Key Identifier: keyid:FC:AA:08:62:26:DF:02:AF:83:94:FA:B2:2D:1F:B9:6E:0B:7D:65:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/_KoIYibfAq-DlPqyLR-5bgt9Zd0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_KoIYibfAq-DlPqyLR-5bgt9Zd0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91298DA/34F3612E268111EA903D7058C4F9AE02/E2D5171C2F3211ED958A415DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.224.0/22 Signature Algorithm: sha256WithRSAEncryption 15:19:bc:be:a1:0f:28:12:d2:1e:f7:9b:12:c3:f5:3e:c9:46: 26:52:cf:02:10:42:62:f7:00:fc:2a:83:83:63:8a:31:47:bf: 60:1f:d7:ea:e7:f1:9d:a4:fb:e8:4c:49:7c:11:90:d2:4b:9d: ad:59:f7:46:22:d8:0e:b4:4b:34:32:71:7a:9b:b3:43:1d:bf: bf:c5:a4:fa:ce:91:c5:b2:f7:54:b7:7f:db:b6:ee:e8:c7:10: c8:0a:5e:fe:e4:f3:33:3f:6a:47:84:4c:e9:23:95:e7:b6:33: 30:b4:d6:9d:8c:d0:e6:28:e0:18:29:92:a5:a1:64:22:dc:55: 42:37:67:1e:e3:a8:30:fa:8d:3a:36:33:43:c6:a9:60:db:a3: 44:c9:c8:21:f9:3a:cb:5b:19:a6:cc:c4:63:87:ff:6a:e8:e6: 65:3e:37:2f:fb:7c:10:cc:5c:1c:0a:eb:31:48:82:f9:07:ea: 27:30:86:90:c8:5e:82:0c:22:d4:bc:72:1e:8e:67:8c:33:58: 3c:5a:e1:39:37:5a:cf:89:9b:34:ce:a7:5c:83:65:38:d4:1c: a7:3a:85:43:e9:5f:99:1b:5e:cf:ff:b1:e1:f8:24:19:27:61: a9:26:c3:6e:44:66:e1:e1:26:3f:70:dd:ee:c3:7d:cd:50:00: bb:d7:0a:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCkMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mjk4REExMTAvBgNVBAUTKEZDQUEwODYyMjZERjAyQUY4Mzk0RkFCMjJEMUZCOTZF MEI3RDY1REQwHhcNMjMwNTIwMjExMTUwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDY5Mzc5NS1mMWRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzS4E8qcJnv+wYMr0zcKfhNYzuRxfOfuKNyIs5zjZFLDS0nz6wQ6+qoii9NwM dJ0FuKnhNrvJUjhdQfsQqXHctAfj+4S/j2UyLwqkXZsUDvuODGfd4xZEmLmZX9rz 9Z/ExzZ5Vhz5Q/Em1j3ZAZz8Wt0Y8rchsInLQEKlAoVbKx5im84eUcUzgPTWoIkU b9THwhGHQpvCvMa9hcwZ8ysQ36PO3b9nFhwIdChJbyrwCt9b9AeJfD7zl/QW6UXN RpCRFkfRe1OaVUEa8B1MKaS7Zv1Z55VZ9ZkGvNHl0HMZxbhjr4RiWr+1UQs1CTfj ZdeM5+VzEx77eKsaWQERgMo29wIDAQABo4IClTCCApEwHQYDVR0OBBYEFJqnU0te H1koPce3xCOODnrRmUoyMB8GA1UdIwQYMBaAFPyqCGIm3wKvg5T6si0fuW4LfWXd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyOThEQS8zNEYzNjEyRTI2 ODExMUVBOTAzRDcwNThDNEY5QUUwMi9fS29JWWliZkFxLURsUHF5TFItNWJndDla ZDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19Lb0lZaWJmQXEtRGxQcXlMUi01Ymd0OVpkMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mjk4REEvMzRGMzYxMkUyNjgxMTFFQTkwM0Q3MDU4QzRGOUFFMDIvRTJENTE3MUMy RjMyMTFFRDk1OEE0MTVEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr9uAwDQYJKoZIhvcNAQELBQADggEBABUZvL6hDygS0h73 mxLD9T7JRiZSzwIQQmL3APwqg4NjijFHv2Af1+rn8Z2k++hMSXwRkNJLna1Z90Yi 2A60SzQycXqbs0Mdv7/FpPrOkcWy91S3f9u27ujHEMgKXv7k8zM/akeETOkjlee2 MzC01p2M0OYo4BgpkqWhZCLcVUI3Zx7jqDD6jTo2M0PGqWDbo0TJyCH5OstbGabM xGOH/2ro5mU+Ny/7fBDMXBwK6zFIgvkH6icwhpDIXoIMItS8ch6OZ4wzWDxa4Tk3 Ws+JmzTOp1yDZTjUHKc6hUPpX5kbXs//seH4JBknYakmw25EZuHhJj9w3e7Dfc1Q ALvXCio= -----END CERTIFICATE-----Generated at Tue Apr 30 21:58:51 2024 by rpki-client on console-ams.rpki-client.org