$ rpki-client -vvf rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/8595A74A373C11ECA3E8C51BC4F9AE02.roa File: 8595A74A373C11ECA3E8C51BC4F9AE02.roa (raw, json) Hash identifier: dPIqo4SfnF0pTBWcFiAb5cvG3ZeCwMdprc83SWH640M= Subject key identifier: 24:66:9C:0D:EC:5D:DA:20:5A:97:54:63:5A:34:43:08:A0:A6:18:6E Certificate issuer: /CN=A912E92E/serialNumber=1782FC2C4D24A0E2640D15B3190DEE98F36B8F3C Certificate serial: 06E0 Authority key identifier: 17:82:FC:2C:4D:24:A0:E2:64:0D:15:B3:19:0D:EE:98:F3:6B:8F:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F4L8LE0koOJkDRWzGQ3umPNrjzw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/8595A74A373C11ECA3E8C51BC4F9AE02.roa Signing time: Fri 14 Jul 2023 16:12:43 +0000 ROA not before: Fri 14 Jul 2023 16:12:43 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 135352 IP address blocks: 43.225.60.0/22 maxlen: 24 2404:cc80::/32 maxlen: 33 2404:cc80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/F4L8LE0koOJkDRWzGQ3umPNrjzw.crl rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/F4L8LE0koOJkDRWzGQ3umPNrjzw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F4L8LE0koOJkDRWzGQ3umPNrjzw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 16:01:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1760 (0x6e0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912E92E/serialNumber=1782FC2C4D24A0E2640D15B3190DEE98F36B8F3C Validity Not Before: Jul 14 16:12:43 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64b173fa-460d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:c2:7f:d8:e5:d2:79:ed:75:40:13:25:3b:4e: 09:3a:8b:5a:30:d1:d0:d7:6a:32:61:e0:c7:be:19: 5f:05:a1:f9:82:d6:41:61:0d:a3:0a:f0:36:da:98: 12:aa:e5:64:90:16:ae:47:5c:06:74:5b:3f:10:fe: 5d:57:78:18:e2:0f:df:d4:1c:42:b0:4c:6b:fb:23: 14:ea:4a:a5:71:b8:8e:59:9d:46:e6:0a:82:42:40: c7:68:2a:e8:0f:e7:8b:dc:a4:a7:ec:39:32:46:5d: 0e:7a:42:7e:a5:fd:2a:4f:49:30:5c:a5:02:c0:e1: b4:ff:fe:34:dd:e1:30:c0:ba:d6:de:43:6b:6b:1e: 91:65:87:a9:59:8d:91:8b:c9:68:c1:e9:5a:43:80: a3:0d:f5:c1:d5:a7:bf:fc:80:98:d9:21:29:be:e9: c0:85:20:c5:fb:92:92:70:11:e2:84:9a:64:8f:a2: ee:bd:71:c7:06:78:17:f5:8c:57:2d:64:3c:88:8e: b1:e6:7e:82:b0:23:f7:26:35:81:23:81:14:de:32: da:ec:1a:21:0c:ea:8e:14:f2:06:04:87:eb:81:da: 16:21:1b:36:73:a4:aa:d1:fa:dd:47:f6:cb:6e:a7: 69:34:c5:db:ba:e2:7c:e1:82:2c:87:b4:cb:8f:4f: 5e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:66:9C:0D:EC:5D:DA:20:5A:97:54:63:5A:34:43:08:A0:A6:18:6E X509v3 Authority Key Identifier: keyid:17:82:FC:2C:4D:24:A0:E2:64:0D:15:B3:19:0D:EE:98:F3:6B:8F:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/F4L8LE0koOJkDRWzGQ3umPNrjzw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F4L8LE0koOJkDRWzGQ3umPNrjzw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912E92E/A0099A8027D111E6AE7BF27CC4F9AE02/8595A74A373C11ECA3E8C51BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.60.0/22 IPv6: 2404:cc80::/32 Signature Algorithm: sha256WithRSAEncryption 46:27:f0:78:fb:9b:6e:4d:09:f2:52:29:5c:21:ce:80:8a:0a: 1a:da:9e:3d:c2:14:bd:53:5a:af:a3:d6:4e:48:94:16:f8:e4: a9:40:98:b3:9c:8d:ce:fc:03:24:3a:af:0d:f5:77:de:45:9f: 91:14:25:e8:e8:4b:2a:83:da:18:b2:5c:c7:cc:a7:28:6c:06: dd:c4:0e:6e:61:d8:85:b8:67:98:5f:da:13:5b:df:75:0e:0c: 21:90:72:14:d2:25:5b:df:36:6b:ff:3a:17:11:95:12:b9:e1: 00:a1:a1:0a:ae:b0:cd:41:f3:73:25:98:41:6f:64:2a:c3:f9: fe:8d:02:f8:d8:cb:a4:40:d9:d9:eb:e5:e8:8e:86:86:e6:11: f8:18:0c:ef:03:39:3d:a0:f8:14:4c:61:31:7c:f9:61:c9:ea: 20:54:1c:d9:65:d7:03:bf:be:d3:8d:60:2e:0e:cb:fa:7e:1a: 4b:27:40:a0:50:f4:2b:10:23:ec:70:35:2e:86:2a:39:3a:89: 61:de:0d:ec:3d:e4:57:02:f2:12:28:fd:6a:af:f0:28:55:e1: e9:46:9e:73:a0:ba:8f:71:63:8e:69:1b:ee:bc:45:b1:fd:cc: 51:83:a8:30:52:98:49:3b:53:17:ff:47:a5:24:d3:31:e8:b8: 00:9a:89:2e -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBuAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MkU5MkUxMTAvBgNVBAUTKDE3ODJGQzJDNEQyNEEwRTI2NDBEMTVCMzE5MERFRTk4 RjM2QjhGM0MwHhcNMjMwNzE0MTYxMjQzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxNzNmYS00NjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqcJ/2OXSee11QBMlO04JOotaMNHQ12oyYeDHvhlfBaH5gtZBYQ2jCvA22pgS quVkkBauR1wGdFs/EP5dV3gY4g/f1BxCsExr+yMU6kqlcbiOWZ1G5gqCQkDHaCro D+eL3KSn7DkyRl0OekJ+pf0qT0kwXKUCwOG0//403eEwwLrW3kNrax6RZYepWY2R i8lowelaQ4CjDfXB1ae//ICY2SEpvunAhSDF+5KScBHihJpkj6LuvXHHBngX9YxX LWQ8iI6x5n6CsCP3JjWBI4EU3jLa7BohDOqOFPIGBIfrgdoWIRs2c6Sq0frdR/bL bqdpNMXbuuJ84YIsh7TLj09eTwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCRmnA3s XdogWpdUY1o0QwigphhuMB8GA1UdIwQYMBaAFBeC/CxNJKDiZA0VsxkN7pjza488 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyRTkyRS9BMDA5OUE4MDI3 RDExMUU2QUU3QkYyN0NDNEY5QUUwMi9GNEw4TEUwa29PSmtEUld6R1EzdW1QTnJq encuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Y0TDhMRTBrb09Ka0RSV3pHUTN1bVBOcmp6dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MkU5MkUvQTAwOTlBODAyN0QxMTFFNkFFN0JGMjdDQzRGOUFFMDIvODU5NUE3NEEz NzNDMTFFQ0EzRThDNTFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAIr4TwwDQQCAAIwBwMFACQEzIAwDQYJKoZIhvcNAQELBQAD ggEBAEYn8Hj7m25NCfJSKVwhzoCKChranj3CFL1TWq+j1k5IlBb45KlAmLOcjc78 AyQ6rw31d95Fn5EUJejoSyqD2hiyXMfMpyhsBt3EDm5h2IW4Z5hf2hNb33UODCGQ chTSJVvfNmv/OhcRlRK54QChoQqusM1B83MlmEFvZCrD+f6NAvjYy6RA2dnr5eiO hobmEfgYDO8DOT2g+BRMYTF8+WHJ6iBUHNll1wO/vtONYC4Oy/p+GksnQKBQ9CsQ I+xwNS6GKjk6iWHeDew95FcC8hIo/Wqv8ChV4elGnnOguo9xY45pG+68RbH9zFGD qDBSmEk7Uxf/R6Uk0zHouACaiS4= -----END CERTIFICATE-----Generated at Thu May 16 17:51:18 2024 by rpki-client on console-ams.rpki-client.org