$ rpki-client -vvf rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa File: 0B0485A250B811EBA8A3C670C4F9AE02.roa (raw, json) Hash identifier: MZjVbIIn+kLj9YDzi2eUEZUUSywsBWXqkfR0xW4BoIA= Subject key identifier: 4A:3F:C1:D3:F3:CF:15:12:1E:75:0E:0A:18:FC:01:5A:16:42:DA:7B Certificate issuer: /CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Certificate serial: 08EF Authority key identifier: AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa Signing time: Thu 04 May 2023 22:39:17 +0000 ROA not before: Thu 04 May 2023 22:39:17 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 198949 IP address blocks: 43.251.21.0/24 maxlen: 24 43.251.22.0/23 maxlen: 23 202.155.221.0/24 maxlen: 24 218.253.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Apr 2024 21:22:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2287 (0x8ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9132B1E/serialNumber=ABD43548659CBB276EF8D35B8212F838E8CEB75F Validity Not Before: May 4 22:39:17 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64543415-6f2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:af:88:ce:db:4f:59:4a:61:ba:8c:0d:4f:d0: 9f:7b:a7:46:ae:d0:11:02:ad:6a:ca:66:f0:d3:fd: b7:98:1d:00:fb:4d:83:d2:c9:db:b4:52:57:1a:71: 6d:5f:9e:58:b3:95:e1:23:c3:c0:72:c6:7c:28:74: 3b:0d:56:05:32:49:ba:b3:f0:bb:5a:4a:51:82:85: 4d:a8:a9:1e:44:ea:24:5b:f5:38:48:a8:11:2f:70: b0:74:9f:6c:7b:dd:99:c7:f6:89:0a:7a:bf:e4:63: 7d:c6:f8:5c:69:c7:ec:05:c1:21:90:93:23:40:ad: a8:f2:21:e7:2b:b4:b5:f3:24:36:82:f4:a2:63:f0: 45:5f:87:8d:d5:d5:46:3a:65:b7:ce:49:42:ad:24: 3f:4a:df:c2:a4:75:7a:a7:63:cd:a9:03:a3:a1:14: 0d:b8:e0:fc:36:65:d5:29:1a:22:cc:fd:72:f5:7e: 7f:7b:c1:c1:6e:69:8b:be:32:e3:48:f0:53:f0:d6: 72:8a:d2:3a:63:40:80:30:24:cd:22:64:13:f7:ce: 6a:24:04:4a:4b:5c:d9:e4:ef:80:d1:59:7a:af:8b: a0:ee:5c:41:80:81:9b:bf:58:91:c7:6d:73:54:b7: 49:7f:c8:25:de:56:2b:0d:77:53:7d:16:5d:a8:29: c7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:3F:C1:D3:F3:CF:15:12:1E:75:0E:0A:18:FC:01:5A:16:42:DA:7B X509v3 Authority Key Identifier: keyid:AB:D4:35:48:65:9C:BB:27:6E:F8:D3:5B:82:12:F8:38:E8:CE:B7:5F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/q9Q1SGWcuydu-NNbghL4OOjOt18.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q9Q1SGWcuydu-NNbghL4OOjOt18.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9132B1E/8936CC04883211EA84861B70C4F9AE02/0B0485A250B811EBA8A3C670C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.251.21.0-43.251.23.255 202.155.221.0/24 218.253.207.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:51:1d:f6:ea:5f:48:24:9a:68:80:ba:60:16:6e:87:07:1d: 23:15:f0:4f:28:0b:18:24:2c:14:4f:63:7e:cf:ab:c3:66:ff: 44:9c:7e:02:33:18:ab:16:97:1e:89:60:be:95:aa:71:ce:56: 91:ea:2c:d2:a4:d5:f1:dc:89:43:2b:57:01:3a:fc:74:17:98: 60:c4:30:21:53:f7:3f:ed:d8:09:32:9e:82:de:0b:f1:94:ff: 81:49:14:a6:3b:22:08:77:86:e5:5a:8d:fb:9a:20:8c:18:dc: af:ef:84:a1:a6:92:bf:be:01:e5:4d:56:b2:b9:7e:f9:cf:53: ab:a7:d5:dc:56:6a:68:4a:32:15:c2:e6:2d:47:63:16:4d:66: 03:d8:12:b5:53:a9:c8:11:12:59:eb:f7:a1:b2:22:56:aa:b0: 04:33:a8:ef:eb:45:da:04:f6:4b:2c:cd:4e:f2:21:76:ea:7e: 55:54:f7:65:59:09:15:52:c4:21:ac:1c:ac:42:8c:16:02:4d: fb:8e:c9:2d:ed:cc:c9:5a:c7:01:bb:b4:33:41:7f:6b:fa:13: 1c:09:b5:7f:3a:47:ff:3a:b6:35:5f:5a:dc:11:7d:41:83:62: 60:ce:c3:4a:be:eb:5e:7c:90:cb:c0:03:49:a6:0f:ee:5b:d3: ad:17:af:31 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICCO8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzJCMUUxMTAvBgNVBAUTKEFCRDQzNTQ4NjU5Q0JCMjc2RUY4RDM1QjgyMTJGODM4 RThDRUI3NUYwHhcNMjMwNTA0MjIzOTE3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDU0MzQxNS02ZjJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA7q+IzttPWUphuowNT9Cfe6dGrtARAq1qymbw0/23mB0A+02D0snbtFJXGnFt X55Ys5XhI8PAcsZ8KHQ7DVYFMkm6s/C7WkpRgoVNqKkeROokW/U4SKgRL3CwdJ9s e92Zx/aJCnq/5GN9xvhcacfsBcEhkJMjQK2o8iHnK7S18yQ2gvSiY/BFX4eN1dVG OmW3zklCrSQ/St/CpHV6p2PNqQOjoRQNuOD8NmXVKRoizP1y9X5/e8HBbmmLvjLj SPBT8NZyitI6Y0CAMCTNImQT985qJARKS1zZ5O+A0Vl6r4ug7lxBgIGbv1iRx21z VLdJf8gl3lYrDXdTfRZdqCnHYwIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFEo/wdPz zxUSHnUOChj8AVoWQtp7MB8GA1UdIwQYMBaAFKvUNUhlnLsnbvjTW4IS+Djozrdf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMkIxRS84OTM2Q0MwNDg4 MzIxMUVBODQ4NjFCNzBDNEY5QUUwMi9xOVExU0dXY3V5ZHUtTk5iZ2hMNE9Pak90 MTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3E5UTFTR1djdXlkdS1OTmJnaEw0T09qT3QxOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzJCMUUvODkzNkNDMDQ4ODMyMTFFQTg0ODYxQjcwQzRGOUFFMDIvMEIwNDg1QTI1 MEI4MTFFQkE4QTNDNjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBowDAMEACv7FQMEAyv7EAMEAMqb3QMEANr9zzANBgkqhkiG9w0B AQsFAAOCAQEAjFEd9upfSCSaaIC6YBZuhwcdIxXwTygLGCQsFE9jfs+rw2b/RJx+ AjMYqxaXHolgvpWqcc5Wkeos0qTV8dyJQytXATr8dBeYYMQwIVP3P+3YCTKegt4L 8ZT/gUkUpjsiCHeG5VqN+5ogjBjcr++EoaaSv74B5U1Wsrl++c9Tq6fV3FZqaEoy FcLmLUdjFk1mA9gStVOpyBESWev3obIiVqqwBDOo7+tF2gT2SyzNTvIhdup+VVT3 ZVkJFVLEIawcrEKMFgJN+47JLe3MyVrHAbu0M0F/a/oTHAm1fzpH/zq2NV9a3BF9 QYNiYM7DSr7rXnyQy8ADSaYP7lvTrRevMQ== -----END CERTIFICATE-----Generated at Thu Apr 18 22:03:38 2024 by rpki-client on console-fra.rpki-client.org