$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/CEC4C0B26D0511EE959F6246C4F9AE02.roa File: CEC4C0B26D0511EE959F6246C4F9AE02.roa (raw, json) Hash identifier: 6llaAL9PWQOYh84Il8OT8O+mJN+THHouJvv1ZtgfJTU= Subject key identifier: DB:F5:EA:B4:F9:76:6A:DC:47:41:8E:14:70:96:9F:72:98:37:27:DB Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0567 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/CEC4C0B26D0511EE959F6246C4F9AE02.roa Signing time: Mon 25 Dec 2023 17:25:28 +0000 ROA not before: Mon 25 Dec 2023 17:25:28 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 43.255.157.0/24 maxlen: 24 103.240.198.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 02:01:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1383 (0x567) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Dec 25 17:25:28 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6589bb08-62a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:29:fe:54:bd:ba:ad:87:89:c8:5e:af:13:34: c4:9d:a5:ac:c3:09:93:13:de:e1:fb:1a:55:63:23: 53:e4:56:7c:91:1d:a5:89:e5:3b:af:ed:6f:fc:b4: 3a:70:73:fa:04:6a:f1:52:4b:d1:74:7c:47:bc:f7: 35:79:7e:04:86:2b:b2:1f:6f:00:86:c4:9a:fc:6f: 66:34:7c:97:b0:38:2c:2f:45:1e:41:bb:ce:22:30: 76:e1:86:84:6a:63:18:40:a4:a1:3b:bc:fc:18:0f: 6c:e3:68:18:0e:f3:36:cb:c6:4f:fb:3d:5f:4e:a6: 28:b7:82:64:ec:53:07:8f:ab:2b:d4:f4:a7:1e:a9: 4b:a2:1e:3c:e9:4b:ba:d8:d3:09:93:a3:f5:21:50: 3c:02:f4:0d:c0:6d:44:eb:b5:a6:ff:d8:d6:61:69: 61:8b:f2:f6:85:42:07:95:d5:e9:8c:3d:1c:35:ad: 23:9b:f9:73:a8:d8:a4:8a:65:18:1e:a5:51:b0:ef: 8b:d1:a3:c6:14:f3:99:ea:2e:82:bb:7a:12:5e:d4: da:65:8c:37:62:09:bc:96:5f:75:29:82:58:f6:ed: fd:e0:f7:a0:fa:f4:6a:be:ab:3c:2b:71:10:b0:13: 06:d6:bc:4a:6a:ac:74:98:d3:4b:1c:84:68:e0:62: c1:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F5:EA:B4:F9:76:6A:DC:47:41:8E:14:70:96:9F:72:98:37:27:DB X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/CEC4C0B26D0511EE959F6246C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.157.0/24 103.240.198.0/24 Signature Algorithm: sha256WithRSAEncryption b0:6a:86:9e:6a:da:91:f5:3e:b7:db:79:8f:9c:5e:74:74:90: 06:b7:60:24:a5:e7:a5:58:65:8b:67:de:7a:66:ee:9f:c6:46: 34:14:76:66:a1:fe:28:f2:d1:f7:dd:f5:c5:4c:f7:49:44:3f: b5:96:cb:d6:b3:04:8a:10:89:d7:b6:91:91:39:40:41:6b:17: 75:1b:6a:94:1d:ad:37:a9:35:33:28:f5:b8:5b:5b:75:5c:04: 52:c7:61:c9:a5:a8:50:e0:39:7d:e5:2b:95:b2:77:1a:21:80: 13:35:8f:32:81:ac:ec:5e:2b:ba:f8:bc:fc:a9:13:bc:5c:1c: 0a:cd:90:10:e5:b4:19:56:01:93:3e:7f:91:bc:6b:89:be:15: 44:b7:f9:1c:35:b5:9b:9e:e4:86:94:6a:41:94:9e:3d:2e:24: a7:e1:ea:99:d5:c5:63:36:56:6b:0d:6b:e1:b4:7c:10:44:cd: 5a:38:03:43:29:50:8f:96:f0:d6:e2:d8:ea:71:9f:86:6d:6c: 48:ba:77:cd:24:d0:33:a6:ab:9c:f4:c1:f0:f8:c2:78:45:ce: b3:d6:21:26:e0:ed:8a:81:11:ca:9d:9c:26:06:ac:de:ae:88: b6:42:e9:2a:49:89:8d:ba:c9:77:d8:97:11:43:b7:02:f0:bc: 4b:dc:e3:78 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBWcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjMxMjI1MTcyNTI4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg5YmIwOC02MmEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnCn+VL26rYeJyF6vEzTEnaWswwmTE97h+xpVYyNT5FZ8kR2lieU7r+1v/LQ6 cHP6BGrxUkvRdHxHvPc1eX4EhiuyH28AhsSa/G9mNHyXsDgsL0UeQbvOIjB24YaE amMYQKShO7z8GA9s42gYDvM2y8ZP+z1fTqYot4Jk7FMHj6sr1PSnHqlLoh486Uu6 2NMJk6P1IVA8AvQNwG1E67Wm/9jWYWlhi/L2hUIHldXpjD0cNa0jm/lzqNikimUY HqVRsO+L0aPGFPOZ6i6Cu3oSXtTaZYw3Ygm8ll91KYJY9u394Peg+vRqvqs8K3EQ sBMG1rxKaqx0mNNLHIRo4GLB2wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFNv16rT5 dmrcR0GOFHCWn3KYNyfbMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvQ0VDNEMwQjI2 RDA1MTFFRTk1OUY2MjQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr/50DBABn8MYwDQYJKoZIhvcNAQELBQADggEBALBqhp5q 2pH1PrfbeY+cXnR0kAa3YCSl56VYZYtn3npm7p/GRjQUdmah/ijy0ffd9cVM90lE P7WWy9azBIoQide2kZE5QEFrF3UbapQdrTepNTMo9bhbW3VcBFLHYcmlqFDgOX3l K5WydxohgBM1jzKBrOxeK7r4vPypE7xcHArNkBDltBlWAZM+f5G8a4m+FUS3+Rw1 tZue5IaUakGUnj0uJKfh6pnVxWM2VmsNa+G0fBBEzVo4A0MpUI+W8Nbi2Opxn4Zt bEi6d80k0DOmq5z0wfD4wnhFzrPWISbg7YqBEcqdnCYGrN6uiLZC6SpJiY26yXfY lxFDtwLwvEvc43g= -----END CERTIFICATE-----Generated at Wed May 1 03:20:30 2024 by rpki-client on console-fra.rpki-client.org