$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/D88ED59C139611EEAA8C626DC4F9AE02.roa File: D88ED59C139611EEAA8C626DC4F9AE02.roa (raw, json) Hash identifier: GcWuXBcrnsrhuwIeoq4MbNxTzzsh2SwLD4BEFQF55ig= Subject key identifier: 07:BF:AC:81:B6:00:FB:38:35:26:C0:0E:26:87:4F:61:EE:85:11:65 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 04B7 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/D88ED59C139611EEAA8C626DC4F9AE02.roa Signing time: Tue 05 Sep 2023 00:51:33 +0000 ROA not before: Tue 05 Sep 2023 00:51:33 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 149485 IP address blocks: 43.247.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 18 Jun 2024 02:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1207 (0x4b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 5 00:51:33 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f67b95-73b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:c3:45:6d:29:f5:17:b9:9a:34:cb:cf:be:6a: 56:6b:0e:ae:79:f5:65:22:7a:11:55:81:26:dd:1a: 59:74:80:d3:57:da:10:19:dc:8d:64:01:40:92:55: da:45:5d:68:f0:2f:0f:f4:d0:7b:2f:a8:d8:db:8e: f9:b5:62:c8:98:68:eb:f0:b4:47:27:22:4e:47:bf: b8:f6:e9:33:97:4e:47:7a:ee:7a:f4:f1:53:8f:f3: 07:2c:29:46:0c:7c:c6:ca:fa:de:57:e8:fc:92:ff: de:e3:88:53:99:db:2e:80:a0:db:f2:e2:35:cb:3b: 04:63:c4:3b:37:1e:56:8f:87:ce:78:33:34:95:58: 66:85:5b:4d:7c:93:1b:6f:7c:07:94:d7:85:a6:1d: c5:84:5f:7d:56:58:51:4a:2e:bb:fe:26:04:b9:41: 57:79:4d:af:49:6f:97:78:1c:1c:01:5a:c5:99:40: 72:3f:72:b5:bc:03:20:4c:f1:4b:30:ec:ca:74:4d: 12:79:16:cd:74:e5:42:2f:ba:34:4b:96:17:b1:ff: d8:38:48:51:c3:3b:29:41:3e:b2:45:95:29:6b:6c: 68:48:91:40:6a:b2:4d:1b:14:d0:cb:16:1c:de:32: 11:b5:41:cf:51:92:6a:b5:a2:1e:bb:ab:bc:cd:3a: 39:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BF:AC:81:B6:00:FB:38:35:26:C0:0E:26:87:4F:61:EE:85:11:65 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/D88ED59C139611EEAA8C626DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.247.132.0/24 Signature Algorithm: sha256WithRSAEncryption 31:58:76:d8:f2:88:fb:a7:12:91:b9:d4:fd:a4:58:bb:62:20: 32:23:bc:f2:fa:bf:21:c5:4d:0b:0e:46:e5:d4:61:a7:50:f0: 59:c4:53:25:96:0f:1a:6f:45:83:dd:3c:07:94:b4:71:54:20: 81:e7:df:bc:8f:3c:ef:62:c7:ee:cb:93:2a:49:d0:ef:67:4c: fe:41:ef:68:b8:39:b3:73:b1:bf:e7:b8:96:91:9c:7b:a1:10: 5f:c9:1e:92:80:0c:e2:36:55:56:17:1d:d8:b3:64:31:af:03: bb:d6:68:f2:9e:11:cd:e1:30:65:4d:9e:37:d7:83:bb:da:71: ba:47:3e:18:ed:36:6e:10:70:f7:86:f2:b3:f5:33:62:39:aa: 03:33:16:d0:00:a8:62:00:1a:7e:bc:eb:d0:a3:69:06:90:3f: 85:8d:80:82:91:7f:f0:b3:f0:19:78:44:0c:bc:e6:57:18:49: 48:c6:f8:03:3f:8f:a3:eb:53:6c:2b:47:d5:fe:a4:11:64:dc: 03:0e:6e:4b:2a:ea:7b:46:6b:9b:5e:9a:82:b5:4d:5b:1b:1d: bf:5c:e2:07:a3:24:61:8d:25:1f:47:3a:b9:69:eb:54:fb:0d: c9:4c:40:ec:2c:b0:0c:f2:e5:93:24:2f:b1:17:eb:a4:98:62: 7b:41:81:b0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBLcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjMwOTA1MDA1MTMzWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2N2I5NS03M2I1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs8NFbSn1F7maNMvPvmpWaw6uefVlInoRVYEm3RpZdIDTV9oQGdyNZAFAklXa RV1o8C8P9NB7L6jY2475tWLImGjr8LRHJyJOR7+49ukzl05Heu569PFTj/MHLClG DHzGyvreV+j8kv/e44hTmdsugKDb8uI1yzsEY8Q7Nx5Wj4fOeDM0lVhmhVtNfJMb b3wHlNeFph3FhF99VlhRSi67/iYEuUFXeU2vSW+XeBwcAVrFmUByP3K1vAMgTPFL MOzKdE0SeRbNdOVCL7o0S5YXsf/YOEhRwzspQT6yRZUpa2xoSJFAarJNGxTQyxYc 3jIRtUHPUZJqtaIeu6u8zTo5rQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAe/rIG2 APs4NSbADiaHT2HuhRFlMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvRDg4RUQ1OUMx Mzk2MTFFRUFBOEM2MjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr94QwDQYJKoZIhvcNAQELBQADggEBADFYdtjyiPunEpG5 1P2kWLtiIDIjvPL6vyHFTQsORuXUYadQ8FnEUyWWDxpvRYPdPAeUtHFUIIHn37yP PO9ix+7LkypJ0O9nTP5B72i4ObNzsb/nuJaRnHuhEF/JHpKADOI2VVYXHdizZDGv A7vWaPKeEc3hMGVNnjfXg7vacbpHPhjtNm4QcPeG8rP1M2I5qgMzFtAAqGIAGn68 69CjaQaQP4WNgIKRf/Cz8Bl4RAy85lcYSUjG+AM/j6PrU2wrR9X+pBFk3AMObksq 6ntGa5temoK1TVsbHb9c4gejJGGNJR9HOrlp61T7DclMQOwssAzy5ZMkL7EX66SY YntBgbA= -----END CERTIFICATE-----Generated at Tue Jun 11 04:24:44 2024 by rpki-client on console-ams.rpki-client.org