$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/E20B36B8D7BA11EEA17F0E83C4F9AE02.roa File: E20B36B8D7BA11EEA17F0E83C4F9AE02.roa (raw, json) Hash identifier: 79JSkXVIKOjqvvxYPCuapgw/VjcRIymGOOFJLOS70p0= Subject key identifier: 30:86:83:14:11:D1:06:85:08:CF:3A:4B:2F:40:12:DE:A8:AC:75:B3 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 0635 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/E20B36B8D7BA11EEA17F0E83C4F9AE02.roa Signing time: Tue 03 Sep 2024 01:14:20 +0000 ROA not before: Tue 03 Sep 2024 01:14:20 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 51791 IP address blocks: 43.255.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 23:08:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1589 (0x635) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Sep 3 01:14:20 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=66d662ec-ede1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:76:9e:ae:5a:56:a0:6a:bf:39:1a:f9:77:3a: 06:69:15:79:3b:7d:30:ee:1f:ad:73:90:ab:f1:c2: 7e:d7:f4:78:f8:55:47:32:16:49:dd:c3:63:5a:25: 84:b5:9d:53:d9:90:22:3d:40:2d:bc:f9:9e:9d:51: b7:97:f6:fc:5e:0e:0f:d5:32:df:06:07:09:a5:7d: 7d:fc:07:67:60:bb:fa:84:5a:2d:47:66:7f:4f:0d: 0e:52:ff:11:8c:5f:97:29:79:08:c6:27:91:1c:0a: 6e:95:00:6c:12:ed:4f:e9:2b:1d:f6:68:c3:00:4c: 05:8d:0d:fb:30:ca:65:3b:65:7c:c1:96:00:12:10: 93:89:f0:fe:53:8b:fe:e4:6a:20:6f:e7:dd:58:a7: ac:71:5e:04:6a:c5:a7:67:d2:25:4d:9b:d9:e5:78: 59:2f:02:8d:23:dd:e5:ce:1a:b3:79:63:7a:31:8d: e0:39:f9:97:85:ff:ec:51:f6:17:c4:bc:ad:3a:fb: 09:8b:59:eb:bf:88:9b:24:cd:44:8b:b2:8e:05:75: 5f:ae:40:5b:0a:cf:73:1f:3c:ce:30:b8:6e:fb:11: 6c:35:0e:6d:95:b2:eb:f1:a3:3e:da:43:e2:7c:52: 81:39:f2:ee:98:ab:85:1f:1b:1d:5f:b1:b8:9e:ed: 86:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:86:83:14:11:D1:06:85:08:CF:3A:4B:2F:40:12:DE:A8:AC:75:B3 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/E20B36B8D7BA11EEA17F0E83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.122.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:94:df:2b:02:14:02:e8:f1:db:80:0f:b6:48:12:0a:99:30: 45:7b:94:b8:37:6e:57:6f:a7:62:84:33:7c:09:41:f8:c2:c2: 92:28:d5:0d:ac:35:a0:b0:99:bd:c2:d4:ff:d6:89:56:da:10: 18:21:46:3e:3e:a4:d6:2a:86:40:ab:62:d2:16:ec:33:04:1b: fe:14:5c:62:25:56:79:01:97:43:9a:40:9a:d7:70:9e:b1:7b: 42:ea:0b:5b:3d:4c:86:f1:dd:24:2c:58:25:d0:6e:25:0d:b6: 9e:28:a1:4c:56:f2:77:4d:fd:9a:ba:56:e7:52:bc:75:5a:1f: 54:3d:f0:1a:6e:b6:5f:86:2a:86:72:c3:80:9c:d9:6d:36:78: 43:25:f7:33:bf:3c:b2:77:c0:a5:ea:8d:8e:e8:38:24:78:16: fc:d9:19:be:66:d6:b9:c7:7f:a6:8f:2a:db:ec:34:0e:67:0c: f8:44:a6:90:15:43:89:ab:0f:65:0d:f9:34:17:81:cf:5b:c1: 4d:3e:e1:68:e2:f3:8b:51:b8:45:2e:e8:00:01:25:52:a9:8a: 24:60:19:37:a2:92:92:fa:d3:a5:88:4f:17:66:5b:8c:43:50: 40:00:c2:f7:14:57:ca:f5:80:12:42:61:8f:63:85:94:2a:43: 39:90:4a:5e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBjUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwOTAzMDExNDIwWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NmQ2NjJlYy1lZGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXaerlpWoGq/ORr5dzoGaRV5O30w7h+tc5Cr8cJ+1/R4+FVHMhZJ3cNjWiWE tZ1T2ZAiPUAtvPmenVG3l/b8Xg4P1TLfBgcJpX19/AdnYLv6hFotR2Z/Tw0OUv8R jF+XKXkIxieRHApulQBsEu1P6Ssd9mjDAEwFjQ37MMplO2V8wZYAEhCTifD+U4v+ 5Gogb+fdWKescV4EasWnZ9IlTZvZ5XhZLwKNI93lzhqzeWN6MY3gOfmXhf/sUfYX xLytOvsJi1nrv4ibJM1Ei7KOBXVfrkBbCs9zHzzOMLhu+xFsNQ5tlbLr8aM+2kPi fFKBOfLumKuFHxsdX7G4nu2GkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFDCGgxQR 0QaFCM86Sy9AEt6orHWzMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvRTIwQjM2QjhE N0JBMTFFRUExN0YwRTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr/3owDQYJKoZIhvcNAQELBQADggEBAF+U3ysCFALo8duA D7ZIEgqZMEV7lLg3bldvp2KEM3wJQfjCwpIo1Q2sNaCwmb3C1P/WiVbaEBghRj4+ pNYqhkCrYtIW7DMEG/4UXGIlVnkBl0OaQJrXcJ6xe0LqC1s9TIbx3SQsWCXQbiUN tp4ooUxW8ndN/Zq6VudSvHVaH1Q98Bputl+GKoZyw4Cc2W02eEMl9zO/PLJ3wKXq jY7oOCR4FvzZGb5m1rnHf6aPKtvsNA5nDPhEppAVQ4mrD2UN+TQXgc9bwU0+4Wji 84tRuEUu6AABJVKpiiRgGTeikpL606WITxdmW4xDUEAAwvcUV8r1gBJCYY9jhZQq QzmQSl4= -----END CERTIFICATE-----Generated at Mon Nov 25 01:01:26 2024 by rpki-client on console-ams.rpki-client.org