$ rpki-client -vvf rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/E20B36B8D7BA11EEA17F0E83C4F9AE02.roa File: E20B36B8D7BA11EEA17F0E83C4F9AE02.roa (raw, json) Hash identifier: Bpg4FPqnEvREZgEtkm3NUTkjYMdTPfX+/zqwi+KvuqI= Subject key identifier: 65:DB:6B:97:6D:8B:7D:93:1D:5E:08:4E:DB:11:67:50:AF:48:5C:E7 Certificate issuer: /CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Certificate serial: 05A8 Authority key identifier: ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/E20B36B8D7BA11EEA17F0E83C4F9AE02.roa Signing time: Fri 01 Mar 2024 11:00:15 +0000 ROA not before: Fri 01 Mar 2024 11:00:15 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 51791 IP address blocks: 43.255.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 01:19:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1448 (0x5a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9139322/serialNumber=EDC547BD0E6C0C0706A185833835F65EA3C71013 Validity Not Before: Mar 1 11:00:15 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65e1b53f-6f37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:dc:ab:b1:3c:c5:0e:46:d4:b9:bb:5a:ec:36: 9a:5e:72:cf:a2:81:6e:ff:b2:98:89:3f:8f:00:8d: ae:ee:85:4d:88:43:d1:ed:2a:1e:b3:03:7d:e8:6c: c1:fe:07:45:fc:d4:56:88:ed:6e:e6:62:f6:d9:b0: ae:3f:0b:dc:bd:e1:94:e6:9d:c8:fc:92:86:a0:be: 6f:c7:f0:7f:1a:42:31:11:63:e7:35:5b:23:cd:d2: 40:2e:09:76:0e:be:3c:e3:05:a5:cc:f8:68:f9:e1: bf:44:fe:e6:08:5b:7c:ac:eb:92:7b:34:a8:d3:45: 0b:58:48:77:a7:a7:3f:06:8d:9b:e5:b3:63:19:c5: 24:a9:0f:ed:7a:30:60:fa:ee:87:dd:c7:9a:8a:22: 80:7c:e4:1a:a0:fd:ae:79:fd:f6:df:31:d7:0d:41: 8f:da:44:9c:be:96:a0:63:69:ef:f2:cc:b5:e2:79: a2:e3:12:c4:5e:e4:95:90:4a:84:65:e3:07:ed:fd: 71:d8:50:13:39:a7:52:24:5d:dc:35:9c:86:b3:5f: 0f:a2:a5:ce:ff:1c:f3:44:4f:e4:d8:26:ee:02:2d: 64:ba:6b:ce:f1:8f:62:42:18:ee:74:b8:77:d6:d2: 3c:6b:0e:58:d4:32:f2:fe:fd:6a:d4:dc:7b:f3:40: b2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:DB:6B:97:6D:8B:7D:93:1D:5E:08:4E:DB:11:67:50:AF:48:5C:E7 X509v3 Authority Key Identifier: keyid:ED:C5:47:BD:0E:6C:0C:07:06:A1:85:83:38:35:F6:5E:A3:C7:10:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/7cVHvQ5sDAcGoYWDODX2XqPHEBM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/7cVHvQ5sDAcGoYWDODX2XqPHEBM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9139322/2CB1EEBAF65311EBA1B4A61AC4F9AE02/E20B36B8D7BA11EEA17F0E83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.122.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:94:f0:6f:2c:80:a8:e8:a4:36:be:00:1c:69:29:e1:9e:8d: bf:85:79:d1:9d:17:a6:5b:ec:0e:e7:5f:8b:b4:3e:42:dd:1f: bb:5b:84:3f:6c:fa:55:73:c2:43:b1:5d:d9:f3:8d:fc:69:47: ea:85:40:b5:f0:5f:8a:e8:4d:7a:71:38:36:33:74:80:5e:51: 58:a4:b2:c7:7e:b5:a7:e6:f8:24:62:b8:92:6b:b6:06:5a:70: 3b:92:4e:44:23:58:bc:5c:a0:e4:bb:0f:ca:5e:86:d6:4f:34: e0:d2:82:c7:f1:e1:c8:f3:b7:e7:d6:33:d4:11:e3:c4:d1:56: 2f:6b:8a:21:38:99:bb:10:cb:57:a9:3a:09:e6:68:74:46:77: 11:be:7c:bb:ed:35:c9:a3:fa:e0:0d:b9:cb:7f:1f:ed:09:5e: 3f:49:ce:b4:00:5e:c8:ef:74:04:8d:48:0f:d2:2a:7d:36:33: cd:65:49:59:10:e4:8e:d2:dd:7b:5d:13:8b:c1:d8:62:3b:24: 93:8e:29:2c:e8:a8:cd:44:b6:8a:fc:f4:e2:61:1e:c7:87:67: a0:11:a1:bb:fe:6d:e7:fa:0f:b1:63:c4:d0:43:02:b2:f7:e9: 2a:06:95:dd:f5:a7:3a:45:7d:b2:f2:5c:f5:e2:2c:11:5c:76: 36:74:6d:c5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBagwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzkzMjIxMTAvBgNVBAUTKEVEQzU0N0JEMEU2QzBDMDcwNkExODU4MzM4MzVGNjVF QTNDNzEwMTMwHhcNMjQwMzAxMTEwMDE1WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxYjUzZi02ZjM3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+tyrsTzFDkbUubta7DaaXnLPooFu/7KYiT+PAI2u7oVNiEPR7SoeswN96GzB /gdF/NRWiO1u5mL22bCuPwvcveGU5p3I/JKGoL5vx/B/GkIxEWPnNVsjzdJALgl2 Dr484wWlzPho+eG/RP7mCFt8rOuSezSo00ULWEh3p6c/Bo2b5bNjGcUkqQ/tejBg +u6H3ceaiiKAfOQaoP2uef323zHXDUGP2kScvpagY2nv8sy14nmi4xLEXuSVkEqE ZeMH7f1x2FATOadSJF3cNZyGs18PoqXO/xzzRE/k2CbuAi1kumvO8Y9iQhjudLh3 1tI8aw5Y1DLy/v1q1Nx780Cy+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGXba5dt i32THV4ITtsRZ1CvSFznMB8GA1UdIwQYMBaAFO3FR70ObAwHBqGFgzg19l6jxxAT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTMyMi8yQ0IxRUVCQUY2 NTMxMUVCQTFCNEE2MUFDNEY5QUUwMi83Y1ZIdlE1c0RBY0dvWVdET0RYMlhxUEhF Qk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzdjVkh2UTVzREFjR29ZV0RPRFgyWHFQSEVCTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzkzMjIvMkNCMUVFQkFGNjUzMTFFQkExQjRBNjFBQzRGOUFFMDIvRTIwQjM2QjhE N0JBMTFFRUExN0YwRTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr/3owDQYJKoZIhvcNAQELBQADggEBAAyU8G8sgKjopDa+ ABxpKeGejb+FedGdF6Zb7A7nX4u0PkLdH7tbhD9s+lVzwkOxXdnzjfxpR+qFQLXw X4roTXpxODYzdIBeUVikssd+tafm+CRiuJJrtgZacDuSTkQjWLxcoOS7D8pehtZP NODSgsfx4cjzt+fWM9QR48TRVi9riiE4mbsQy1epOgnmaHRGdxG+fLvtNcmj+uAN uct/H+0JXj9JzrQAXsjvdASNSA/SKn02M81lSVkQ5I7S3XtdE4vB2GI7JJOOKSzo qM1Etor89OJhHseHZ6ARobv+bef6D7FjxNBDArL36SoGld31pzpFfbLyXPXiLBFc djZ0bcU= -----END CERTIFICATE-----Generated at Sun May 19 02:39:35 2024 by rpki-client on console-fra.rpki-client.org