$ rpki-client -vvf rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/609B8BC27D7B11EDB6B77173C4F9AE02.roa File: 609B8BC27D7B11EDB6B77173C4F9AE02.roa (raw, json) Hash identifier: VguqI9F6IP6sMMDtb1s9QkjByZplLFKocGX0txFKZE8= Subject key identifier: F7:D1:67:B1:7B:15:D5:45:80:83:CE:A7:34:71:D5:D9:F2:52:49:77 Certificate issuer: /CN=A914B5BD/serialNumber=22E81B327CB1FB3501E05AFAB94121918FDB5B5E Certificate serial: 1714 Authority key identifier: 22:E8:1B:32:7C:B1:FB:35:01:E0:5A:FA:B9:41:21:91:8F:DB:5B:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/609B8BC27D7B11EDB6B77173C4F9AE02.roa Signing time: Mon 02 Oct 2023 16:54:24 +0000 ROA not before: Mon 02 Oct 2023 16:54:24 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 60064 IP address blocks: 43.239.141.0/24 maxlen: 24 43.239.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.crl rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:10:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5908 (0x1714) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B5BD/serialNumber=22E81B327CB1FB3501E05AFAB94121918FDB5B5E Validity Not Before: Oct 2 16:54:24 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651af5bf-13dc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:89:cb:b1:c6:fb:2a:9f:54:fb:c4:c2:ce:98: ae:7f:d1:63:66:d9:90:bf:48:6a:b0:cb:13:f1:79: 67:c9:fc:f7:3f:11:a4:c1:ca:5d:c1:9e:63:b2:e2: 96:d1:88:4c:a6:00:35:17:d1:66:8b:0a:b7:d0:8f: 0d:3a:67:3a:71:f5:04:f9:0f:b7:35:d2:cc:87:98: f4:00:17:0b:65:2b:b5:84:5d:8a:fe:70:aa:58:64: bf:0a:21:d9:fb:0b:b9:56:7e:50:59:33:75:e4:36: 32:35:ff:3a:ef:4d:c5:d1:22:ab:e7:77:8f:3b:d1: 31:72:b8:75:0e:85:1a:6f:5e:58:ed:a3:74:b4:a2: 18:bf:b0:68:34:5f:eb:11:fd:45:c0:9c:28:3d:9b: 66:ff:52:05:a1:6c:ff:fc:bd:78:ba:da:2f:2e:e0: 36:ec:ff:88:f7:f1:5e:ec:9c:b5:b2:24:52:5b:73: db:c3:bb:76:6d:33:f2:7d:69:07:5e:c6:31:05:22: a0:00:e7:15:28:b1:26:24:f8:22:66:42:3d:9a:dd: a2:98:97:05:1b:e3:86:f0:ae:d3:15:b7:0a:6d:67: f0:f8:cf:4b:4d:8b:f7:18:2a:29:11:76:c6:c0:16: cc:50:b6:d8:4a:d1:9a:2f:e2:5d:16:66:40:9f:bc: a9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:D1:67:B1:7B:15:D5:45:80:83:CE:A7:34:71:D5:D9:F2:52:49:77 X509v3 Authority Key Identifier: keyid:22:E8:1B:32:7C:B1:FB:35:01:E0:5A:FA:B9:41:21:91:8F:DB:5B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/609B8BC27D7B11EDB6B77173C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.141.0/24 43.239.143.0/24 Signature Algorithm: sha256WithRSAEncryption 87:e3:db:d3:c7:13:e1:0c:c3:3f:28:5e:5f:04:96:69:9e:51: c7:71:56:fb:25:78:b1:08:34:5a:84:01:13:1a:6f:0c:73:6b: f8:82:89:de:66:e1:63:0d:76:d5:9b:19:22:58:5f:56:32:a2: cf:44:d8:77:e8:e7:db:5a:fe:cd:81:a1:0f:33:cd:f2:46:cc: 3f:6e:df:8d:b3:bb:07:b7:5f:85:d5:10:50:e6:ea:63:28:39: f8:06:a6:b4:a9:b4:a1:7d:0a:d7:fa:13:44:72:1c:b9:73:2d: 18:39:35:99:5a:84:71:eb:57:8a:2b:6c:12:30:b8:53:36:a3: 4e:51:9b:0f:e5:f1:98:42:1f:46:b1:2c:bc:a2:24:4b:5d:df: 49:72:c2:6a:5b:fe:ee:cf:35:07:91:da:b9:ff:ab:d1:03:81: 2b:23:6d:cc:f9:41:77:a5:e1:53:6a:da:e4:c1:4a:70:7c:b4: d2:10:37:38:d2:5f:b6:d8:b0:1c:35:f6:ae:83:ff:97:7f:ac: 73:48:88:bc:bb:c4:62:73:d7:93:ca:30:a2:5e:ab:d3:29:73: 74:e1:75:ad:0e:4e:24:6e:30:fd:e2:55:6b:e8:2b:ea:05:63: 95:b4:b1:e1:77:52:60:01:51:ab:8d:d3:04:b6:0c:4c:99:50: 08:57:74:be -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICFxQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1QkQxMTAvBgNVBAUTKDIyRTgxQjMyN0NCMUZCMzUwMUUwNUFGQUI5NDEyMTkx OEZEQjVCNUUwHhcNMjMxMDAyMTY1NDI0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFhZjViZi0xM2RjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4nLscb7Kp9U+8TCzpiuf9FjZtmQv0hqsMsT8Xlnyfz3PxGkwcpdwZ5jsuKW 0YhMpgA1F9Fmiwq30I8NOmc6cfUE+Q+3NdLMh5j0ABcLZSu1hF2K/nCqWGS/CiHZ +wu5Vn5QWTN15DYyNf86703F0SKr53ePO9Excrh1DoUab15Y7aN0tKIYv7BoNF/r Ef1FwJwoPZtm/1IFoWz//L14utovLuA27P+I9/Fe7Jy1siRSW3Pbw7t2bTPyfWkH XsYxBSKgAOcVKLEmJPgiZkI9mt2imJcFG+OG8K7TFbcKbWfw+M9LTYv3GCopEXbG wBbMULbYStGaL+JdFmZAn7yp1wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPfRZ7F7 FdVFgIPOpzRx1dnyUkl3MB8GA1UdIwQYMBaAFCLoGzJ8sfs1AeBa+rlBIZGP21te MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjVCRC8zM0NCMTE3QUI1 QTkxMUU3OUM3NENCNzJDNEY5QUUwMi9JdWdiTW55eC16VUI0RnI2dVVFaGtZX2JX MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l1Z2JNbnl4LXpVQjRGcjZ1VUVoa1lfYlcxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEI1QkQvMzNDQjExN0FCNUE5MTFFNzlDNzRDQjcyQzRGOUFFMDIvNjA5QjhCQzI3 RDdCMTFFREI2Qjc3MTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr740DBAAr748wDQYJKoZIhvcNAQELBQADggEBAIfj29PH E+EMwz8oXl8ElmmeUcdxVvsleLEINFqEARMabwxza/iCid5m4WMNdtWbGSJYX1Yy os9E2Hfo59ta/s2BoQ8zzfJGzD9u342zuwe3X4XVEFDm6mMoOfgGprSptKF9Ctf6 E0RyHLlzLRg5NZlahHHrV4orbBIwuFM2o05Rmw/l8ZhCH0axLLyiJEtd30lywmpb /u7PNQeR2rn/q9EDgSsjbcz5QXel4VNq2uTBSnB8tNIQNzjSX7bYsBw19q6D/5d/ rHNIiLy7xGJz15PKMKJeq9Mpc3Thda0OTiRuMP3iVWvoK+oFY5W0seF3UmABUauN 0wS2DEyZUAhXdL4= -----END CERTIFICATE-----Generated at Thu May 16 18:26:04 2024 by rpki-client on console-fra.rpki-client.org