$ rpki-client -vvf rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/609B8BC27D7B11EDB6B77173C4F9AE02.roa File: 609B8BC27D7B11EDB6B77173C4F9AE02.roa (raw, json) Hash identifier: F+bKxuMFe/azlpMrtazRkcBCTDWemTegUDadHGY8Jy8= Subject key identifier: 6F:27:CF:EA:2F:1B:E1:88:AD:EF:74:A2:58:9E:CA:0A:7D:0E:59:EF Certificate issuer: /CN=A914B5BD/serialNumber=22E81B327CB1FB3501E05AFAB94121918FDB5B5E Certificate serial: 17DB Authority key identifier: 22:E8:1B:32:7C:B1:FB:35:01:E0:5A:FA:B9:41:21:91:8F:DB:5B:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/609B8BC27D7B11EDB6B77173C4F9AE02.roa Signing time: Fri 04 Oct 2024 16:54:46 +0000 ROA not before: Fri 04 Oct 2024 16:54:46 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 60064 IP address blocks: 43.239.141.0/24 maxlen: 24 43.239.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.crl rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 16:26:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6107 (0x17db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914B5BD/serialNumber=22E81B327CB1FB3501E05AFAB94121918FDB5B5E Validity Not Before: Oct 4 16:54:46 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=67001dd6-aa26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:d5:68:36:7e:4f:c1:b0:f3:31:38:e6:f6:d2: 20:21:ca:97:e1:c0:2e:d0:08:21:f2:76:f1:24:73: 13:09:a1:0b:dc:fe:d8:9f:71:22:db:4f:88:03:9e: 1b:bf:d8:56:69:0c:82:78:c3:95:a5:16:f1:81:19: 37:18:69:7b:4f:01:b8:78:30:0b:14:28:17:39:69: 6b:57:86:4b:c8:41:74:c9:00:1d:45:3b:e7:46:a2: fc:b8:6a:f8:de:aa:b9:f6:5e:18:50:47:d9:14:6d: 9d:c3:50:16:68:a6:46:9a:07:a7:51:24:34:77:f5: a0:f5:c3:01:67:14:51:85:68:aa:77:fa:e7:9b:ab: d3:c3:e1:66:b7:f3:84:96:33:7f:0d:26:7f:ec:18: 56:1e:55:f8:67:02:57:d9:81:0c:e5:40:e0:cf:c0: 8b:a0:d4:e3:a2:3a:e3:8c:5e:60:56:dd:38:23:9d: 3f:68:b4:51:c9:cf:66:8f:18:ac:1f:d9:11:1d:ca: 2d:79:b5:95:78:6b:00:e0:f2:85:0f:71:a5:14:64: 18:81:22:9f:90:c2:f0:62:5c:be:16:9f:71:c1:03: 89:6d:5c:bd:13:2d:4b:c3:c8:32:4f:de:db:be:a1: 46:69:5d:7a:34:26:72:eb:0c:f9:05:21:95:c1:86: 5a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:27:CF:EA:2F:1B:E1:88:AD:EF:74:A2:58:9E:CA:0A:7D:0E:59:EF X509v3 Authority Key Identifier: keyid:22:E8:1B:32:7C:B1:FB:35:01:E0:5A:FA:B9:41:21:91:8F:DB:5B:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/IugbMnyx-zUB4Fr6uUEhkY_bW14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IugbMnyx-zUB4Fr6uUEhkY_bW14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914B5BD/33CB117AB5A911E79C74CB72C4F9AE02/609B8BC27D7B11EDB6B77173C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.141.0/24 43.239.143.0/24 Signature Algorithm: sha256WithRSAEncryption 40:4e:44:dd:10:b5:39:0b:11:81:3a:23:a1:15:20:1f:87:47: f7:2a:e6:a8:d7:12:7f:d1:a2:d7:3a:04:09:d9:be:63:ac:b3: dc:07:8e:0e:9c:44:4f:8b:95:9a:70:25:45:ff:1a:2e:c9:c3: 80:8a:3a:00:e9:85:c1:a3:8a:c3:8c:f4:20:de:e5:31:46:da: 50:41:4d:9e:fb:b2:7b:db:cb:ff:24:e7:31:59:60:90:d5:5d: 73:b2:22:c2:e9:11:aa:ac:a4:24:c9:08:2a:a0:81:f3:20:b0: 7c:7b:2d:93:e3:fb:1a:79:30:23:cf:43:34:44:31:cf:b3:08: fa:6b:3d:a4:fb:19:97:5a:81:a6:a2:2c:18:1e:1a:96:db:b1: 19:50:0e:69:49:b2:6f:3d:47:f7:ea:b9:40:df:63:f9:2c:c3: 26:f8:57:d9:0e:b7:7f:7d:1a:f8:2d:12:07:9c:d3:b4:22:be: 24:e4:4b:d2:f9:38:e1:ca:20:3b:68:b3:d0:86:4d:b7:10:db: 34:86:f3:0d:a8:76:1f:c6:ed:d8:e9:54:85:99:32:c0:e3:41: 18:f1:32:0f:a4:62:0a:af:26:6a:93:c2:84:5c:eb:a1:60:8c: 84:52:ed:44:79:a2:29:06:33:1c:ac:ce:31:7e:11:95:d5:56: 34:a1:9d:a1 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICF9swDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEI1QkQxMTAvBgNVBAUTKDIyRTgxQjMyN0NCMUZCMzUwMUUwNUFGQUI5NDEyMTkx OEZEQjVCNUUwHhcNMjQxMDA0MTY1NDQ2WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzAwMWRkNi1hYTI2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuNVoNn5PwbDzMTjm9tIgIcqX4cAu0Agh8nbxJHMTCaEL3P7Yn3Ei20+IA54b v9hWaQyCeMOVpRbxgRk3GGl7TwG4eDALFCgXOWlrV4ZLyEF0yQAdRTvnRqL8uGr4 3qq59l4YUEfZFG2dw1AWaKZGmgenUSQ0d/Wg9cMBZxRRhWiqd/rnm6vTw+Fmt/OE ljN/DSZ/7BhWHlX4ZwJX2YEM5UDgz8CLoNTjojrjjF5gVt04I50/aLRRyc9mjxis H9kRHcotebWVeGsA4PKFD3GlFGQYgSKfkMLwYly+Fp9xwQOJbVy9Ey1Lw8gyT97b vqFGaV16NCZy6wz5BSGVwYZaeQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG8nz+ov G+GIre90olieygp9DlnvMB8GA1UdIwQYMBaAFCLoGzJ8sfs1AeBa+rlBIZGP21te MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0QjVCRC8zM0NCMTE3QUI1 QTkxMUU3OUM3NENCNzJDNEY5QUUwMi9JdWdiTW55eC16VUI0RnI2dVVFaGtZX2JX MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0l1Z2JNbnl4LXpVQjRGcjZ1VUVoa1lfYlcxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEI1QkQvMzNDQjExN0FCNUE5MTFFNzlDNzRDQjcyQzRGOUFFMDIvNjA5QjhCQzI3 RDdCMTFFREI2Qjc3MTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr740DBAAr748wDQYJKoZIhvcNAQELBQADggEBAEBORN0Q tTkLEYE6I6EVIB+HR/cq5qjXEn/Rotc6BAnZvmOss9wHjg6cRE+LlZpwJUX/Gi7J w4CKOgDphcGjisOM9CDe5TFG2lBBTZ77snvby/8k5zFZYJDVXXOyIsLpEaqspCTJ CCqggfMgsHx7LZPj+xp5MCPPQzREMc+zCPprPaT7GZdagaaiLBgeGpbbsRlQDmlJ sm89R/fquUDfY/kswyb4V9kOt399GvgtEgec07QiviTkS9L5OOHKIDtos9CGTbcQ 2zSG8w2odh/G7djpVIWZMsDjQRjxMg+kYgqvJmqTwoRc66FgjIRS7UR5oikGMxys zjF+EZXVVjShnaE= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:10 2024 by rpki-client on console-ams.rpki-client.org