$ rpki-client -vvf rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/6C8DB570FE1911EEBC22905DC4F9AE02.roa File: 6C8DB570FE1911EEBC22905DC4F9AE02.roa (raw, json) Hash identifier: hPgoNHbP8TnQMLHkO9eUXhsu4qNgnVEZOfgux/wVtSU= Subject key identifier: E5:97:25:D7:9D:39:9D:9D:EB:88:0F:EE:A2:B3:9B:E4:E6:89:03:A0 Certificate issuer: /CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Certificate serial: 0D Authority key identifier: AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/6C8DB570FE1911EEBC22905DC4F9AE02.roa Signing time: Fri 19 Apr 2024 06:52:44 +0000 ROA not before: Fri 19 Apr 2024 06:52:44 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9712 IP address blocks: 43.231.204.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 07:03:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13 (0xd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9155647/serialNumber=AD3445DB42010B1215A49E427F1AE7400D788BFB Validity Not Before: Apr 19 06:52:44 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=662214bc-823d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:fb:37:a2:0f:d8:90:f8:d8:40:2c:49:c9:6c: df:d9:55:93:00:8a:26:58:70:48:24:41:9e:6f:2a: 4f:cd:c5:55:44:a4:d1:dc:5a:6b:e7:54:ab:23:9e: ea:f4:a4:72:bd:78:f7:33:d0:62:4f:a3:4e:7c:92: 95:fd:ea:75:14:e7:da:2c:43:d4:f6:8b:9b:f9:84: 97:65:d2:f9:7d:f9:09:bf:9c:f9:6d:e8:d4:60:a7: e8:2a:5a:07:e7:1b:8c:aa:07:7c:8c:c6:38:3d:99: f7:f4:27:ad:9d:35:45:e8:5c:97:1c:be:b6:3d:47: 95:e4:ac:83:43:0e:f5:fb:66:78:d0:4a:63:bc:ee: 18:cc:a6:16:ff:06:e5:32:6c:c2:1e:2a:aa:22:82: b5:3a:0f:09:e4:ed:81:e4:5f:90:d8:c2:61:9a:77: 81:36:d8:27:05:f6:73:c1:19:8d:0f:fa:bf:92:47: b1:fe:e6:87:30:4f:da:fd:6e:57:af:47:fc:ba:c7: e1:a4:81:0b:c8:fa:51:d2:1d:a9:30:d0:bd:2a:94: d3:a5:53:e4:d7:3d:60:93:61:37:f7:95:b2:fe:e4: df:11:ac:7d:e3:05:78:5b:7f:86:dd:6f:e2:7f:61: e9:60:b0:21:50:0a:d4:d0:21:05:65:1e:69:18:9d: fe:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:97:25:D7:9D:39:9D:9D:EB:88:0F:EE:A2:B3:9B:E4:E6:89:03:A0 X509v3 Authority Key Identifier: keyid:AD:34:45:DB:42:01:0B:12:15:A4:9E:42:7F:1A:E7:40:0D:78:8B:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/rTRF20IBCxIVpJ5CfxrnQA14i_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rTRF20IBCxIVpJ5CfxrnQA14i_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9155647/905C1046F36F11EE9972EB79C4F9AE02/6C8DB570FE1911EEBC22905DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.204.0/24 Signature Algorithm: sha256WithRSAEncryption 30:d8:b2:a1:96:60:f5:89:32:89:8d:60:39:41:80:53:d6:8b: f4:8f:6a:ab:0b:47:59:a4:ef:66:69:68:6a:c5:5f:d0:dc:44: 09:ee:09:f6:a9:8e:45:82:18:7e:08:60:e8:1a:45:63:d7:de: d5:b9:41:a9:bc:a0:11:45:99:ce:58:d5:08:b6:3e:6f:c2:0e: 73:50:90:68:f0:70:c3:5c:be:a8:fb:da:91:59:2f:43:f3:55: 04:a2:65:1f:59:a1:a9:a1:d9:36:dd:01:f3:05:39:ea:1d:ff: 65:74:98:75:0b:0b:ab:26:08:e0:69:cb:38:5a:95:e9:52:f2: c7:70:e9:77:7d:97:c2:30:e9:27:0f:0d:fb:69:02:ab:a3:85: ec:17:43:3f:0c:f5:13:a7:a7:5a:d1:ad:d4:ba:dc:b2:d2:19: 20:c3:2b:a9:93:86:89:6b:20:88:60:9b:4a:c6:f3:71:b0:62: f9:f9:47:df:9b:6e:83:e4:8b:51:4f:0f:6c:49:96:db:8a:7f: 02:3f:5c:93:33:c4:ea:f3:b3:dc:4f:91:ac:1f:7a:f6:77:8f: 2a:98:85:5d:16:13:3b:16:60:9a:31:ce:ad:34:38:6f:8b:a9: 2e:18:49:05:1a:8d:7e:4c:3c:36:51:e7:23:6c:1e:b5:e6:5e: dc:61:72:20 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 NTY0NzExMC8GA1UEBRMoQUQzNDQ1REI0MjAxMEIxMjE1QTQ5RTQyN0YxQUU3NDAw RDc4OEJGQjAeFw0yNDA0MTkwNjUyNDRaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MjIxNGJjLTgyM2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCy+zeiD9iQ+NhALEnJbN/ZVZMAiiZYcEgkQZ5vKk/NxVVEpNHcWmvnVKsjnur0 pHK9ePcz0GJPo058kpX96nUU59osQ9T2i5v5hJdl0vl9+Qm/nPlt6NRgp+gqWgfn G4yqB3yMxjg9mff0J62dNUXoXJccvrY9R5XkrINDDvX7ZnjQSmO87hjMphb/BuUy bMIeKqoigrU6Dwnk7YHkX5DYwmGad4E22CcF9nPBGY0P+r+SR7H+5ocwT9r9blev R/y6x+GkgQvI+lHSHakw0L0qlNOlU+TXPWCTYTf3lbL+5N8RrH3jBXhbf4bdb+J/ YelgsCFQCtTQIQVlHmkYnf5/AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU5Zcl1505 nZ3riA/uorOb5OaJA6AwHwYDVR0jBBgwFoAUrTRF20IBCxIVpJ5CfxrnQA14i/sw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU1NjQ3LzkwNUMxMDQ2RjM2 RjExRUU5OTcyRUI3OUM0RjlBRTAyL3JUUkYyMElCQ3hJVnBKNUNmeHJuUUExNGlf cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvclRSRjIwSUJDeElWcEo1Q2Z4cm5RQTE0aV9zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 NTY0Ny85MDVDMTA0NkYzNkYxMUVFOTk3MkVCNzlDNEY5QUUwMi82QzhEQjU3MEZF MTkxMUVFQkMyMjkwNURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEACvnzDANBgkqhkiG9w0BAQsFAAOCAQEAMNiyoZZg9YkyiY1g OUGAU9aL9I9qqwtHWaTvZmloasVf0NxECe4J9qmORYIYfghg6BpFY9fe1blBqbyg EUWZzljVCLY+b8IOc1CQaPBww1y+qPvakVkvQ/NVBKJlH1mhqaHZNt0B8wU56h3/ ZXSYdQsLqyYI4GnLOFqV6VLyx3Dpd32XwjDpJw8N+2kCq6OF7BdDPwz1E6enWtGt 1LrcstIZIMMrqZOGiWsgiGCbSsbzcbBi+flH35tug+SLUU8PbEmW24p/Aj9ckzPE 6vOz3E+RrB969nePKpiFXRYTOxZgmjHOrTQ4b4upLhhJBRqNfkw8NlHnI2weteZe 3GFyIA== -----END CERTIFICATE-----Generated at Thu Jun 13 10:45:07 2024 by rpki-client on console-fra.rpki-client.org