$ rpki-client -vvf rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/62C61398C93A11EEA1A4CA4FC4F9AE02.roa File: 62C61398C93A11EEA1A4CA4FC4F9AE02.roa (raw, json) Hash identifier: mO8mxDIIKwzeck92OjSIJU9brMW8s5g1DTkLL3rzFmk= Subject key identifier: 6F:AE:36:C5:16:F2:BF:87:D5:20:FB:EB:57:2A:80:64:D5:06:1D:32 Certificate issuer: /CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Certificate serial: 4C Authority key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/62C61398C93A11EEA1A4CA4FC4F9AE02.roa Signing time: Mon 12 Feb 2024 00:05:10 +0000 ROA not before: Mon 12 Feb 2024 00:05:10 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 202595 IP address blocks: 43.245.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B Validity Not Before: Feb 12 00:05:10 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=65c960b6-6116 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:3e:3f:30:b7:c0:22:11:d4:45:8d:20:c2:49: d8:2d:58:56:76:16:6d:69:08:d7:a2:a8:6b:cc:ab: 2f:11:76:54:18:78:d0:96:3d:04:93:a1:fe:65:7d: de:13:4c:a6:11:8d:10:a0:cd:7a:c4:30:a1:8e:05: 3f:2a:bd:34:41:c0:6f:a4:34:1c:75:23:af:36:ca: bf:29:7d:99:66:b0:37:91:62:b1:a7:f3:1a:f7:10: f7:34:52:ae:b2:4a:e3:54:5a:88:47:ef:82:8a:05: d1:4c:c6:63:0b:1c:0a:ff:7d:51:30:84:c2:e8:67: 60:30:00:0e:93:d3:90:10:77:19:ab:57:5b:d4:8a: 6b:b6:af:12:d5:88:e2:44:9d:e6:cd:18:a0:0a:30: a1:ac:00:07:f8:04:b5:49:e6:3e:af:28:e9:36:e6: cc:f1:f6:7b:e1:6c:e6:f9:5f:5d:6c:ae:87:22:7a: a3:a0:fd:10:65:01:e7:e0:5c:54:92:52:68:95:cc: 08:d4:48:38:32:8a:48:45:f6:fd:d7:94:61:46:48: e8:18:8d:6b:f9:69:c5:e8:f4:af:0d:4b:58:4e:84: 4f:0a:71:e4:2d:ee:6f:ca:22:e7:fb:1f:d8:de:15: 05:cd:09:9a:8e:e2:95:e1:c9:83:fb:8a:aa:9e:99: 8c:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:AE:36:C5:16:F2:BF:87:D5:20:FB:EB:57:2A:80:64:D5:06:1D:32 X509v3 Authority Key Identifier: keyid:A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/62C61398C93A11EEA1A4CA4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.43.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:f6:53:ac:0c:82:ab:15:86:f3:64:8f:63:1b:12:ab:0f:06: a6:51:a7:1f:64:3f:22:1b:7f:3a:c0:71:4c:f4:0e:59:95:11: 31:18:36:95:79:ce:a1:64:34:dc:ec:6e:da:0d:19:f9:74:b0: 81:db:55:04:06:d9:58:4d:b1:11:f0:26:13:e6:46:52:cc:93: 04:5b:e6:6a:48:a0:25:fb:33:69:33:c3:9c:3c:f6:69:39:b7: 59:64:c7:e5:1b:b1:3c:e4:10:84:8b:40:e9:3d:7c:d6:dd:f0: 45:0e:6f:90:38:b4:0a:88:11:56:0c:bc:95:22:8a:15:4b:8a: f6:f9:44:07:be:d2:54:35:ae:07:41:1a:1d:73:51:d9:46:d4: f4:16:f4:e5:e0:6a:0e:0f:0b:2d:67:c5:df:97:1e:ea:f3:af: d3:ac:03:42:66:a1:36:11:ff:fc:45:43:28:c3:15:7a:16:14: c9:c8:1f:01:de:b2:c1:9a:cc:e3:46:b4:f4:37:ed:b9:4b:e5: fd:0a:2a:93:9d:2a:7b:37:3b:b2:72:48:76:bb:27:93:74:8c: dd:bc:58:8a:71:0e:55:0a:29:61:53:19:68:b9:e4:19:45:4e: 47:ff:18:1e:be:2f:f4:66:72:33:48:4f:b2:99:a5:7f:d8:27: 19:c8:8a:31 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBTDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE1 ODYyMDExMC8GA1UEBRMoQTQwOEFDOTRBMEQzMzZGNDczMjQ5MDVBOTE4QUYyNDkw MkYwREU4QjAeFw0yNDAyMTIwMDA1MTBaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Yzk2MGI2LTYxMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC0Pj8wt8AiEdRFjSDCSdgtWFZ2Fm1pCNeiqGvMqy8RdlQYeNCWPQSTof5lfd4T TKYRjRCgzXrEMKGOBT8qvTRBwG+kNBx1I682yr8pfZlmsDeRYrGn8xr3EPc0Uq6y SuNUWohH74KKBdFMxmMLHAr/fVEwhMLoZ2AwAA6T05AQdxmrV1vUimu2rxLViOJE nebNGKAKMKGsAAf4BLVJ5j6vKOk25szx9nvhbOb5X11srocieqOg/RBlAefgXFSS UmiVzAjUSDgyikhF9v3XlGFGSOgYjWv5acXo9K8NS1hOhE8KceQt7m/KIuf7H9je FQXNCZqO4pXhyYP7iqqemYwpAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUb642xRby v4fVIPvrVyqAZNUGHTIwHwYDVR0jBBgwFoAUpAislKDTNvRzJJBakYrySQLw3osw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTU4NjIwLzBFOTE5OTM0ODg0 MjExRUVBN0Q4QzgxNEM0RjlBRTAyL3BBaXNsS0RUTnZSekpKQmFrWXJ5U1FMdzNv cy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcEFpc2xLRFROdlJ6SkpCYWtZcnlTUUx3M29zLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1 ODYyMC8wRTkxOTkzNDg4NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi82MkM2MTM5OEM5 M0ExMUVFQTFBNENBNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEACv1KzANBgkqhkiG9w0BAQsFAAOCAQEAW/ZTrAyCqxWG82SP YxsSqw8GplGnH2Q/Iht/OsBxTPQOWZURMRg2lXnOoWQ03Oxu2g0Z+XSwgdtVBAbZ WE2xEfAmE+ZGUsyTBFvmakigJfszaTPDnDz2aTm3WWTH5RuxPOQQhItA6T181t3w RQ5vkDi0CogRVgy8lSKKFUuK9vlEB77SVDWuB0EaHXNR2UbU9Bb05eBqDg8LLWfF 35ce6vOv06wDQmahNhH//EVDKMMVehYUycgfAd6ywZrM40a09DftuUvl/Qoqk50q ezc7snJIdrsnk3SM3bxYinEOVQopYVMZaLnkGUVOR/8YHr4v9GZyM0hPspmlf9gn GciKMQ== -----END CERTIFICATE-----Generated at Fri May 31 10:42:21 2024 by rpki-client on console-fra.rpki-client.org