$ rpki-client -vvf rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/3263B6905E7311EB8B143F3BC4F9AE02.roa File: 3263B6905E7311EB8B143F3BC4F9AE02.roa (raw, json) Hash identifier: IRUZ+HQ+rrY+P2Ftx4LEZSfF4IIIe7sj7QLj+A7Ieao= Subject key identifier: 2A:C6:8A:AF:CB:55:B2:F5:DD:21:BF:CC:0C:82:B2:DD:37:AA:A5:60 Certificate issuer: /CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Certificate serial: 0628 Authority key identifier: B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/3263B6905E7311EB8B143F3BC4F9AE02.roa Signing time: Fri 12 Jul 2024 23:43:12 +0000 ROA not before: Fri 12 Jul 2024 23:43:12 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 136523 IP address blocks: 43.254.133.0/24 maxlen: 24 43.254.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 20:33:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9160438/serialNumber=B1C347456E54A4662E1097ECD334AC11C02CE00B Validity Not Before: Jul 12 23:43:12 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=6691bf90-d8ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:7f:be:cd:6e:52:63:60:ce:01:98:d2:70:53: f5:e2:ec:a7:c8:8d:82:73:8d:0b:55:88:71:52:b4: eb:b8:57:54:df:67:33:0f:d7:ea:7c:64:16:69:d3: 39:0c:ee:37:3d:23:d3:38:81:30:fe:56:5c:de:da: 76:84:4d:a3:59:a8:f3:0a:6e:11:85:55:b2:af:5a: 71:98:f4:97:fd:c4:0d:a4:9f:6e:b9:91:2f:74:0d: 9b:18:49:d5:71:e5:14:6a:1a:69:c5:03:22:3c:80: d3:5f:dc:bf:4c:0b:40:a2:13:c7:6a:6f:49:f2:11: ed:41:22:92:da:eb:b6:ee:0b:0e:25:2f:49:9e:0f: 89:5b:37:e1:c2:06:39:6e:56:45:c9:51:43:47:05: 4a:64:ea:d3:33:48:d5:20:b4:15:de:1b:f0:25:48: 1f:72:5f:c7:8d:aa:2f:35:2b:4f:41:cf:45:81:a0: 3f:c9:d4:22:d8:fe:d4:8b:ed:9e:76:a1:c9:72:f4: e3:c5:4b:f9:68:71:0c:e5:3d:ea:b6:c7:e0:20:33: 6a:c7:4a:f4:c6:36:1d:32:bc:80:0c:96:61:99:ca: 3f:ce:6f:a6:75:14:41:7b:1d:f4:07:d9:5c:be:3f: 06:ad:9d:56:bb:36:2c:58:37:49:37:d1:8a:3a:3a: 18:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:C6:8A:AF:CB:55:B2:F5:DD:21:BF:CC:0C:82:B2:DD:37:AA:A5:60 X509v3 Authority Key Identifier: keyid:B1:C3:47:45:6E:54:A4:66:2E:10:97:EC:D3:34:AC:11:C0:2C:E0:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/scNHRW5UpGYuEJfs0zSsEcAs4As.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/scNHRW5UpGYuEJfs0zSsEcAs4As.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9160438/C4509D545E7111EB849C333AC4F9AE02/3263B6905E7311EB8B143F3BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.254.133.0/24 43.254.135.0/24 Signature Algorithm: sha256WithRSAEncryption 98:20:d1:8c:b7:0e:cb:c0:14:fe:b5:72:37:ef:da:24:7e:71: 7b:98:26:9a:97:5c:6a:df:5f:47:f5:f9:45:3f:7c:a0:1d:68: 46:74:51:54:db:1d:3a:7b:e3:e5:07:a3:b8:80:3a:2f:33:6c: 30:1b:c4:48:ca:21:b5:e3:d5:99:90:15:92:4c:8a:53:1a:bc: bb:92:2c:2b:1b:26:6c:ee:0b:19:63:c2:e9:b0:35:7f:b8:12: 37:65:7e:13:d7:a1:b0:87:15:2c:03:75:7c:15:f3:9a:7c:26: 6d:fb:b8:7d:cc:79:bd:48:27:a7:f4:b8:3d:b4:bd:af:9a:b8: 15:17:98:59:26:78:88:d1:9c:0a:78:43:1d:36:72:3a:6d:5e: 30:bc:d8:64:c5:18:5d:41:cf:e2:a0:e0:43:75:f3:7a:aa:5e: ed:29:ca:5a:e8:ea:32:4a:46:a2:88:41:0f:ec:6f:17:e8:97: 2a:a0:1a:3f:67:80:ef:89:e5:c7:35:45:1b:31:50:1e:c9:50: d6:02:3f:11:51:0e:52:0f:f9:d6:bd:c8:ae:2b:d1:6a:0e:da: 6e:a7:ca:0a:a2:54:e8:d3:42:17:84:20:31:76:79:0f:dc:75: b9:5f:77:ef:d9:15:b8:6b:7d:7a:1a:19:1a:c4:66:5d:28:32: 20:39:f9:b3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0MzgxMTAvBgNVBAUTKEIxQzM0NzQ1NkU1NEE0NjYyRTEwOTdFQ0QzMzRBQzEx QzAyQ0UwMEIwHhcNMjQwNzEyMjM0MzEyWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjkxYmY5MC1kOGFjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtn++zW5SY2DOAZjScFP14uynyI2Cc40LVYhxUrTruFdU32czD9fqfGQWadM5 DO43PSPTOIEw/lZc3tp2hE2jWajzCm4RhVWyr1pxmPSX/cQNpJ9uuZEvdA2bGEnV ceUUahppxQMiPIDTX9y/TAtAohPHam9J8hHtQSKS2uu27gsOJS9Jng+JWzfhwgY5 blZFyVFDRwVKZOrTM0jVILQV3hvwJUgfcl/HjaovNStPQc9FgaA/ydQi2P7Ui+2e dqHJcvTjxUv5aHEM5T3qtsfgIDNqx0r0xjYdMryADJZhmco/zm+mdRRBex30B9lc vj8GrZ1WuzYsWDdJN9GKOjoYzwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCrGiq/L VbL13SG/zAyCst03qqVgMB8GA1UdIwQYMBaAFLHDR0VuVKRmLhCX7NM0rBHALOAL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDQzOC9DNDUwOUQ1NDVF NzExMUVCODQ5QzMzM0FDNEY5QUUwMi9zY05IUlc1VXBHWXVFSmZzMHpTc0VjQXM0 QXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NjTkhSVzVVcEdZdUVKZnMwelNzRWNBczRBcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0MzgvQzQ1MDlENTQ1RTcxMTFFQjg0OUMzMzNBQzRGOUFFMDIvMzI2M0I2OTA1 RTczMTFFQjhCMTQzRjNCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr/oUDBAAr/ocwDQYJKoZIhvcNAQELBQADggEBAJgg0Yy3 DsvAFP61cjfv2iR+cXuYJpqXXGrfX0f1+UU/fKAdaEZ0UVTbHTp74+UHo7iAOi8z bDAbxEjKIbXj1ZmQFZJMilMavLuSLCsbJmzuCxljwumwNX+4EjdlfhPXobCHFSwD dXwV85p8Jm37uH3Meb1IJ6f0uD20va+auBUXmFkmeIjRnAp4Qx02cjptXjC82GTF GF1Bz+Kg4EN183qqXu0pylro6jJKRqKIQQ/sbxfolyqgGj9ngO+J5cc1RRsxUB7J UNYCPxFRDlIP+da9yK4r0WoO2m6nygqiVOjTQheEIDF2eQ/cdblfd+/ZFbhrfXoa GRrEZl0oMiA5+bM= -----END CERTIFICATE-----Generated at Wed Nov 20 23:55:41 2024 by rpki-client on console-ams.rpki-client.org