$ rpki-client -vvf rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/511C5136A2F011EEBBE10D80C4F9AE02.roa File: 511C5136A2F011EEBBE10D80C4F9AE02.roa (raw, json) Hash identifier: gkwCHwAw2AeTpa4lg8FqfiRWIQMjK7+U13kDlZDWP1M= Subject key identifier: 9F:12:9F:DE:61:C8:E5:1F:0B:67:E4:D4:2A:79:DF:D3:5D:38:C1:61 Certificate issuer: /CN=A9174306/serialNumber=D0B47928BFDB9DB351E1D4256AD02B6728F95CF5 Certificate serial: A8 Authority key identifier: D0:B4:79:28:BF:DB:9D:B3:51:E1:D4:25:6A:D0:2B:67:28:F9:5C:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0LR5KL_bnbNR4dQlatArZyj5XPU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/511C5136A2F011EEBBE10D80C4F9AE02.roa Signing time: Mon 11 Nov 2024 04:18:41 +0000 ROA not before: Mon 11 Nov 2024 04:18:41 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 152092 IP address blocks: 43.250.180.0/23 maxlen: 23 43.250.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/0LR5KL_bnbNR4dQlatArZyj5XPU.crl rsync://rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/0LR5KL_bnbNR4dQlatArZyj5XPU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0LR5KL_bnbNR4dQlatArZyj5XPU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 04:17:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 168 (0xa8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9174306/serialNumber=D0B47928BFDB9DB351E1D4256AD02B6728F95CF5 Validity Not Before: Nov 11 04:18:41 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673185a1-cacc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e3:7f:28:29:fb:8d:06:b5:41:54:14:40:58: 42:a3:aa:0a:8a:87:82:a8:ed:0d:06:94:69:75:01: 83:47:f0:d2:14:7c:f1:2d:85:b1:21:46:43:ec:09: 69:7a:cf:48:09:31:ed:4a:b3:0a:d0:12:00:9b:fb: d2:0d:e7:1a:5c:ba:cb:f2:28:9d:e6:ab:3d:ef:9e: 26:9a:84:09:c8:d8:7c:ee:4f:bb:f3:a1:36:1c:d0: 9b:2b:fb:d9:0b:5c:47:ed:32:81:00:13:10:ab:c0: b6:1f:71:e0:b7:a0:19:62:2a:b5:08:75:d2:eb:ae: 19:40:42:9f:56:cc:9e:6d:c1:96:e2:57:76:f7:f6: 8d:99:94:8a:4e:f1:f1:7c:61:b2:51:2c:28:fc:0b: 5d:ce:30:bc:80:88:07:10:4c:65:0e:88:5a:69:62: 2e:73:ac:79:a0:a3:24:4e:11:09:12:61:76:f3:6b: 1f:6f:df:84:4b:a3:da:29:4a:60:25:94:85:a5:82: fa:91:b4:dd:97:43:34:f1:29:c9:fb:de:10:69:08: 8a:87:fa:ad:63:bf:9d:b0:7f:39:bd:6f:fb:15:fb: b7:bb:1c:d7:46:0c:86:54:ae:62:fb:c7:6b:85:bf: f5:3a:31:ed:dd:9d:a7:7d:8b:7b:1e:37:99:3b:f8: 19:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:12:9F:DE:61:C8:E5:1F:0B:67:E4:D4:2A:79:DF:D3:5D:38:C1:61 X509v3 Authority Key Identifier: keyid:D0:B4:79:28:BF:DB:9D:B3:51:E1:D4:25:6A:D0:2B:67:28:F9:5C:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/0LR5KL_bnbNR4dQlatArZyj5XPU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0LR5KL_bnbNR4dQlatArZyj5XPU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9174306/2B5AEC70A2EE11EEA6354F5EC4F9AE02/511C5136A2F011EEBBE10D80C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.180.0/23 Signature Algorithm: sha256WithRSAEncryption 45:96:a2:00:db:05:fc:cb:7e:2a:e2:56:d8:23:41:76:1b:b7: 22:a8:3b:33:46:a4:ac:81:21:c0:9c:9a:9e:35:c3:e9:c0:3b: 47:c4:1a:66:35:c5:89:23:57:9a:c6:0c:a1:1a:61:98:6a:8a: c6:08:04:38:92:37:ce:0f:18:45:bc:a9:c7:b8:5e:24:78:8e: d5:41:d4:6c:40:8d:86:63:14:4b:26:f3:bc:16:38:8d:2a:9a: 09:98:ff:41:22:da:50:82:99:b8:14:84:3c:fa:36:44:bb:07: a0:b7:de:f5:ec:21:98:27:7f:af:8d:50:4a:95:b0:22:0c:df: 10:d0:a5:73:c3:e9:22:8d:da:d4:25:85:0b:77:16:89:9c:0d: 99:f4:83:b8:1c:70:e3:cc:82:0a:55:5c:74:80:bd:66:a2:fe: 8e:6f:1f:16:5e:66:1e:ff:8b:bc:15:c4:3a:66:b1:58:fe:75: 1e:60:0f:ea:4b:7b:6a:a3:47:a9:b8:e7:a8:e5:54:0d:15:aa: 42:32:7c:4f:ce:66:63:23:2d:0a:45:bd:d1:14:0e:16:6b:9c: 92:7b:f1:2d:e1:bd:eb:73:13:64:28:73:c4:d5:09:45:c7:51: 00:de:4f:ef:0d:15:fc:f8:7d:99:a2:3b:a2:dd:31:2a:1f:1b: 77:7c:c5:53 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzQzMDYxMTAvBgNVBAUTKEQwQjQ3OTI4QkZEQjlEQjM1MUUxRDQyNTZBRDAyQjY3 MjhGOTVDRjUwHhcNMjQxMTExMDQxODQxWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzMxODVhMS1jYWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3eN/KCn7jQa1QVQUQFhCo6oKioeCqO0NBpRpdQGDR/DSFHzxLYWxIUZD7Alp es9ICTHtSrMK0BIAm/vSDecaXLrL8iid5qs9754mmoQJyNh87k+786E2HNCbK/vZ C1xH7TKBABMQq8C2H3Hgt6AZYiq1CHXS664ZQEKfVsyebcGW4ld29/aNmZSKTvHx fGGyUSwo/AtdzjC8gIgHEExlDohaaWIuc6x5oKMkThEJEmF282sfb9+ES6PaKUpg JZSFpYL6kbTdl0M08SnJ+94QaQiKh/qtY7+dsH85vW/7Ffu3uxzXRgyGVK5i+8dr hb/1OjHt3Z2nfYt7HjeZO/gZhQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ8Sn95h yOUfC2fk1Cp539NdOMFhMB8GA1UdIwQYMBaAFNC0eSi/252zUeHUJWrQK2co+Vz1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NDMwNi8yQjVBRUM3MEEy RUUxMUVFQTYzNTRGNUVDNEY5QUUwMi8wTFI1S0xfYm5iTlI0ZFFsYXRBclp5ajVY UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBMUjVLTF9ibmJOUjRkUWxhdEFyWnlqNVhQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzQzMDYvMkI1QUVDNzBBMkVFMTFFRUE2MzU0RjVFQzRGOUFFMDIvNTExQzUxMzZB MkYwMTFFRUJCRTEwRDgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr+rQwDQYJKoZIhvcNAQELBQADggEBAEWWogDbBfzLfiri VtgjQXYbtyKoOzNGpKyBIcCcmp41w+nAO0fEGmY1xYkjV5rGDKEaYZhqisYIBDiS N84PGEW8qce4XiR4jtVB1GxAjYZjFEsm87wWOI0qmgmY/0Ei2lCCmbgUhDz6NkS7 B6C33vXsIZgnf6+NUEqVsCIM3xDQpXPD6SKN2tQlhQt3FomcDZn0g7gccOPMggpV XHSAvWai/o5vHxZeZh7/i7wVxDpmsVj+dR5gD+pLe2qjR6m456jlVA0VqkIyfE/O ZmMjLQpFvdEUDhZrnJJ78S3hvetzE2Qoc8TVCUXHUQDeT+8NFfz4fZmiO6LdMSof G3d8xVM= -----END CERTIFICATE-----Generated at Thu Nov 21 05:05:58 2024 by rpki-client on console-fra.rpki-client.org