$ rpki-client -vvf rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/4FAE4CDC7C2711EDA3A0B816C4F9AE02.roa File: 4FAE4CDC7C2711EDA3A0B816C4F9AE02.roa (raw, json) Hash identifier: Tk6Wk/iqWFPcN6hygsZMy61QUkDqwzXsqlpySh04aPo= Subject key identifier: E6:26:7E:14:8C:54:50:20:DA:97:14:42:14:AA:5A:07:69:E0:78:C2 Certificate issuer: /CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Certificate serial: 0693 Authority key identifier: 3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/4FAE4CDC7C2711EDA3A0B816C4F9AE02.roa Signing time: Thu 14 Dec 2023 22:51:02 +0000 ROA not before: Thu 14 Dec 2023 22:51:02 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134428 IP address blocks: 43.225.56.0/24 maxlen: 24 43.225.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1683 (0x693) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9175F18/serialNumber=3C8B2BDBCB155E2D2FECD45D062FB3699F034320 Validity Not Before: Dec 14 22:51:02 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=657b86d6-fb7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:d4:d7:31:bb:18:b9:e1:82:9d:58:19:58:aa: ff:27:7c:d5:9f:4f:1c:04:79:23:9a:26:b1:41:1f: 4f:51:45:4c:37:f0:60:b9:86:26:03:96:1b:b7:7e: 0c:15:84:1b:93:3d:57:4e:40:93:2d:92:f1:97:75: 63:e2:25:1a:7c:47:d7:92:17:61:44:46:9f:23:42: 7a:85:d5:01:e5:cb:95:ca:57:37:03:ca:2e:9f:02: aa:2a:40:a4:df:88:fc:fa:7b:90:85:a7:ab:e0:bf: c1:2c:c4:94:55:f2:cf:54:20:bf:ae:af:db:92:eb: 9a:b0:51:e8:04:51:41:1d:f5:cf:f3:8e:ab:38:44: 48:98:7b:64:c7:d5:61:da:6f:1d:34:99:70:04:88: 14:e3:c0:c3:4e:a5:e9:0a:4a:56:92:87:fc:49:67: 08:5b:ee:6b:4f:7e:77:12:8a:23:bb:4c:a7:6f:ce: 08:07:36:13:f1:db:2b:91:15:58:ed:df:5c:de:28: c2:84:fc:92:b0:3f:ab:64:15:d8:88:f9:6d:42:e2: 62:4d:3c:e5:10:19:27:2f:4e:bb:5d:f5:96:6a:ba: 2f:a3:eb:8c:16:67:96:c5:97:96:5a:a0:b9:01:f2: 92:76:3b:47:dd:a3:b2:6d:d1:e4:29:bf:c9:c8:e3: 53:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:26:7E:14:8C:54:50:20:DA:97:14:42:14:AA:5A:07:69:E0:78:C2 X509v3 Authority Key Identifier: keyid:3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/4FAE4CDC7C2711EDA3A0B816C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.56.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:4d:0c:85:95:0b:47:f9:e1:e7:e6:ef:e1:a9:93:6c:28:41: dc:6d:b6:6b:c2:51:58:45:fe:33:27:1a:03:af:15:c6:3d:d9: 2d:9c:13:5a:9c:9c:80:01:bc:19:a4:f3:a6:0b:0d:d4:e5:a7: e9:4b:4b:6e:5c:8a:d8:8a:37:57:8f:ab:2d:b3:a4:cd:57:e7: 09:f3:1b:f5:ae:5f:d3:05:2c:6f:b4:6b:a1:ee:6d:d4:2c:82: 2d:4c:15:d7:fa:a3:52:9f:23:c6:6c:6e:fe:ab:31:c2:a0:59: d0:e2:ce:fb:ba:a5:a1:b3:84:27:0b:6f:8e:04:9d:74:61:54: ff:3c:5d:40:70:f5:3f:b7:35:79:38:af:be:66:aa:7b:56:29: 77:27:82:b1:9f:16:4b:fa:e5:73:e1:cf:76:a5:37:ca:08:b6: 81:4d:24:99:02:82:d8:47:7b:bd:15:92:fa:89:5d:0c:ac:9d: 85:99:86:1d:cd:2e:86:59:e1:4b:4a:e2:37:9b:b3:c1:c4:3d: 3d:7a:b5:53:b2:14:5d:34:64:57:d7:05:26:f7:5b:4e:e7:ee: fb:d1:98:91:45:71:25:20:98:90:4a:79:e8:3a:c3:93:f0:9b: 9f:91:a1:9d:b8:ce:a8:70:2b:3a:01:05:7e:99:b3:f8:d5:88: 9d:9e:64:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzVGMTgxMTAvBgNVBAUTKDNDOEIyQkRCQ0IxNTVFMkQyRkVDRDQ1RDA2MkZCMzY5 OUYwMzQzMjAwHhcNMjMxMjE0MjI1MTAyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTdiODZkNi1mYjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAstTXMbsYueGCnVgZWKr/J3zVn08cBHkjmiaxQR9PUUVMN/BguYYmA5Ybt34M FYQbkz1XTkCTLZLxl3Vj4iUafEfXkhdhREafI0J6hdUB5cuVylc3A8ounwKqKkCk 34j8+nuQhaer4L/BLMSUVfLPVCC/rq/bkuuasFHoBFFBHfXP846rOERImHtkx9Vh 2m8dNJlwBIgU48DDTqXpCkpWkof8SWcIW+5rT353Eooju0ynb84IBzYT8dsrkRVY 7d9c3ijChPySsD+rZBXYiPltQuJiTTzlEBknL067XfWWarovo+uMFmeWxZeWWqC5 AfKSdjtH3aOybdHkKb/JyONTcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOYmfhSM VFAg2pcUQhSqWgdp4HjCMB8GA1UdIwQYMBaAFDyLK9vLFV4tL+zUXQYvs2mfA0Mg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NUYxOC9BMzg0MjkxQzBB QTAxMUVCODczMzM4ODJDNEY5QUUwMi9QSXNyMjhzVlhpMHY3TlJkQmktemFaOERR eUEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BJc3IyOHNWWGkwdjdOUmRCaS16YVo4RFF5QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzVGMTgvQTM4NDI5MUMwQUEwMTFFQjg3MzMzODgyQzRGOUFFMDIvNEZBRTRDREM3 QzI3MTFFREEzQTBCODE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr4TgwDQYJKoZIhvcNAQELBQADggEBAB9NDIWVC0f54efm 7+Gpk2woQdxttmvCUVhF/jMnGgOvFcY92S2cE1qcnIABvBmk86YLDdTlp+lLS25c itiKN1ePqy2zpM1X5wnzG/WuX9MFLG+0a6HubdQsgi1MFdf6o1KfI8Zsbv6rMcKg WdDizvu6paGzhCcLb44EnXRhVP88XUBw9T+3NXk4r75mqntWKXcngrGfFkv65XPh z3alN8oItoFNJJkCgthHe70VkvqJXQysnYWZhh3NLoZZ4UtK4jebs8HEPT16tVOy FF00ZFfXBSb3W07n7vvRmJFFcSUgmJBKeeg6w5Pwm5+RoZ24zqhwKzoBBX6Zs/jV iJ2eZM8= -----END CERTIFICATE-----Generated at Fri Nov 22 22:14:31 2024 by rpki-client on console-ams.rpki-client.org