$ rpki-client -vvf rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/689A48866F4811ED92CB5C4BC4F9AE02.roa File: 689A48866F4811ED92CB5C4BC4F9AE02.roa (raw, json) Hash identifier: ZYLzAIdpBWfGyRuQfZHgxpCQNTzJNwZap7zl5+ESr9A= Subject key identifier: 1B:32:56:90:BC:2E:82:D4:0C:8E:5A:2F:92:8F:42:5C:26:3A:1C:D8 Certificate issuer: /CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Certificate serial: 01A7 Authority key identifier: 10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/689A48866F4811ED92CB5C4BC4F9AE02.roa Signing time: Sun 21 May 2023 05:54:27 +0000 ROA not before: Sun 21 May 2023 05:54:27 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 49901 IP address blocks: 43.243.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9178AF2/serialNumber=1005CCD5E18230FBA9ADD3D27F85DA38F13E4172 Validity Not Before: May 21 05:54:27 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6469b212-571f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:55:73:09:6e:3e:c7:5c:bd:f8:29:5d:61:08: c6:68:4e:1b:ac:6f:8e:64:de:d4:e0:68:c7:9b:54: 14:08:a1:3e:8f:cf:2f:1d:04:c5:77:2e:53:0f:61: 3b:42:07:0b:de:02:f1:db:b3:2d:b3:f9:8d:33:50: 39:d8:4b:bf:9d:7c:5b:a0:b6:87:1e:d7:58:c7:bb: 2b:fd:0b:47:41:6e:a1:e7:85:e3:80:29:dc:4a:24: 5b:29:34:c7:e4:4b:7a:eb:a7:d8:06:43:78:c7:08: 2f:df:8b:93:8e:4f:cc:41:8e:3b:3d:db:54:e2:e6: d0:58:62:f9:c0:81:82:0a:7a:17:52:1f:d1:86:7b: 6f:01:ab:ad:b3:5b:12:26:03:a1:f5:1b:ac:27:76: 13:a1:46:c4:2e:10:35:3a:fd:de:c7:fd:ea:6f:a8: 6e:85:83:55:19:ab:a7:3d:54:0f:c2:50:c0:d1:90: 80:3e:9c:6d:9d:b7:45:fb:93:4c:0b:67:e1:f5:20: f6:e9:2f:0a:a6:49:78:e4:fd:58:4b:a8:78:bf:0c: 94:ec:1a:5d:7d:a4:41:77:19:26:94:60:d5:9e:3d: 3f:f8:93:69:c2:24:d8:a2:26:5c:8d:6a:e2:15:d9: 6f:94:ab:33:a2:db:77:8e:a6:c6:5e:be:66:88:f9: 4c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:32:56:90:BC:2E:82:D4:0C:8E:5A:2F:92:8F:42:5C:26:3A:1C:D8 X509v3 Authority Key Identifier: keyid:10:05:CC:D5:E1:82:30:FB:A9:AD:D3:D2:7F:85:DA:38:F1:3E:41:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/EAXM1eGCMPuprdPSf4XaOPE-QXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EAXM1eGCMPuprdPSf4XaOPE-QXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9178AF2/73C88792E06711ECB9D2FF81C4F9AE02/689A48866F4811ED92CB5C4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.192.0/24 Signature Algorithm: sha256WithRSAEncryption b3:cf:d3:cd:56:ff:0a:97:7b:88:14:49:f3:ba:d1:34:03:e5: 99:f6:50:24:c9:6a:4a:c9:d3:0a:66:d9:9a:85:38:f2:3d:ec: 03:38:14:e6:4d:c4:8c:00:83:2a:75:92:51:06:12:57:05:6d: 20:ff:4b:0b:dc:0b:01:ad:83:08:49:72:3d:7e:2f:a5:57:cf: 8a:a7:4b:c8:9b:6f:a8:62:13:25:3f:59:a5:3c:0b:fe:07:c2: aa:36:72:17:e1:3c:95:02:5e:e9:2d:c2:e7:40:ac:e9:6e:fa: b1:84:42:43:30:4b:94:f2:f5:12:53:94:df:78:39:0d:8f:5f: 46:31:05:a9:80:0b:c4:6e:c5:86:16:3f:cf:35:05:c3:d9:a0: b4:6b:7e:e8:28:0a:8a:fa:54:94:55:3e:23:53:ad:e3:62:f7: de:ce:6b:7f:b6:55:b2:a4:4c:2d:ff:b7:49:e7:bf:23:89:c0: a0:da:9a:b2:3b:26:1d:3f:c3:09:c5:f9:2d:ba:41:4e:7f:6e: 27:58:a4:6b:cb:64:ea:02:1c:c8:fe:9d:43:95:7a:37:72:5d: e4:4d:8d:f0:81:3d:1c:09:f7:8d:51:c7:33:38:d9:27:ab:ac: da:df:2b:1f:de:73:52:e3:40:57:69:da:83:1d:6f:04:66:69: c5:17:4e:af -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAacwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzhBRjIxMTAvBgNVBAUTKDEwMDVDQ0Q1RTE4MjMwRkJBOUFERDNEMjdGODVEQTM4 RjEzRTQxNzIwHhcNMjMwNTIxMDU1NDI3WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDY5YjIxMi01NzFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApFVzCW4+x1y9+CldYQjGaE4brG+OZN7U4GjHm1QUCKE+j88vHQTFdy5TD2E7 QgcL3gLx27Mts/mNM1A52Eu/nXxboLaHHtdYx7sr/QtHQW6h54XjgCncSiRbKTTH 5Et666fYBkN4xwgv34uTjk/MQY47PdtU4ubQWGL5wIGCCnoXUh/RhntvAauts1sS JgOh9RusJ3YToUbELhA1Ov3ex/3qb6huhYNVGaunPVQPwlDA0ZCAPpxtnbdF+5NM C2fh9SD26S8Kpkl45P1YS6h4vwyU7BpdfaRBdxkmlGDVnj0/+JNpwiTYoiZcjWri FdlvlKszott3jqbGXr5miPlMsQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBsyVpC8 LoLUDI5aL5KPQlwmOhzYMB8GA1UdIwQYMBaAFBAFzNXhgjD7qa3T0n+F2jjxPkFy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3OEFGMi83M0M4ODc5MkUw NjcxMUVDQjlEMkZGODFDNEY5QUUwMi9FQVhNMWVHQ01QdXByZFBTZjRYYU9QRS1R WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VBWE0xZUdDTVB1cHJkUFNmNFhhT1BFLVFYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzhBRjIvNzNDODg3OTJFMDY3MTFFQ0I5RDJGRjgxQzRGOUFFMDIvNjg5QTQ4ODY2 RjQ4MTFFRDkyQ0I1QzRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr88AwDQYJKoZIhvcNAQELBQADggEBALPP081W/wqXe4gU SfO60TQD5Zn2UCTJakrJ0wpm2ZqFOPI97AM4FOZNxIwAgyp1klEGElcFbSD/Swvc CwGtgwhJcj1+L6VXz4qnS8ibb6hiEyU/WaU8C/4Hwqo2chfhPJUCXuktwudArOlu +rGEQkMwS5Ty9RJTlN94OQ2PX0YxBamAC8RuxYYWP881BcPZoLRrfugoCor6VJRV PiNTreNi997Oa3+2VbKkTC3/t0nnvyOJwKDamrI7Jh0/wwnF+S26QU5/bidYpGvL ZOoCHMj+nUOVejdyXeRNjfCBPRwJ941RxzM42SerrNrfKx/ec1LjQFdp2oMdbwRm acUXTq8= -----END CERTIFICATE-----Generated at Sat May 11 05:40:24 2024 by rpki-client on console-ams.rpki-client.org