$ rpki-client -vvf rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/4A6E6E5282EB11EEB8BBB763C4F9AE02.roa File: 4A6E6E5282EB11EEB8BBB763C4F9AE02.roa (raw, json) Hash identifier: B7kNc0t3usyhvkz1xRDQSZpkmPJrpX0sVxBusRmgsxs= Subject key identifier: B1:57:BC:54:AA:B0:09:94:67:A7:62:62:AB:57:07:3B:F4:1C:B2:A6 Certificate issuer: /CN=A9183B95/serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Certificate serial: 0301 Authority key identifier: FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/4A6E6E5282EB11EEB8BBB763C4F9AE02.roa Signing time: Thu 11 Jan 2024 02:44:25 +0000 ROA not before: Thu 11 Jan 2024 02:44:25 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 38001 IP address blocks: 43.228.156.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 769 (0x301) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9183B95/serialNumber=FAD7ECC9C05CD8EB2056909D6C614715E2C5133E Validity Not Before: Jan 11 02:44:25 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=659f5609-edad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a4:c0:fd:e2:80:60:3a:d5:2c:9f:11:8b:ae: 63:ee:f9:71:84:08:81:bf:1d:db:99:80:11:e1:d6: ac:7d:9b:ab:b0:5b:2e:32:95:46:43:17:99:8e:cf: 9f:0b:94:4a:10:b2:72:89:60:0c:b1:7b:a3:85:ff: 44:f3:d7:87:3c:46:bd:c1:f8:9f:d9:69:9e:43:7f: cc:a2:4d:8b:55:ec:7f:8c:a0:9f:38:dc:72:b8:39: 42:ec:6a:92:cd:28:87:6d:e7:98:34:be:a8:34:a0: 3b:e6:b6:a9:3a:32:9c:a9:60:8d:20:12:a4:8c:86: 34:f1:e5:df:a4:c3:10:8f:c2:96:b0:b3:7b:80:ef: 39:07:54:f5:4d:1a:9b:a1:c9:78:b7:0f:e2:88:39: ae:82:81:8f:de:f2:01:80:12:d3:d9:6e:45:10:e1: 68:6f:a5:2f:aa:60:2d:d0:14:83:47:62:24:1c:cc: d4:fd:78:92:45:af:52:65:fb:73:b6:f8:7c:de:ee: bb:09:75:45:47:94:ad:7d:d8:b7:98:cd:53:af:83: b5:14:c4:95:b8:61:50:8e:dd:f8:b8:c1:a3:72:2d: 28:35:b7:3a:45:29:44:cf:81:21:aa:fd:3b:02:4a: 36:3b:1e:09:4d:6c:dc:74:28:62:39:4e:85:a3:72: 9e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:57:BC:54:AA:B0:09:94:67:A7:62:62:AB:57:07:3B:F4:1C:B2:A6 X509v3 Authority Key Identifier: keyid:FA:D7:EC:C9:C0:5C:D8:EB:20:56:90:9D:6C:61:47:15:E2:C5:13:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/-tfsycBc2OsgVpCdbGFHFeLFEz4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-tfsycBc2OsgVpCdbGFHFeLFEz4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9183B95/B54A3C34803511EC9ADDA54FC4F9AE02/4A6E6E5282EB11EEB8BBB763C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.156.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:d5:05:d1:b9:47:75:04:bb:f8:11:c4:2c:49:d8:b3:66:15: 57:3b:63:6d:d1:02:fc:30:7d:d1:42:48:9b:c0:d1:d6:ae:73: 1c:67:a0:d9:cb:d6:f5:4d:3f:46:79:9b:7f:8f:f8:c8:56:68: e2:bb:85:31:10:09:e8:1a:00:a5:dd:77:d4:53:92:ea:c1:f3: d8:45:0d:33:d0:f1:f0:d6:95:51:9d:8a:97:64:f2:ac:ec:54: 1b:24:56:33:f2:73:11:79:b7:5c:35:3e:73:f5:d1:2b:43:16: 0c:e3:91:24:36:83:82:41:e4:c8:a9:3c:e3:da:2f:f7:4a:8f: b6:48:df:68:07:b3:4b:82:19:da:d8:a1:8d:eb:ee:4e:4d:c7: 5d:6c:4c:e0:3f:4e:d3:eb:94:ca:9f:82:62:07:3f:3b:b8:68: 0e:b5:73:09:dd:a6:c5:68:96:35:79:07:06:0e:e4:cf:28:b4: 7a:a6:f2:1f:99:5d:ef:9c:1a:15:1c:4e:6f:4d:58:ec:81:ea: e7:9b:b6:b6:fa:83:bd:8f:03:1a:91:98:d7:c4:a3:2b:f6:d9: 0b:2c:cd:b9:42:2e:c1:a6:48:16:a2:15:84:88:af:3b:93:df: 42:ff:45:ca:28:9f:e2:47:b5:6f:0a:86:bb:04:34:e6:5f:62: 4f:43:d0:12 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAwEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODNCOTUxMTAvBgNVBAUTKEZBRDdFQ0M5QzA1Q0Q4RUIyMDU2OTA5RDZDNjE0NzE1 RTJDNTEzM0UwHhcNMjQwMTExMDI0NDI1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNTYwOS1lZGFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKTA/eKAYDrVLJ8Ri65j7vlxhAiBvx3bmYAR4dasfZursFsuMpVGQxeZjs+f C5RKELJyiWAMsXujhf9E89eHPEa9wfif2WmeQ3/Mok2LVex/jKCfONxyuDlC7GqS zSiHbeeYNL6oNKA75rapOjKcqWCNIBKkjIY08eXfpMMQj8KWsLN7gO85B1T1TRqb ocl4tw/iiDmugoGP3vIBgBLT2W5FEOFob6UvqmAt0BSDR2IkHMzU/XiSRa9SZftz tvh83u67CXVFR5Stfdi3mM1Tr4O1FMSVuGFQjt34uMGjci0oNbc6RSlEz4Ehqv07 Ako2Ox4JTWzcdChiOU6Fo3KeLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLFXvFSq sAmUZ6diYqtXBzv0HLKmMB8GA1UdIwQYMBaAFPrX7MnAXNjrIFaQnWxhRxXixRM+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4M0I5NS9CNTRBM0MzNDgw MzUxMUVDOUFEREE1NEZDNEY5QUUwMi8tdGZzeWNCYzJPc2dWcENkYkdGSEZlTEZF ejQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy10ZnN5Y0JjMk9zZ1ZwQ2RiR0ZIRmVMRkV6NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODNCOTUvQjU0QTNDMzQ4MDM1MTFFQzlBRERBNTRGQzRGOUFFMDIvNEE2RTZFNTI4 MkVCMTFFRUI4QkJCNzYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5JwwDQYJKoZIhvcNAQELBQADggEBAHzVBdG5R3UEu/gR xCxJ2LNmFVc7Y23RAvwwfdFCSJvA0daucxxnoNnL1vVNP0Z5m3+P+MhWaOK7hTEQ CegaAKXdd9RTkurB89hFDTPQ8fDWlVGdipdk8qzsVBskVjPycxF5t1w1PnP10StD FgzjkSQ2g4JB5MipPOPaL/dKj7ZI32gHs0uCGdrYoY3r7k5Nx11sTOA/TtPrlMqf gmIHPzu4aA61cwndpsVoljV5BwYO5M8otHqm8h+ZXe+cGhUcTm9NWOyB6uebtrb6 g72PAxqRmNfEoyv22QsszblCLsGmSBaiFYSIrzuT30L/Rcoon+JHtW8KhrsENOZf Yk9D0BI= -----END CERTIFICATE-----Generated at Mon May 13 03:32:48 2024 by rpki-client on console-fra.rpki-client.org