$ rpki-client -vvf rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/5A48B534C6C811ECA5A9AB33C4F9AE02.roa File: 5A48B534C6C811ECA5A9AB33C4F9AE02.roa (raw, json) Hash identifier: D4T8qq0efxv5z1lC+iJz+9+E3h2oYEBovn1LDhiYq1A= Subject key identifier: C8:FB:75:14:B9:BE:2A:CB:08:02:E8:C8:EF:D4:88:C6:C8:6A:B5:6C Certificate issuer: /CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Certificate serial: 021A Authority key identifier: 4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/5A48B534C6C811ECA5A9AB33C4F9AE02.roa Signing time: Wed 29 Nov 2023 03:34:21 +0000 ROA not before: Wed 29 Nov 2023 03:34:21 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132742 IP address blocks: 43.250.188.0/22 maxlen: 24 103.42.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 20:43:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 538 (0x21a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9191B71/serialNumber=4BF3E87CA2B9AB59597620D04FC054118D7ED3D9 Validity Not Before: Nov 29 03:34:21 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6566b13d-9c6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:77:40:ea:89:31:24:e2:fc:aa:1c:d5:19:ab: 9e:f1:ae:75:05:f3:77:31:82:16:22:fc:37:30:3a: a0:ec:69:c5:91:89:7a:18:1c:a4:79:d8:2b:1e:18: 7a:69:e2:5f:8e:51:ca:b9:a4:a6:14:cd:6f:07:f3: c2:9d:b8:da:9b:b9:31:bf:f1:c4:1e:f7:d2:36:32: 94:43:01:bd:5e:5d:ad:fd:e9:1a:4a:f2:fd:35:87: 86:ce:8c:fa:d2:9a:7b:69:24:b0:3f:ea:5d:de:22: f3:ea:a2:88:d2:5a:6c:f7:1c:e8:19:28:e1:16:b2: 9c:3e:85:b4:e9:58:6d:c3:38:13:6b:88:dc:f9:f5: 88:9d:54:bc:4a:91:52:fd:b6:de:e4:e8:7f:a2:79: 5f:62:cb:34:f6:45:00:5e:37:8f:2f:e8:6f:2b:67: 49:ef:5e:51:93:fa:5b:ae:17:02:99:b0:bc:96:bc: 7d:71:af:4a:5f:12:5b:36:54:ab:6f:c1:0f:84:be: 24:ce:04:9d:2e:b4:8e:e4:fa:ec:7a:55:5d:c6:bc: 39:4e:0b:08:32:b4:1e:e3:e1:f5:2f:5d:af:d6:33: e7:8d:8e:08:74:0c:03:4f:f8:51:2b:9c:8d:29:e3: d2:9b:cf:af:13:a5:1a:d9:16:0d:b3:50:a5:68:2f: 3f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:FB:75:14:B9:BE:2A:CB:08:02:E8:C8:EF:D4:88:C6:C8:6A:B5:6C X509v3 Authority Key Identifier: keyid:4B:F3:E8:7C:A2:B9:AB:59:59:76:20:D0:4F:C0:54:11:8D:7E:D3:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/S_PofKK5q1lZdiDQT8BUEY1-09k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S_PofKK5q1lZdiDQT8BUEY1-09k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9191B71/B849BA12C60411ECB906915CC4F9AE02/5A48B534C6C811ECA5A9AB33C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.188.0/22 103.42.36.0/22 Signature Algorithm: sha256WithRSAEncryption 46:e6:3d:9a:d9:15:3f:71:0b:ea:47:e4:51:9e:b2:ef:2f:47: 56:98:6c:a4:02:54:b3:7c:fa:91:ce:6a:5f:e3:ae:f1:80:9b: 1a:5d:73:05:bd:a0:b7:c1:cf:cc:53:27:31:a0:cc:7e:d3:65: a5:6b:b8:52:58:7f:78:98:b6:ba:11:f4:27:d8:9c:71:bc:73: 14:7b:20:73:7c:9b:66:49:bc:fe:dd:49:8a:e9:4f:70:13:14: 98:cc:36:69:6d:0f:2a:27:bb:1b:5b:39:0c:a7:2c:22:86:7a: b3:95:c1:cd:6d:4e:3f:11:21:bb:d1:31:bd:88:78:26:e3:4b: 75:b8:1c:67:e9:e1:8b:d6:b1:66:8b:16:d0:ef:6a:28:c4:e7: 43:13:89:6e:e2:bf:93:c6:a3:ba:e8:dd:e4:28:bd:78:6a:b5: a4:9f:52:87:25:5c:fa:8b:5c:58:d9:d5:9e:b4:21:2a:88:bb: 1b:f9:23:74:61:61:a0:3e:a8:10:e3:c6:2f:b5:96:1c:0e:f6: 7a:ce:9b:8e:04:2d:fb:6d:e3:50:9c:f2:56:c2:d6:d3:af:9b: e6:65:10:0a:79:45:6c:6f:e6:ca:50:d6:23:55:7e:59:50:71: 62:ac:08:91:47:8e:d6:11:63:5a:dd:09:b5:36:78:7a:6e:0c: 9b:87:9b:49 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAhowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTFCNzExMTAvBgNVBAUTKDRCRjNFODdDQTJCOUFCNTk1OTc2MjBEMDRGQzA1NDEx OEQ3RUQzRDkwHhcNMjMxMTI5MDMzNDIxWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2YjEzZC05YzZjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHdA6okxJOL8qhzVGaue8a51BfN3MYIWIvw3MDqg7GnFkYl6GBykedgrHhh6 aeJfjlHKuaSmFM1vB/PCnbjam7kxv/HEHvfSNjKUQwG9Xl2t/ekaSvL9NYeGzoz6 0pp7aSSwP+pd3iLz6qKI0lps9xzoGSjhFrKcPoW06VhtwzgTa4jc+fWInVS8SpFS /bbe5Oh/onlfYss09kUAXjePL+hvK2dJ715Rk/pbrhcCmbC8lrx9ca9KXxJbNlSr b8EPhL4kzgSdLrSO5PrselVdxrw5TgsIMrQe4+H1L12v1jPnjY4IdAwDT/hRK5yN KePSm8+vE6Ua2RYNs1ClaC8/FwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFMj7dRS5 virLCALoyO/UiMbIarVsMB8GA1UdIwQYMBaAFEvz6HyiuatZWXYg0E/AVBGNftPZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MUI3MS9CODQ5QkExMkM2 MDQxMUVDQjkwNjkxNUNDNEY5QUUwMi9TX1BvZktLNXExbFpkaURRVDhCVUVZMS0w OWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NfUG9mS0s1cTFsWmRpRFFUOEJVRVkxLTA5ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTFCNzEvQjg0OUJBMTJDNjA0MTFFQ0I5MDY5MTVDQzRGOUFFMDIvNUE0OEI1MzRD NkM4MTFFQ0E1QTlBQjMzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+rwDBAJnKiQwDQYJKoZIhvcNAQELBQADggEBAEbmPZrZ FT9xC+pH5FGesu8vR1aYbKQCVLN8+pHOal/jrvGAmxpdcwW9oLfBz8xTJzGgzH7T ZaVruFJYf3iYtroR9CfYnHG8cxR7IHN8m2ZJvP7dSYrpT3ATFJjMNmltDyonuxtb OQynLCKGerOVwc1tTj8RIbvRMb2IeCbjS3W4HGfp4YvWsWaLFtDvaijE50MTiW7i v5PGo7ro3eQovXhqtaSfUoclXPqLXFjZ1Z60ISqIuxv5I3RhYaA+qBDjxi+1lhwO 9nrOm44ELftt41Cc8lbC1tOvm+ZlEAp5RWxv5spQ1iNVfllQcWKsCJFHjtYRY1rd CbU2eHpuDJuHm0k= -----END CERTIFICATE-----Generated at Sat Nov 23 02:33:41 2024 by rpki-client on console-fra.rpki-client.org