$ rpki-client -vvf rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/1F26C9129F3811ECBB84BD76C4F9AE02.roa File: 1F26C9129F3811ECBB84BD76C4F9AE02.roa (raw, json) Hash identifier: 4/Z4flJpyUablTpKqfLyo+AwvZDxQW6x7bvb56HHFQY= Subject key identifier: EB:39:E5:A3:FC:6E:B9:51:B5:43:AD:3B:B1:D6:97:BE:F7:56:17:08 Certificate issuer: /CN=A9193045/serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Certificate serial: 0261 Authority key identifier: 66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/1F26C9129F3811ECBB84BD76C4F9AE02.roa Signing time: Sat 09 Sep 2023 02:13:38 +0000 ROA not before: Sat 09 Sep 2023 02:13:38 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 45345 IP address blocks: 43.245.212.0/23 maxlen: 24 103.29.152.0/24 maxlen: 24 2401:af00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 609 (0x261) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9193045/serialNumber=66E85461BB352A498DB55703646305CA37E74FB4 Validity Not Before: Sep 9 02:13:38 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64fbd4d2-fe3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2a:8c:08:c6:0a:5e:3d:c0:14:65:86:ca:bd: 2d:62:81:0a:5a:6c:3d:66:db:65:3a:8b:bf:8e:70: ee:71:55:c3:45:79:78:42:ef:ab:b9:49:e4:d2:8a: 28:bf:c3:91:24:26:d4:e2:38:9f:cb:5e:4d:b9:ad: a1:6a:8e:1e:67:7f:da:ec:ba:15:71:29:0c:b3:19: cb:1a:c5:16:02:2a:21:9d:79:9a:1b:2f:22:da:2b: 9f:72:e7:4e:8b:53:48:52:df:11:35:4a:50:2b:f0: 58:a3:b3:94:43:cf:b9:9e:a3:8e:2a:9d:5c:d4:8d: 35:e6:53:eb:98:8c:19:68:f4:14:b2:8b:92:7e:06: 11:1f:f2:f8:fe:65:12:b7:7b:32:6d:c2:3d:d6:16: 0d:15:12:df:fa:bd:20:68:b6:07:d3:89:7e:2f:e9: bb:3f:16:b1:94:d8:8e:ee:48:7d:51:69:46:57:84: 62:5f:db:33:f4:e4:ee:56:25:ee:ed:4f:1d:2d:b4: 81:79:ec:9f:3a:0e:fb:ad:b6:fc:2f:15:02:c4:95: 21:37:8f:d1:5a:fe:d2:1d:a7:72:9c:ad:29:54:db: 7b:27:2c:54:3f:aa:3a:06:2d:5a:ba:52:15:d4:36: 93:57:77:99:38:a7:17:7f:e2:fc:25:67:13:d8:d6: e2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:39:E5:A3:FC:6E:B9:51:B5:43:AD:3B:B1:D6:97:BE:F7:56:17:08 X509v3 Authority Key Identifier: keyid:66:E8:54:61:BB:35:2A:49:8D:B5:57:03:64:63:05:CA:37:E7:4F:B4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZuhUYbs1KkmNtVcDZGMFyjfnT7Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9193045/BFADC6109F2911EC9C2D6785C4F9AE02/1F26C9129F3811ECBB84BD76C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.212.0/23 103.29.152.0/24 IPv6: 2401:af00::/32 Signature Algorithm: sha256WithRSAEncryption 86:28:6c:ab:32:3a:51:e5:f8:7a:41:94:bf:8d:08:9b:27:ac: 59:c1:de:5d:6d:f1:57:ca:45:ff:17:71:5f:63:19:65:32:37: 98:5a:c2:fc:fe:56:16:3a:91:e8:93:26:59:c0:bb:5e:63:ff: 30:61:cf:32:56:a1:62:de:42:46:17:25:e6:14:2d:cc:28:0f: df:ae:09:ca:ed:20:c6:1d:d2:09:a5:e3:c2:98:be:39:43:9f: b9:16:ce:88:72:0c:47:a5:dd:17:54:5e:96:b4:5b:6b:30:96: b0:c4:91:4e:30:fa:7e:88:c2:f0:0b:a3:52:da:90:5d:02:5e: 3a:da:ca:f6:15:f3:6c:0a:ef:b5:57:57:f3:73:79:01:60:ad: 44:f3:7e:a8:20:ff:66:2b:0c:fc:f8:4c:47:d1:12:51:f7:94: 63:73:98:be:32:7e:49:c3:80:40:e6:27:9d:ec:23:1d:51:7b: 8d:9c:13:0c:a1:14:93:20:6c:1e:8b:2b:9c:bc:e0:d9:4a:a6: 81:0e:d4:cf:7f:01:db:37:a1:df:16:6e:38:c4:70:b5:b8:eb: 39:3b:cb:4a:b8:4d:a5:8c:45:2a:0d:2b:84:48:d4:93:83:fa: be:6b:df:02:8a:c6:6c:07:85:55:7b:87:7d:f2:54:25:d0:a7: 29:1c:00:bd -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICAmEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTMwNDUxMTAvBgNVBAUTKDY2RTg1NDYxQkIzNTJBNDk4REI1NTcwMzY0NjMwNUNB MzdFNzRGQjQwHhcNMjMwOTA5MDIxMzM4WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZiZDRkMi1mZTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApyqMCMYKXj3AFGWGyr0tYoEKWmw9ZttlOou/jnDucVXDRXl4Qu+ruUnk0ooo v8ORJCbU4jify15Nua2hao4eZ3/a7LoVcSkMsxnLGsUWAiohnXmaGy8i2iufcudO i1NIUt8RNUpQK/BYo7OUQ8+5nqOOKp1c1I015lPrmIwZaPQUsouSfgYRH/L4/mUS t3sybcI91hYNFRLf+r0gaLYH04l+L+m7PxaxlNiO7kh9UWlGV4RiX9sz9OTuViXu 7U8dLbSBeeyfOg77rbb8LxUCxJUhN4/RWv7SHadynK0pVNt7JyxUP6o6Bi1aulIV 1DaTV3eZOKcXf+L8JWcT2NbiLQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOs55aP8 brlRtUOtO7HWl773VhcIMB8GA1UdIwQYMBaAFGboVGG7NSpJjbVXA2RjBco350+0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5MzA0NS9CRkFEQzYxMDlG MjkxMUVDOUMyRDY3ODVDNEY5QUUwMi9adWhVWWJzMUtrbU50VmNEWkdNRnlqZm5U N1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1p1aFVZYnMxS2ttTnRWY0RaR01GeWpmblQ3US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTMwNDUvQkZBREM2MTA5RjI5MTFFQzlDMkQ2Nzg1QzRGOUFFMDIvMUYyNkM5MTI5 RjM4MTFFQ0JCODRCRDc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAEr9dQDBABnHZgwDQQCAAIwBwMFACQBrwAwDQYJKoZIhvcN AQELBQADggEBAIYobKsyOlHl+HpBlL+NCJsnrFnB3l1t8VfKRf8XcV9jGWUyN5ha wvz+VhY6keiTJlnAu15j/zBhzzJWoWLeQkYXJeYULcwoD9+uCcrtIMYd0gml48KY vjlDn7kWzohyDEel3RdUXpa0W2swlrDEkU4w+n6IwvALo1LakF0CXjrayvYV82wK 77VXV/NzeQFgrUTzfqgg/2YrDPz4TEfRElH3lGNzmL4yfknDgEDmJ53sIx1Re42c EwyhFJMgbB6LK5y84NlKpoEO1M9/Ads3od8WbjjEcLW46zk7y0q4TaWMRSoNK4RI 1JOD+r5r3wKKxmwHhVV7h33yVCXQpykcAL0= -----END CERTIFICATE-----Generated at Fri May 17 04:26:39 2024 by rpki-client on console-fra.rpki-client.org