$ rpki-client -vvf rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/A69C6F284BB711EE81B0EF6CC4F9AE02.roa File: A69C6F284BB711EE81B0EF6CC4F9AE02.roa (raw, json) Hash identifier: Rs6kU0pRLUn+BbmmaPdTq17TwzBFhGCZ+p/WpMkgKxI= Subject key identifier: 4A:6B:F0:38:05:56:99:D4:7F:EC:BD:EA:52:EE:C1:8A:97:8B:75:62 Certificate issuer: /CN=A919ECE7/serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33 Certificate serial: 060B Authority key identifier: 77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/A69C6F284BB711EE81B0EF6CC4F9AE02.roa Signing time: Sat 30 Mar 2024 14:55:22 +0000 ROA not before: Sat 30 Mar 2024 14:55:22 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134365 IP address blocks: 43.250.174.0/24 maxlen: 24 103.42.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.crl rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 00:06:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1547 (0x60b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A919ECE7/serialNumber=77370BC07305D19DBDACCE4BF7209E1EB6D40E33 Validity Not Before: Mar 30 14:55:22 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=660827da-8fec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bc:cd:20:c5:a1:e3:64:ad:a6:40:32:26:38: c5:2f:0c:3f:24:e0:c3:3d:9c:11:56:27:8a:75:65: 0f:43:79:a3:40:8b:ce:4b:6c:38:1b:93:f9:9f:10: ee:95:21:5f:ce:99:2b:07:6e:83:48:40:f6:35:67: de:5d:29:c7:3e:21:e1:d7:57:19:81:53:6a:1f:fe: 0f:d3:92:0d:a2:79:f2:eb:49:43:ba:30:0e:ac:e7: 69:9b:91:98:d5:50:c6:6c:30:3d:32:e7:08:b4:39: 78:0d:1f:14:d1:65:f4:f7:14:2f:24:93:a8:61:d6: cc:34:2b:24:54:28:7b:bc:7a:48:7d:d3:f1:65:0a: 02:be:a2:62:f9:99:bb:3b:f0:80:f5:c5:33:66:b0: 53:d3:49:04:10:7e:5e:a3:8c:ee:b9:1c:03:c4:da: 25:28:8b:23:22:ef:1a:9c:07:12:58:16:a2:f3:16: 63:aa:1d:e5:07:6d:fe:0c:81:79:64:31:98:7f:77: 3c:3b:c0:15:a3:1a:6d:20:65:01:af:cf:08:a5:4a: aa:d1:db:6d:b2:6f:fe:f5:92:32:1b:5a:bd:da:06: 9c:00:9c:ca:d6:e7:f0:6f:9d:ad:0a:22:b0:a2:dc: 26:46:03:8d:cf:c9:26:ea:65:de:61:41:c4:75:55: e9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6B:F0:38:05:56:99:D4:7F:EC:BD:EA:52:EE:C1:8A:97:8B:75:62 X509v3 Authority Key Identifier: keyid:77:37:0B:C0:73:05:D1:9D:BD:AC:CE:4B:F7:20:9E:1E:B6:D4:0E:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/dzcLwHMF0Z29rM5L9yCeHrbUDjM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dzcLwHMF0Z29rM5L9yCeHrbUDjM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A919ECE7/5E05DBA45FAC11EB8494452FC4F9AE02/A69C6F284BB711EE81B0EF6CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.174.0/24 103.42.29.0/24 Signature Algorithm: sha256WithRSAEncryption b7:89:3e:76:b7:d8:95:c3:77:fc:ea:20:ae:27:a9:e4:1d:7d: 71:06:2b:3c:9f:72:d3:e6:76:b5:0c:5c:25:58:20:9d:4f:9a: 49:6d:92:9d:2f:54:05:14:06:6f:21:0a:30:44:b7:a8:48:81: e5:0b:b4:27:47:ef:dc:cd:41:16:ca:d2:2b:63:71:04:e8:d2: 39:30:d5:35:eb:0f:97:69:64:86:64:e4:e3:32:2b:19:8b:e6: fc:bb:8a:35:de:ab:d6:23:09:8d:33:5f:37:24:78:21:f8:fe: cb:2b:eb:86:de:33:db:b7:1a:54:4d:f7:80:80:68:76:39:08: a8:a0:b0:85:b3:d5:ac:f0:9b:55:4f:2d:95:f5:68:1f:1e:39: 9d:61:5b:8a:c5:58:d5:d5:0a:d7:7a:d7:9c:4f:0f:87:2a:8e: b6:ff:58:d2:ba:9a:6e:06:0c:f0:3c:d9:da:ce:33:fb:d4:4a: d1:e5:3d:e6:c8:f1:c8:68:81:02:54:74:c4:9a:5a:da:b2:e0: d9:a9:fe:63:b5:fb:a9:03:58:4f:9d:82:6f:2a:2a:df:c5:96: a0:56:66:ec:51:a0:70:13:90:a4:f0:fa:68:70:0a:5a:04:df: cd:dc:46:77:08:bc:2d:08:58:b6:74:82:d5:d5:42:20:38:84: 3e:ec:e6:4c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBgswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OUVDRTcxMTAvBgNVBAUTKDc3MzcwQkMwNzMwNUQxOURCREFDQ0U0QkY3MjA5RTFF QjZENDBFMzMwHhcNMjQwMzMwMTQ1NTIyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA4MjdkYS04ZmVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzbzNIMWh42StpkAyJjjFLww/JODDPZwRVieKdWUPQ3mjQIvOS2w4G5P5nxDu lSFfzpkrB26DSED2NWfeXSnHPiHh11cZgVNqH/4P05INonny60lDujAOrOdpm5GY 1VDGbDA9MucItDl4DR8U0WX09xQvJJOoYdbMNCskVCh7vHpIfdPxZQoCvqJi+Zm7 O/CA9cUzZrBT00kEEH5eo4zuuRwDxNolKIsjIu8anAcSWBai8xZjqh3lB23+DIF5 ZDGYf3c8O8AVoxptIGUBr88IpUqq0dttsm/+9ZIyG1q92gacAJzK1ufwb52tCiKw otwmRgONz8km6mXeYUHEdVXpwQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEpr8DgF VpnUf+y96lLuwYqXi3ViMB8GA1UdIwQYMBaAFHc3C8BzBdGdvazOS/cgnh621A4z MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5RUNFNy81RTA1REJBNDVG QUMxMUVCODQ5NDQ1MkZDNEY5QUUwMi9kemNMd0hNRjBaMjlyTTVMOXlDZUhyYlVE ak0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R6Y0x3SE1GMFoyOXJNNUw5eUNlSHJiVURqTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OUVDRTcvNUUwNURCQTQ1RkFDMTFFQjg0OTQ0NTJGQzRGOUFFMDIvQTY5QzZGMjg0 QkI3MTFFRTgxQjBFRjZDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr+q4DBABnKh0wDQYJKoZIhvcNAQELBQADggEBALeJPna3 2JXDd/zqIK4nqeQdfXEGKzyfctPmdrUMXCVYIJ1Pmkltkp0vVAUUBm8hCjBEt6hI geULtCdH79zNQRbK0itjcQTo0jkw1TXrD5dpZIZk5OMyKxmL5vy7ijXeq9YjCY0z XzckeCH4/ssr64beM9u3GlRN94CAaHY5CKigsIWz1azwm1VPLZX1aB8eOZ1hW4rF WNXVCtd615xPD4cqjrb/WNK6mm4GDPA82drOM/vUStHlPebI8chogQJUdMSaWtqy 4Nmp/mO1+6kDWE+dgm8qKt/FlqBWZuxRoHATkKTw+mhwCloE383cRncIvC0IWLZ0 gtXVQiA4hD7s5kw= -----END CERTIFICATE-----Generated at Sat May 25 01:24:52 2024 by rpki-client on console-fra.rpki-client.org