$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5EDC2B56F27E11EE8704D12FC4F9AE02.roa File: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (raw, json) Hash identifier: RV1/DDfUdeMeAI1f60SGG8y1uSkd4aEtHJsKEOkYdXA= Subject key identifier: 24:13:1E:8F:E1:0A:6D:1F:BD:32:DF:78:1D:F1:92:7E:9C:CD:A1:EB Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 215B Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5EDC2B56F27E11EE8704D12FC4F9AE02.roa Signing time: Thu 10 Oct 2024 16:23:22 +0000 ROA not before: Thu 10 Oct 2024 16:23:22 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 14618 IP address blocks: 43.230.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8539 (0x215b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Oct 10 16:23:22 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6707ff7a-55fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:84:66:05:0e:5b:cd:35:90:da:72:d9:40:7f: ed:1d:c5:02:74:fd:20:07:29:ca:e0:0c:02:32:43: 38:fd:5b:d3:d7:0b:16:98:d2:fc:7a:7c:c4:98:c8: ae:a2:fe:03:6f:d3:06:85:de:79:77:c2:9f:10:30: e1:13:5d:ac:bb:89:c3:9e:fa:86:7c:a1:f3:61:cd: 74:5a:19:da:21:f4:54:5a:09:e0:60:4b:9d:c9:fc: 12:e7:d2:f7:33:ce:ad:a7:60:28:fc:21:39:93:5b: 08:ef:ff:a7:3d:04:72:cc:43:9a:b0:db:cd:a5:09: 60:a0:64:8b:ca:7f:0d:28:f0:36:13:10:79:1c:b3: f7:5d:8b:00:5e:bf:b5:c1:25:4e:9e:e7:40:da:47: e7:5e:f5:fb:16:a6:eb:35:fc:10:76:7b:80:e5:02: 26:a2:89:18:5f:d8:64:d7:7b:37:97:4c:80:8b:46: e8:d4:13:51:42:12:a7:cd:3b:df:06:50:8a:67:0a: 6f:24:a8:f6:8a:a2:17:f3:44:8f:ee:d3:e4:d0:dd: b7:d3:64:84:3a:1e:7c:6f:95:e0:58:60:25:e3:52: 07:f5:ae:ea:e4:96:5a:2e:bb:61:dd:95:d0:44:2e: b8:24:e9:c1:ed:e5:64:93:dd:24:39:4b:a9:25:42: 44:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:13:1E:8F:E1:0A:6D:1F:BD:32:DF:78:1D:F1:92:7E:9C:CD:A1:EB X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5EDC2B56F27E11EE8704D12FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.25.0/24 Signature Algorithm: sha256WithRSAEncryption af:48:b2:0b:e1:07:8e:54:d7:e5:7d:08:29:30:26:c3:54:e0: bf:45:9a:95:38:79:07:34:08:91:cd:c7:ca:50:ee:12:c0:d1: ed:71:2c:f8:b6:5e:2f:d0:90:c6:f2:68:52:2a:51:f9:71:fe: f8:fd:fa:7a:97:a1:db:9c:9a:3c:2e:42:c5:dc:3e:42:94:11: 9e:5c:78:64:83:b4:b5:11:ca:de:55:a5:52:9b:84:62:ab:dc: 81:13:51:44:63:e7:6a:fe:4f:78:2f:4a:e2:7e:9a:a9:da:97: 0a:8b:cf:ee:c3:8c:5f:dd:ab:55:ea:69:ed:e3:da:50:00:b4: 27:6a:7c:55:93:1d:2a:4a:ec:b3:e2:b6:8e:fa:ce:28:95:11: 62:bd:27:96:ac:95:42:da:99:b5:e4:20:b3:e4:a0:92:00:53: 5e:9d:9e:e2:20:51:90:5c:e3:1b:87:b9:47:3e:75:4a:1b:6e: 1f:80:ab:07:35:cb:31:af:c0:ad:e9:58:4e:5d:93:6b:84:42: cc:27:90:dc:c8:51:b4:10:bd:6f:5a:7d:8c:1f:c9:70:64:82: a2:d7:e1:70:ad:37:e9:a4:4e:ab:2f:a7:68:1c:1f:02:e9:37: bc:6f:89:70:b9:8c:64:ba:38:69:4d:88:cc:7a:ca:a0:59:99: 51:fb:9c:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjQxMDEwMTYyMzIyWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3ZmY3YS01NWZlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt4RmBQ5bzTWQ2nLZQH/tHcUCdP0gBynK4AwCMkM4/VvT1wsWmNL8enzEmMiu ov4Db9MGhd55d8KfEDDhE12su4nDnvqGfKHzYc10WhnaIfRUWgngYEudyfwS59L3 M86tp2Ao/CE5k1sI7/+nPQRyzEOasNvNpQlgoGSLyn8NKPA2ExB5HLP3XYsAXr+1 wSVOnudA2kfnXvX7FqbrNfwQdnuA5QImookYX9hk13s3l0yAi0bo1BNRQhKnzTvf BlCKZwpvJKj2iqIX80SP7tPk0N2302SEOh58b5XgWGAl41IH9a7q5JZaLrth3ZXQ RC64JOnB7eVkk90kOUupJUJEvwIDAQABo4IClTCCApEwHQYDVR0OBBYEFCQTHo/h Cm0fvTLfeB3xkn6czaHrMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvNUVEQzJCNTZG MjdFMTFFRTg3MDREMTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5hkwDQYJKoZIhvcNAQELBQADggEBAK9IsgvhB45U1+V9 CCkwJsNU4L9FmpU4eQc0CJHNx8pQ7hLA0e1xLPi2Xi/QkMbyaFIqUflx/vj9+nqX oducmjwuQsXcPkKUEZ5ceGSDtLURyt5VpVKbhGKr3IETUURj52r+T3gvSuJ+mqna lwqLz+7DjF/dq1Xqae3j2lAAtCdqfFWTHSpK7LPito76ziiVEWK9J5aslULambXk ILPkoJIAU16dnuIgUZBc4xuHuUc+dUobbh+Aqwc1yzGvwK3pWE5dk2uEQswnkNzI UbQQvW9afYwfyXBkgqLX4XCtN+mkTqsvp2gcHwLpN7xviXC5jGS6OGlNiMx6yqBZ mVH7nKs= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:07 2024 by rpki-client on console-fra.rpki-client.org