$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5EDC2B56F27E11EE8704D12FC4F9AE02.roa File: 5EDC2B56F27E11EE8704D12FC4F9AE02.roa (raw, json) Hash identifier: 2W3oJ+QedRAztUpfSm+tuoCImEjQqqaPV0aL9qo5r3Y= Subject key identifier: E5:22:7D:BB:C0:83:1E:03:9C:A5:93:E3:C5:D8:71:79:E1:72:7D:2E Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 20F6 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5EDC2B56F27E11EE8704D12FC4F9AE02.roa Signing time: Thu 04 Apr 2024 12:25:07 +0000 ROA not before: Thu 04 Apr 2024 12:25:07 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 14618 IP address blocks: 43.230.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 16:21:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8438 (0x20f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Apr 4 12:25:07 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=660e9c22-c7f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:74:75:f4:cc:f5:dd:42:e9:f6:29:89:65:90: 69:89:b7:b8:ea:be:e6:74:f1:0a:7d:c0:a5:eb:64: 62:b1:0d:31:52:2d:7d:7d:92:1f:a1:76:c6:7e:7d: 9a:be:7d:6b:8d:22:6e:41:e4:ee:20:ee:c2:3f:43: be:a1:5c:5a:9e:fa:ba:45:ad:ff:f6:6f:1b:35:07: 1e:f6:65:c5:96:7f:98:b6:28:af:3e:29:46:93:85: 64:8f:3f:92:c3:46:f1:bc:43:0a:5d:90:43:98:75: c0:a1:39:97:33:47:62:f0:14:87:69:e8:df:71:11: af:d9:a0:81:de:8f:00:c5:fe:5a:a3:3e:4c:b8:f0: ed:d4:4b:73:bc:13:9e:48:80:12:da:fe:e2:5d:ac: df:55:2b:28:a2:e9:70:2f:a0:7b:d8:7c:72:74:81: 6a:7a:44:6f:7a:88:f1:81:76:5b:1a:39:ee:30:41: 5e:9d:86:de:d1:c3:0e:7f:f3:07:48:41:57:b7:c0: f8:6e:c9:67:c6:c9:21:ea:65:cd:0e:62:c2:39:7b: f3:cb:e3:b2:97:10:0a:75:5a:5c:7e:a2:19:0d:4f: b2:57:ee:2a:f8:e9:e1:0a:fe:22:0d:78:37:64:86: 89:9c:28:ae:a9:58:af:32:14:ce:23:6a:d5:6f:57: 8e:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:22:7D:BB:C0:83:1E:03:9C:A5:93:E3:C5:D8:71:79:E1:72:7D:2E X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5EDC2B56F27E11EE8704D12FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.25.0/24 Signature Algorithm: sha256WithRSAEncryption 43:f8:79:cd:61:94:74:d3:58:c8:d3:18:d7:d3:57:6b:01:42: 38:17:64:52:c8:ed:e3:36:88:2b:a2:d2:b8:f3:7b:14:cd:64: f1:29:3d:56:03:98:12:a7:95:17:62:89:87:a2:25:a7:f5:a1: 32:1f:a4:a9:db:42:d1:f4:74:96:94:39:d1:cf:5d:a3:a7:71: c4:f0:d9:6e:e6:6b:f4:e8:b5:3f:bf:de:f0:87:19:b4:b1:11: 52:a4:0d:4e:d7:ab:96:19:26:ca:d1:e4:aa:51:4b:de:cd:d1: 52:19:28:8e:96:be:e6:ec:74:f7:83:d1:93:bd:6d:d6:e1:32: 88:f3:6b:29:58:b5:7f:66:9a:5b:e3:f7:27:d2:72:b8:96:7e: 7a:c1:6f:d5:b5:f1:ca:ad:d1:89:aa:d8:70:b2:4f:16:f3:5c: b4:12:71:46:6b:85:b6:f6:e5:1e:49:e0:da:ca:38:95:bd:55: 44:d9:a1:f2:a3:c4:aa:50:90:60:fa:86:76:3f:4e:b0:26:71: 27:6b:54:dc:57:f4:24:ea:84:ab:a5:75:10:5c:13:6e:e7:8c: 71:e0:a2:dc:53:23:88:f5:63:79:6a:64:d6:55:50:37:1f:31: 40:05:83:d3:e7:ee:2d:6e:09:84:e1:bc:40:fb:56:64:9f:32: 8d:b8:12:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIPYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjQwNDA0MTIyNTA3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlOWMyMi1jN2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtHR19Mz13ULp9imJZZBpibe46r7mdPEKfcCl62RisQ0xUi19fZIfoXbGfn2a vn1rjSJuQeTuIO7CP0O+oVxanvq6Ra3/9m8bNQce9mXFln+YtiivPilGk4Vkjz+S w0bxvEMKXZBDmHXAoTmXM0di8BSHaejfcRGv2aCB3o8Axf5aoz5MuPDt1EtzvBOe SIAS2v7iXazfVSsooulwL6B72HxydIFqekRveojxgXZbGjnuMEFenYbe0cMOf/MH SEFXt8D4bslnxskh6mXNDmLCOXvzy+OylxAKdVpcfqIZDU+yV+4q+OnhCv4iDXg3 ZIaJnCiuqVivMhTOI2rVb1eOiwIDAQABo4IClTCCApEwHQYDVR0OBBYEFOUifbvA gx4DnKWT48XYcXnhcn0uMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvNUVEQzJCNTZG MjdFMTFFRTg3MDREMTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5hkwDQYJKoZIhvcNAQELBQADggEBAEP4ec1hlHTTWMjT GNfTV2sBQjgXZFLI7eM2iCui0rjzexTNZPEpPVYDmBKnlRdiiYeiJaf1oTIfpKnb QtH0dJaUOdHPXaOnccTw2W7ma/TotT+/3vCHGbSxEVKkDU7Xq5YZJsrR5KpRS97N 0VIZKI6WvubsdPeD0ZO9bdbhMojzaylYtX9mmlvj9yfScriWfnrBb9W18cqt0Ymq 2HCyTxbzXLQScUZrhbb25R5J4NrKOJW9VUTZofKjxKpQkGD6hnY/TrAmcSdrVNxX 9CTqhKuldRBcE27njHHgotxTI4j1Y3lqZNZVUDcfMUAFg9Pn7i1uCYThvED7VmSf Mo24Es0= -----END CERTIFICATE-----Generated at Tue Apr 30 18:57:42 2024 by rpki-client on console-fra.rpki-client.org