$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa File: 5F649D88F27E11EE8704D12FC4F9AE02.roa (raw, json) Hash identifier: E2AOiCzgxsLKBTynZ4crXCu8PKZqVtSAJ3spxDFUx2E= Subject key identifier: 86:CD:97:0C:E3:B5:04:14:63:03:BE:DA:1D:45:C6:CC:A1:FB:BE:58 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 20F7 Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa Signing time: Thu 04 Apr 2024 12:25:07 +0000 ROA not before: Thu 04 Apr 2024 12:25:07 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 16509 IP address blocks: 43.230.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:19:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8439 (0x20f7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Apr 4 12:25:07 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=660e9c23-5618 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:76:f0:18:51:17:51:04:a2:43:41:bf:22:46: 1c:77:0b:68:b0:82:71:3b:36:14:2d:38:fb:7a:c2: 0b:18:9a:39:7d:29:8c:83:91:13:4b:0c:21:5a:1c: 90:8c:2b:e2:12:cd:7b:14:e5:cd:71:f4:ae:51:ec: 52:cd:56:bc:a4:c3:be:a8:2a:37:d6:d8:6c:37:20: 2f:31:01:4a:20:61:7f:97:36:8a:19:4e:f9:e7:8d: 50:46:30:aa:0d:61:74:52:8a:56:5c:5b:9f:cc:9c: 69:92:19:04:80:53:12:de:a6:db:72:31:dc:f6:e8: 2d:d5:d5:a2:51:c6:35:e8:6a:5c:4f:3e:5d:7f:e9: f4:ae:f2:c4:28:00:35:b9:d3:6b:cb:15:9f:10:75: ca:63:35:d6:78:14:fa:0a:ff:db:3c:85:f9:be:e4: 6a:fd:90:e1:6a:e0:96:2c:e4:dc:6f:81:2c:99:b1: 0c:f0:fe:87:b0:7f:b0:3e:cd:41:f1:b2:1e:8f:3a: f1:d4:09:60:92:b2:45:1d:84:cf:40:76:74:ca:61: cf:4b:e6:72:cb:71:4c:82:23:77:fa:ec:c2:ed:d7: e6:20:57:a8:65:ad:df:90:61:af:8a:e2:37:7f:4c: 5d:7b:8f:13:e2:e5:48:35:44:60:01:28:de:57:c7: 71:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:CD:97:0C:E3:B5:04:14:63:03:BE:DA:1D:45:C6:CC:A1:FB:BE:58 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.25.0/24 Signature Algorithm: sha256WithRSAEncryption 8d:e5:cd:b3:0c:47:30:3d:ef:7f:e0:b0:07:9f:59:de:96:fc: b7:be:39:42:a0:49:cf:04:75:80:b5:87:ba:cd:99:e0:c0:37: 6e:b0:16:a6:00:6d:59:cd:88:ff:8a:3d:03:03:e6:21:7b:3f: cb:ec:ac:70:8e:34:ca:f0:35:2f:b7:60:23:9c:d2:98:7e:ec: 4c:35:b1:b9:9f:da:7d:12:81:b1:d0:65:ad:32:4f:43:42:01: 5f:14:b1:ef:82:cc:85:af:11:e7:62:bd:50:a9:eb:3b:05:77: 97:53:ea:07:69:57:b6:16:0f:2c:d8:0e:c9:2d:f9:32:27:8a: 8c:02:98:82:b3:94:c2:98:3d:ba:be:4b:a8:07:db:a5:6c:32: a8:91:07:20:6d:50:10:6e:fb:d2:f9:7a:2e:7d:bf:b4:5e:69: b2:2f:5d:c6:66:25:1a:97:e3:a4:6a:ab:05:3f:41:a4:1b:b4: fa:ca:bf:f3:c5:0b:12:25:68:28:f4:e1:b5:30:57:cc:9c:02: 77:19:1f:c7:85:3d:26:20:18:2a:ba:98:c4:0d:74:25:ec:37: bf:28:1d:28:b2:e3:35:b4:4d:1e:3f:95:b9:e1:6d:00:58:c1: 44:d5:71:c1:75:5e:2e:77:57:b5:bb:c1:48:8d:5e:79:7a:b3: af:62:c1:63 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIPcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjQwNDA0MTIyNTA3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlOWMyMy01NjE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHbwGFEXUQSiQ0G/IkYcdwtosIJxOzYULTj7esILGJo5fSmMg5ETSwwhWhyQ jCviEs17FOXNcfSuUexSzVa8pMO+qCo31thsNyAvMQFKIGF/lzaKGU75541QRjCq DWF0UopWXFufzJxpkhkEgFMS3qbbcjHc9ugt1dWiUcY16GpcTz5df+n0rvLEKAA1 udNryxWfEHXKYzXWeBT6Cv/bPIX5vuRq/ZDhauCWLOTcb4EsmbEM8P6HsH+wPs1B 8bIejzrx1AlgkrJFHYTPQHZ0ymHPS+Zyy3FMgiN3+uzC7dfmIFeoZa3fkGGviuI3 f0xde48T4uVINURgASjeV8dxlQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIbNlwzj tQQUYwO+2h1Fxsyh+75YMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvNUY2NDlEODhG MjdFMTFFRTg3MDREMTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5hkwDQYJKoZIhvcNAQELBQADggEBAI3lzbMMRzA973/g sAefWd6W/Le+OUKgSc8EdYC1h7rNmeDAN26wFqYAbVnNiP+KPQMD5iF7P8vsrHCO NMrwNS+3YCOc0ph+7Ew1sbmf2n0SgbHQZa0yT0NCAV8Use+CzIWvEedivVCp6zsF d5dT6gdpV7YWDyzYDskt+TIniowCmIKzlMKYPbq+S6gH26VsMqiRByBtUBBu+9L5 ei59v7ReabIvXcZmJRqX46RqqwU/QaQbtPrKv/PFCxIlaCj04bUwV8ycAncZH8eF PSYgGCq6mMQNdCXsN78oHSiy4zW0TR4/lbnhbQBYwUTVccF1Xi53V7W7wUiNXnl6 s69iwWM= -----END CERTIFICATE-----Generated at Thu May 2 17:43:52 2024 by rpki-client on console-fra.rpki-client.org