$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa File: 5F649D88F27E11EE8704D12FC4F9AE02.roa (raw, json) Hash identifier: 1ES+epsnD/DNY/mamto14c9DZbko73ok/bvGYlpnZRA= Subject key identifier: 7B:39:A7:33:0E:BE:A7:97:7A:79:8C:10:1F:6F:B9:91:9D:51:92:6F Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 215C Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa Signing time: Thu 10 Oct 2024 16:23:23 +0000 ROA not before: Thu 10 Oct 2024 16:23:23 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 16509 IP address blocks: 43.230.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8540 (0x215c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Oct 10 16:23:23 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6707ff7b-f2a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:f1:47:e6:d4:56:c9:22:4a:c3:bc:27:1b:aa: 6b:47:04:9e:74:2e:72:0d:9a:19:83:16:d8:9e:c1: 1f:78:d5:5a:83:05:ac:e2:01:6b:19:f1:ca:da:06: e5:4a:58:e0:98:70:da:c9:68:ed:33:e5:ec:4a:2d: af:57:ea:c4:26:6d:8c:65:db:ca:79:e3:b3:9e:95: 5d:f5:3d:62:ae:56:b8:a6:73:44:a1:82:07:36:3e: ac:3b:9d:2b:cf:6c:a1:50:d4:7e:ae:54:ac:76:3f: 81:75:c2:c7:57:5b:fa:3c:80:6f:e5:21:ed:d2:c1: 1a:5f:65:1a:5a:90:0b:80:69:d4:5a:b3:f1:d9:dd: 66:67:ae:18:6c:f5:4f:a5:48:63:6a:81:d3:bf:b9: 49:27:c7:38:96:1a:20:c3:13:18:68:5a:9d:8e:25: 59:57:a5:5d:e2:24:1b:d5:31:7a:58:33:9f:cf:a3: 24:ed:e7:a9:8c:74:3d:60:c9:72:fb:51:6a:1f:58: ff:84:9f:f2:0c:b4:fa:ee:ec:7c:8c:94:8e:be:53: 4d:59:93:81:22:3b:47:77:34:31:31:a5:23:56:24: 47:f9:a9:b1:c7:e0:6e:22:f4:d5:9b:71:05:32:5c: 0b:9e:6c:80:45:13:b3:6a:b8:a2:b9:e6:b1:b9:f4: 20:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:39:A7:33:0E:BE:A7:97:7A:79:8C:10:1F:6F:B9:91:9D:51:92:6F X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/5F649D88F27E11EE8704D12FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.25.0/24 Signature Algorithm: sha256WithRSAEncryption 7b:ad:2a:55:9b:ea:29:a8:52:58:1e:28:b9:52:40:37:1f:c2: 75:d8:8f:60:90:44:86:0f:4a:80:5e:0e:82:93:c5:77:51:77: 50:93:ed:ba:60:44:70:a3:42:01:3a:ec:9b:b5:df:82:65:24: 4d:05:c4:05:6a:8a:ea:4a:99:1d:3a:f8:45:44:b6:80:09:6a: 8c:ca:98:f5:64:bc:0d:72:67:cf:72:d2:89:f7:b0:df:38:dd: ba:08:17:b9:4a:2b:72:e6:9c:3c:56:7b:70:10:a1:5e:22:7f: cf:c0:d9:a1:b4:b9:e6:ec:fb:af:50:67:ef:a4:49:1b:4a:52: 1a:28:84:cd:7d:02:52:a7:e5:1f:52:bc:d4:fe:5d:f4:a5:92: b9:ce:77:5d:54:32:46:ae:87:89:8f:b1:d2:31:25:e4:b0:b6: 0f:b1:13:8c:39:1c:2c:ff:6b:a6:fe:d8:9a:91:04:21:48:7f: 70:2b:62:79:4e:02:5c:0e:13:73:b1:4e:35:3e:b8:1a:b8:e3: 5c:29:67:5a:49:98:78:81:34:90:2c:0f:02:04:22:8a:84:5d: d4:d2:19:98:aa:54:dc:7e:98:37:5a:29:92:a6:5d:c5:67:d2: 2d:84:0d:7a:65:54:f0:31:cd:88:ce:22:b9:7e:00:85:85:57: a3:5b:b6:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIVwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjQxMDEwMTYyMzIzWhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3ZmY3Yi1mMmEwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlPFH5tRWySJKw7wnG6prRwSedC5yDZoZgxbYnsEfeNVagwWs4gFrGfHK2gbl SljgmHDayWjtM+XsSi2vV+rEJm2MZdvKeeOznpVd9T1irla4pnNEoYIHNj6sO50r z2yhUNR+rlSsdj+BdcLHV1v6PIBv5SHt0sEaX2UaWpALgGnUWrPx2d1mZ64YbPVP pUhjaoHTv7lJJ8c4lhogwxMYaFqdjiVZV6Vd4iQb1TF6WDOfz6Mk7eepjHQ9YMly +1FqH1j/hJ/yDLT67ux8jJSOvlNNWZOBIjtHdzQxMaUjViRH+amxx+BuIvTVm3EF MlwLnmyARROzariiueaxufQgNQIDAQABo4IClTCCApEwHQYDVR0OBBYEFHs5pzMO vqeXenmMEB9vuZGdUZJvMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvNUY2NDlEODhG MjdFMTFFRTg3MDREMTJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5hkwDQYJKoZIhvcNAQELBQADggEBAHutKlWb6imoUlge KLlSQDcfwnXYj2CQRIYPSoBeDoKTxXdRd1CT7bpgRHCjQgE67Ju134JlJE0FxAVq iupKmR06+EVEtoAJaozKmPVkvA1yZ89y0on3sN843boIF7lKK3LmnDxWe3AQoV4i f8/A2aG0uebs+69QZ++kSRtKUhoohM19AlKn5R9SvNT+XfSlkrnOd11UMkauh4mP sdIxJeSwtg+xE4w5HCz/a6b+2JqRBCFIf3ArYnlOAlwOE3OxTjU+uBq441wpZ1pJ mHiBNJAsDwIEIoqEXdTSGZiqVNx+mDdaKZKmXcVn0i2EDXplVPAxzYjOIrl+AIWF V6Nbttg= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:07 2024 by rpki-client on console-fra.rpki-client.org