$ rpki-client -vvf rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/63BFE4C0292811EEAF894530C4F9AE02.roa File: 63BFE4C0292811EEAF894530C4F9AE02.roa (raw, json) Hash identifier: 4gXXPKgdGkdsiTu4Fh+U84K4r4ojzbdg0Z4yEj+nXpA= Subject key identifier: D5:0B:B9:38:B0:75:3A:14:9C:9E:5E:B6:29:B0:81:5C:2E:2B:8D:96 Certificate issuer: /CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Certificate serial: 215D Authority key identifier: 3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/63BFE4C0292811EEAF894530C4F9AE02.roa Signing time: Thu 10 Oct 2024 16:23:25 +0000 ROA not before: Thu 10 Oct 2024 16:23:24 +0000 ROA not after: Mon 01 Dec 2025 00:00:00 +0000 asID: 31898 IP address blocks: 43.230.26.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 15:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8541 (0x215d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F0EBF/serialNumber=3ACCB69539AC9F4288BCD0F0A54250D592F540D4 Validity Not Before: Oct 10 16:23:24 2024 GMT Not After : Dec 1 00:00:00 2025 GMT Subject: CN=6707ff7c-ffd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:56:0e:8a:72:89:de:a1:0f:60:b4:72:8d:e1: 95:c3:37:bf:ae:06:7b:c1:ed:8e:38:48:4b:ce:23: 0c:49:1f:49:0c:0c:01:56:4d:ad:a4:51:69:6e:5c: e0:6e:fd:0a:b3:2b:b4:24:da:91:04:64:cb:7b:ca: 02:f1:e9:f2:75:ed:50:31:2d:c8:4e:d4:8b:39:0e: 1f:a3:49:19:aa:4b:db:2f:f3:52:20:0d:89:27:ad: 75:ee:fd:01:59:e2:76:73:e7:bd:38:6b:bb:38:a9: bb:fa:68:8b:17:c8:93:e7:c9:d2:81:9b:61:70:7d: 59:d9:26:c4:6d:26:cd:2e:cb:dc:5a:33:c7:a5:7b: 09:e2:fe:ec:c7:5a:57:b2:51:c6:08:7a:b1:18:a4: 12:82:dc:ba:a0:11:41:d4:f6:c4:33:c3:ef:38:2a: d2:02:12:6d:82:13:87:25:dd:b3:b5:37:44:f4:a5: e4:2c:a0:07:0d:4e:bb:13:d2:1f:6d:57:c4:69:ad: f9:13:46:07:ee:29:5b:7e:5e:0c:ab:63:6c:0e:45: c5:a5:e5:fb:84:3e:38:00:34:71:a7:90:e0:a7:17: 5a:e5:a3:4d:c8:d2:45:0f:76:ff:81:17:af:f0:35: 0f:63:1f:b5:ac:a4:e7:7c:a1:4a:d9:14:81:88:d4: 84:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0B:B9:38:B0:75:3A:14:9C:9E:5E:B6:29:B0:81:5C:2E:2B:8D:96 X509v3 Authority Key Identifier: keyid:3A:CC:B6:95:39:AC:9F:42:88:BC:D0:F0:A5:42:50:D5:92:F5:40:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Osy2lTmsn0KIvNDwpUJQ1ZL1QNQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F0EBF/5F84D7D8DB8011E59AB7ED1EC4F9AE02/63BFE4C0292811EEAF894530C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.26.0/24 Signature Algorithm: sha256WithRSAEncryption a1:ef:02:6b:22:97:c6:95:7d:fe:7d:d3:a1:b8:27:4d:8b:b0: 42:4d:89:9b:60:7b:f8:3e:06:2c:ce:59:cb:e0:b1:ad:04:a2: d3:9d:b2:68:4a:79:44:14:80:e4:30:2f:cd:bd:10:55:33:04: 24:8f:06:4f:de:6c:2e:76:6a:5d:f8:3d:65:15:b5:8c:f4:f4: 66:cf:ba:de:e0:6b:8e:fe:ed:a2:63:20:0e:3c:93:05:82:52: 45:6b:ae:56:c3:6b:80:c3:bb:f5:3a:28:9e:f2:fc:13:2c:f2: 42:c9:87:82:64:44:80:43:61:14:37:27:fd:96:ed:92:49:91: ed:18:25:14:c1:54:42:cf:82:59:a6:aa:2d:36:2d:41:a6:a8: 36:e7:ed:f3:66:6d:f5:2f:a2:41:c7:4b:ee:e3:8f:9a:33:6f: de:d0:0a:c8:e1:c0:c9:15:48:29:40:81:e4:62:bd:85:86:d4: 93:24:49:9d:c2:a0:e2:08:aa:15:7c:41:3f:ef:60:75:ef:40: 41:dc:e6:0c:39:6d:5a:8d:15:d6:0c:e5:82:bb:14:08:26:68: 5c:2c:ed:58:f7:f1:4c:5e:e3:72:2e:4c:0b:25:4c:ea:ee:be: 26:b7:84:e5:16:62:18:27:eb:cb:de:40:13:d1:9b:f8:a5:11: 9b:a2:53:cd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICIV0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjBFQkYxMTAvBgNVBAUTKDNBQ0NCNjk1MzlBQzlGNDI4OEJDRDBGMEE1NDI1MEQ1 OTJGNTQwRDQwHhcNMjQxMDEwMTYyMzI0WhcNMjUxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzA3ZmY3Yy1mZmQ3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzFYOinKJ3qEPYLRyjeGVwze/rgZ7we2OOEhLziMMSR9JDAwBVk2tpFFpblzg bv0Ksyu0JNqRBGTLe8oC8enyde1QMS3ITtSLOQ4fo0kZqkvbL/NSIA2JJ6117v0B WeJ2c+e9OGu7OKm7+miLF8iT58nSgZthcH1Z2SbEbSbNLsvcWjPHpXsJ4v7sx1pX slHGCHqxGKQSgty6oBFB1PbEM8PvOCrSAhJtghOHJd2ztTdE9KXkLKAHDU67E9If bVfEaa35E0YH7ilbfl4Mq2NsDkXFpeX7hD44ADRxp5Dgpxda5aNNyNJFD3b/gRev 8DUPYx+1rKTnfKFK2RSBiNSEuQIDAQABo4IClTCCApEwHQYDVR0OBBYEFNULuTiw dToUnJ5etimwgVwuK42WMB8GA1UdIwQYMBaAFDrMtpU5rJ9CiLzQ8KVCUNWS9UDU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMEVCRi81Rjg0RDdEOERC ODAxMUU1OUFCN0VEMUVDNEY5QUUwMi9Pc3kybFRtc24wS0l2TkR3cFVKUTFaTDFR TlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09zeTJsVG1zbjBLSXZORHdwVUpRMVpMMVFOUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjBFQkYvNUY4NEQ3RDhEQjgwMTFFNTlBQjdFRDFFQzRGOUFFMDIvNjNCRkU0QzAy OTI4MTFFRUFGODk0NTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr5howDQYJKoZIhvcNAQELBQADggEBAKHvAmsil8aVff59 06G4J02LsEJNiZtge/g+BizOWcvgsa0EotOdsmhKeUQUgOQwL829EFUzBCSPBk/e bC52al34PWUVtYz09GbPut7ga47+7aJjIA48kwWCUkVrrlbDa4DDu/U6KJ7y/BMs 8kLJh4JkRIBDYRQ3J/2W7ZJJke0YJRTBVELPglmmqi02LUGmqDbn7fNmbfUvokHH S+7jj5ozb97QCsjhwMkVSClAgeRivYWG1JMkSZ3CoOIIqhV8QT/vYHXvQEHc5gw5 bVqNFdYM5YK7FAgmaFws7Vj38Uxe43IuTAslTOruvia3hOUWYhgn68veQBPRm/il EZuiU80= -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:07 2024 by rpki-client on console-fra.rpki-client.org