$ rpki-client -vvf rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/69448F24901811EFAD307C71C4F9AE02.roa File: 69448F24901811EFAD307C71C4F9AE02.roa (raw, json) Hash identifier: ++880U0l9bvF9WAfnv6u1UqmOZvBmMLQVY2UMdSlCnA= Subject key identifier: E1:F0:85:B6:D9:AA:F6:8F:F4:DD:30:00:C3:8F:81:DB:43:F8:A6:5B Certificate issuer: /CN=A91F13B9/serialNumber=7EAC0C2CB27A30A138EE475B07FE97E8E933FDCA Certificate serial: 2812 Authority key identifier: 7E:AC:0C:2C:B2:7A:30:A1:38:EE:47:5B:07:FE:97:E8:E9:33:FD:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/69448F24901811EFAD307C71C4F9AE02.roa Signing time: Tue 22 Oct 2024 01:53:19 +0000 ROA not before: Tue 22 Oct 2024 01:53:19 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 38051 IP address blocks: 43.250.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.crl rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 01 Dec 2024 15:33:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10258 (0x2812) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F13B9/serialNumber=7EAC0C2CB27A30A138EE475B07FE97E8E933FDCA Validity Not Before: Oct 22 01:53:19 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=6717058f-7f93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:2f:c3:64:e2:c4:46:92:0e:24:da:0c:b0:63: a2:bd:93:b4:91:34:d1:ef:e2:92:a7:62:88:64:f7: 40:43:bc:91:a5:c4:ef:57:3b:a4:75:08:b8:02:4e: df:b3:8f:36:0b:20:90:90:d3:07:84:e8:84:ea:ec: 8f:7b:73:9e:20:de:1a:60:9c:32:a4:25:d3:19:b4: 8a:e7:57:bb:d4:07:11:91:94:0a:75:55:ec:02:09: 10:bc:9d:29:b5:04:16:b9:d2:87:5b:93:2a:cd:83: 77:a5:64:5c:17:72:de:44:98:e4:f5:0a:e2:70:8f: 46:32:2b:5a:eb:2b:89:f1:f2:8a:9c:05:81:b4:69: 1f:b1:67:4c:45:2c:d1:94:f8:aa:cd:bd:d5:75:54: 52:94:19:e7:00:b7:40:c0:09:3d:7b:be:4b:c8:85: 8a:8a:e8:e8:f2:e6:e3:23:4d:91:a2:2b:9c:eb:7e: de:08:c1:62:3c:20:37:8e:fa:ff:86:b6:29:b4:e9: 13:db:a8:f1:e3:77:08:45:bb:84:bc:13:40:70:d9: 8c:bd:a6:36:ea:94:e2:8c:0c:35:73:b7:23:b1:4f: e4:3e:4a:5f:3e:89:dd:52:6b:7f:33:bb:04:0c:2d: 58:7d:6d:cb:5b:52:b4:4e:6d:b7:56:47:a6:79:e3: e2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F0:85:B6:D9:AA:F6:8F:F4:DD:30:00:C3:8F:81:DB:43:F8:A6:5B X509v3 Authority Key Identifier: keyid:7E:AC:0C:2C:B2:7A:30:A1:38:EE:47:5B:07:FE:97:E8:E9:33:FD:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/fqwMLLJ6MKE47kdbB_6X6Okz_co.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fqwMLLJ6MKE47kdbB_6X6Okz_co.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F13B9/1897B2529F9D11E49619532DC4F9AE02/69448F24901811EFAD307C71C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.127.0/24 Signature Algorithm: sha256WithRSAEncryption 61:18:3f:a4:2b:f8:71:a8:5c:3f:09:bc:bd:9b:9e:41:60:d6: c2:eb:24:bd:08:23:37:ae:ce:e6:07:c5:f7:c5:43:d5:e7:7c: a1:38:22:bd:bb:90:36:a6:ff:35:a9:e4:56:52:db:63:dc:a5: 3c:97:59:a8:8b:4f:51:0d:56:ed:a3:69:bb:44:1d:c5:c5:c6: 6b:a9:e0:ac:e6:07:74:9e:ad:02:84:71:9d:9b:57:50:8c:00: a6:71:b2:d2:3e:d0:19:72:ad:61:30:39:b2:6f:cb:74:49:f6: 9d:9c:ef:b1:e2:8c:c8:4b:86:3e:2e:8e:a2:3d:a4:28:58:03: b6:70:10:ef:82:7d:b1:bf:14:36:51:b8:52:ca:36:17:5b:49: 15:bd:0b:8c:1c:82:2c:66:cb:31:09:28:af:7c:1a:a5:bc:cd: 48:dd:f5:05:f0:98:df:48:5d:61:04:c6:67:1d:c9:aa:25:79: f3:57:13:d9:c8:ba:9c:c7:f1:5b:6a:9b:54:f7:7e:f3:b8:b4: 5b:fa:96:22:be:5e:04:f2:39:ca:cb:8b:74:bf:03:f5:a7:a7: 58:c1:82:ef:6e:7a:e2:56:3c:5b:83:fc:cb:cd:54:84:68:73: 8a:f5:4d:db:51:a4:ef:61:34:62:5f:1d:95:49:32:5a:4a:2e: 0d:aa:ee:62 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzQjkxMTAvBgNVBAUTKDdFQUMwQzJDQjI3QTMwQTEzOEVFNDc1QjA3RkU5N0U4 RTkzM0ZEQ0EwHhcNMjQxMDIyMDE1MzE5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NzE3MDU4Zi03ZjkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5y/DZOLERpIOJNoMsGOivZO0kTTR7+KSp2KIZPdAQ7yRpcTvVzukdQi4Ak7f s482CyCQkNMHhOiE6uyPe3OeIN4aYJwypCXTGbSK51e71AcRkZQKdVXsAgkQvJ0p tQQWudKHW5MqzYN3pWRcF3LeRJjk9QricI9GMita6yuJ8fKKnAWBtGkfsWdMRSzR lPiqzb3VdVRSlBnnALdAwAk9e75LyIWKiujo8ubjI02Roiuc637eCMFiPCA3jvr/ hrYptOkT26jx43cIRbuEvBNAcNmMvaY26pTijAw1c7cjsU/kPkpfPondUmt/M7sE DC1YfW3LW1K0Tm23VkemeePiIQIDAQABo4IClTCCApEwHQYDVR0OBBYEFOHwhbbZ qvaP9N0wAMOPgdtD+KZbMB8GA1UdIwQYMBaAFH6sDCyyejChOO5HWwf+l+jpM/3K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTNCOS8xODk3QjI1MjlG OUQxMUU0OTYxOTUzMkRDNEY5QUUwMi9mcXdNTExKNk1LRTQ3a2RiQl82WDZPa3pf Y28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Zxd01MTEo2TUtFNDdrZGJCXzZYNk9rel9jby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjEzQjkvMTg5N0IyNTI5RjlEMTFFNDk2MTk1MzJEQzRGOUFFMDIvNjk0NDhGMjQ5 MDE4MTFFRkFEMzA3QzcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr+n8wDQYJKoZIhvcNAQELBQADggEBAGEYP6Qr+HGoXD8J vL2bnkFg1sLrJL0IIzeuzuYHxffFQ9XnfKE4Ir27kDam/zWp5FZS22PcpTyXWaiL T1ENVu2jabtEHcXFxmup4KzmB3SerQKEcZ2bV1CMAKZxstI+0BlyrWEwObJvy3RJ 9p2c77HijMhLhj4ujqI9pChYA7ZwEO+CfbG/FDZRuFLKNhdbSRW9C4wcgixmyzEJ KK98GqW8zUjd9QXwmN9IXWEExmcdyaolefNXE9nIupzH8Vtqm1T3fvO4tFv6liK+ XgTyOcrLi3S/A/Wnp1jBgu9ueuJWPFuD/MvNVIRoc4r1TdtRpO9hNGJfHZVJMlpK Lg2q7mI= -----END CERTIFICATE-----Generated at Sun Nov 24 18:24:59 2024 by rpki-client on console-ams.rpki-client.org