$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/531C6440CF9A11E9ABB7C168C4F9AE02.roa File: 531C6440CF9A11E9ABB7C168C4F9AE02.roa (raw, json) Hash identifier: PM9MENNJQLy4z4KAPPNmoHLptrO+aWSv1G5pEl9FRaw= Subject key identifier: 18:99:5E:48:F2:FF:0D:90:3D:B7:77:A5:6B:07:A2:59:E6:01:96:15 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 101A Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/531C6440CF9A11E9ABB7C168C4F9AE02.roa Signing time: Sun 04 Jun 2023 18:28:03 +0000 ROA not before: Sun 04 Jun 2023 18:28:03 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 24373 IP address blocks: 45.119.6.0/23 maxlen: 23 45.119.6.0/24 maxlen: 24 45.119.7.0/24 maxlen: 24 103.49.92.0/22 maxlen: 24 103.59.48.0/24 maxlen: 24 103.59.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:20:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4122 (0x101a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Jun 4 18:28:03 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647cd7b3-a9d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:fa:8c:28:fc:7f:7d:d8:f7:d9:d5:3b:d0:1a: e5:29:80:e6:2f:49:e0:45:86:3a:a8:ab:ef:92:76: a3:10:f0:a6:ab:dc:4f:a5:27:bd:4e:75:41:94:45: 8a:8b:f8:81:07:d7:7d:5c:b9:27:9e:4e:95:51:f6: 7a:32:c0:4e:8b:73:cb:c9:e7:f4:d7:e6:e1:e0:59: cb:d2:c5:a6:b3:33:b3:96:8e:ad:fe:bd:83:55:55: d3:ed:fb:5d:97:11:a9:d4:9f:2f:9f:b1:5c:7f:88: b5:b9:9f:93:a7:ac:12:25:58:96:4a:b2:a8:5f:8b: 51:53:4b:6b:65:21:a4:ab:d7:5c:41:7a:f5:cd:84: ca:9e:01:f3:fa:c4:2d:90:70:d4:05:9b:7e:2e:8e: d3:a1:c0:44:de:68:6d:da:13:8b:cb:da:72:b4:53: e8:6b:01:6b:39:7d:c1:8b:46:a2:dd:09:2d:57:77: df:85:e4:85:f9:d6:1a:65:44:b4:19:dd:e4:eb:b5: 9b:29:78:b3:c4:9a:2a:06:fe:df:c9:70:10:01:e4: dd:52:44:10:70:b6:21:fc:8f:19:32:33:d2:99:97: 60:7c:f6:0d:d6:bc:75:36:83:09:4e:93:3f:e9:25: 68:65:a1:65:20:06:3d:8b:f1:5a:65:e8:e8:bd:28: 0e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:99:5E:48:F2:FF:0D:90:3D:B7:77:A5:6B:07:A2:59:E6:01:96:15 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/531C6440CF9A11E9ABB7C168C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.119.6.0/23 103.49.92.0/22 103.59.48.0/24 103.59.50.0/24 Signature Algorithm: sha256WithRSAEncryption c9:bb:6c:54:79:4a:b5:fd:26:2d:97:7f:91:f7:f3:df:dd:dc: 12:bf:46:ae:0a:df:80:69:13:ce:87:14:49:23:54:c1:db:ad: cf:96:ed:e0:45:21:12:24:f1:0c:1a:45:a6:96:7f:56:b7:5e: 56:3f:18:83:69:9a:a8:b8:0e:47:bc:ce:c3:27:89:e8:6c:15: bd:91:d7:c7:7f:ef:c7:93:0e:f7:6f:f6:7e:c8:34:55:7c:64: 8c:fb:4b:d8:1a:f4:05:bd:c4:fe:5b:b0:e7:3f:c7:cd:3c:9a: 12:62:2d:3e:e3:48:5d:1f:0a:15:07:74:2c:6b:fe:63:d4:10: 0c:25:4a:33:a9:32:9a:36:5d:c5:c5:be:a0:d6:79:77:a2:f1: de:90:fa:41:04:b6:17:49:d4:58:a9:3c:66:be:1d:08:75:7f: 8c:2c:f4:e4:f6:ec:59:c6:43:a9:19:61:39:aa:4f:b4:17:cb: d8:99:2d:bb:6b:32:07:7f:14:fe:97:24:6b:93:46:ed:32:a9: 12:ae:d1:6c:54:ff:ff:2b:80:c5:50:b7:cd:92:4e:25:c5:e9: 70:13:9c:29:34:dd:38:42:76:a2:ab:3c:f8:a1:98:ea:ba:1e: df:4c:b6:e7:95:09:5d:74:8a:ad:48:f7:59:52:85:c8:50:fd: be:8b:60:be -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICEBowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjMwNjA0MTgyODAzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdjZDdiMy1hOWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8/qMKPx/fdj32dU70BrlKYDmL0ngRYY6qKvvknajEPCmq9xPpSe9TnVBlEWK i/iBB9d9XLknnk6VUfZ6MsBOi3PLyef01+bh4FnL0sWmszOzlo6t/r2DVVXT7ftd lxGp1J8vn7Fcf4i1uZ+Tp6wSJViWSrKoX4tRU0trZSGkq9dcQXr1zYTKngHz+sQt kHDUBZt+Lo7TocBE3mht2hOLy9pytFPoawFrOX3Bi0ai3QktV3ffheSF+dYaZUS0 Gd3k67WbKXizxJoqBv7fyXAQAeTdUkQQcLYh/I8ZMjPSmZdgfPYN1rx1NoMJTpM/ 6SVoZaFlIAY9i/FaZejovSgOHQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFBiZXkjy /w2QPbd3pWsHolnmAZYVMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEyQkMvRUJDRjE2ODIwNEY4MTFFOUJBNTAyNDMxQzRGOUFFMDIvNTMxQzY0NDBD RjlBMTFFOUFCQjdDMTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAEtdwYDBAJnMVwDBABnOzADBABnOzIwDQYJKoZIhvcNAQEL BQADggEBAMm7bFR5SrX9Ji2Xf5H389/d3BK/Rq4K34BpE86HFEkjVMHbrc+W7eBF IRIk8QwaRaaWf1a3XlY/GINpmqi4Dke8zsMniehsFb2R18d/78eTDvdv9n7INFV8 ZIz7S9ga9AW9xP5bsOc/x808mhJiLT7jSF0fChUHdCxr/mPUEAwlSjOpMpo2XcXF vqDWeXei8d6Q+kEEthdJ1FipPGa+HQh1f4ws9OT27FnGQ6kZYTmqT7QXy9iZLbtr Mgd/FP6XJGuTRu0yqRKu0WxU//8rgMVQt82STiXF6XATnCk03ThCdqKrPPihmOq6 Ht9MtueVCV10iq1I91lShchQ/b6LYL4= -----END CERTIFICATE-----Generated at Fri May 31 19:47:46 2024 by rpki-client on console-fra.rpki-client.org