$ rpki-client -vvf rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/4990DE3AB79C11EE98F9562DC4F9AE02.roa File: 4990DE3AB79C11EE98F9562DC4F9AE02.roa (raw, json) Hash identifier: OARF2Tbwk2edG/VpMR53vDLXWHte5HMFyrQr35ljyts= Subject key identifier: 98:17:F8:84:48:AE:0C:4B:5E:80:9F:2C:73:E0:42:40:14:AE:A9:9B Certificate issuer: /CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Certificate serial: 39 Authority key identifier: 9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/4990DE3AB79C11EE98F9562DC4F9AE02.roa Signing time: Fri 16 Feb 2024 03:30:55 +0000 ROA not before: Fri 16 Feb 2024 03:30:55 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 8100 IP address blocks: 103.79.76.0/22 maxlen: 22 103.79.76.0/24 maxlen: 24 103.79.77.0/24 maxlen: 24 103.79.78.0/24 maxlen: 24 103.79.79.0/24 maxlen: 24 103.79.118.0/24 maxlen: 24 202.91.32.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 08:23:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57 (0x39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911ED2C/serialNumber=9D3414283B227B8F512F305F2ACDB43CDE9E4D12 Validity Not Before: Feb 16 03:30:55 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65ced6ef-d491 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c8:27:21:40:2e:ad:9a:9f:36:db:9e:95:41: cf:93:d1:9f:47:f7:1b:4e:63:7e:80:5e:2b:69:a8: 2d:cf:d8:b6:1f:a0:e7:f8:c9:ec:b7:f5:6e:a6:d7: 27:0f:5e:8a:dd:2b:3e:11:d5:cf:ae:2e:2a:63:f3: a8:6a:20:92:91:4d:b5:68:7d:0a:06:4b:c3:de:81: 2f:8a:2d:d1:48:07:80:9d:b1:43:f9:e5:bf:37:3a: 33:4f:56:d1:1e:da:ce:93:ac:db:68:b5:c3:a7:2a: e7:7d:b6:20:5e:88:dc:5b:d2:46:8f:49:47:8e:0a: 33:b1:37:96:23:9e:47:f8:c4:92:7f:62:d5:e8:4b: 8f:a2:01:0b:49:65:42:f5:ef:4c:19:d1:03:21:7e: ba:d4:9d:9c:7a:81:9d:89:01:c4:54:d4:18:ae:af: c4:24:b4:bc:7d:28:ad:c8:40:7d:26:1a:9c:51:73: 69:06:b0:e7:7e:e8:8a:81:5d:5f:6e:b6:65:b9:ec: 92:b7:66:6a:82:f0:65:dd:72:09:ee:02:5d:1a:f4: 8d:ac:95:26:af:82:6f:8a:57:05:6e:be:27:8e:f2: e4:a2:73:3b:48:70:02:67:22:26:dd:b5:c6:fa:90: 07:70:d0:03:6e:63:62:68:a5:4b:53:d5:89:d2:99: 5a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:17:F8:84:48:AE:0C:4B:5E:80:9F:2C:73:E0:42:40:14:AE:A9:9B X509v3 Authority Key Identifier: keyid:9D:34:14:28:3B:22:7B:8F:51:2F:30:5F:2A:CD:B4:3C:DE:9E:4D:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/nTQUKDsie49RLzBfKs20PN6eTRI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nTQUKDsie49RLzBfKs20PN6eTRI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911ED2C/00373C6C9BBC11EE851ADD50C4F9AE02/4990DE3AB79C11EE98F9562DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.76.0/22 103.79.118.0/24 202.91.32.0/24 Signature Algorithm: sha256WithRSAEncryption 56:5b:1d:01:51:06:f7:40:44:44:fc:eb:bb:55:fe:90:64:e0: 39:50:ef:bb:69:36:28:ba:24:da:59:03:31:67:4e:2d:08:7a: 70:fc:c5:ea:4e:74:c4:c1:bf:22:d6:55:cd:1b:ff:dc:eb:cd: 85:e5:62:c8:d6:dd:7b:f1:f7:91:ea:fc:fa:47:f0:8e:8f:ec: 75:96:8e:28:53:29:82:e0:5b:38:e2:b9:8a:d6:f2:81:bd:de: 1e:1e:53:c8:25:a2:e6:c8:9b:f3:6a:5b:63:ed:a9:e4:52:02: c6:b1:b9:7a:10:eb:65:28:51:15:ba:fe:33:a4:c9:b3:8d:df: 07:4f:f6:f2:75:28:2f:08:d6:9b:9e:1e:82:9c:f5:f4:9f:31: a8:20:21:77:6d:c3:21:f5:3d:4f:88:92:7a:b1:1f:60:79:7b: 06:79:4b:a9:15:b6:46:b7:42:d8:dd:7e:ac:e0:0f:f3:5f:27: 9f:c3:49:3e:e8:6e:9d:5c:02:f9:e5:c1:ef:5d:3e:9a:e4:67: f0:67:04:39:7a:fd:47:e3:7c:87:b7:a3:8b:83:9b:bb:20:69: 58:be:5e:28:6f:69:39:f3:18:bc:e9:e4:f6:d2:ea:fb:df:92: 42:d2:c1:c6:08:0a:8f:dd:39:fa:22:33:f9:ff:4d:b7:24:0a: fc:db:d9:31 -----BEGIN CERTIFICATE----- MIIFfDCCBGSgAwIBAgIBOTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RUQyQzExMC8GA1UEBRMoOUQzNDE0MjgzQjIyN0I4RjUxMkYzMDVGMkFDREI0M0NE RTlFNEQxMjAeFw0yNDAyMTYwMzMwNTVaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Y2VkNmVmLWQ0OTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGyCchQC6tmp82256VQc+T0Z9H9xtOY36AXitpqC3P2LYfoOf4yey39W6m1ycP XordKz4R1c+uLipj86hqIJKRTbVofQoGS8PegS+KLdFIB4CdsUP55b83OjNPVtEe 2s6TrNtotcOnKud9tiBeiNxb0kaPSUeOCjOxN5Yjnkf4xJJ/YtXoS4+iAQtJZUL1 70wZ0QMhfrrUnZx6gZ2JAcRU1Biur8QktLx9KK3IQH0mGpxRc2kGsOd+6IqBXV9u tmW57JK3ZmqC8GXdcgnuAl0a9I2slSavgm+KVwVuvieO8uSicztIcAJnIibdtcb6 kAdw0ANuY2JopUtT1YnSmVq3AgMBAAGjggKhMIICnTAdBgNVHQ4EFgQUmBf4hEiu DEtegJ8sc+BCQBSuqZswHwYDVR0jBBgwFoAUnTQUKDsie49RLzBfKs20PN6eTRIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFFRDJDLzAwMzczQzZDOUJC QzExRUU4NTFBREQ1MEM0RjlBRTAyL25UUVVLRHNpZTQ5Ukx6QmZLczIwUE42ZVRS SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvblRRVUtEc2llNDlSTHpCZktzMjBQTjZlVFJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RUQyQy8wMDM3M0M2QzlCQkMxMUVFODUxQURENTBDNEY5QUUwMi80OTkwREUzQUI3 OUMxMUVFOThGOTU2MkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDArBggrBgEFBQcBBwEB/wQc MBowGAQCAAEwEgMEAmdPTAMEAGdPdgMEAMpbIDANBgkqhkiG9w0BAQsFAAOCAQEA VlsdAVEG90BERPzru1X+kGTgOVDvu2k2KLok2lkDMWdOLQh6cPzF6k50xMG/ItZV zRv/3OvNheViyNbde/H3ker8+kfwjo/sdZaOKFMpguBbOOK5itbygb3eHh5TyCWi 5sib82pbY+2p5FICxrG5ehDrZShRFbr+M6TJs43fB0/28nUoLwjWm54egpz19J8x qCAhd23DIfU9T4iSerEfYHl7BnlLqRW2RrdC2N1+rOAP818nn8NJPuhunVwC+eXB 710+muRn8GcEOXr9R+N8h7eji4ObuyBpWL5eKG9pOfMYvOnk9tLq+9+SQtLBxggK j905+iIz+f9NtyQK/NvZMQ== -----END CERTIFICATE-----Generated at Wed May 1 10:33:35 2024 by rpki-client on console-fra.rpki-client.org