$ rpki-client -vvf rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/50998080BCE911EAA0114B70C4F9AE02.roa File: 50998080BCE911EAA0114B70C4F9AE02.roa (raw, json) Hash identifier: obJMUNbIy43HgJwMFY+mc8pYpxA6mGk1YnB27nzN4vA= Subject key identifier: 0F:77:E0:F2:4C:2A:FE:84:54:AA:FD:C5:D3:E5:16:D2:36:CD:ED:23 Certificate issuer: /CN=A916BC97/serialNumber=818B81229546F64A980C3D86EC52F31194F2FD8E Certificate serial: 077A Authority key identifier: 81:8B:81:22:95:46:F6:4A:98:0C:3D:86:EC:52:F3:11:94:F2:FD:8E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/50998080BCE911EAA0114B70C4F9AE02.roa Signing time: Thu 02 Nov 2023 22:09:43 +0000 ROA not before: Thu 02 Nov 2023 22:09:43 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132827 IP address blocks: 43.229.240.0/22 maxlen: 22 103.5.249.0/24 maxlen: 24 103.13.45.0/24 maxlen: 24 103.13.46.0/24 maxlen: 24 103.30.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.crl rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 22:08:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1914 (0x77a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916BC97/serialNumber=818B81229546F64A980C3D86EC52F31194F2FD8E Validity Not Before: Nov 2 22:09:43 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65441e26-473b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f5:02:61:18:dd:04:03:67:fa:60:c5:a4:3d: cf:55:c8:1c:35:f3:85:67:9f:38:6b:38:75:3e:02: 1e:03:5e:99:68:99:ca:a6:eb:c6:3f:45:4c:d2:d1: 1d:ac:23:c1:bd:0f:84:3f:f5:f5:8f:ec:27:f0:97: 95:60:f6:4d:01:59:c1:81:36:52:a4:6d:4f:dd:01: c5:5b:cb:be:ea:74:10:d3:f6:4b:81:09:c8:00:e3: d7:af:b6:ba:1a:73:28:ee:dc:ea:e3:da:e9:dd:0e: ef:2a:9b:bd:4d:8a:b2:d3:c0:fd:9b:73:26:4a:83: 82:3f:ab:84:27:86:8c:76:d1:13:25:04:83:41:19: 8a:df:6a:13:38:0c:39:6b:b9:9d:22:b3:b6:a9:06: d3:33:ab:ae:36:73:36:1c:25:a4:47:de:dd:ba:72: 25:a4:69:d8:e6:64:77:82:64:64:6c:bb:75:5c:a2: 47:fa:a7:32:49:f2:0f:d9:98:c2:f2:c1:3b:9d:ec: a5:71:75:d7:fd:c9:f6:49:a3:f5:ba:3b:a7:93:f8: a3:32:13:99:55:7f:c6:19:60:62:87:fa:dc:94:0a: f2:21:1b:89:d9:19:34:64:95:9f:e3:56:61:f3:95: 06:52:80:7f:8c:56:06:62:57:36:f0:53:7f:f8:60: 8d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:77:E0:F2:4C:2A:FE:84:54:AA:FD:C5:D3:E5:16:D2:36:CD:ED:23 X509v3 Authority Key Identifier: keyid:81:8B:81:22:95:46:F6:4A:98:0C:3D:86:EC:52:F3:11:94:F2:FD:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gYuBIpVG9kqYDD2G7FLzEZTy_Y4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916BC97/A0B1E44CBCE711EA9EDF3E6DC4F9AE02/50998080BCE911EAA0114B70C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.229.240.0/22 103.5.249.0/24 103.13.45.0-103.13.46.255 103.30.52.0/22 Signature Algorithm: sha256WithRSAEncryption c3:06:29:9e:e8:f1:82:9c:75:a4:2a:5e:1d:4d:50:4b:58:3c: 76:54:78:91:08:62:ee:a1:b1:47:2f:e1:9f:fe:23:9e:5d:f8: e1:e2:15:c5:e2:c5:c4:d1:52:19:b5:6c:cd:e6:a9:48:7e:8c: 64:5a:77:53:c6:82:b3:70:1a:e4:d8:ff:6a:9e:b6:53:64:54: 4a:d2:58:9d:11:28:81:f2:0a:9d:84:a2:22:7d:1c:bb:95:f6: 6d:cd:73:2e:80:28:4b:6f:ac:c2:b7:38:10:92:4d:85:17:a1: ef:51:ad:90:60:38:9e:81:34:66:dd:5b:cd:b8:10:2a:f9:1b: 85:54:0b:00:42:2c:b1:2e:3c:6b:2e:02:f1:ff:cd:ab:0b:da: 9b:a6:b2:73:6b:9f:1d:1a:69:82:95:d3:57:69:89:02:90:17: 9e:62:5b:73:ec:35:14:98:a5:8f:f5:ce:3f:c6:6a:f3:d6:3e: 91:68:f9:19:a1:ea:81:23:6f:3e:79:c7:67:45:d3:d8:c5:69: 35:b4:ea:df:3f:4e:42:90:9e:85:15:11:be:89:c6:f0:b0:c6: 95:a2:cb:71:1c:d4:9a:07:98:c8:c4:9a:0b:2c:2c:65:ba:6f: 0c:9d:bc:73:6d:2a:08:a0:f1:9a:be:15:f8:a8:f8:64:84:63: 77:6d:d4:08 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICB3owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkJDOTcxMTAvBgNVBAUTKDgxOEI4MTIyOTU0NkY2NEE5ODBDM0Q4NkVDNTJGMzEx OTRGMkZEOEUwHhcNMjMxMTAyMjIwOTQzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0MWUyNi00NzNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvUCYRjdBANn+mDFpD3PVcgcNfOFZ584azh1PgIeA16ZaJnKpuvGP0VM0tEd rCPBvQ+EP/X1j+wn8JeVYPZNAVnBgTZSpG1P3QHFW8u+6nQQ0/ZLgQnIAOPXr7a6 GnMo7tzq49rp3Q7vKpu9TYqy08D9m3MmSoOCP6uEJ4aMdtETJQSDQRmK32oTOAw5 a7mdIrO2qQbTM6uuNnM2HCWkR97dunIlpGnY5mR3gmRkbLt1XKJH+qcySfIP2ZjC 8sE7neylcXXX/cn2SaP1ujunk/ijMhOZVX/GGWBih/rclAryIRuJ2Rk0ZJWf41Zh 85UGUoB/jFYGYlc28FN/+GCNZQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFA934PJM Kv6EVKr9xdPlFtI2ze0jMB8GA1UdIwQYMBaAFIGLgSKVRvZKmAw9huxS8xGU8v2O MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QkM5Ny9BMEIxRTQ0Q0JD RTcxMUVBOUVERjNFNkRDNEY5QUUwMi9nWXVCSXBWRzlrcVlERDJHN0ZMekVaVHlf WTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dZdUJJcFZHOWtxWUREMkc3Rkx6RVpUeV9ZNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NkJDOTcvQTBCMUU0NENCQ0U3MTFFQTlFREYzRTZEQzRGOUFFMDIvNTA5OTgwODBC Q0U5MTFFQUEwMTE0QjcwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAIr5fADBABnBfkwDAMEAGcNLQMEAGcNLgMEAmceNDANBgkq hkiG9w0BAQsFAAOCAQEAwwYpnujxgpx1pCpeHU1QS1g8dlR4kQhi7qGxRy/hn/4j nl344eIVxeLFxNFSGbVszeapSH6MZFp3U8aCs3Aa5Nj/ap62U2RUStJYnREogfIK nYSiIn0cu5X2bc1zLoAoS2+swrc4EJJNhReh71GtkGA4noE0Zt1bzbgQKvkbhVQL AEIssS48ay4C8f/Nqwvam6ayc2ufHRppgpXTV2mJApAXnmJbc+w1FJilj/XOP8Zq 89Y+kWj5GaHqgSNvPnnHZ0XT2MVpNbTq3z9OQpCehRURvonG8LDGlaLLcRzUmgeY yMSaCywsZbpvDJ28c20qCKDxmr4V+Kj4ZIRjd23UCA== -----END CERTIFICATE-----Generated at Fri May 24 23:25:40 2024 by rpki-client on console-fra.rpki-client.org