$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/14D49D84671711ED91494347C4F9AE02.roa File: 14D49D84671711ED91494347C4F9AE02.roa (raw, json) Hash identifier: hPNvlQDVPu1MvdZpvcBFPSPxgp7I9G6Fg6zIIN9zvHg= Subject key identifier: 38:57:F0:F9:04:E2:6B:37:BC:23:96:4A:8E:AD:95:68:BB:59:53:11 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 42E5 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/14D49D84671711ED91494347C4F9AE02.roa Signing time: Tue 09 Apr 2024 04:05:47 +0000 ROA not before: Tue 09 Apr 2024 04:05:47 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38726 IP address blocks: 43.239.188.0/22 maxlen: 24 103.227.112.0/22 maxlen: 24 118.107.64.0/18 maxlen: 24 119.18.184.0/21 maxlen: 24 2400:bc80::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 14:37:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17125 (0x42e5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Apr 9 04:05:47 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6614be9b-507e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ed:2d:b4:c5:c3:74:22:17:58:d0:96:82:7a: da:3a:85:e3:33:88:4f:ba:e2:c7:ac:af:0b:ff:4a: 67:50:91:db:84:ec:2b:cf:b8:97:69:fc:4f:8a:fa: 16:7f:89:b0:b8:f4:cd:12:f2:4f:29:52:1c:22:2f: 38:f7:7b:9b:2f:e0:ee:1b:64:dd:56:40:85:82:6e: f3:c4:76:f6:8c:a8:50:92:72:89:ac:dc:7a:2c:d1: 01:4f:2e:24:56:1e:f4:c7:74:32:a0:fc:a0:5d:fa: f2:cd:dc:68:31:d2:77:00:ea:46:9a:ce:15:2e:a1: 03:83:22:ed:36:c8:2d:47:b6:97:3e:bf:24:7f:26: 61:bf:6a:88:34:d2:a9:3d:44:52:89:16:02:73:25: 61:f4:1d:23:79:b6:e7:49:7f:0f:e5:0c:53:51:0e: b9:91:8f:07:c6:12:36:ae:fb:e7:58:ce:6f:c7:fe: 1f:8b:cd:b8:73:b2:c9:4c:52:56:29:89:c4:a9:d8: b2:0e:11:a4:b1:dd:c0:de:d1:e5:76:fe:d3:8f:18: c9:7d:0a:71:e2:46:23:0e:dd:b0:7f:4b:ed:a1:f0: e8:18:2e:c3:68:49:fe:9a:78:37:80:59:39:b7:de: e4:a8:ca:05:4f:1e:9a:18:fd:75:63:45:bc:37:3f: 72:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:57:F0:F9:04:E2:6B:37:BC:23:96:4A:8E:AD:95:68:BB:59:53:11 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/14D49D84671711ED91494347C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.188.0/22 103.227.112.0/22 118.107.64.0/18 119.18.184.0/21 IPv6: 2400:bc80::/32 Signature Algorithm: sha256WithRSAEncryption 0f:4f:31:a6:9e:33:e9:1e:da:a7:0f:43:eb:1b:08:33:f4:1e: f6:83:e2:5f:98:76:4a:0e:ba:fd:41:75:96:57:37:28:3a:11: cc:bf:02:7c:94:07:60:91:3c:f6:33:d8:4a:1c:b7:76:cd:61: 59:3e:0d:9f:51:ef:12:01:8f:64:9c:49:1c:60:7e:00:8b:00: ab:6c:e0:d5:b2:2e:80:37:84:32:65:47:31:66:bc:57:d2:69: f3:a2:86:9c:2a:58:6c:81:55:bb:e2:59:61:9e:aa:53:65:14: a9:53:49:f0:ad:17:40:c5:af:5e:a5:09:03:f1:6c:a4:4f:bc: dd:86:ae:8d:5e:0f:d4:df:16:0f:5a:77:18:aa:28:ae:af:2f: fa:8d:3a:f1:83:2b:c7:b9:4c:53:88:b6:18:05:b3:34:29:e5: 26:94:9b:0e:b7:96:a8:3a:b2:62:d4:a7:de:5b:80:a6:82:d7: c3:57:a8:69:d3:f3:1c:51:1d:3e:ab:1b:43:91:ee:fe:d0:26: 6a:77:c1:dc:ad:fd:31:c5:94:a6:99:c8:6b:6d:b5:81:3a:73: 53:33:60:f4:20:f8:a9:5a:97:66:78:5b:6f:1a:93:7b:f5:13: 2d:13:42:13:5f:0e:bc:8e:fc:bc:a9:14:e9:5d:6d:bd:56:1b: 8e:71:56:59 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICQuUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwNDA5MDQwNTQ3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE0YmU5Yi01MDdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwu0ttMXDdCIXWNCWgnraOoXjM4hPuuLHrK8L/0pnUJHbhOwrz7iXafxPivoW f4mwuPTNEvJPKVIcIi8493ubL+DuG2TdVkCFgm7zxHb2jKhQknKJrNx6LNEBTy4k Vh70x3QyoPygXfryzdxoMdJ3AOpGms4VLqEDgyLtNsgtR7aXPr8kfyZhv2qINNKp PURSiRYCcyVh9B0jebbnSX8P5QxTUQ65kY8HxhI2rvvnWM5vx/4fi824c7LJTFJW KYnEqdiyDhGksd3A3tHldv7TjxjJfQpx4kYjDt2wf0vtofDoGC7DaEn+mng3gFk5 t97kqMoFTx6aGP11Y0W8Nz9yfwIDAQABo4ICtjCCArIwHQYDVR0OBBYEFDhX8PkE 4ms3vCOWSo6tlWi7WVMRMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMTRENDlEODQ2 NzE3MTFFRDkxNDk0MzQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIr77wDBAJn43ADBAZ2a0ADBAN3ErgwDQQCAAIwBwMFACQA vIAwDQYJKoZIhvcNAQELBQADggEBAA9PMaaeM+ke2qcPQ+sbCDP0HvaD4l+YdkoO uv1BdZZXNyg6Ecy/AnyUB2CRPPYz2Eoct3bNYVk+DZ9R7xIBj2ScSRxgfgCLAKts 4NWyLoA3hDJlRzFmvFfSafOihpwqWGyBVbviWWGeqlNlFKlTSfCtF0DFr16lCQPx bKRPvN2Gro1eD9TfFg9adxiqKK6vL/qNOvGDK8e5TFOIthgFszQp5SaUmw63lqg6 smLUp95bgKaC18NXqGnT8xxRHT6rG0OR7v7QJmp3wdyt/THFlKaZyGtttYE6c1Mz YPQg+Klal2Z4W28ak3v1Ey0TQhNfDryO/LypFOldbb1WG45xVlk= -----END CERTIFICATE-----Generated at Fri Jun 14 16:49:40 2024 by rpki-client on console-fra.rpki-client.org