$ rpki-client -vvf rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/CC99502E382F11EEAB87A63EC4F9AE02.roa File: CC99502E382F11EEAB87A63EC4F9AE02.roa (raw, json) Hash identifier: 2mpiQ7g09kt9HQeD7TLWjPTnNctz8rKZd4wPpAtd238= Subject key identifier: E3:BF:7B:00:31:F8:3A:F9:E8:84:6D:53:6E:DA:CF:91:E7:D4:D2:B2 Certificate issuer: /CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Certificate serial: 0E95 Authority key identifier: D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/CC99502E382F11EEAB87A63EC4F9AE02.roa Signing time: Thu 30 May 2024 05:16:43 +0000 ROA not before: Thu 30 May 2024 05:16:43 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 134739 IP address blocks: 103.200.132.0/22 maxlen: 22 103.200.132.0/24 maxlen: 24 103.200.133.0/24 maxlen: 24 103.200.134.0/24 maxlen: 24 103.200.135.0/24 maxlen: 24 121.54.164.0/22 maxlen: 22 121.54.164.0/24 maxlen: 24 121.54.165.0/24 maxlen: 24 121.54.166.0/24 maxlen: 24 121.54.167.0/24 maxlen: 24 2403:8e80::/32 maxlen: 32 2403:8e80:2000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:45:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3733 (0xe95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A86D0/serialNumber=D8AF37712D56B1B693EF6D03E346C00CF3F0493E Validity Not Before: May 30 05:16:43 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=66580bba-e2d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:ef:a2:3c:42:6e:e6:53:13:1a:3d:54:af:d0: 03:ca:d3:be:78:c8:ee:e1:b2:1c:d1:ad:6a:24:00: 6c:bb:2d:37:30:bd:e3:a3:4b:8f:16:84:4a:b0:e4: 19:d0:83:17:b6:bf:83:4a:b1:c7:7d:4d:43:1e:f6: 0a:1f:ce:c9:c5:f0:ae:63:10:11:dd:5a:91:75:29: 36:99:38:83:cf:e0:c1:67:db:1a:15:a6:88:67:0b: b6:d1:81:b1:f5:27:9c:96:f4:06:0d:a5:5e:46:02: 0f:0c:a2:e7:1f:40:bb:1f:48:50:dc:d7:1a:ac:f1: b2:ad:ce:bb:e6:a5:5b:43:2a:0a:83:7f:c2:a2:53: 0f:7c:a0:23:e6:14:37:a9:c7:b3:4d:2b:a3:34:6c: 9e:35:4a:a4:22:91:97:b9:9b:a2:f0:e7:77:76:2e: da:e6:3c:df:83:e8:9d:2b:15:31:4a:4c:d6:be:8d: bc:fb:f1:e7:3f:93:ee:9c:ce:de:84:91:fa:bb:52: 8f:e1:70:e8:71:32:78:76:1b:e3:52:37:38:f9:f3: 49:28:11:02:8c:c7:7e:dc:5d:eb:19:78:67:75:61: 71:31:1e:8e:ee:22:3c:29:80:4d:db:47:8f:1c:e6: 0b:3b:ae:02:9e:94:70:ae:44:65:2d:cd:aa:53:d3: 71:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:BF:7B:00:31:F8:3A:F9:E8:84:6D:53:6E:DA:CF:91:E7:D4:D2:B2 X509v3 Authority Key Identifier: keyid:D8:AF:37:71:2D:56:B1:B6:93:EF:6D:03:E3:46:C0:0C:F3:F0:49:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/2K83cS1WsbaT720D40bADPPwST4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2K83cS1WsbaT720D40bADPPwST4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A86D0/FA78B0446FCE11E988C44B3EC4F9AE02/CC99502E382F11EEAB87A63EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.200.132.0/22 121.54.164.0/22 IPv6: 2403:8e80::/32 Signature Algorithm: sha256WithRSAEncryption 05:69:45:c7:6d:7d:19:d0:5d:e6:54:8e:ff:3c:ad:21:04:74: 72:64:9a:9a:3c:22:a9:af:63:70:5c:1c:15:60:20:9b:90:c8: bc:35:b5:a5:e9:c8:35:32:85:44:55:83:2a:41:a9:f6:17:cb: 50:1a:fb:dd:6a:a6:5b:83:1d:df:8c:f7:26:c9:f7:c7:39:3f: 22:ae:62:b5:3b:6e:02:1d:78:c4:03:15:89:fa:b3:ef:63:44: 00:cb:b5:26:19:61:26:a0:5d:50:51:8a:e3:f0:63:c6:94:fd: 34:df:bf:75:b9:7e:ec:05:93:aa:d8:81:a2:ad:ef:09:3b:5d: ff:11:f3:cb:b0:3c:49:a6:07:d1:77:fe:57:30:de:e4:ca:6b: f4:b0:e7:a6:ba:96:7c:12:fb:9e:65:3e:14:85:49:d4:d1:44: 5f:ea:81:e6:0a:a6:f2:80:cb:83:22:7c:56:d4:4b:d0:71:9c: 60:fa:86:5e:b5:7e:df:94:a6:0e:8f:d1:a7:96:dc:2c:ca:aa: 8b:71:38:ef:cd:2d:16:e3:45:3a:32:db:e0:45:42:cc:c8:0f: 2d:fb:d9:91:a9:c9:10:89:a1:a2:1b:1f:9b:03:18:1f:0c:7a: 1d:93:3d:43:9c:76:b4:df:7a:1c:02:96:48:b9:b5:40:1d:2c: 69:c8:c4:83 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDpUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg2RDAxMTAvBgNVBAUTKEQ4QUYzNzcxMkQ1NkIxQjY5M0VGNkQwM0UzNDZDMDBD RjNGMDQ5M0UwHhcNMjQwNTMwMDUxNjQzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4MGJiYS1lMmQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3u+iPEJu5lMTGj1Ur9ADytO+eMju4bIc0a1qJABsuy03ML3jo0uPFoRKsOQZ 0IMXtr+DSrHHfU1DHvYKH87JxfCuYxAR3VqRdSk2mTiDz+DBZ9saFaaIZwu20YGx 9SeclvQGDaVeRgIPDKLnH0C7H0hQ3NcarPGyrc675qVbQyoKg3/ColMPfKAj5hQ3 qcezTSujNGyeNUqkIpGXuZui8Od3di7a5jzfg+idKxUxSkzWvo28+/HnP5PunM7e hJH6u1KP4XDocTJ4dhvjUjc4+fNJKBECjMd+3F3rGXhndWFxMR6O7iI8KYBN20eP HOYLO64CnpRwrkRlLc2qU9NxrQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFOO/ewAx +Dr56IRtU27az5Hn1NKyMB8GA1UdIwQYMBaAFNivN3EtVrG2k+9tA+NGwAzz8Ek+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODZEMC9GQTc4QjA0NDZG Q0UxMUU5ODhDNDRCM0VDNEY5QUUwMi8ySzgzY1MxV3NiYVQ3MjBENDBiQURQUHdT VDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJLODNjUzFXc2JhVDcyMEQ0MGJBRFBQd1NUNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg2RDAvRkE3OEIwNDQ2RkNFMTFFOTg4QzQ0QjNFQzRGOUFFMDIvQ0M5OTUwMkUz ODJGMTFFRUFCODdBNjNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnyIQDBAJ5NqQwDQQCAAIwBwMFACQDjoAwDQYJKoZIhvcN AQELBQADggEBAAVpRcdtfRnQXeZUjv88rSEEdHJkmpo8IqmvY3BcHBVgIJuQyLw1 taXpyDUyhURVgypBqfYXy1Aa+91qpluDHd+M9ybJ98c5PyKuYrU7bgIdeMQDFYn6 s+9jRADLtSYZYSagXVBRiuPwY8aU/TTfv3W5fuwFk6rYgaKt7wk7Xf8R88uwPEmm B9F3/lcw3uTKa/Sw56a6lnwS+55lPhSFSdTRRF/qgeYKpvKAy4MifFbUS9BxnGD6 hl61ft+Upg6P0aeW3CzKqotxOO/NLRbjRToy2+BFQszIDy372ZGpyRCJoaIbH5sD GB8Meh2TPUOcdrTfehwClki5tUAdLGnIxIM= -----END CERTIFICATE-----Generated at Fri May 31 19:47:52 2024 by rpki-client on console-fra.rpki-client.org