$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/B42198DC64F211ED9AEC046FC4F9AE02.roa File: B42198DC64F211ED9AEC046FC4F9AE02.roa (raw, json) Hash identifier: mfM+unwRd1y5KNLtchPVfnPJL1r2yUuTkpo8qV3b6dM= Subject key identifier: EF:A8:BC:D9:1C:30:2A:B0:E0:B8:97:47:07:F2:16:00:81:65:48:E0 Certificate issuer: /CN=A91B5CEA/serialNumber=FD4E5CFBBE51340160396D596E1B3248CFC81CC4 Certificate serial: 014C Authority key identifier: FD:4E:5C:FB:BE:51:34:01:60:39:6D:59:6E:1B:32:48:CF:C8:1C:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U5c-75RNAFgOW1ZbhsySM_IHMQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/B42198DC64F211ED9AEC046FC4F9AE02.roa Signing time: Wed 07 Aug 2024 04:05:40 +0000 ROA not before: Wed 07 Aug 2024 04:05:40 +0000 ROA not after: Tue 30 Sep 2025 00:00:00 +0000 asID: 133606 IP address blocks: 43.243.120.0/22 maxlen: 24 43.243.176.0/22 maxlen: 24 43.254.56.0/22 maxlen: 24 103.94.180.0/22 maxlen: 24 103.238.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/_U5c-75RNAFgOW1ZbhsySM_IHMQ.crl rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/_U5c-75RNAFgOW1ZbhsySM_IHMQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U5c-75RNAFgOW1ZbhsySM_IHMQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 20 Apr 2025 00:57:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 332 (0x14c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5CEA, serialNumber=FD4E5CFBBE51340160396D596E1B3248CFC81CC4 Validity Not Before: Aug 7 04:05:40 2024 GMT Not After : Sep 30 00:00:00 2025 GMT Subject: CN=66b2f294-6746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:34:53:19:30:82:9f:e7:13:af:c8:de:72:96: de:eb:eb:e7:53:e5:91:4c:ff:43:e3:c6:50:4c:58: 7d:e8:ce:a1:09:3c:1b:42:7e:3f:56:fa:99:7d:ad: 20:e5:a6:52:fe:5c:21:b0:45:14:fb:c7:68:85:a9: 0a:10:f2:fd:b3:aa:1b:24:5c:2f:cc:f8:b0:c7:9e: 62:b9:fa:5f:11:ab:2a:37:29:42:7a:4b:b8:3a:43: db:f3:ac:b1:d1:a0:bd:70:6d:3b:fd:5f:52:8e:5c: a0:5e:98:ed:d7:75:23:97:39:9e:28:27:6b:74:91: 03:0f:f2:84:0a:11:7e:c5:6c:be:3b:ed:2a:a9:ec: 9d:69:91:94:9f:dc:fe:39:08:46:73:2b:53:13:3a: f0:8e:dd:57:2a:93:5a:c8:aa:98:57:1f:d5:fc:3a: 2f:75:da:ec:12:6b:05:56:90:8f:2a:e8:d1:02:88: 30:6d:24:25:e8:88:6d:85:8f:1e:0b:d6:76:6c:9d: 0b:60:de:27:9c:5f:57:a8:cf:f1:8d:d5:21:83:89: ee:a1:20:2c:00:36:be:b7:fb:79:5e:66:e9:7e:67: 12:c2:8f:6e:50:c2:79:b0:1b:97:74:2f:2f:27:db: f9:1f:81:5f:86:99:3a:8b:be:04:3b:3e:c7:4e:61: c7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:A8:BC:D9:1C:30:2A:B0:E0:B8:97:47:07:F2:16:00:81:65:48:E0 X509v3 Authority Key Identifier: keyid:FD:4E:5C:FB:BE:51:34:01:60:39:6D:59:6E:1B:32:48:CF:C8:1C:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/_U5c-75RNAFgOW1ZbhsySM_IHMQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_U5c-75RNAFgOW1ZbhsySM_IHMQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5CEA/28A77B6864EE11EDA4A34513C4F9AE02/B42198DC64F211ED9AEC046FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.120.0/22 43.243.176.0/22 43.254.56.0/22 103.94.180.0/22 103.238.116.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:63:b3:3a:17:d0:9b:9b:5f:76:ed:39:88:4f:78:e6:03:2c: 1b:6f:56:ac:cc:d2:07:72:4b:ac:c8:e2:23:f8:88:80:16:7b: cf:a5:01:9e:5f:a9:4e:04:73:50:30:43:a9:7d:f7:14:90:c8: 3f:ae:96:c5:5a:e0:39:49:40:3f:e7:0a:d9:51:94:8f:d7:63: 66:92:b5:6c:5a:fc:f5:64:1c:1c:46:aa:ce:52:54:8d:2e:a2: 0a:fd:65:8d:4a:6b:9f:e9:0f:45:ad:ec:2d:75:60:c6:92:a3: 8b:ea:f9:02:26:77:62:79:fd:eb:d7:79:45:46:dd:70:93:96: 55:8b:b7:c4:0d:9a:24:be:10:b8:fb:06:87:27:f9:bd:7c:1b: 30:ac:a1:6e:b5:eb:43:fb:6c:24:bb:2e:13:38:32:d6:93:bb: 30:b3:b9:5e:a8:31:aa:90:52:bf:46:b4:fb:7d:f4:52:2e:c8: 7c:b9:9b:a8:10:6a:c7:7c:dd:99:2a:4f:1e:c4:b1:0a:0c:78: 72:e6:9f:36:f9:30:fb:61:7d:bf:0b:6c:33:bd:0b:26:b1:65: d3:0f:f5:ac:d7:59:7e:19:c4:03:06:cd:17:36:ac:21:22:8e: 0f:63:94:a6:b7:ff:c7:3b:13:d6:7b:a8:de:eb:85:52:71:d4: e6:65:e7:67 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICAUwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjVDRUExMTAvBgNVBAUTKEZENEU1Q0ZCQkU1MTM0MDE2MDM5NkQ1OTZFMUIzMjQ4 Q0ZDODFDQzQwHhcNMjQwODA3MDQwNTQwWhcNMjUwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NmIyZjI5NC02NzQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqTRTGTCCn+cTr8jecpbe6+vnU+WRTP9D48ZQTFh96M6hCTwbQn4/VvqZfa0g 5aZS/lwhsEUU+8dohakKEPL9s6obJFwvzPiwx55iufpfEasqNylCeku4OkPb86yx 0aC9cG07/V9SjlygXpjt13UjlzmeKCdrdJEDD/KEChF+xWy+O+0qqeydaZGUn9z+ OQhGcytTEzrwjt1XKpNayKqYVx/V/DovddrsEmsFVpCPKujRAogwbSQl6IhthY8e C9Z2bJ0LYN4nnF9XqM/xjdUhg4nuoSAsADa+t/t5XmbpfmcSwo9uUMJ5sBuXdC8v J9v5H4Ffhpk6i74EOz7HTmHHYwIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFO+ovNkc MCqw4LiXRwfyFgCBZUjgMB8GA1UdIwQYMBaAFP1OXPu+UTQBYDltWW4bMkjPyBzE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNUNFQS8yOEE3N0I2ODY0 RUUxMUVEQTRBMzQ1MTNDNEY5QUUwMi9fVTVjLTc1Uk5BRmdPVzFaYmhzeVNNX0lI TVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL19VNWMtNzVSTkFGZ09XMVpiaHN5U01fSUhNUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjVDRUEvMjhBNzdCNjg2NEVFMTFFREE0QTM0NTEzQzRGOUFFMDIvQjQyMTk4REM2 NEYyMTFFRDlBRUMwNDZGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAIr83gDBAIr87ADBAIr/jgDBAJnXrQDBAJn7nQwDQYJKoZI hvcNAQELBQADggEBAD5jszoX0JubX3btOYhPeOYDLBtvVqzM0gdyS6zI4iP4iIAW e8+lAZ5fqU4Ec1AwQ6l99xSQyD+ulsVa4DlJQD/nCtlRlI/XY2aStWxa/PVkHBxG qs5SVI0uogr9ZY1Ka5/pD0Wt7C11YMaSo4vq+QImd2J5/evXeUVG3XCTllWLt8QN miS+ELj7Bocn+b18GzCsoW6160P7bCS7LhM4MtaTuzCzuV6oMaqQUr9GtPt99FIu yHy5m6gQasd83ZkqTx7EsQoMeHLmnzb5MPthfb8LbDO9CyaxZdMP9azXWX4ZxAMG zRc2rCEijg9jlKa3/8c7E9Z7qN7rhVJx1OZl52c= -----END CERTIFICATE-----Generated at Sun Apr 13 04:11:50 2025 by rpki-client