$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/F05E8084931011EDB92FFC5FC4F9AE02.roa File: F05E8084931011EDB92FFC5FC4F9AE02.roa (raw, json) Hash identifier: Nw4+ql9tn6rQ3d7k5HNXS5zSWny6YmYw+cyXWfgiJZY= Subject key identifier: 05:A6:92:5A:15:65:10:06:28:E9:50:F7:6C:F2:BD:89:2A:1D:3F:E5 Certificate issuer: /CN=A91BA164/serialNumber=2EC44B9FC165C3BC8285812C313CC7801988FF31 Certificate serial: 1091 Authority key identifier: 2E:C4:4B:9F:C1:65:C3:BC:82:85:81:2C:31:3C:C7:80:19:88:FF:31 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsRLn8Flw7yChYEsMTzHgBmI_zE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/F05E8084931011EDB92FFC5FC4F9AE02.roa Signing time: Fri 04 Aug 2023 17:55:12 +0000 ROA not before: Fri 04 Aug 2023 17:55:12 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 139021 IP address blocks: 43.249.0.0/23 maxlen: 23 43.249.2.0/24 maxlen: 24 43.249.3.0/24 maxlen: 24 103.24.248.0/22 maxlen: 24 103.96.148.0/23 maxlen: 24 103.96.150.0/23 maxlen: 24 103.120.80.0/23 maxlen: 23 103.120.82.0/23 maxlen: 24 2404:ccc0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/LsRLn8Flw7yChYEsMTzHgBmI_zE.crl rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/LsRLn8Flw7yChYEsMTzHgBmI_zE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsRLn8Flw7yChYEsMTzHgBmI_zE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 18:15:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4241 (0x1091) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA164/serialNumber=2EC44B9FC165C3BC8285812C313CC7801988FF31 Validity Not Before: Aug 4 17:55:12 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cd3b7f-43f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:6b:ef:17:2b:e1:45:44:00:c2:aa:c9:12:53: 84:5e:f3:d1:63:7b:f4:0d:bc:3c:44:71:b0:a1:0f: db:ed:a8:74:a3:51:fc:8c:b9:26:22:5d:06:04:e5: 71:99:d7:c4:c3:1c:dc:2d:c1:a2:f2:ce:f6:d0:fd: cd:1a:a6:c4:b1:aa:cf:ff:02:f8:02:fc:ec:9b:66: 8c:ce:69:5f:19:ff:5d:2d:2b:09:14:fe:33:5f:ae: 21:2d:54:f0:67:39:f8:6c:03:fe:80:74:79:3f:83: 14:5a:69:96:bd:2f:3c:dc:08:06:89:f5:10:9b:66: 66:17:13:96:f3:30:1f:c1:42:27:54:bc:61:2e:55: 06:04:01:a2:e3:66:8a:cd:8c:69:10:79:bb:83:f8: 1e:33:9c:b4:dd:f1:a4:e9:0d:13:c3:4d:f4:1f:91: 73:fa:71:04:a6:ca:2f:a3:e0:c7:fa:0b:db:e5:e3: 16:84:29:1d:cb:d1:a7:fd:11:c6:84:91:cf:19:6d: dc:88:81:9e:ef:bb:25:4c:52:07:b1:02:a0:1f:8f: 2c:2b:24:28:5a:ef:47:6c:fd:4d:30:fd:aa:e5:11: 6c:ef:5b:83:d5:9c:1a:31:20:ff:22:5f:6b:c5:0a: b7:be:ca:92:cc:0a:19:c5:b6:48:79:04:68:be:ba: 58:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:A6:92:5A:15:65:10:06:28:E9:50:F7:6C:F2:BD:89:2A:1D:3F:E5 X509v3 Authority Key Identifier: keyid:2E:C4:4B:9F:C1:65:C3:BC:82:85:81:2C:31:3C:C7:80:19:88:FF:31 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/LsRLn8Flw7yChYEsMTzHgBmI_zE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LsRLn8Flw7yChYEsMTzHgBmI_zE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA164/AFC592ECF31E11E883EB7B79C4F9AE02/F05E8084931011EDB92FFC5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.0.0/22 103.24.248.0/22 103.96.148.0/22 103.120.80.0/22 IPv6: 2404:ccc0::/32 Signature Algorithm: sha256WithRSAEncryption 9c:1b:c9:f5:57:6f:bb:95:88:a5:9c:01:95:bb:b7:17:59:33: 33:d0:54:91:7c:d2:28:3d:46:ca:30:3d:e4:bf:6a:ce:5a:2f: 99:7a:31:ea:ef:ea:9e:cf:35:f0:06:b1:0b:30:71:b6:96:7c: 52:08:b0:9f:a3:c5:ce:77:c7:3f:ec:da:4d:35:c3:91:b9:51: 41:e5:3b:88:5f:bf:e0:f3:83:e8:3f:0b:9d:0c:e5:8b:54:41: e1:65:48:c9:95:3a:7b:17:26:6b:d6:b0:e7:7f:25:65:0c:e8: 98:49:22:0d:74:52:9d:10:0a:8d:6b:86:08:bd:48:72:83:c9: d1:12:87:9b:88:77:93:6b:d0:a9:77:71:c6:4a:1c:db:21:2e: e7:16:99:cf:e8:a3:e0:fb:c4:77:38:b3:9f:b5:c4:49:0d:3c: 68:28:c1:38:9c:83:dc:74:ac:09:0c:45:56:29:78:68:e6:ec: e0:84:7f:71:4e:4e:3b:63:64:b6:0e:b7:9e:9e:b4:b1:22:36: e4:ea:13:01:fc:ae:48:60:c3:70:44:d5:fc:bb:02:d1:1a:4e: f5:a3:fd:e7:e6:1b:a1:f8:bb:9c:c2:b5:60:2b:a2:28:ed:99: 9f:c5:04:ae:f0:8b:24:19:02:81:fe:84:f4:7a:42:6e:d2:29: 87:ce:92:c1 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICEJEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkExNjQxMTAvBgNVBAUTKDJFQzQ0QjlGQzE2NUMzQkM4Mjg1ODEyQzMxM0NDNzgw MTk4OEZGMzEwHhcNMjMwODA0MTc1NTEyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkM2I3Zi00M2YyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx2vvFyvhRUQAwqrJElOEXvPRY3v0Dbw8RHGwoQ/b7ah0o1H8jLkmIl0GBOVx mdfEwxzcLcGi8s720P3NGqbEsarP/wL4Avzsm2aMzmlfGf9dLSsJFP4zX64hLVTw Zzn4bAP+gHR5P4MUWmmWvS883AgGifUQm2ZmFxOW8zAfwUInVLxhLlUGBAGi42aK zYxpEHm7g/geM5y03fGk6Q0Tw030H5Fz+nEEpsovo+DH+gvb5eMWhCkdy9Gn/RHG hJHPGW3ciIGe77slTFIHsQKgH48sKyQoWu9HbP1NMP2q5RFs71uD1ZwaMSD/Il9r xQq3vsqSzAoZxbZIeQRovrpYaQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFAWmkloV ZRAGKOlQ92zyvYkqHT/lMB8GA1UdIwQYMBaAFC7ES5/BZcO8goWBLDE8x4AZiP8x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTE2NC9BRkM1OTJFQ0Yz MUUxMUU4ODNFQjdCNzlDNEY5QUUwMi9Mc1JMbjhGbHc3eUNoWUVzTVR6SGdCbUlf ekUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xzUkxuOEZsdzd5Q2hZRXNNVHpIZ0JtSV96RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkExNjQvQUZDNTkyRUNGMzFFMTFFODgzRUI3Qjc5QzRGOUFFMDIvRjA1RTgwODQ5 MzEwMTFFREI5MkZGQzVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIr+QADBAJnGPgDBAJnYJQDBAJneFAwDQQCAAIwBwMFACQE zMAwDQYJKoZIhvcNAQELBQADggEBAJwbyfVXb7uViKWcAZW7txdZMzPQVJF80ig9 RsowPeS/as5aL5l6Merv6p7PNfAGsQswcbaWfFIIsJ+jxc53xz/s2k01w5G5UUHl O4hfv+Dzg+g/C50M5YtUQeFlSMmVOnsXJmvWsOd/JWUM6JhJIg10Up0QCo1rhgi9 SHKDydESh5uId5Nr0Kl3ccZKHNshLucWmc/oo+D7xHc4s5+1xEkNPGgowTicg9x0 rAkMRVYpeGjm7OCEf3FOTjtjZLYOt56etLEiNuTqEwH8rkhgw3BE1fy7AtEaTvWj /efmG6H4u5zCtWAroijtmZ/FBK7wiyQZAoH+hPR6Qm7SKYfOksE= -----END CERTIFICATE-----Generated at Fri May 31 19:47:52 2024 by rpki-client on console-fra.rpki-client.org