$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/43E8BE440AF611EC813DED67C4F9AE02.roa File: 43E8BE440AF611EC813DED67C4F9AE02.roa (raw, json) Hash identifier: qcqxgJO0PiZ2gtCvIRe3NXUJTtKpHHBhAYo397BPQ1s= Subject key identifier: 65:08:75:BE:E7:01:CC:D4:A4:70:5D:10:2D:F9:CA:A9:64:C5:A7:C5 Certificate issuer: /CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF Certificate serial: 0984 Authority key identifier: B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/43E8BE440AF611EC813DED67C4F9AE02.roa Signing time: Sat 24 Jun 2023 20:51:40 +0000 ROA not before: Sat 24 Jun 2023 20:51:40 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 23686 IP address blocks: 101.97.48.0/23 maxlen: 23 101.97.50.0/23 maxlen: 23 101.97.60.0/22 maxlen: 22 180.189.20.0/22 maxlen: 22 183.177.48.0/22 maxlen: 22 183.177.56.0/22 maxlen: 22 183.177.60.0/24 maxlen: 24 2404:4f01::/32 maxlen: 32 2404:4f01::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:20:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2436 (0x984) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE558/serialNumber=B36B971724A3BABD890B754598933720F972FEAF Validity Not Before: Jun 24 20:51:40 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6497575c-c521 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8a:fd:ab:d0:46:89:7e:53:30:e0:6a:11:f9: f3:26:46:22:01:30:b8:69:90:c6:dd:8b:40:21:4d: 41:2f:f5:60:fa:9a:f8:e4:49:d8:4c:b2:c4:d3:58: d6:a1:bf:f9:86:7b:5c:47:36:1d:09:85:94:1c:bd: 0e:c5:81:ae:2b:33:41:12:9a:27:70:e7:5d:df:e1: 33:10:2e:69:af:17:ac:67:99:55:ed:4a:1d:d0:30: e3:70:0a:a2:3d:3a:ac:7b:87:e7:a8:8d:cc:3a:ca: 25:0e:07:9d:f4:50:90:aa:e7:b3:de:f0:d2:f1:9b: 80:6d:72:76:4d:c1:96:f8:82:b2:64:02:16:35:88: 0c:8b:5a:7f:3e:2e:b7:89:e0:28:ec:cc:da:71:e9: c8:f6:ba:0d:dc:96:82:92:23:a0:03:a2:2e:29:a6: 9d:a2:f3:df:92:8c:0a:e6:47:c1:3a:2e:00:98:52: 14:05:c4:6e:53:28:c6:eb:a7:1e:73:5a:91:c3:74: a9:83:24:cb:47:5b:57:d3:1c:b3:1b:41:f3:d8:0b: 6c:ee:7c:f2:e9:10:14:59:d5:8b:c7:c2:47:9f:71: c9:a4:56:97:85:02:22:73:77:03:75:ee:63:ab:5c: 79:c5:17:ce:11:dc:6d:f0:17:fc:13:41:19:e0:9e: 42:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:08:75:BE:E7:01:CC:D4:A4:70:5D:10:2D:F9:CA:A9:64:C5:A7:C5 X509v3 Authority Key Identifier: keyid:B3:6B:97:17:24:A3:BA:BD:89:0B:75:45:98:93:37:20:F9:72:FE:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/s2uXFySjur2JC3VFmJM3IPly_q8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/s2uXFySjur2JC3VFmJM3IPly_q8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE558/3DF14F08539411EABF6B4F5FC4F9AE02/43E8BE440AF611EC813DED67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.97.48.0/22 101.97.60.0/22 180.189.20.0/22 183.177.48.0/22 183.177.56.0-183.177.60.255 IPv6: 2404:4f01::/32 Signature Algorithm: sha256WithRSAEncryption 6b:6e:4a:6f:65:1c:91:45:56:75:8e:3f:89:27:10:1a:7a:6f: af:cf:44:ea:46:8e:55:ec:39:df:1f:da:8f:ed:82:ee:33:b4: 41:c7:4c:2c:8e:5d:ce:07:c1:a2:b8:ca:e7:8e:ae:5b:14:79: 4c:bb:24:f7:c6:f9:65:ca:19:c3:48:42:c1:f6:7d:4a:59:40: e9:37:18:02:ff:bd:88:8b:0d:6e:6d:94:0c:59:e8:f1:b2:9b: 7d:04:b2:95:09:5c:57:5d:a5:f3:65:7c:4e:40:ef:f7:b3:03: 9e:72:1b:7f:b2:5b:6e:95:75:f7:25:df:73:e4:21:6a:c5:ef: 36:b9:5e:7e:41:b2:28:01:32:52:fe:30:a5:ec:83:39:50:fe: bb:a7:37:42:39:a1:33:d7:d8:96:40:46:3c:1d:d4:8f:c8:79: 3a:7f:fc:78:9c:a8:c1:13:8c:97:7c:79:cb:43:6c:15:96:65: a9:7d:1d:ff:d4:bb:94:74:c4:47:f1:6d:28:60:94:1c:f9:a1: 9b:7b:25:88:95:80:a6:fa:2f:b7:15:40:53:4f:69:cc:a5:6a: 85:2d:05:e2:69:4a:60:0e:7e:cc:de:4f:54:3d:99:55:c1:96: 9b:35:c9:04:a5:54:d5:3c:df:b7:8c:39:03:13:95:f7:2a:3e: b6:2b:34:dc -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgICCYQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U1NTgxMTAvBgNVBAUTKEIzNkI5NzE3MjRBM0JBQkQ4OTBCNzU0NTk4OTMzNzIw Rjk3MkZFQUYwHhcNMjMwNjI0MjA1MTQwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDk3NTc1Yy1jNTIxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvYr9q9BGiX5TMOBqEfnzJkYiATC4aZDG3YtAIU1BL/Vg+pr45EnYTLLE01jW ob/5hntcRzYdCYWUHL0OxYGuKzNBEponcOdd3+EzEC5prxesZ5lV7Uod0DDjcAqi PTqse4fnqI3MOsolDged9FCQquez3vDS8ZuAbXJ2TcGW+IKyZAIWNYgMi1p/Pi63 ieAo7MzacenI9roN3JaCkiOgA6IuKaadovPfkowK5kfBOi4AmFIUBcRuUyjG66ce c1qRw3SpgyTLR1tX0xyzG0Hz2Ats7nzy6RAUWdWLx8JHn3HJpFaXhQIic3cDde5j q1x5xRfOEdxt8Bf8E0EZ4J5CPQIDAQABo4ICxDCCAsAwHQYDVR0OBBYEFGUIdb7n AczUpHBdEC35yqlkxafFMB8GA1UdIwQYMBaAFLNrlxcko7q9iQt1RZiTNyD5cv6v MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTU1OC8zREYxNEYwODUz OTQxMUVBQkY2QjRGNUZDNEY5QUUwMi9zMnVYRnlTanVyMkpDM1ZGbUpNM0lQbHlf cTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3MydVhGeVNqdXIySkMzVkZtSk0zSVBseV9xOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U1NTgvM0RGMTRGMDg1Mzk0MTFFQUJGNkI0RjVGQzRGOUFFMDIvNDNFOEJFNDQw QUY2MTFFQzgxM0RFRDY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTgYIKwYBBQUHAQcBAf8E PzA9MCwEAgABMCYDBAJlYTADBAJlYTwDBAK0vRQDBAK3sTAwDAMEA7exOAMEALex PDANBAIAAjAHAwUAJARPATANBgkqhkiG9w0BAQsFAAOCAQEAa25Kb2UckUVWdY4/ iScQGnpvr89E6kaOVew53x/aj+2C7jO0QcdMLI5dzgfBorjK546uWxR5TLsk98b5 ZcoZw0hCwfZ9SllA6TcYAv+9iIsNbm2UDFno8bKbfQSylQlcV12l82V8TkDv97MD nnIbf7JbbpV19yXfc+QhasXvNrlefkGyKAEyUv4wpeyDOVD+u6c3QjmhM9fYlkBG PB3Uj8h5On/8eJyowROMl3x5y0NsFZZlqX0d/9S7lHTER/FtKGCUHPmhm3sliJWA pvovtxVAU09pzKVqhS0F4mlKYA5+zN5PVD2ZVcGWmzXJBKVU1Tzft4w5AxOV9yo+ tis03A== -----END CERTIFICATE-----Generated at Fri May 31 22:13:11 2024 by rpki-client on console-fra.rpki-client.org