$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/33284BD019C311EBB9C1D063C4F9AE02.roa File: 33284BD019C311EBB9C1D063C4F9AE02.roa (raw, json) Hash identifier: rmKqD8Z1WZ+VAomsEKR2qVmm4nN0SQ12O2/LtxqVEU0= Subject key identifier: 83:0A:8B:74:30:B7:DA:2E:65:4B:CD:97:A7:90:26:FE:A5:96:A7:49 Certificate issuer: /CN=A91D2779/serialNumber=BB03B8D2447EF813A37A9587766A01F7359DD740 Certificate serial: 06D8 Authority key identifier: BB:03:B8:D2:44:7E:F8:13:A3:7A:95:87:76:6A:01:F7:35:9D:D7:40 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/33284BD019C311EBB9C1D063C4F9AE02.roa Signing time: Sat 01 Jun 2024 00:42:37 +0000 ROA not before: Sat 01 Jun 2024 00:42:37 +0000 ROA not after: Tue 01 Oct 2024 00:00:00 +0000 asID: 133860 IP address blocks: 103.225.112.0/23 maxlen: 23 103.225.112.0/24 maxlen: 24 103.225.113.0/24 maxlen: 24 103.225.114.0/24 maxlen: 24 103.225.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.crl rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1752 (0x6d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2779/serialNumber=BB03B8D2447EF813A37A9587766A01F7359DD740 Validity Not Before: Jun 1 00:42:37 2024 GMT Not After : Oct 1 00:00:00 2024 GMT Subject: CN=665a6e7d-b1f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:23:ac:2b:24:0f:19:7d:22:ec:2f:1a:5b:20: 9e:73:9d:49:fe:3d:78:78:3f:56:f3:30:7b:d2:45: db:01:a0:35:91:99:9e:58:bc:74:aa:16:d3:12:7e: be:47:01:9b:54:b2:ae:b6:47:b0:f3:a5:b9:ea:0f: d0:4f:18:78:a5:38:f5:86:fa:12:77:83:3d:2d:e4: 7d:b1:6b:81:9b:5d:04:da:a1:ba:47:93:3b:24:69: 4d:6d:15:b1:65:ff:6d:0c:77:b3:ad:29:95:24:23: bf:71:5d:06:1c:ac:da:1b:09:0c:30:b4:4f:9c:ec: 77:fc:15:9c:79:bc:b4:2a:ee:32:fc:66:45:81:38: 47:56:04:26:e1:78:51:bd:f4:0e:3d:e9:67:93:47: 6a:38:aa:fe:0f:94:c7:3a:86:5b:b6:e7:c6:7f:24: 3a:68:63:2f:c1:6c:3b:ab:f9:58:ac:a6:cd:bc:3b: 00:1f:d7:65:83:24:6c:7f:6b:4f:69:21:af:2d:ac: cb:7e:59:45:b9:0c:56:ea:4f:eb:06:e5:65:76:c5: 9c:6a:24:56:62:6c:e0:4f:8e:bd:5e:5a:4f:cb:3a: 6e:4a:81:69:fd:e8:0f:f7:80:c2:ad:fa:a1:77:19: 9a:d5:d5:48:14:5d:6b:60:b4:27:66:6c:91:1a:3a: 73:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:0A:8B:74:30:B7:DA:2E:65:4B:CD:97:A7:90:26:FE:A5:96:A7:49 X509v3 Authority Key Identifier: keyid:BB:03:B8:D2:44:7E:F8:13:A3:7A:95:87:76:6A:01:F7:35:9D:D7:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/uwO40kR--BOjepWHdmoB9zWd10A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uwO40kR--BOjepWHdmoB9zWd10A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2779/89024994183711EB8064B07AC4F9AE02/33284BD019C311EBB9C1D063C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.225.112.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:0f:85:6b:c3:c1:4a:e3:81:f8:8b:c4:fe:bf:d6:08:d2:bd: 8f:b2:01:16:73:0f:93:47:11:11:ae:95:ab:48:4e:37:74:3a: b0:6b:f2:3a:0d:2f:ec:53:fc:d0:bc:30:57:06:ba:0c:fd:8e: 65:59:66:4e:a4:28:fa:29:89:2e:52:54:a6:92:54:de:dd:ff: 9a:f7:ae:4f:84:d2:cf:d9:7e:3e:fb:09:57:00:be:e9:ab:a0: 3b:9e:3d:31:a7:1a:bd:84:56:3e:14:5a:92:f6:18:2c:db:86: 0a:39:a3:df:3e:ed:87:14:d4:3c:6a:21:f1:3f:80:00:23:9e: 06:d8:3b:d7:ff:8a:81:d7:bc:4b:db:85:82:6d:e1:fc:82:7a: d4:7c:f5:62:05:ed:63:6b:c8:36:36:a9:1b:34:f8:b5:90:42: e7:31:48:10:7e:66:0f:b5:4e:16:c2:eb:14:38:06:2a:23:3f: a4:ca:c9:73:85:33:48:e0:9a:eb:16:89:76:87:18:0f:4c:bd: 9a:c1:bb:03:5c:fe:0b:9e:a4:3c:e0:de:57:d7:57:9f:49:f0: 63:cd:e7:6c:1d:23:0a:35:58:4d:72:7b:b0:79:09:7f:1f:98: 63:48:a5:19:bc:e2:c4:a0:60:87:e3:a1:45:c8:b8:b8:e4:c3: e8:82:d9:07 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDI3NzkxMTAvBgNVBAUTKEJCMDNCOEQyNDQ3RUY4MTNBMzdBOTU4Nzc2NkEwMUY3 MzU5REQ3NDAwHhcNMjQwNjAxMDA0MjM3WhcNMjQxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhNmU3ZC1iMWY1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0iOsKyQPGX0i7C8aWyCec51J/j14eD9W8zB70kXbAaA1kZmeWLx0qhbTEn6+ RwGbVLKutkew86W56g/QTxh4pTj1hvoSd4M9LeR9sWuBm10E2qG6R5M7JGlNbRWx Zf9tDHezrSmVJCO/cV0GHKzaGwkMMLRPnOx3/BWceby0Ku4y/GZFgThHVgQm4XhR vfQOPelnk0dqOKr+D5THOoZbtufGfyQ6aGMvwWw7q/lYrKbNvDsAH9dlgyRsf2tP aSGvLazLfllFuQxW6k/rBuVldsWcaiRWYmzgT469XlpPyzpuSoFp/egP94DCrfqh dxma1dVIFF1rYLQnZmyRGjpz5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIMKi3Qw t9ouZUvNl6eQJv6llqdJMB8GA1UdIwQYMBaAFLsDuNJEfvgTo3qVh3ZqAfc1nddA MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMjc3OS84OTAyNDk5NDE4 MzcxMUVCODA2NEIwN0FDNEY5QUUwMi91d080MGtSLS1CT2plcFdIZG1vQjl6V2Qx MEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3V3TzQwa1ItLUJPamVwV0hkbW9COXpXZDEwQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDI3NzkvODkwMjQ5OTQxODM3MTFFQjgwNjRCMDdBQzRGOUFFMDIvMzMyODRCRDAx OUMzMTFFQkI5QzFEMDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn4XAwDQYJKoZIhvcNAQELBQADggEBAD4PhWvDwUrjgfiL xP6/1gjSvY+yARZzD5NHERGulatITjd0OrBr8joNL+xT/NC8MFcGugz9jmVZZk6k KPopiS5SVKaSVN7d/5r3rk+E0s/Zfj77CVcAvumroDuePTGnGr2EVj4UWpL2GCzb hgo5o98+7YcU1DxqIfE/gAAjngbYO9f/ioHXvEvbhYJt4fyCetR89WIF7WNryDY2 qRs0+LWQQucxSBB+Zg+1ThbC6xQ4BiojP6TKyXOFM0jgmusWiXaHGA9MvZrBuwNc /guepDzg3lfXV59J8GPN52wdIwo1WE1ye7B5CX8fmGNIpRm84sSgYIfjoUXIuLjk w+iC2Qc= -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:46 2024 by rpki-client on console-fra.rpki-client.org