$ rpki-client -vvf rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/3DBB9F0C97EC11EE95979D63C4F9AE02.roa File: 3DBB9F0C97EC11EE95979D63C4F9AE02.roa (raw, json) Hash identifier: ZAHPHHGkDMPS/uHUmK2Uvhf3gWEw3lktGxDWra4siWw= Subject key identifier: 7E:6E:87:BA:48:04:54:50:96:81:E8:4F:D7:58:1B:13:D9:CA:9A:0E Certificate issuer: /CN=A91D2ADD/serialNumber=B4F262F99857E120CC9CBC4BFC17ED54ABABE2BB Certificate serial: 0207 Authority key identifier: B4:F2:62:F9:98:57:E1:20:CC:9C:BC:4B:FC:17:ED:54:AB:AB:E2:BB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tPJi-ZhX4SDMnLxL_BftVKur4rs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/3DBB9F0C97EC11EE95979D63C4F9AE02.roa Signing time: Mon 11 Dec 2023 06:14:00 +0000 ROA not before: Mon 11 Dec 2023 06:14:00 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132369 IP address blocks: 45.121.48.0/22 maxlen: 24 103.61.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/tPJi-ZhX4SDMnLxL_BftVKur4rs.crl rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/tPJi-ZhX4SDMnLxL_BftVKur4rs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tPJi-ZhX4SDMnLxL_BftVKur4rs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 519 (0x207) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D2ADD/serialNumber=B4F262F99857E120CC9CBC4BFC17ED54ABABE2BB Validity Not Before: Dec 11 06:14:00 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6576a8a8-f8e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:b5:90:7b:27:67:15:b9:4d:f5:2e:29:90:78: d3:ce:05:50:34:74:27:c7:8e:17:f8:f7:18:38:9e: 1b:f5:e2:66:1a:48:ba:f3:2a:42:51:83:e7:45:4f: 55:03:a5:c2:66:72:af:76:2f:23:e1:74:c0:08:e5: 0a:db:39:37:a4:8a:14:78:71:f2:81:05:01:7f:34: a3:b1:61:4a:0a:9d:90:56:02:b5:6a:6d:7b:47:72: fa:83:a5:2f:93:10:16:53:c7:b0:2d:32:a4:48:d1: 0d:62:eb:ac:46:da:6d:15:d7:9f:f0:24:8e:61:bd: 88:84:5e:f5:20:d5:59:99:4e:ee:b8:a2:b6:0a:cd: 2c:be:85:1b:c3:92:77:26:9a:46:22:f9:e0:6f:01: 40:9a:a3:b8:4c:f6:40:9b:39:e2:ef:35:9d:44:b8: eb:d0:0e:2f:d5:e1:7b:47:68:68:8f:49:63:09:c6: 45:f2:fe:61:1b:49:f1:c1:d6:07:b8:5a:8e:b8:b9: 7d:53:cc:f8:0b:a7:2b:46:d0:1a:fc:2c:c8:98:2c: ef:bf:7a:fd:aa:04:65:1d:d3:e8:8c:09:af:7d:b0: 67:fc:bd:99:88:77:4d:93:4f:68:d5:f0:27:0d:db: 7a:3e:3c:98:ba:d2:ac:ac:09:25:cf:57:6f:97:91: 51:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:6E:87:BA:48:04:54:50:96:81:E8:4F:D7:58:1B:13:D9:CA:9A:0E X509v3 Authority Key Identifier: keyid:B4:F2:62:F9:98:57:E1:20:CC:9C:BC:4B:FC:17:ED:54:AB:AB:E2:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/tPJi-ZhX4SDMnLxL_BftVKur4rs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tPJi-ZhX4SDMnLxL_BftVKur4rs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D2ADD/EDC67614D0D411ECA2494A77C4F9AE02/3DBB9F0C97EC11EE95979D63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.121.48.0/22 103.61.136.0/22 Signature Algorithm: sha256WithRSAEncryption 7d:07:40:5a:15:c2:29:06:64:00:79:7e:81:40:95:c1:26:bc: 8f:07:bc:3c:f9:77:23:52:0d:a8:9f:41:b8:47:1d:4f:ef:c5: cb:57:90:12:82:43:39:e9:fe:a1:a2:e8:d9:4e:43:25:dd:a2: 86:91:d8:bd:a9:30:d3:16:58:80:87:63:3a:ff:87:5a:53:d8: 77:51:79:7f:77:bd:63:f8:c8:f3:84:fa:08:10:47:48:06:18: db:53:43:11:e5:03:7f:79:de:91:eb:71:b0:42:f7:18:28:21: 9b:0e:96:2f:23:1e:2d:03:1f:25:4f:26:a4:ee:fd:95:a1:f2: fe:84:19:64:80:21:cb:b2:7b:f9:3e:35:8d:3b:ad:5a:d0:0a: 94:90:2e:26:f7:1e:44:b1:3c:b6:3a:ee:c6:97:63:a6:76:e1: e2:5c:03:fe:c1:39:52:bf:67:a5:79:26:89:70:c4:cb:e3:d7: 36:47:23:30:68:a8:4f:04:53:1a:f8:5a:88:a6:53:d6:c0:a0: 0b:c3:04:05:3e:eb:6e:34:4c:4f:7e:eb:49:0d:19:25:02:06: a0:eb:a2:82:ce:50:f2:0e:15:10:1f:2e:54:d3:e7:c7:56:1d: b8:f3:6f:b0:7c:43:79:0d:97:12:a6:bd:34:bc:ab:23:34:eb: cf:5c:24:c3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAgcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDJBREQxMTAvBgNVBAUTKEI0RjI2MkY5OTg1N0UxMjBDQzlDQkM0QkZDMTdFRDU0 QUJBQkUyQkIwHhcNMjMxMjExMDYxNDAwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc2YThhOC1mOGU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5LWQeydnFblN9S4pkHjTzgVQNHQnx44X+PcYOJ4b9eJmGki68ypCUYPnRU9V A6XCZnKvdi8j4XTACOUK2zk3pIoUeHHygQUBfzSjsWFKCp2QVgK1am17R3L6g6Uv kxAWU8ewLTKkSNENYuusRtptFdef8CSOYb2IhF71INVZmU7uuKK2Cs0svoUbw5J3 JppGIvngbwFAmqO4TPZAmzni7zWdRLjr0A4v1eF7R2hoj0ljCcZF8v5hG0nxwdYH uFqOuLl9U8z4C6crRtAa/CzImCzvv3r9qgRlHdPojAmvfbBn/L2ZiHdNk09o1fAn Ddt6PjyYutKsrAklz1dvl5FRqwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFH5uh7pI BFRQloHoT9dYGxPZypoOMB8GA1UdIwQYMBaAFLTyYvmYV+EgzJy8S/wX7VSrq+K7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMkFERC9FREM2NzYxNEQw RDQxMUVDQTI0OTRBNzdDNEY5QUUwMi90UEppLVpoWDRTRE1uTHhMX0JmdFZLdXI0 cnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RQSmktWmhYNFNETW5MeExfQmZ0Vkt1cjRycy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDJBREQvRURDNjc2MTREMEQ0MTFFQ0EyNDk0QTc3QzRGOUFFMDIvM0RCQjlGMEM5 N0VDMTFFRTk1OTc5RDYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIteTADBAJnPYgwDQYJKoZIhvcNAQELBQADggEBAH0HQFoV wikGZAB5foFAlcEmvI8HvDz5dyNSDaifQbhHHU/vxctXkBKCQznp/qGi6NlOQyXd ooaR2L2pMNMWWICHYzr/h1pT2HdReX93vWP4yPOE+ggQR0gGGNtTQxHlA3953pHr cbBC9xgoIZsOli8jHi0DHyVPJqTu/ZWh8v6EGWSAIcuye/k+NY07rVrQCpSQLib3 HkSxPLY67saXY6Z24eJcA/7BOVK/Z6V5JolwxMvj1zZHIzBoqE8EUxr4WoimU9bA oAvDBAU+6240TE9+60kNGSUCBqDrooLOUPIOFRAfLlTT58dWHbjzb7B8Q3kNlxKm vTS8qyM0689cJMM= -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:44 2024 by rpki-client on console-fra.rpki-client.org