$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/4F467C58D3AA11ED91B0C532C4F9AE02.roa File: 4F467C58D3AA11ED91B0C532C4F9AE02.roa (raw, json) Hash identifier: WfMFG2paYlBcaW2VzjMRlqPjY0slGN+N4xg/J/HMhEM= Subject key identifier: 6C:3B:7A:7F:BE:E7:9D:F8:7D:FC:74:A9:10:47:B8:7F:61:C5:8A:E6 Certificate issuer: /CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Certificate serial: 34 Authority key identifier: 48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/4F467C58D3AA11ED91B0C532C4F9AE02.roa Signing time: Fri 07 Jul 2023 04:43:33 +0000 ROA not before: Fri 07 Jul 2023 04:43:33 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45352 IP address blocks: 43.228.244.0/22 maxlen: 24 103.67.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:25:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52 (0x34) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA389/serialNumber=48F50E16B8305AA2C756D21C8F0FD509338A5C29 Validity Not Before: Jul 7 04:43:33 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a797f5-b9af Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b5:d7:8c:f4:c2:89:37:8a:01:f6:7d:24:95: 4a:31:0f:7f:49:40:15:4c:e3:e3:7f:06:15:bc:7c: 8c:d7:4f:9a:db:be:9d:cd:2d:45:20:75:32:41:9f: c7:fd:36:c5:ea:1b:26:9f:9e:6c:45:4e:9f:28:6d: 65:79:d5:16:f1:f6:77:fa:97:54:b9:88:e5:11:98: c2:d5:9a:f2:fd:22:ec:31:62:cc:4f:00:31:02:e3: 73:1e:76:a5:2e:b2:79:73:34:3c:2c:fe:d7:4c:73: 12:25:bd:00:cb:ee:8c:fa:ba:30:52:8a:52:d8:80: 5d:b5:4d:27:62:31:f7:be:86:e3:da:62:ff:7a:43: ee:02:53:d2:dd:ef:39:0f:4d:be:11:cd:a4:92:5d: 9a:d6:44:6e:bc:1f:94:15:d9:ef:10:d6:73:94:01: ff:74:7b:ce:63:75:b8:b9:f9:fc:f1:78:8b:61:4f: 6c:47:f2:9f:d8:54:3e:fe:05:82:9c:bf:ba:4f:51: 4b:91:fa:7d:9c:e0:ce:68:7b:71:ca:db:54:f6:e5: a7:c5:69:7c:80:24:af:1e:35:14:1d:7d:32:a8:1e: 37:12:00:dd:02:28:c3:b9:ab:08:49:b3:d8:11:3d: 62:b3:b4:43:88:3e:f8:be:9e:e3:bf:8e:68:21:28: e2:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:3B:7A:7F:BE:E7:9D:F8:7D:FC:74:A9:10:47:B8:7F:61:C5:8A:E6 X509v3 Authority Key Identifier: keyid:48:F5:0E:16:B8:30:5A:A2:C7:56:D2:1C:8F:0F:D5:09:33:8A:5C:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/SPUOFrgwWqLHVtIcjw_VCTOKXCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPUOFrgwWqLHVtIcjw_VCTOKXCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA389/B2170B74D3A311ED8806AC11C4F9AE02/4F467C58D3AA11ED91B0C532C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.244.0/22 103.67.36.0/22 Signature Algorithm: sha256WithRSAEncryption 50:39:be:76:fd:d0:53:60:de:9a:5a:69:f4:a6:13:9a:13:df: 33:71:89:58:07:98:c2:6d:bf:43:ff:38:35:00:81:62:19:84: 76:70:57:ef:7e:d4:01:31:b3:1a:9c:4a:88:c8:05:d4:39:78: 07:d2:6d:5b:2f:b0:d6:38:af:dc:c7:d2:ec:72:d3:0b:61:89: 6b:87:a3:17:43:dd:91:cd:58:d0:62:49:19:43:7f:1c:e3:c5: 8c:be:c9:2f:4b:10:4e:af:b0:4c:10:d8:82:bc:a5:91:7b:9a: 09:a0:25:09:2a:8f:69:c5:8d:23:38:88:30:4c:ee:c3:5a:32: 1d:85:8a:86:f6:93:c4:30:cd:fc:a0:7c:76:a1:89:44:c5:bb: a9:34:4f:37:0f:63:d6:1f:a1:ca:ac:57:69:ba:d8:3d:ac:21: a9:06:a4:38:ce:3c:fa:66:0f:bb:fd:80:f2:75:96:2b:e2:fe: 61:ba:37:12:5e:d7:2b:58:38:e6:59:45:b4:40:ca:9d:25:c6: 36:22:0f:c4:45:aa:96:0c:1d:1f:e2:70:72:fe:83:37:9c:4a: 43:bc:40:09:7a:43:9f:63:7f:8d:71:7b:b1:73:45:bd:98:52: c1:45:33:d2:9f:5f:c3:b8:2f:d1:f9:af:d1:7e:5c:48:78:33: 79:e9:62:66 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBNDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE QTM4OTExMC8GA1UEBRMoNDhGNTBFMTZCODMwNUFBMkM3NTZEMjFDOEYwRkQ1MDkz MzhBNUMyOTAeFw0yMzA3MDcwNDQzMzNaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0YTc5N2Y1LWI5YWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHtdeM9MKJN4oB9n0klUoxD39JQBVM4+N/BhW8fIzXT5rbvp3NLUUgdTJBn8f9 NsXqGyafnmxFTp8obWV51Rbx9nf6l1S5iOURmMLVmvL9IuwxYsxPADEC43MedqUu snlzNDws/tdMcxIlvQDL7oz6ujBSilLYgF21TSdiMfe+huPaYv96Q+4CU9Ld7zkP Tb4RzaSSXZrWRG68H5QV2e8Q1nOUAf90e85jdbi5+fzxeIthT2xH8p/YVD7+BYKc v7pPUUuR+n2c4M5oe3HK21T25afFaXyAJK8eNRQdfTKoHjcSAN0CKMO5qwhJs9gR PWKztEOIPvi+nuO/jmghKOKPAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUbDt6f77n nfh9/HSpEEe4f2HFiuYwHwYDVR0jBBgwFoAUSPUOFrgwWqLHVtIcjw/VCTOKXCkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURBMzg5L0IyMTcwQjc0RDNB MzExRUQ4ODA2QUMxMUM0RjlBRTAyL1NQVU9Gcmd3V3FMSFZ0SWNqd19WQ1RPS1hD ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU1BVT0ZyZ3dXcUxIVnRJY2p3X1ZDVE9LWENrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE QTM4OS9CMjE3MEI3NEQzQTMxMUVEODgwNkFDMTFDNEY5QUUwMi80RjQ2N0M1OEQz QUExMUVEOTFCMEM1MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAivk9AMEAmdDJDANBgkqhkiG9w0BAQsFAAOCAQEAUDm+dv3Q U2Demlpp9KYTmhPfM3GJWAeYwm2/Q/84NQCBYhmEdnBX737UATGzGpxKiMgF1Dl4 B9JtWy+w1jiv3MfS7HLTC2GJa4ejF0Pdkc1Y0GJJGUN/HOPFjL7JL0sQTq+wTBDY grylkXuaCaAlCSqPacWNIziIMEzuw1oyHYWKhvaTxDDN/KB8dqGJRMW7qTRPNw9j 1h+hyqxXabrYPawhqQakOM48+mYPu/2A8nWWK+L+Ybo3El7XK1g45llFtEDKnSXG NiIPxEWqlgwdH+Jwcv6DN5xKQ7xACXpDn2N/jXF7sXNFvZhSwUUz0p9fw7gv0fmv 0X5cSHgzeeliZg== -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:38 2024 by rpki-client on console-fra.rpki-client.org