$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/43487B18BF1811E9A2C00E63C4F9AE02.roa File: 43487B18BF1811E9A2C00E63C4F9AE02.roa (raw, json) Hash identifier: R7GiqDFWTFG5/KzmRDTnU8CgA9M5hlMTeWah7zEstzM= Subject key identifier: 90:1E:E6:15:0B:68:E2:C7:2C:C3:E1:2B:8A:05:CA:33:8F:27:0B:33 Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2B5E Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/43487B18BF1811E9A2C00E63C4F9AE02.roa Signing time: Fri 28 Feb 2025 15:52:34 +0000 ROA not before: Fri 28 Feb 2025 15:52:34 +0000 ROA not after: Thu 28 May 2026 00:00:00 +0000 asID: 45558 IP address blocks: 43.224.43.0/24 maxlen: 24 203.215.60.0/22 maxlen: 22 203.215.60.0/24 maxlen: 24 203.215.61.0/24 maxlen: 24 203.215.62.0/24 maxlen: 24 203.215.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 11 Apr 2025 15:36:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11102 (0x2b5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5 Validity Not Before: Feb 28 15:52:34 2025 GMT Not After : May 28 00:00:00 2026 GMT Subject: CN=67c1dbc2-70a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:34:17:b3:d6:d0:46:b6:fe:63:e3:96:f8:5e: 45:7c:9b:e1:9e:e5:3e:ac:f0:88:f2:00:05:9e:54: 6d:42:03:f0:11:9c:21:10:58:b2:46:d8:16:52:ff: 9b:8c:8c:08:1f:ae:c1:6e:c0:40:f4:23:10:1e:b1: bb:aa:4b:6b:10:ba:fd:c1:64:5c:c3:d5:f0:d9:7d: 80:36:f4:40:3c:4b:4c:a0:a2:24:3f:33:97:f2:7f: 4e:28:44:66:45:26:ca:11:cc:b1:fb:5f:68:a0:d4: 1e:e8:b2:18:57:d8:32:bc:b9:34:59:6e:32:c2:c8: 4f:b6:ce:83:d9:d8:a8:ce:d7:a0:11:b6:ff:d3:2d: e2:54:1e:c0:66:ab:1a:86:0c:20:8d:5d:de:93:77: 09:c2:f7:a4:8a:72:5e:15:01:31:b8:39:0d:03:c6: 1a:ea:3d:d7:b8:59:35:97:c9:4e:99:11:05:af:db: 5c:95:03:fb:75:0a:b2:76:4d:cd:86:d8:51:1b:2d: 5a:56:bf:d9:b2:58:fd:8b:6f:17:c3:2e:5f:14:f9: e3:e8:e9:f6:a0:83:16:05:21:b2:39:66:9e:d1:68: 47:42:05:b3:23:f4:ba:84:4e:6b:e3:fd:88:4a:66: b8:5b:bc:86:eb:11:8a:86:bc:71:8e:b5:55:c1:23: 8c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:1E:E6:15:0B:68:E2:C7:2C:C3:E1:2B:8A:05:CA:33:8F:27:0B:33 X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/43487B18BF1811E9A2C00E63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.43.0/24 203.215.60.0/22 Signature Algorithm: sha256WithRSAEncryption a3:4f:28:35:f6:76:d6:b1:1e:ae:1e:93:cf:d5:b4:29:36:e7: 42:08:a2:05:00:02:63:ec:80:24:d8:c8:17:c9:06:97:1a:40: fe:31:40:54:af:bf:d3:81:c8:d0:90:e8:c0:ed:6b:ea:df:56: c1:a9:ac:ed:7c:c8:c3:7b:16:03:c5:c5:9e:39:0d:77:d8:a5: b1:ea:ab:f5:99:4c:c3:86:56:c5:11:58:ba:e9:b8:ed:7f:60: d2:f1:5b:57:8c:9f:07:3c:55:c5:1a:e5:3c:8b:f0:f8:92:37: ca:ed:98:f6:81:dd:7d:5e:d9:24:6a:0a:78:8a:ae:8e:08:78: 3b:7a:eb:c4:0a:84:40:8b:ed:cf:66:0c:13:e3:64:94:a2:36: ba:81:71:62:67:2c:fe:f9:ea:c7:18:e5:17:4c:99:0a:b8:1d: 14:9f:22:97:c1:bb:70:45:2e:1f:d9:1e:da:eb:31:f9:bf:50: c0:02:1d:92:b1:36:c0:11:c5:e8:ae:60:1d:1d:69:06:24:6a: 0a:10:07:26:21:49:d8:a3:64:0d:8f:fa:7e:34:42:38:d3:8b: f2:96:c1:01:65:73:fc:11:3b:ad:a3:4b:94:b4:d4:6e:3e:76: f9:53:94:c9:cb:2f:0f:88:38:bd:27:98:65:91:aa:4a:e6:1c: 48:93:0c:6c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICK14wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjUwMjI4MTU1MjM0WhcNMjYwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02N2MxZGJjMi03MGE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzQXs9bQRrb+Y+OW+F5FfJvhnuU+rPCI8gAFnlRtQgPwEZwhEFiyRtgWUv+b jIwIH67BbsBA9CMQHrG7qktrELr9wWRcw9Xw2X2ANvRAPEtMoKIkPzOX8n9OKERm RSbKEcyx+19ooNQe6LIYV9gyvLk0WW4ywshPts6D2dioztegEbb/0y3iVB7AZqsa hgwgjV3ek3cJwvekinJeFQExuDkNA8Ya6j3XuFk1l8lOmREFr9tclQP7dQqydk3N hthRGy1aVr/Zslj9i28Xwy5fFPnj6On2oIMWBSGyOWae0WhHQgWzI/S6hE5r4/2I Sma4W7yG6xGKhrxxjrVVwSOM+wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJAe5hUL aOLHLMPhK4oFyjOPJwszMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJBRTUvOEQzRTU0RUFFRDU5MTFFM0IwOTAxMTkyNTkxMUVBMzIvNDM0ODdCMThC RjE4MTFFOUEyQzAwRTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAAr4CsDBALL1zwwDQYJKoZIhvcNAQELBQADggEBAKNPKDX2 dtaxHq4ek8/VtCk250IIogUAAmPsgCTYyBfJBpcaQP4xQFSvv9OByNCQ6MDta+rf VsGprO18yMN7FgPFxZ45DXfYpbHqq/WZTMOGVsURWLrpuO1/YNLxW1eMnwc8VcUa 5TyL8PiSN8rtmPaB3X1e2SRqCniKro4IeDt668QKhECL7c9mDBPjZJSiNrqBcWJn LP756scY5RdMmQq4HRSfIpfBu3BFLh/ZHtrrMfm/UMACHZKxNsARxeiuYB0daQYk agoQByYhSdijZA2P+n40QjjTi/KWwQFlc/wRO62jS5S01G4+dvlTlMnLLw+IOL0n mGWRqkrmHEiTDGw= -----END CERTIFICATE-----Generated at Sat Apr 5 03:35:50 2025 by rpki-client