$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/43487B18BF1811E9A2C00E63C4F9AE02.roa File: 43487B18BF1811E9A2C00E63C4F9AE02.roa (raw, json) Hash identifier: e9ru84wNK0OCJonuCj0UjA/1i1sjGH7yhEDB2tfRYB4= Subject key identifier: 0C:76:0F:04:11:02:7D:D4:5D:90:82:5C:CA:6F:2F:5C:C3:68:1A:DC Certificate issuer: /CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Certificate serial: 2A9E Authority key identifier: B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/43487B18BF1811E9A2C00E63C4F9AE02.roa Signing time: Thu 14 Mar 2024 16:02:36 +0000 ROA not before: Thu 14 Mar 2024 16:02:36 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 45558 IP address blocks: 203.215.60.0/22 maxlen: 22 203.215.60.0/24 maxlen: 24 203.215.61.0/24 maxlen: 24 203.215.62.0/24 maxlen: 24 203.215.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 15:39:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10910 (0x2a9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2AE5/serialNumber=B43A5A60D46806A69FFEF7C676219EC4BA8BA36D Validity Not Before: Mar 14 16:02:36 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f31f9b-e735 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:b6:03:da:6e:f1:9b:96:5a:24:c8:11:e1:5a: 8a:f5:07:6f:f0:04:74:16:52:37:d6:4a:99:56:41: 98:2f:94:f8:cf:92:68:46:23:ca:53:2d:3e:cc:b5: 89:d7:fe:0f:a6:c9:1e:2a:1a:6a:3d:fe:00:46:95: ad:ef:d6:58:90:64:a5:2a:ba:35:ad:68:24:97:db: db:56:00:78:3e:a9:90:55:87:91:1b:1a:f2:5b:a3: 27:32:36:b4:54:20:05:8b:aa:c5:e0:9f:0b:ba:1f: 57:f0:97:2b:ae:88:52:ae:6f:d9:70:b3:a3:82:59: a5:cc:25:de:78:42:3e:c1:fe:28:9c:90:e0:df:13: 77:53:49:f4:31:ee:77:5e:b9:40:ea:02:e7:a0:96: 72:18:64:01:f4:16:dc:b4:d2:4c:d0:8f:bb:a9:28: 3c:89:ea:97:2c:df:3f:51:80:ea:85:25:c3:4b:57: a5:be:47:5c:4b:aa:aa:25:db:d4:46:8f:63:51:d5: a3:27:c5:d6:c0:68:a2:14:c5:a5:6c:c3:e6:89:64: d5:b4:a5:9b:bc:b8:b5:88:4f:45:71:32:45:4b:af: ac:01:fa:dd:b6:8d:43:0b:18:f3:5d:cb:a7:c7:6c: b2:d9:a5:18:c0:9e:2a:cd:e0:de:56:6c:3b:ac:e9: c0:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:76:0F:04:11:02:7D:D4:5D:90:82:5C:CA:6F:2F:5C:C3:68:1A:DC X509v3 Authority Key Identifier: keyid:B4:3A:5A:60:D4:68:06:A6:9F:FE:F7:C6:76:21:9E:C4:BA:8B:A3:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/tDpaYNRoBqaf_vfGdiGexLqLo20.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tDpaYNRoBqaf_vfGdiGexLqLo20.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2AE5/8D3E54EAED5911E3B09011925911EA32/43487B18BF1811E9A2C00E63C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.215.60.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:23:40:15:57:45:f3:eb:f7:ab:c6:8c:9f:a1:67:ca:31:a4: 30:a9:ff:b2:44:14:b3:99:ec:82:60:86:9b:0d:59:27:0f:81: 45:d1:31:29:c9:fa:96:03:d1:cf:de:43:48:52:3a:03:8c:f2: c6:1b:8a:d1:6f:08:3c:83:dc:b7:26:43:00:3a:09:8f:dd:10: a1:59:b9:9a:30:7f:dd:b1:90:56:3c:55:ce:fa:54:cb:e3:f5: 85:0d:b9:d8:e7:bb:c9:ba:93:a3:e5:f1:86:af:9a:06:c0:77: 75:13:0a:36:bf:d7:24:21:6d:95:bb:bc:5b:c0:36:99:a1:ab: 1f:1f:43:90:aa:3d:20:19:93:df:b5:93:04:ef:21:62:19:74: df:e9:ed:c6:0d:53:c5:4a:fe:e0:95:09:02:7e:22:6f:d9:9a: 85:20:ff:4a:12:fc:b2:87:9e:87:d8:ab:2e:bc:58:60:21:ab: e2:35:b1:e0:4d:4a:2f:b4:1b:d3:c2:4b:70:c0:1f:9d:8d:83: 1c:bb:2d:c0:21:ca:b7:ce:48:bb:e8:0c:aa:ba:ed:eb:c9:3f: f2:7c:ab:d6:aa:d8:70:e8:27:78:74:64:ea:c4:1e:14:14:8a: 78:68:bd:c2:1f:3d:2f:3b:4f:5b:b1:84:fa:e9:28:4b:ef:1e: a8:5c:2f:f9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKp4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBRTUxMTAvBgNVBAUTKEI0M0E1QTYwRDQ2ODA2QTY5RkZFRjdDNjc2MjE5RUM0 QkE4QkEzNkQwHhcNMjQwMzE0MTYwMjM2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzMWY5Yi1lNzM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA77YD2m7xm5ZaJMgR4VqK9Qdv8AR0FlI31kqZVkGYL5T4z5JoRiPKUy0+zLWJ 1/4PpskeKhpqPf4ARpWt79ZYkGSlKro1rWgkl9vbVgB4PqmQVYeRGxryW6MnMja0 VCAFi6rF4J8Luh9X8JcrrohSrm/ZcLOjglmlzCXeeEI+wf4onJDg3xN3U0n0Me53 XrlA6gLnoJZyGGQB9BbctNJM0I+7qSg8ieqXLN8/UYDqhSXDS1elvkdcS6qqJdvU Ro9jUdWjJ8XWwGiiFMWlbMPmiWTVtKWbvLi1iE9FcTJFS6+sAfrdto1DCxjzXcun x2yy2aUYwJ4qzeDeVmw7rOnAjQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAx2DwQR An3UXZCCXMpvL1zDaBrcMB8GA1UdIwQYMBaAFLQ6WmDUaAamn/73xnYhnsS6i6Nt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkFFNS84RDNFNTRFQUVE NTkxMUUzQjA5MDExOTI1OTExRUEzMi90RHBhWU5Sb0JxYWZfdmZHZGlHZXhMcUxv MjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3REcGFZTlJvQnFhZl92ZkdkaUdleExxTG8yMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJBRTUvOEQzRTU0RUFFRDU5MTFFM0IwOTAxMTkyNTkxMUVBMzIvNDM0ODdCMThC RjE4MTFFOUEyQzAwRTYzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALL1zwwDQYJKoZIhvcNAQELBQADggEBAIwjQBVXRfPr96vG jJ+hZ8oxpDCp/7JEFLOZ7IJghpsNWScPgUXRMSnJ+pYD0c/eQ0hSOgOM8sYbitFv CDyD3LcmQwA6CY/dEKFZuZowf92xkFY8Vc76VMvj9YUNudjnu8m6k6Pl8YavmgbA d3UTCja/1yQhbZW7vFvANpmhqx8fQ5CqPSAZk9+1kwTvIWIZdN/p7cYNU8VK/uCV CQJ+Im/ZmoUg/0oS/LKHnofYqy68WGAhq+I1seBNSi+0G9PCS3DAH52Ngxy7LcAh yrfOSLvoDKq67evJP/J8q9aq2HDoJ3h0ZOrEHhQUinhovcIfPS87T1uxhPrpKEvv HqhcL/k= -----END CERTIFICATE-----Generated at Fri May 31 16:41:45 2024 by rpki-client on console-ams.rpki-client.org