$ rpki-client -vvf rpki.apnic.net/member_repository/A91F3853/F01F63285FA111EEBD9AF828C4F9AE02/0A1497CA5FA311EE90BA7329C4F9AE02.roa File: 0A1497CA5FA311EE90BA7329C4F9AE02.roa (raw, json) Hash identifier: gBatiV8xPI0Ny0kEBpDlTNCAq+Q/cb8jWcQZ/WXxM7w= Subject key identifier: F2:2F:69:80:7B:71:DB:EF:C1:A1:DD:91:49:FA:68:5E:0C:C0:9A:EF Certificate issuer: /CN=A91F3853/serialNumber=7B59A4DB86EF5419F7ADBDDA1DF52B509EE6DF75 Certificate serial: 84 Authority key identifier: 7B:59:A4:DB:86:EF:54:19:F7:AD:BD:DA:1D:F5:2B:50:9E:E6:DF:75 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1mk24bvVBn3rb3aHfUrUJ7m33U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F3853/F01F63285FA111EEBD9AF828C4F9AE02/0A1497CA5FA311EE90BA7329C4F9AE02.roa Signing time: Thu 30 May 2024 09:33:06 +0000 ROA not before: Thu 30 May 2024 09:33:06 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 137451 IP address blocks: 43.230.8.0/24 maxlen: 24 43.230.10.0/24 maxlen: 24 43.230.11.0/24 maxlen: 24 103.49.60.0/24 maxlen: 24 103.49.61.0/24 maxlen: 24 103.49.62.0/24 maxlen: 24 103.49.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F3853/F01F63285FA111EEBD9AF828C4F9AE02/e1mk24bvVBn3rb3aHfUrUJ7m33U.crl rsync://rpki.apnic.net/member_repository/A91F3853/F01F63285FA111EEBD9AF828C4F9AE02/e1mk24bvVBn3rb3aHfUrUJ7m33U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1mk24bvVBn3rb3aHfUrUJ7m33U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F3853/serialNumber=7B59A4DB86EF5419F7ADBDDA1DF52B509EE6DF75 Validity Not Before: May 30 09:33:06 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=665847d2-0277 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:9f:55:41:00:8b:5f:6c:d3:dc:0b:fb:41:a8: fa:79:1d:a8:40:7b:9e:3c:80:c5:d9:ab:e0:c1:f1: 3f:44:12:4d:b0:10:c0:d0:3e:41:df:d0:8e:7e:34: e0:69:bb:ae:af:97:79:3c:4e:d4:56:79:af:54:20: 9d:ef:c3:35:f8:59:72:ce:2a:27:d1:b6:9d:e9:b3: 54:14:3d:5b:d6:0b:58:b9:2b:4a:2b:bf:e2:5e:49: 7b:77:bf:51:37:f0:97:ee:49:d0:b3:b7:a6:44:74: 1e:8c:76:7c:1e:fe:d8:ff:c0:a8:83:76:4f:40:3c: 72:f2:9f:a5:3c:7d:ec:dd:87:5e:21:60:b1:59:14: d4:56:81:97:b8:81:2e:f1:40:f5:8e:9a:71:e0:60: d2:95:62:7b:41:22:be:ef:9d:9d:42:ed:8f:6f:0b: 43:c5:40:8b:4f:c7:a7:15:79:a1:39:cf:f5:8f:99: 92:3a:34:52:a8:18:9d:b8:64:37:1a:4a:43:e2:c9: e4:15:bb:c1:43:a2:7c:44:ca:b1:e2:48:af:7c:e0: b4:0f:5b:58:af:6b:0b:66:a6:92:2a:54:fc:bf:06: 05:bb:a4:a4:5d:b8:1a:d2:bf:57:e0:5a:23:d2:d6: d1:31:83:69:b1:b7:24:bd:ac:c5:ce:6d:dc:6d:35: 14:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:2F:69:80:7B:71:DB:EF:C1:A1:DD:91:49:FA:68:5E:0C:C0:9A:EF X509v3 Authority Key Identifier: keyid:7B:59:A4:DB:86:EF:54:19:F7:AD:BD:DA:1D:F5:2B:50:9E:E6:DF:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F3853/F01F63285FA111EEBD9AF828C4F9AE02/e1mk24bvVBn3rb3aHfUrUJ7m33U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1mk24bvVBn3rb3aHfUrUJ7m33U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F3853/F01F63285FA111EEBD9AF828C4F9AE02/0A1497CA5FA311EE90BA7329C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.8.0/24 43.230.10.0/23 103.49.60.0/22 Signature Algorithm: sha256WithRSAEncryption 43:cb:99:5f:f4:1c:07:25:55:b0:48:b9:11:dc:5d:0f:60:7e: dc:74:c2:62:69:66:07:04:f1:bd:3f:fd:80:58:7b:46:87:65: f1:f9:34:8b:11:b2:63:c9:16:c8:48:d5:85:15:97:df:a3:71: 95:07:5f:ed:48:4a:87:38:31:dc:ab:95:91:e9:2b:78:f5:9a: d1:9a:54:03:b3:9f:ea:69:b6:b1:76:b6:40:5e:03:34:e7:b0: 80:8f:be:b2:13:ba:b4:1b:63:17:81:b2:c9:67:6f:46:c3:60: d3:f4:40:89:cb:62:0c:a9:5d:bd:78:6e:4f:4f:0b:6e:2e:5b: 31:bb:4d:4a:25:07:91:25:71:03:32:8b:fe:a2:d6:90:3d:f0: e0:0b:e7:bd:29:2b:91:1f:3d:ff:8d:c3:94:ee:ba:bd:e3:f1: b9:0f:61:75:a3:e0:de:b5:e9:fb:6f:d0:d3:0c:9d:a2:d1:de: b9:a4:ea:43:26:dd:b2:57:da:6c:ba:6a:74:54:30:05:fb:86: 12:f3:77:d4:2e:a6:f5:22:bd:03:f7:ad:b3:c4:f2:77:e7:ff: c5:74:81:43:a1:e5:3e:54:50:08:8a:a8:aa:69:f0:43:dc:c3: cb:cb:b6:0b:5d:0a:af:c6:13:c0:9c:fd:2e:3a:f6:71:15:8d: 38:65:4a:aa -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjM4NTMxMTAvBgNVBAUTKDdCNTlBNERCODZFRjU0MTlGN0FEQkREQTFERjUyQjUw OUVFNkRGNzUwHhcNMjQwNTMwMDkzMzA2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4NDdkMi0wMjc3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxZ9VQQCLX2zT3Av7Qaj6eR2oQHuePIDF2avgwfE/RBJNsBDA0D5B39COfjTg abuur5d5PE7UVnmvVCCd78M1+Flyzion0bad6bNUFD1b1gtYuStKK7/iXkl7d79R N/CX7knQs7emRHQejHZ8Hv7Y/8Cog3ZPQDxy8p+lPH3s3YdeIWCxWRTUVoGXuIEu 8UD1jppx4GDSlWJ7QSK+752dQu2PbwtDxUCLT8enFXmhOc/1j5mSOjRSqBiduGQ3 GkpD4snkFbvBQ6J8RMqx4kivfOC0D1tYr2sLZqaSKlT8vwYFu6SkXbga0r9X4Foj 0tbRMYNpsbckvazFzm3cbTUUBQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFPIvaYB7 cdvvwaHdkUn6aF4MwJrvMB8GA1UdIwQYMBaAFHtZpNuG71QZ96292h31K1Ce5t91 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMzg1My9GMDFGNjMyODVG QTExMUVFQkQ5QUY4MjhDNEY5QUUwMi9lMW1rMjRidlZCbjNyYjNhSGZVclVKN20z M1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2UxbWsyNGJ2VkJuM3JiM2FIZlVyVUo3bTMzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjM4NTMvRjAxRjYzMjg1RkExMTFFRUJEOUFGODI4QzRGOUFFMDIvMEExNDk3Q0E1 RkEzMTFFRTkwQkE3MzI5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr5ggDBAEr5goDBAJnMTwwDQYJKoZIhvcNAQELBQADggEB AEPLmV/0HAclVbBIuRHcXQ9gftx0wmJpZgcE8b0//YBYe0aHZfH5NIsRsmPJFshI 1YUVl9+jcZUHX+1ISoc4MdyrlZHpK3j1mtGaVAOzn+pptrF2tkBeAzTnsICPvrIT urQbYxeBsslnb0bDYNP0QInLYgypXb14bk9PC24uWzG7TUolB5ElcQMyi/6i1pA9 8OAL570pK5EfPf+Nw5Tuur3j8bkPYXWj4N616ftv0NMMnaLR3rmk6kMm3bJX2my6 anRUMAX7hhLzd9QupvUivQP3rbPE8nfn/8V0gUOh5T5UUAiKqKpp8EPcw8vLtgtd Cq/GE8Cc/S469nEVjThlSqo= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:39 2024 by rpki-client on console-fra.rpki-client.org