$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/601148222FE311EC9A82B173C4F9AE02.roa File: 601148222FE311EC9A82B173C4F9AE02.roa (raw, json) Hash identifier: arGiPJ4aSId/Rq1tDlbVldQVC4fEL7lNvLpGWYgnLrk= Subject key identifier: 09:5B:60:FC:72:6B:8E:67:B1:AE:BF:37:91:1E:0A:F3:D8:7A:33:09 Certificate issuer: /CN=A91FAEE4/serialNumber=73C0E01890FF3067601062A12E54BD54379091B6 Certificate serial: 036E Authority key identifier: 73:C0:E0:18:90:FF:30:67:60:10:62:A1:2E:54:BD:54:37:90:91:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8DgGJD_MGdgEGKhLlS9VDeQkbY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/601148222FE311EC9A82B173C4F9AE02.roa Signing time: Thu 07 Sep 2023 01:32:40 +0000 ROA not before: Thu 07 Sep 2023 01:32:40 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135513 IP address blocks: 43.252.124.0/22 maxlen: 24 103.9.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/c8DgGJD_MGdgEGKhLlS9VDeQkbY.crl rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/c8DgGJD_MGdgEGKhLlS9VDeQkbY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8DgGJD_MGdgEGKhLlS9VDeQkbY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:16:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 878 (0x36e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAEE4/serialNumber=73C0E01890FF3067601062A12E54BD54379091B6 Validity Not Before: Sep 7 01:32:40 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f92838-7149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bc:c5:3a:17:14:8c:e7:57:e4:9d:d8:79:51: 69:61:5f:7c:c4:75:81:62:6e:ad:5f:e1:6b:92:0f: 37:b9:f6:22:10:9a:f3:a6:2b:86:bf:85:c5:49:0a: db:45:b9:1c:d2:1b:4b:ca:fa:1e:ae:ff:81:fa:a7: 88:40:6b:6d:8e:7c:38:37:4b:c1:bc:3d:25:5b:79: bb:da:7d:0e:69:9b:dc:84:e7:e7:9c:03:34:a7:4f: 7f:e4:59:b3:7c:1f:5c:cc:d7:05:0c:21:f6:6a:9a: 8e:83:b5:c2:92:b4:08:d7:d3:a7:a4:60:d9:d0:4a: 00:49:0a:6c:c9:79:84:12:28:50:31:a4:e6:63:79: ba:c4:22:fa:e2:3b:cc:cb:21:fe:37:ad:f9:fc:dc: 85:a2:c7:81:83:cf:6a:19:bd:e6:58:80:be:ac:1b: af:69:bc:39:ef:16:bc:dc:97:a5:f5:ce:ca:72:07: 54:69:01:87:66:fe:a2:5f:c1:93:49:16:cf:8a:e6: e1:32:1e:34:d4:87:23:a9:fc:b3:3d:67:8d:ff:f0: a5:97:d3:0e:fc:4d:ce:b3:25:2f:ba:ba:c3:ca:de: d2:78:d2:7f:d8:0c:01:be:a3:19:53:d0:dc:14:30: 0e:30:f1:16:a7:ff:4d:9e:15:2e:6f:d5:f3:02:c1: 3a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:5B:60:FC:72:6B:8E:67:B1:AE:BF:37:91:1E:0A:F3:D8:7A:33:09 X509v3 Authority Key Identifier: keyid:73:C0:E0:18:90:FF:30:67:60:10:62:A1:2E:54:BD:54:37:90:91:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/c8DgGJD_MGdgEGKhLlS9VDeQkbY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c8DgGJD_MGdgEGKhLlS9VDeQkbY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAEE4/9C26E6C82FDE11ECAD747F68C4F9AE02/601148222FE311EC9A82B173C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.252.124.0/22 103.9.52.0/22 Signature Algorithm: sha256WithRSAEncryption b7:14:43:ca:ed:59:74:9c:ba:59:66:b6:5d:64:d3:47:12:74: 55:02:81:d6:20:b9:fa:92:3b:27:27:4d:13:b3:ae:11:ac:33: ad:fa:77:4b:41:8b:26:da:69:70:85:c9:a5:03:29:5c:1d:8d: 82:0b:f5:e4:07:f6:2c:fd:6c:cd:de:77:01:ed:57:60:1e:ff: 87:da:4c:2b:54:b4:4e:4b:c0:d5:53:c4:ea:8c:1d:a9:a6:f8: 92:6b:f8:7a:ba:46:80:d5:eb:3e:0a:d4:d0:32:74:3d:55:33: 96:3c:8a:f1:3e:81:43:61:42:c4:bb:cc:75:b7:2e:38:da:9d: 15:1a:8f:3c:ec:b1:e7:65:ce:fb:c4:dc:50:92:2b:a5:8e:40: e5:75:26:93:8a:49:b3:cd:a0:25:b7:5a:83:58:47:c7:d7:9b: 24:16:31:9d:af:b4:36:6a:b2:e9:dc:56:40:b5:9c:22:bd:16: 27:e7:06:18:6f:d3:71:7b:04:ae:b1:5c:f2:16:fe:78:4c:6e: 7b:b9:a1:78:d3:90:db:59:c6:bb:c1:87:c2:06:63:ef:75:7d: 14:6c:2e:59:70:3b:0c:e6:c9:23:29:0c:a4:60:36:57:05:a2: 06:83:9d:97:34:28:73:21:7f:94:a7:20:5d:57:57:f1:8e:67: 51:36:0d:10 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA24wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFFRTQxMTAvBgNVBAUTKDczQzBFMDE4OTBGRjMwNjc2MDEwNjJBMTJFNTRCRDU0 Mzc5MDkxQjYwHhcNMjMwOTA3MDEzMjQwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY5MjgzOC03MTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApbzFOhcUjOdX5J3YeVFpYV98xHWBYm6tX+Frkg83ufYiEJrzpiuGv4XFSQrb Rbkc0htLyvoerv+B+qeIQGttjnw4N0vBvD0lW3m72n0OaZvchOfnnAM0p09/5Fmz fB9czNcFDCH2apqOg7XCkrQI19OnpGDZ0EoASQpsyXmEEihQMaTmY3m6xCL64jvM yyH+N635/NyFoseBg89qGb3mWIC+rBuvabw57xa83Jel9c7KcgdUaQGHZv6iX8GT SRbPiubhMh401IcjqfyzPWeN//Cll9MO/E3OsyUvurrDyt7SeNJ/2AwBvqMZU9Dc FDAOMPEWp/9NnhUub9XzAsE6IwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFAlbYPxy a45nsa6/N5EeCvPYejMJMB8GA1UdIwQYMBaAFHPA4BiQ/zBnYBBioS5UvVQ3kJG2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUVFNC85QzI2RTZDODJG REUxMUVDQUQ3NDdGNjhDNEY5QUUwMi9jOERnR0pEX01HZGdFR0toTGxTOVZEZVFr YlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2M4RGdHSkRfTUdkZ0VHS2hMbFM5VkRlUWtiWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFFRTQvOUMyNkU2QzgyRkRFMTFFQ0FENzQ3RjY4QzRGOUFFMDIvNjAxMTQ4MjIy RkUzMTFFQzlBODJCMTczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/HwDBAJnCTQwDQYJKoZIhvcNAQELBQADggEBALcUQ8rt WXScullmtl1k00cSdFUCgdYgufqSOycnTROzrhGsM636d0tBiybaaXCFyaUDKVwd jYIL9eQH9iz9bM3edwHtV2Ae/4faTCtUtE5LwNVTxOqMHamm+JJr+Hq6RoDV6z4K 1NAydD1VM5Y8ivE+gUNhQsS7zHW3LjjanRUajzzssedlzvvE3FCSK6WOQOV1JpOK SbPNoCW3WoNYR8fXmyQWMZ2vtDZqsuncVkC1nCK9FifnBhhv03F7BK6xXPIW/nhM bnu5oXjTkNtZxrvBh8IGY+91fRRsLllwOwzmySMpDKRgNlcFogaDnZc0KHMhf5Sn IF1XV/GOZ1E2DRA= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:33 2024 by rpki-client on console-ams.rpki-client.org