$ rpki-client -vvf rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/55A4C5C004AA11E8935B7021C4F9AE02.roa File: 55A4C5C004AA11E8935B7021C4F9AE02.roa (raw, json) Hash identifier: kLGnvctfxK1o6enisg6yXGklS8A8vSfR07CMbXiCzIk= Subject key identifier: B5:04:95:CA:F2:AF:1C:C4:BC:11:A1:64:CA:AA:E2:F7:7B:88:FA:47 Certificate issuer: /CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Certificate serial: 331C Authority key identifier: 03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/55A4C5C004AA11E8935B7021C4F9AE02.roa Signing time: Tue 06 Jun 2023 15:30:59 +0000 ROA not before: Tue 06 Jun 2023 15:30:59 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 55508 IP address blocks: 103.1.232.0/22 maxlen: 22 103.1.233.0/24 maxlen: 24 157.119.180.0/22 maxlen: 22 157.119.180.0/24 maxlen: 24 157.119.181.0/24 maxlen: 24 157.119.182.0/24 maxlen: 24 157.119.183.0/24 maxlen: 24 202.9.76.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 15:22:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13084 (0x331c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9112CEC/serialNumber=038CF2E28077DF2CADA45756FB5D99A6E240FD09 Validity Not Before: Jun 6 15:30:59 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647f5133-d084 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:34:ba:0a:cc:99:fb:c1:53:21:3c:30:8f:3d: b3:09:b7:9e:f6:96:64:bd:ed:5f:64:a6:5b:57:98: ff:66:de:18:5c:29:fc:a4:8d:95:2e:8b:4b:2f:25: 36:20:f3:67:0f:df:8f:da:3c:9b:d0:68:e9:78:27: 31:47:e1:3f:7b:46:a4:bc:da:c4:f9:eb:b6:70:08: 0d:ec:7d:ca:85:26:30:1e:d5:3d:e3:a5:86:8f:de: d5:3c:ca:ef:bf:26:91:0b:fb:e9:5d:35:a2:44:bd: b0:63:b0:4c:a5:1f:fd:0c:ca:0b:e6:ed:61:ad:68: 67:95:53:02:2a:43:55:2a:0d:95:56:0b:e2:c7:78: 83:dd:33:b1:1d:fa:c9:98:7e:ba:67:dd:f5:07:54: 2f:41:60:a3:88:50:c8:03:3d:97:75:22:d9:b1:cf: c3:9a:1d:5d:ba:b2:02:d1:25:91:60:91:87:7b:7a: 84:5c:c8:8e:78:81:21:54:a9:15:76:b9:76:22:04: f8:9b:dc:fd:7c:c0:91:fb:d3:f7:d5:0f:10:ad:c4: bd:67:cb:1a:91:e5:66:48:a0:34:fb:1c:a8:60:36: f7:3b:cc:a3:7e:d3:28:c3:89:d7:1e:20:88:13:9b: d9:fc:fb:2a:d8:f8:1b:f2:fe:98:8f:fd:03:b6:b7: 4a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:04:95:CA:F2:AF:1C:C4:BC:11:A1:64:CA:AA:E2:F7:7B:88:FA:47 X509v3 Authority Key Identifier: keyid:03:8C:F2:E2:80:77:DF:2C:AD:A4:57:56:FB:5D:99:A6:E2:40:FD:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/A4zy4oB33yytpFdW-12ZpuJA_Qk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A4zy4oB33yytpFdW-12ZpuJA_Qk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9112CEC/B8B0C7881DA411E28C93E79A08B02CD2/55A4C5C004AA11E8935B7021C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.232.0/22 157.119.180.0/22 202.9.76.0/23 Signature Algorithm: sha256WithRSAEncryption 53:94:cb:20:d6:0e:b3:1e:3f:32:20:82:58:c2:91:9c:52:db: 5a:83:5b:76:a7:d5:9a:8a:e1:88:6c:52:40:2a:8b:c8:1c:e1: 93:a0:ea:b8:87:8b:8b:66:ee:68:2c:93:ad:48:22:77:bf:0a: 17:b9:1e:72:eb:81:87:fa:55:da:be:09:b2:48:94:ea:28:fe: 91:a0:1d:f0:b0:8e:3c:c6:a5:f1:f6:71:39:30:ff:57:b3:12: 5f:19:72:a6:59:6e:c0:85:8f:8c:89:dd:47:df:9a:db:43:21: bc:d6:8c:6e:80:18:ae:17:92:aa:c9:9c:66:e6:05:58:49:3e: 73:97:54:f1:74:c1:8c:84:e4:39:94:1e:60:e0:4b:6b:74:59: 46:70:f0:94:0c:8e:d2:78:5c:5d:76:8c:a5:aa:4b:1f:4d:91: 12:c0:d6:cf:4d:ad:3c:7b:d2:27:35:d6:9a:f4:ab:b5:b0:4c: ed:55:d7:b7:cb:0b:93:9c:d7:d2:88:82:e8:fd:5a:9f:3a:61: d7:4d:09:a3:1e:3f:51:d2:11:2a:25:1c:d7:3a:9f:f3:46:2b: f8:29:fe:c1:f8:de:f8:4e:82:4c:0c:38:39:94:2d:79:3c:87: c3:81:77:e6:c3:62:2a:1a:7a:b7:2b:fa:8f:27:0f:f1:23:25: 7d:62:83:74 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICMxwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTJDRUMxMTAvBgNVBAUTKDAzOENGMkUyODA3N0RGMkNBREE0NTc1NkZCNUQ5OUE2 RTI0MEZEMDkwHhcNMjMwNjA2MTUzMDU5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdmNTEzMy1kMDg0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwzS6CsyZ+8FTITwwjz2zCbee9pZkve1fZKZbV5j/Zt4YXCn8pI2VLotLLyU2 IPNnD9+P2jyb0GjpeCcxR+E/e0akvNrE+eu2cAgN7H3KhSYwHtU946WGj97VPMrv vyaRC/vpXTWiRL2wY7BMpR/9DMoL5u1hrWhnlVMCKkNVKg2VVgvix3iD3TOxHfrJ mH66Z931B1QvQWCjiFDIAz2XdSLZsc/Dmh1durIC0SWRYJGHe3qEXMiOeIEhVKkV drl2IgT4m9z9fMCR+9P31Q8QrcS9Z8sakeVmSKA0+xyoYDb3O8yjftMow4nXHiCI E5vZ/Psq2Pgb8v6Yj/0DtrdK/QIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFLUElcry rxzEvBGhZMqq4vd7iPpHMB8GA1UdIwQYMBaAFAOM8uKAd98sraRXVvtdmabiQP0J MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMkNFQy9COEIwQzc4ODFE QTQxMUUyOEM5M0U3OUEwOEIwMkNEMi9BNHp5NG9CMzN5eXRwRmRXLTEyWnB1SkFf UWsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E0enk0b0IzM3l5dHBGZFctMTJacHVKQV9Ray5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTJDRUMvQjhCMEM3ODgxREE0MTFFMjhDOTNFNzlBMDhCMDJDRDIvNTVBNEM1QzAw NEFBMTFFODkzNUI3MDIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnAegDBAKdd7QDBAHKCUwwDQYJKoZIhvcNAQELBQADggEB AFOUyyDWDrMePzIggljCkZxS21qDW3an1ZqK4YhsUkAqi8gc4ZOg6riHi4tm7mgs k61IIne/Che5HnLrgYf6Vdq+CbJIlOoo/pGgHfCwjjzGpfH2cTkw/1ezEl8ZcqZZ bsCFj4yJ3UffmttDIbzWjG6AGK4XkqrJnGbmBVhJPnOXVPF0wYyE5DmUHmDgS2t0 WUZw8JQMjtJ4XF12jKWqSx9NkRLA1s9NrTx70ic11pr0q7WwTO1V17fLC5Oc19KI guj9Wp86YddNCaMeP1HSESolHNc6n/NGK/gp/sH43vhOgkwMODmULXk8h8OBd+bD Yioaercr+o8nD/EjJX1ig3Q= -----END CERTIFICATE-----Generated at Fri May 24 17:56:30 2024 by rpki-client on console-fra.rpki-client.org