$ rpki-client -vvf rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/2E22941AB6C811EE925FF152C4F9AE02.roa File: 2E22941AB6C811EE925FF152C4F9AE02.roa (raw, json) Hash identifier: ICIasKOnf6cirxTnpZpkfStWmRzAnByJwgrDi6kmkH8= Subject key identifier: 51:92:89:A6:0E:37:60:53:D4:6E:36:C9:C0:BC:9F:77:6B:7F:B9:B5 Certificate issuer: /CN=A91175BA/serialNumber=EA61137C0900906E4748D1E07CC555E6A7CCE100 Certificate serial: 2D Authority key identifier: EA:61:13:7C:09:00:90:6E:47:48:D1:E0:7C:C5:55:E6:A7:CC:E1:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mETfAkAkG5HSNHgfMVV5qfM4QA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/2E22941AB6C811EE925FF152C4F9AE02.roa Signing time: Wed 13 Mar 2024 00:43:28 +0000 ROA not before: Wed 13 Mar 2024 00:43:28 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 152320 IP address blocks: 103.85.72.0/24 maxlen: 24 103.85.73.0/24 maxlen: 24 103.85.74.0/24 maxlen: 24 103.85.75.0/24 maxlen: 24 203.175.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/6mETfAkAkG5HSNHgfMVV5qfM4QA.crl rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/6mETfAkAkG5HSNHgfMVV5qfM4QA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mETfAkAkG5HSNHgfMVV5qfM4QA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 01:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45 (0x2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91175BA/serialNumber=EA61137C0900906E4748D1E07CC555E6A7CCE100 Validity Not Before: Mar 13 00:43:28 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f0f6b0-182d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:3b:f4:11:da:6e:f6:ba:5d:bf:07:a2:cc:0a: 4f:1a:19:9d:f3:ea:b5:cf:96:32:4f:b8:9c:7a:05: 1f:02:b2:d8:af:5e:64:cb:33:57:c0:2b:a1:18:b0: f0:dc:96:44:32:0d:50:49:e2:ec:06:cb:fc:1d:13: 28:23:b0:2e:77:70:af:be:16:e3:13:ef:b1:d5:b2: e9:a5:15:5a:6d:96:4b:e9:7b:58:46:12:f3:04:59: 7e:45:07:9e:81:6f:d0:61:6f:cd:d0:35:51:8e:2a: c5:4a:8c:84:2e:93:2f:ce:00:57:0d:b2:8f:40:01: 67:f3:6d:5b:6d:e2:a0:15:1a:48:c9:bc:fd:7a:1c: 91:c8:c3:61:09:69:c0:c1:75:82:56:81:8c:1e:a7: d2:63:8d:51:8a:ed:59:62:92:4f:31:bb:92:57:d1: b8:c2:1f:c5:83:95:1e:d0:01:e2:5d:73:09:82:56: 80:ce:37:6a:2f:d0:c4:6b:66:bb:33:88:ef:a4:06: ca:e0:f6:21:fb:2f:31:a1:f7:a0:17:a3:3d:fd:8d: 6d:d9:13:cf:13:f6:dc:fe:00:74:3f:d4:f4:ff:72: 4a:11:87:de:ec:6d:0d:de:9c:ef:46:5a:4a:95:07: 6c:7e:93:b8:d6:98:b8:d9:6c:1b:72:cd:af:31:ec: 25:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:92:89:A6:0E:37:60:53:D4:6E:36:C9:C0:BC:9F:77:6B:7F:B9:B5 X509v3 Authority Key Identifier: keyid:EA:61:13:7C:09:00:90:6E:47:48:D1:E0:7C:C5:55:E6:A7:CC:E1:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/6mETfAkAkG5HSNHgfMVV5qfM4QA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6mETfAkAkG5HSNHgfMVV5qfM4QA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91175BA/16C4D2B8C84D11EB9913D32DC4F9AE02/2E22941AB6C811EE925FF152C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.85.72.0/22 203.175.12.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:46:0f:33:10:4b:d2:68:02:50:99:b7:3d:d4:e4:c9:0c:76: 98:d3:19:c7:76:83:b4:fb:97:51:c6:6b:f2:cd:d7:50:a1:73: 4f:b1:c6:12:10:3f:7f:5b:c0:1b:12:f1:a6:d2:aa:4b:87:6c: 55:b1:0c:d2:c6:52:9d:c2:76:53:f5:05:e0:c2:cc:74:3e:86: 03:7a:b1:c1:2e:0d:96:9e:e3:e5:98:a2:96:6b:76:cd:2c:cc: 20:a1:b4:78:c2:d8:0b:85:6a:2c:ab:f3:4f:45:76:8e:12:e9: b5:73:fe:19:c8:8d:17:33:ff:fe:e8:d3:b9:fe:fd:a1:5f:86: 52:2c:66:d0:a9:e9:1f:6a:05:c5:d8:3c:2f:ed:3a:aa:f3:a6: ba:fc:49:c9:c7:9f:ee:b2:99:3b:1b:6c:93:68:50:17:f1:2c: 7d:4a:a9:61:d2:11:ed:79:21:27:21:76:8a:e1:4f:70:ac:51: 40:89:a4:04:26:7b:bc:bb:25:bd:00:06:db:5c:3e:04:0f:65: f4:9f:f2:4a:44:dd:4f:12:4f:60:ba:9f:f6:1f:08:b2:75:15: 3a:43:45:5d:74:bb:f9:03:0e:7e:d3:bd:06:75:ec:37:06:2d: cc:df:c1:03:cb:ed:6a:a2:6a:e1:dc:a6:6d:80:df:72:44:d1: ef:69:21:f2 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBLTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx NzVCQTExMC8GA1UEBRMoRUE2MTEzN0MwOTAwOTA2RTQ3NDhEMUUwN0NDNTU1RTZB N0NDRTEwMDAeFw0yNDAzMTMwMDQzMjhaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY1ZjBmNmIwLTE4MmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEO/QR2m72ul2/B6LMCk8aGZ3z6rXPljJPuJx6BR8CstivXmTLM1fAK6EYsPDc lkQyDVBJ4uwGy/wdEygjsC53cK++FuMT77HVsumlFVptlkvpe1hGEvMEWX5FB56B b9Bhb83QNVGOKsVKjIQuky/OAFcNso9AAWfzbVtt4qAVGkjJvP16HJHIw2EJacDB dYJWgYwep9JjjVGK7Vlikk8xu5JX0bjCH8WDlR7QAeJdcwmCVoDON2ov0MRrZrsz iO+kBsrg9iH7LzGh96AXoz39jW3ZE88T9tz+AHQ/1PT/ckoRh97sbQ3enO9GWkqV B2x+k7jWmLjZbBtyza8x7CXFAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUUZKJpg43 YFPUbjbJwLyfd2t/ubUwHwYDVR0jBBgwFoAU6mETfAkAkG5HSNHgfMVV5qfM4QAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTE3NUJBLzE2QzREMkI4Qzg0 RDExRUI5OTEzRDMyREM0RjlBRTAyLzZtRVRmQWtBa0c1SFNOSGdmTVZWNXFmTTRR QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNm1FVGZBa0FrRzVIU05IZ2ZNVlY1cWZNNFFBLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NzVCQS8xNkM0RDJCOEM4NEQxMUVCOTkxM0QzMkRDNEY5QUUwMi8yRTIyOTQxQUI2 QzgxMUVFOTI1RkYxNTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAmdVSAMEAsuvDDANBgkqhkiG9w0BAQsFAAOCAQEAbUYPMxBL 0mgCUJm3PdTkyQx2mNMZx3aDtPuXUcZr8s3XUKFzT7HGEhA/f1vAGxLxptKqS4ds VbEM0sZSncJ2U/UF4MLMdD6GA3qxwS4Nlp7j5Ziilmt2zSzMIKG0eMLYC4VqLKvz T0V2jhLptXP+GciNFzP//ujTuf79oV+GUixm0KnpH2oFxdg8L+06qvOmuvxJycef 7rKZOxtsk2hQF/EsfUqpYdIR7XkhJyF2iuFPcKxRQImkBCZ7vLslvQAG21w+BA9l 9J/ySkTdTxJPYLqf9h8IsnUVOkNFXXS7+QMOftO9BnXsNwYtzN/BA8vtaqJq4dym bYDfckTR72kh8g== -----END CERTIFICATE-----Generated at Sat May 25 04:34:54 2024 by rpki-client on console-ams.rpki-client.org