$ rpki-client -vvf rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4B3A4250B46A11EAB5A01176C4F9AE02.roa File: 4B3A4250B46A11EAB5A01176C4F9AE02.roa (raw, json) Hash identifier: 6I0Af/hBeX+2YQFg1sJBC99GUVGcOiIA5ND5zVJwiUg= Subject key identifier: FF:F4:8D:43:87:AA:B8:45:27:0A:CD:3B:70:ED:D4:70:CB:D4:86:0B Certificate issuer: /CN=A912512F/serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305 Certificate serial: 078D Authority key identifier: E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4B3A4250B46A11EAB5A01176C4F9AE02.roa Signing time: Fri 28 Jul 2023 21:38:01 +0000 ROA not before: Fri 28 Jul 2023 21:38:01 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 135387 IP address blocks: 43.246.216.0/22 maxlen: 22 43.246.216.0/24 maxlen: 24 43.246.217.0/24 maxlen: 24 43.246.218.0/24 maxlen: 24 43.246.219.0/24 maxlen: 24 103.5.44.0/22 maxlen: 22 103.5.44.0/24 maxlen: 24 103.5.45.0/24 maxlen: 24 103.5.46.0/24 maxlen: 24 103.5.47.0/24 maxlen: 24 103.35.204.0/22 maxlen: 22 103.35.204.0/24 maxlen: 24 103.35.205.0/24 maxlen: 24 103.35.206.0/24 maxlen: 24 103.35.207.0/24 maxlen: 24 103.249.160.0/24 maxlen: 24 103.249.161.0/24 maxlen: 24 103.249.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 22:00:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1933 (0x78d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A912512F/serialNumber=E237D2CD3BA1F1B927545F244992872AD0AFC305 Validity Not Before: Jul 28 21:38:01 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64c43539-44f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:f6:a7:49:07:f2:71:36:9e:4a:86:4f:f0:84: 29:33:bb:5a:d3:8b:82:37:97:c1:23:98:0a:bd:47: ce:8e:f5:5d:22:66:7a:e1:da:d6:8f:9d:cb:f4:78: c2:42:8b:6f:82:7d:11:91:c2:bd:c9:30:ec:ed:fd: 62:df:d3:67:ac:79:ee:5e:77:42:ff:8c:b0:78:80: e5:30:b2:7e:22:d3:20:e9:c9:1e:0a:34:67:fa:1b: 4a:4c:82:b3:fe:ce:f9:73:47:c3:5d:01:c6:28:5b: 60:68:8e:78:98:65:2f:7a:6a:7c:46:78:97:19:99: ab:04:5f:0f:f7:d4:61:2d:8e:12:d8:1e:ef:a7:38: b7:cd:6d:98:a1:b5:45:be:35:83:f8:4d:46:4a:81: cf:6f:2b:57:10:cd:d7:03:01:89:ec:9b:07:c4:9d: 34:cf:a2:8a:eb:fd:12:ff:c0:64:33:90:25:1a:83: 59:61:9e:d6:8d:17:c1:92:94:1c:f5:a8:a4:69:fb: 79:77:7f:55:6e:70:29:bb:f6:ff:d4:d8:24:78:90: b9:6f:29:ac:c0:70:83:a8:88:ec:07:43:d7:1c:1b: bc:96:04:b2:f5:16:66:60:ee:06:5a:21:0b:29:f1: ee:3e:f7:6e:6a:0f:70:d3:60:e0:8f:13:c5:c0:a4: 1f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:F4:8D:43:87:AA:B8:45:27:0A:CD:3B:70:ED:D4:70:CB:D4:86:0B X509v3 Authority Key Identifier: keyid:E2:37:D2:CD:3B:A1:F1:B9:27:54:5F:24:49:92:87:2A:D0:AF:C3:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4jfSzTuh8bknVF8kSZKHKtCvwwU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4jfSzTuh8bknVF8kSZKHKtCvwwU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A912512F/4B8BFFECB46911EAABA71C75C4F9AE02/4B3A4250B46A11EAB5A01176C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.216.0/22 103.5.44.0/22 103.35.204.0/22 103.249.160.0-103.249.162.255 Signature Algorithm: sha256WithRSAEncryption 11:c9:3c:c1:ab:b6:35:30:d8:29:85:32:4a:73:50:a2:b3:38: 27:dc:db:97:f0:6e:f6:25:c3:b4:dd:d7:2e:06:66:42:70:51: a2:ad:d2:49:fa:aa:b2:11:02:69:63:34:6f:a2:ed:b4:dc:f7: bd:60:59:e7:99:6d:48:62:85:ab:e8:f5:85:85:08:09:88:5a: c8:20:36:83:88:72:44:01:fd:8f:83:15:67:9d:9d:fd:33:ff: ed:31:f2:02:89:30:ab:d7:d9:bf:b3:ba:f4:f3:88:0f:39:bb: 48:cc:08:d8:35:18:81:a0:dd:a7:ea:5d:80:88:2e:4d:98:52: 8f:39:07:62:ee:a7:10:48:e8:9e:4d:de:7b:c6:26:ce:c1:8b: f6:f5:77:c9:04:5a:5b:78:37:43:b0:61:2f:b5:96:88:bc:47: d7:ea:3a:a8:14:25:a1:7e:e9:cc:40:59:42:1a:8c:fc:ec:89: a6:cc:ae:22:8d:55:bc:07:3d:f4:22:c5:94:c2:f0:5b:ca:d3: 55:1d:b1:5b:2f:83:9f:1a:56:31:4e:04:e5:9d:f2:c0:be:33: 55:8d:f2:1e:57:d1:94:65:42:2b:64:50:0b:5a:db:13:63:6e: 45:c9:a6:aa:aa:09:2a:44:a0:ea:27:9d:e2:a6:df:e4:e6:25: 97:63:89:d7 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICB40wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxMkYxMTAvBgNVBAUTKEUyMzdEMkNEM0JBMUYxQjkyNzU0NUYyNDQ5OTI4NzJB RDBBRkMzMDUwHhcNMjMwNzI4MjEzODAxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM0MzUzOS00NGYxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu/anSQfycTaeSoZP8IQpM7ta04uCN5fBI5gKvUfOjvVdImZ64drWj53L9HjC Qotvgn0RkcK9yTDs7f1i39NnrHnuXndC/4yweIDlMLJ+ItMg6ckeCjRn+htKTIKz /s75c0fDXQHGKFtgaI54mGUvemp8RniXGZmrBF8P99RhLY4S2B7vpzi3zW2YobVF vjWD+E1GSoHPbytXEM3XAwGJ7JsHxJ00z6KK6/0S/8BkM5AlGoNZYZ7WjRfBkpQc 9aikaft5d39VbnApu/b/1NgkeJC5bymswHCDqIjsB0PXHBu8lgSy9RZmYO4GWiEL KfHuPvduag9w02DgjxPFwKQfBwIDAQABo4ICrzCCAqswHQYDVR0OBBYEFP/0jUOH qrhFJwrNO3Dt1HDL1IYLMB8GA1UdIwQYMBaAFOI30s07ofG5J1RfJEmShyrQr8MF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTEyRi80QjhCRkZFQ0I0 NjkxMUVBQUJBNzFDNzVDNEY5QUUwMi80amZTelR1aDhia25WRjhrU1pLSEt0Q3Z3 d1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzRqZlN6VHVoOGJrblZGOGtTWktIS3RDdnd3VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjUxMkYvNEI4QkZGRUNCNDY5MTFFQUFCQTcxQzc1QzRGOUFFMDIvNEIzQTQyNTBC NDZBMTFFQUI1QTAxMTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMCYEAgABMCADBAIr9tgDBAJnBSwDBAJnI8wwDAMEBWf5oAMEAGf5ojANBgkq hkiG9w0BAQsFAAOCAQEAEck8wau2NTDYKYUySnNQorM4J9zbl/Bu9iXDtN3XLgZm QnBRoq3SSfqqshECaWM0b6LttNz3vWBZ55ltSGKFq+j1hYUICYhayCA2g4hyRAH9 j4MVZ52d/TP/7THyAokwq9fZv7O69POIDzm7SMwI2DUYgaDdp+pdgIguTZhSjzkH Yu6nEEjonk3ee8YmzsGL9vV3yQRaW3g3Q7BhL7WWiLxH1+o6qBQloX7pzEBZQhqM /OyJpsyuIo1VvAc99CLFlMLwW8rTVR2xWy+DnxpWMU4E5Z3ywL4zVY3yHlfRlGVC K2RQC1rbE2NuRcmmqqoJKkSg6ied4qbf5OYll2OJ1w== -----END CERTIFICATE-----Generated at Tue May 14 23:01:09 2024 by rpki-client on console-fra.rpki-client.org