$ rpki-client -vvf rpki.apnic.net/member_repository/A91325FD/BCE4D10A1D6811E2AD6494A508B02CD2/58C5CA92AF9411EE9774D74CC4F9AE02.roa File: 58C5CA92AF9411EE9774D74CC4F9AE02.roa (raw, json) Hash identifier: d7H7VG16iwZOSo0V6Kq5iu2JhK8AxXWORP5yqPf52b0= Subject key identifier: 29:67:CD:41:67:D9:EB:50:93:D7:C9:A1:A9:65:E3:F0:65:48:C5:1C Certificate issuer: /CN=A91325FD/serialNumber=2E8DAF49E27E4FC12BE05EF7DF1A82BB287126A1 Certificate serial: 3410 Authority key identifier: 2E:8D:AF:49:E2:7E:4F:C1:2B:E0:5E:F7:DF:1A:82:BB:28:71:26:A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lo2vSeJ-T8Er4F733xqCuyhxJqE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91325FD/BCE4D10A1D6811E2AD6494A508B02CD2/58C5CA92AF9411EE9774D74CC4F9AE02.roa Signing time: Fri 16 Feb 2024 14:20:05 +0000 ROA not before: Fri 16 Feb 2024 14:20:05 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 19905 IP address blocks: 43.224.36.0/22 maxlen: 22 103.43.76.0/22 maxlen: 22 103.240.240.0/22 maxlen: 22 115.84.64.0/18 maxlen: 18 202.137.128.0/19 maxlen: 19 202.144.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91325FD/BCE4D10A1D6811E2AD6494A508B02CD2/Lo2vSeJ-T8Er4F733xqCuyhxJqE.crl rsync://rpki.apnic.net/member_repository/A91325FD/BCE4D10A1D6811E2AD6494A508B02CD2/Lo2vSeJ-T8Er4F733xqCuyhxJqE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lo2vSeJ-T8Er4F733xqCuyhxJqE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 14:15:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13328 (0x3410) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91325FD/serialNumber=2E8DAF49E27E4FC12BE05EF7DF1A82BB287126A1 Validity Not Before: Feb 16 14:20:05 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65cf6f15-df55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:60:f7:47:9c:5a:cb:aa:a8:10:22:d7:33:3f: c5:54:ac:7d:cf:f8:be:2c:b1:01:e8:c7:e5:ff:c3: fa:59:e0:8a:d4:4c:24:70:8c:2a:31:71:07:a4:4f: 81:40:8b:d3:80:7d:ad:c8:c5:84:e8:a2:5a:6d:62: c2:9b:3f:32:57:ee:fe:81:23:ce:5d:e1:5c:17:cb: 5b:f4:90:a2:37:67:03:e5:80:79:2e:8c:be:88:ae: cf:39:62:e8:cc:cf:96:10:7a:3b:fe:94:24:b9:dc: 1a:6b:2c:ce:5d:fb:7d:b9:60:26:3c:61:6e:d6:d6: 63:5e:74:f6:40:fd:75:f3:e0:a4:9e:04:46:ea:8d: ec:23:c1:93:e1:17:34:5b:07:82:b3:32:3c:47:2c: 0f:65:7d:ef:cd:bd:3d:93:75:38:b3:fd:8d:7a:91: 6a:01:2b:30:ba:4a:2b:93:49:a9:3a:9f:fd:d9:f5: 72:91:36:81:7e:0c:95:15:4c:40:1c:0d:43:d1:0b: 89:e7:30:08:8f:0c:3d:98:c9:40:d5:a2:ae:ea:2c: 64:6f:c5:97:31:b1:6a:cf:72:1e:c6:2b:2a:b8:00: b5:d6:ac:08:12:63:5b:c5:10:ee:67:ed:a6:c5:5e: d1:cc:91:bd:c3:6c:cb:6d:02:bc:35:95:a3:73:b0: 56:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:67:CD:41:67:D9:EB:50:93:D7:C9:A1:A9:65:E3:F0:65:48:C5:1C X509v3 Authority Key Identifier: keyid:2E:8D:AF:49:E2:7E:4F:C1:2B:E0:5E:F7:DF:1A:82:BB:28:71:26:A1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91325FD/BCE4D10A1D6811E2AD6494A508B02CD2/Lo2vSeJ-T8Er4F733xqCuyhxJqE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lo2vSeJ-T8Er4F733xqCuyhxJqE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91325FD/BCE4D10A1D6811E2AD6494A508B02CD2/58C5CA92AF9411EE9774D74CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.224.36.0/22 103.43.76.0/22 103.240.240.0/22 115.84.64.0/18 202.137.128.0/19 202.144.184.0/21 Signature Algorithm: sha256WithRSAEncryption 05:cd:09:da:7d:e8:c1:ad:12:5f:a1:d6:e6:42:1b:e4:e0:9d: 23:a7:4e:df:ec:5b:17:4b:2c:32:75:46:c7:b3:f0:40:02:85: 50:00:55:c5:b5:21:59:e1:f7:55:cf:0d:f9:e2:06:dc:09:fb: 65:d2:3f:57:ba:40:2e:a0:3a:b0:9e:1c:86:22:10:ab:fa:58: cf:5c:3e:c2:bf:a8:93:ee:9f:09:78:2e:1d:63:86:eb:e9:66: 4c:7c:6b:ec:80:fc:ac:ef:7a:fe:c4:ba:0a:f2:cc:3d:d0:a3: 1e:5c:20:95:40:aa:e6:99:ae:e5:d5:43:9b:5b:ce:a1:83:ff: fc:1f:80:bc:ea:a6:6b:87:6d:ae:46:95:da:ea:24:02:f0:92: 67:d1:dd:c5:12:72:7b:39:0b:ad:cd:d9:ef:ac:5c:58:ff:6a: f2:23:8a:7b:7a:c4:23:e1:b7:57:16:b2:54:61:27:ee:78:1c: 28:f3:c4:d2:bb:7c:da:46:42:b8:d2:df:87:3a:2f:f1:85:2c: be:06:f8:f5:a1:54:86:cf:63:8f:b6:88:c9:0a:fb:8a:60:35: c8:b7:ef:e8:90:7a:ab:e3:82:2a:18:d9:e6:56:10:4f:a0:06: 60:47:c6:f5:77:99:da:f4:d6:ce:ba:32:5c:c1:0a:04:47:6a: 21:27:ac:c4 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgICNBAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzI1RkQxMTAvBgNVBAUTKDJFOERBRjQ5RTI3RTRGQzEyQkUwNUVGN0RGMUE4MkJC Mjg3MTI2QTEwHhcNMjQwMjE2MTQyMDA1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWNmNmYxNS1kZjU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs2D3R5xay6qoECLXMz/FVKx9z/i+LLEB6Mfl/8P6WeCK1EwkcIwqMXEHpE+B QIvTgH2tyMWE6KJabWLCmz8yV+7+gSPOXeFcF8tb9JCiN2cD5YB5Loy+iK7POWLo zM+WEHo7/pQkudwaayzOXft9uWAmPGFu1tZjXnT2QP118+CkngRG6o3sI8GT4Rc0 WweCszI8RywPZX3vzb09k3U4s/2NepFqASswukork0mpOp/92fVykTaBfgyVFUxA HA1D0QuJ5zAIjww9mMlA1aKu6ixkb8WXMbFqz3IexisquAC11qwIEmNbxRDuZ+2m xV7RzJG9w2zLbQK8NZWjc7BWQQIDAQABo4ICszCCAq8wHQYDVR0OBBYEFClnzUFn 2etQk9fJoall4/BlSMUcMB8GA1UdIwQYMBaAFC6Nr0nifk/BK+Be998agrsocSah MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzMjVGRC9CQ0U0RDEwQTFE NjgxMUUyQUQ2NDk0QTUwOEIwMkNEMi9MbzJ2U2VKLVQ4RXI0RjczM3hxQ3V5aHhK cUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xvMnZTZUotVDhFcjRGNzMzeHFDdXloeEpxRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzI1RkQvQkNFNEQxMEExRDY4MTFFMkFENjQ5NEE1MDhCMDJDRDIvNThDNUNBOTJB Rjk0MTFFRTk3NzRENzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPQYIKwYBBQUHAQcBAf8E LjAsMCoEAgABMCQDBAIr4CQDBAJnK0wDBAJn8PADBAZzVEADBAXKiYADBAPKkLgw DQYJKoZIhvcNAQELBQADggEBAAXNCdp96MGtEl+h1uZCG+TgnSOnTt/sWxdLLDJ1 Rsez8EAChVAAVcW1IVnh91XPDfniBtwJ+2XSP1e6QC6gOrCeHIYiEKv6WM9cPsK/ qJPunwl4Lh1jhuvpZkx8a+yA/Kzvev7EugryzD3Qox5cIJVAquaZruXVQ5tbzqGD //wfgLzqpmuHba5GldrqJALwkmfR3cUScns5C63N2e+sXFj/avIjint6xCPht1cW slRhJ+54HCjzxNK7fNpGQrjS34c6L/GFLL4G+PWhVIbPY4+2iMkK+4pgNci37+iQ eqvjgioY2eZWEE+gBmBHxvV3mdr01s66MlzBCgRHaiEnrMQ= -----END CERTIFICATE-----Generated at Thu May 2 17:43:04 2024 by rpki-client on console-fra.rpki-client.org