$ rpki-client -vvf rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa File: 5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa (raw, json) Hash identifier: i3UeQiX+tUDSOr3LtoockwiB3n+oKf6dv798PZf6kHc= Subject key identifier: B3:95:50:6E:13:D2:44:BA:14:F5:E4:4D:92:05:0C:3A:B9:22:D2:25 Certificate issuer: /CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Certificate serial: 05C6 Authority key identifier: 03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa Signing time: Wed 03 May 2023 01:01:18 +0000 ROA not before: Wed 03 May 2023 01:01:18 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 132245 IP address blocks: 43.231.200.0/24 maxlen: 24 43.231.201.0/24 maxlen: 24 43.231.202.0/24 maxlen: 24 43.231.203.0/24 maxlen: 24 103.8.132.0/24 maxlen: 24 103.8.133.0/24 maxlen: 24 103.8.134.0/24 maxlen: 24 103.8.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:12:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1478 (0x5c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9141620/serialNumber=03668A21F0F01F06B274FD88CC9E0A6E83D55F85 Validity Not Before: May 3 01:01:18 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6451b25e-6fe5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bb:de:0e:e6:7b:15:95:1d:6b:bd:53:e7:f7: 49:ce:d1:2b:50:40:ca:65:79:94:18:81:9d:13:e7: 5c:c9:20:94:4d:a6:b6:84:dc:5a:ea:48:d5:6b:db: c8:97:24:67:96:b2:d5:d4:60:9b:bd:be:5d:b6:bd: 9f:46:df:f8:33:85:27:56:a7:c8:61:f9:ee:e0:2f: 58:4e:7f:bb:9a:81:a2:dd:66:0e:26:ae:df:0a:d5: 0b:8c:71:fa:37:72:2f:6f:c6:95:02:9b:34:e1:3a: 05:12:85:1b:b9:d8:c6:e0:59:57:1d:38:74:9a:57: e6:68:4e:6b:99:5a:73:30:02:50:c7:59:9b:28:26: b8:3b:7c:2a:00:27:01:61:9b:10:4c:10:7a:4f:f1: 74:ce:2c:43:c7:e9:ce:c8:2b:1d:98:09:9e:21:7e: 33:50:f9:5c:53:4b:10:e2:24:f4:86:13:be:62:86: 44:fa:84:d1:80:3a:3c:66:ee:9b:9e:6f:a1:de:b9: f7:fc:cd:a3:b0:cb:65:e8:d6:43:e4:60:a2:13:f2: c1:fe:54:a9:60:2b:79:94:49:8b:71:a0:f0:ee:e3: 91:2b:e7:09:0c:8e:51:bb:33:9e:94:39:0f:d4:14: be:96:54:c9:68:9b:6b:31:cf:f8:72:f4:6f:f4:90: 78:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:95:50:6E:13:D2:44:BA:14:F5:E4:4D:92:05:0C:3A:B9:22:D2:25 X509v3 Authority Key Identifier: keyid:03:66:8A:21:F0:F0:1F:06:B2:74:FD:88:CC:9E:0A:6E:83:D5:5F:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/A2aKIfDwHwaydP2IzJ4KboPVX4U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A2aKIfDwHwaydP2IzJ4KboPVX4U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9141620/219816AA293D11EBBFC14771C4F9AE02/5DDE6BC2293E11EB9DFA3C72C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.231.200.0/22 103.8.132.0/22 Signature Algorithm: sha256WithRSAEncryption 29:07:37:7c:44:e8:a2:dd:3b:3b:97:94:16:57:9f:80:7f:c8: a9:e2:b3:dc:01:3b:95:8b:d8:bd:4f:d0:42:bf:1a:a5:26:a3: b6:39:37:52:78:3c:4f:21:ca:3b:f5:df:1a:36:47:ae:ba:0f: a8:ef:77:f4:2e:ba:29:a0:4a:a0:36:b4:ce:bd:5a:4e:4c:e9: a5:f8:70:f0:92:74:b4:d0:1b:90:ec:26:68:9a:f0:ba:c0:0e: 17:da:21:b1:4d:1c:5b:3c:86:ab:59:08:1b:12:20:70:c8:ef: 11:3e:54:2f:ae:38:e0:5c:e9:f5:bd:d1:1b:6a:ca:e5:b1:ae: c9:40:37:d8:1a:05:99:cb:ee:94:bb:2b:22:af:5e:63:a7:9f: 77:cd:e5:35:48:2b:c6:6c:20:58:e9:ac:07:d8:78:d0:76:0c: 53:d7:69:80:da:62:21:55:67:30:66:44:9f:4c:69:08:8f:38: bf:44:e4:f4:4f:13:71:b7:6f:91:10:71:ff:ac:5a:7b:70:f4: 5d:1b:b1:28:9e:96:14:0e:48:e8:a5:d3:f7:91:09:31:0e:ea: 91:23:85:db:b9:c6:9f:6f:9b:c4:7f:68:69:69:9a:6c:36:09: e8:44:51:0c:85:bf:7f:ab:2a:06:f1:b9:ad:b7:dd:4a:fe:a9: 73:d9:17:51 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBcYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDE2MjAxMTAvBgNVBAUTKDAzNjY4QTIxRjBGMDFGMDZCMjc0RkQ4OENDOUUwQTZF ODNENTVGODUwHhcNMjMwNTAzMDEwMTE4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxYjI1ZS02ZmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApLveDuZ7FZUda71T5/dJztErUEDKZXmUGIGdE+dcySCUTaa2hNxa6kjVa9vI lyRnlrLV1GCbvb5dtr2fRt/4M4UnVqfIYfnu4C9YTn+7moGi3WYOJq7fCtULjHH6 N3Ivb8aVAps04ToFEoUbudjG4FlXHTh0mlfmaE5rmVpzMAJQx1mbKCa4O3wqACcB YZsQTBB6T/F0zixDx+nOyCsdmAmeIX4zUPlcU0sQ4iT0hhO+YoZE+oTRgDo8Zu6b nm+h3rn3/M2jsMtl6NZD5GCiE/LB/lSpYCt5lEmLcaDw7uORK+cJDI5RuzOelDkP 1BS+llTJaJtrMc/4cvRv9JB4bwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLOVUG4T 0kS6FPXkTZIFDDq5ItIlMB8GA1UdIwQYMBaAFANmiiHw8B8GsnT9iMyeCm6D1V+F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MTYyMC8yMTk4MTZBQTI5 M0QxMUVCQkZDMTQ3NzFDNEY5QUUwMi9BMmFLSWZEd0h3YXlkUDJJeko0S2JvUFZY NFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0EyYUtJZkR3SHdheWRQMkl6SjRLYm9QVlg0VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDE2MjAvMjE5ODE2QUEyOTNEMTFFQkJGQzE0NzcxQzRGOUFFMDIvNURERTZCQzIy OTNFMTFFQjlERkEzQzcyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr58gDBAJnCIQwDQYJKoZIhvcNAQELBQADggEBACkHN3xE 6KLdOzuXlBZXn4B/yKnis9wBO5WL2L1P0EK/GqUmo7Y5N1J4PE8hyjv13xo2R666 D6jvd/QuuimgSqA2tM69Wk5M6aX4cPCSdLTQG5DsJmia8LrADhfaIbFNHFs8hqtZ CBsSIHDI7xE+VC+uOOBc6fW90RtqyuWxrslAN9gaBZnL7pS7KyKvXmOnn3fN5TVI K8ZsIFjprAfYeNB2DFPXaYDaYiFVZzBmRJ9MaQiPOL9E5PRPE3G3b5EQcf+sWntw 9F0bsSielhQOSOil0/eRCTEO6pEjhdu5xp9vm8R/aGlpmmw2CehEUQyFv3+rKgbx ua233Ur+qXPZF1E= -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:12 2024 by rpki-client on console-ams.rpki-client.org