$ rpki-client -vvf rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FC90C520213411EA8D675645C4F9AE02.roa File: FC90C520213411EA8D675645C4F9AE02.roa (raw, json) Hash identifier: 9NvzWfuX4Bm6lLKBNi345zQjC/sUvzkDcjV2c+Vt2QE= Subject key identifier: BC:54:9C:54:46:5E:BE:15:98:78:0A:40:60:03:C4:0C:C2:F5:5B:DA Certificate issuer: /CN=A91503BB/serialNumber=15F07FEFCA05E846D45385125E8BB427758300F9 Certificate serial: 0A93 Authority key identifier: 15:F0:7F:EF:CA:05:E8:46:D4:53:85:12:5E:8B:B4:27:75:83:00:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfB_78oF6EbUU4USXou0J3WDAPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FC90C520213411EA8D675645C4F9AE02.roa Signing time: Tue 14 Nov 2023 20:07:59 +0000 ROA not before: Tue 14 Nov 2023 20:07:59 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 58910 IP address blocks: 43.241.96.0/22 maxlen: 24 103.18.88.0/22 maxlen: 24 2400:5380::/33 maxlen: 33 2400:5380:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.crl rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfB_78oF6EbUU4USXou0J3WDAPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 20:08:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2707 (0xa93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91503BB/serialNumber=15F07FEFCA05E846D45385125E8BB427758300F9 Validity Not Before: Nov 14 20:07:59 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6553d39f-12c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:54:bc:a4:2d:b2:88:c4:6e:5d:33:4e:9d:43: 54:d2:20:7d:00:9a:f0:e2:1b:06:14:d7:e7:a6:be: 9d:b7:96:f2:07:17:67:72:74:1f:f8:38:fe:6f:c7: 21:32:41:ac:67:70:14:88:87:21:c2:27:02:54:08: 51:28:18:7b:f9:11:64:0e:2d:6f:00:5f:5b:e7:14: fc:e3:54:3f:76:bd:bf:f9:cb:d5:e2:01:04:68:93: 2f:aa:f1:d1:16:61:5d:30:86:c1:07:48:86:50:60: cd:9d:f0:eb:d4:32:bb:eb:7f:d8:25:c2:97:e1:5b: 77:65:7e:a5:2f:d6:ea:16:a0:35:66:93:b3:57:25: 35:3f:df:9a:22:5a:93:be:30:1b:07:54:dd:e9:b5: 94:20:53:03:8d:13:40:6e:67:b7:73:01:58:9c:0e: aa:b1:a7:89:ae:f5:18:4c:e5:67:bd:99:e7:d1:d9: b6:18:4a:0f:c1:0a:33:73:b2:3a:0d:64:a0:5f:98: 3e:01:69:1f:15:80:80:48:b7:23:2f:9c:42:7f:a5: 6d:69:c4:ee:2a:f7:a9:cc:a2:8c:cd:9c:54:b5:29: ec:e0:65:c8:32:7a:3a:b8:5d:3f:db:b8:e3:b9:30: 07:eb:29:6e:a8:b0:89:c1:d0:0b:49:67:94:cf:3c: e7:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:54:9C:54:46:5E:BE:15:98:78:0A:40:60:03:C4:0C:C2:F5:5B:DA X509v3 Authority Key Identifier: keyid:15:F0:7F:EF:CA:05:E8:46:D4:53:85:12:5E:8B:B4:27:75:83:00:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FfB_78oF6EbUU4USXou0J3WDAPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FfB_78oF6EbUU4USXou0J3WDAPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91503BB/4725FC78212F11EA830E0A35C4F9AE02/FC90C520213411EA8D675645C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.96.0/22 103.18.88.0/22 IPv6: 2400:5380::/32 Signature Algorithm: sha256WithRSAEncryption 68:f3:a7:3d:cc:e5:a5:09:da:af:05:6c:89:8e:bd:43:60:e0: 14:87:1d:ba:fe:bb:02:f2:c7:46:1c:b9:c2:da:7e:ce:26:3a: 8e:58:e9:39:75:c0:75:0e:ca:3f:b2:1a:47:cb:1c:a2:6d:91: fb:c2:e9:5e:95:b3:77:da:f2:42:f7:01:8f:22:20:b0:84:5b: a7:92:ff:e5:b7:db:34:fb:0b:88:f3:35:3b:b3:8c:03:17:37: bc:e0:25:82:47:2d:5e:fe:74:18:ab:8e:4a:fd:03:6a:1e:63: 84:16:ea:dc:7a:c3:4c:bb:bd:84:69:0b:2e:1e:ae:3f:51:5b: c4:5b:14:d4:c3:e7:11:81:74:d7:ef:7f:e0:3d:10:5a:89:1c: ec:9a:41:c6:29:15:28:61:fc:28:dd:fb:cb:c3:f8:f2:e0:35: 16:e3:f8:61:f7:6d:db:57:01:db:f6:24:18:45:a4:ca:b5:2c: 60:01:c1:b9:e8:c0:73:64:58:1c:26:3c:28:70:52:df:00:bf: 89:c3:ce:17:3d:35:45:0e:fe:85:3a:a4:5f:e4:b4:1c:dd:85: dd:be:64:11:49:44:f9:0f:0f:d0:2c:fc:59:f5:ae:2d:32:82: 08:b2:ce:0a:1c:20:14:a5:d7:7b:41:22:4a:57:90:1a:16:38: ac:57:9e:f0 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCpMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTAzQkIxMTAvBgNVBAUTKDE1RjA3RkVGQ0EwNUU4NDZENDUzODUxMjVFOEJCNDI3 NzU4MzAwRjkwHhcNMjMxMTE0MjAwNzU5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTUzZDM5Zi0xMmM5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyFS8pC2yiMRuXTNOnUNU0iB9AJrw4hsGFNfnpr6dt5byBxdncnQf+Dj+b8ch MkGsZ3AUiIchwicCVAhRKBh7+RFkDi1vAF9b5xT841Q/dr2/+cvV4gEEaJMvqvHR FmFdMIbBB0iGUGDNnfDr1DK763/YJcKX4Vt3ZX6lL9bqFqA1ZpOzVyU1P9+aIlqT vjAbB1Td6bWUIFMDjRNAbme3cwFYnA6qsaeJrvUYTOVnvZnn0dm2GEoPwQozc7I6 DWSgX5g+AWkfFYCASLcjL5xCf6VtacTuKvepzKKMzZxUtSns4GXIMno6uF0/27jj uTAH6yluqLCJwdALSWeUzzznpQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLxUnFRG Xr4VmHgKQGADxAzC9VvaMB8GA1UdIwQYMBaAFBXwf+/KBehG1FOFEl6LtCd1gwD5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1MDNCQi80NzI1RkM3ODIx MkYxMUVBODMwRTBBMzVDNEY5QUUwMi9GZkJfNzhvRjZFYlVVNFVTWG91MEozV0RB UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZmQl83OG9GNkViVVU0VVNYb3UwSjNXREFQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTAzQkIvNDcyNUZDNzgyMTJGMTFFQTgzMEUwQTM1QzRGOUFFMDIvRkM5MEM1MjAy MTM0MTFFQThENjc1NjQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAIr8WADBAJnElgwDQQCAAIwBwMFACQAU4AwDQYJKoZIhvcN AQELBQADggEBAGjzpz3M5aUJ2q8FbImOvUNg4BSHHbr+uwLyx0YcucLafs4mOo5Y 6Tl1wHUOyj+yGkfLHKJtkfvC6V6Vs3fa8kL3AY8iILCEW6eS/+W32zT7C4jzNTuz jAMXN7zgJYJHLV7+dBirjkr9A2oeY4QW6tx6w0y7vYRpCy4erj9RW8RbFNTD5xGB dNfvf+A9EFqJHOyaQcYpFShh/Cjd+8vD+PLgNRbj+GH3bdtXAdv2JBhFpMq1LGAB wbnowHNkWBwmPChwUt8Av4nDzhc9NUUO/oU6pF/ktBzdhd2+ZBFJRPkPD9As/Fn1 ri0yggiyzgocIBSl13tBIkpXkBoWOKxXnvA= -----END CERTIFICATE-----Generated at Tue May 28 21:49:41 2024 by rpki-client on console-fra.rpki-client.org