$ rpki-client -vvf rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/4EF1DE0E822A11EDB2081A49C4F9AE02.roa File: 4EF1DE0E822A11EDB2081A49C4F9AE02.roa (raw, json) Hash identifier: OsPZvCPB8crG8IgjfnSn5QQ08umkgujL+7zgt9nBk64= Subject key identifier: EF:8E:96:B5:74:19:16:FC:9F:1D:3D:F1:10:F5:15:42:B1:5C:5E:77 Certificate issuer: /CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Certificate serial: 0C07 Authority key identifier: 1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/4EF1DE0E822A11EDB2081A49C4F9AE02.roa Signing time: Fri 02 Jun 2023 19:59:54 +0000 ROA not before: Fri 02 Jun 2023 19:59:54 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 134176 IP address blocks: 43.243.170.0/24 maxlen: 24 43.243.171.0/24 maxlen: 24 103.38.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3079 (0xc07) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91568F6/serialNumber=1E329E98F67692E9B576023A2FBC557D57DD556C Validity Not Before: Jun 2 19:59:54 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a4a3a-fc4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d4:60:66:72:9e:fb:a1:f6:24:6c:7c:a4:c6: 32:26:61:cd:5f:cb:2b:19:7e:a4:60:2a:dd:72:f4: e5:24:69:89:13:82:2c:40:99:10:57:cd:5a:7d:87: 03:8e:52:7b:bb:91:8a:cd:86:40:3e:e2:37:e2:bf: c9:fd:83:c3:08:5a:1f:c7:ad:db:8b:8c:38:a3:c4: d0:25:d9:21:19:23:c1:ae:51:28:13:14:6e:ce:66: 60:40:88:a2:ca:9d:09:e7:6d:0d:16:a4:7b:5a:57: 00:f1:4a:77:11:06:0c:9b:0f:77:89:1d:5b:ca:af: 18:22:41:83:69:90:2f:68:be:73:39:b7:2c:f9:7f: 49:f8:76:f8:e9:8a:8a:8f:03:6e:64:4c:ac:d7:09: dd:b0:04:db:53:80:56:79:e6:9a:c1:0d:a5:1f:9f: 20:0b:12:19:dd:5d:35:40:67:45:2c:62:86:49:c2: af:3c:3f:a9:3f:08:d3:3f:96:ab:90:91:9a:3f:07: 5b:a6:56:2a:f0:de:71:d0:8e:92:2d:99:ce:3a:d7: b2:02:2e:b8:74:79:ae:cd:79:b3:64:18:14:26:e8: c9:25:1c:61:96:b8:45:45:9d:20:b4:a6:0e:82:07: 6b:83:7d:c4:09:ee:13:05:1a:7d:42:54:55:64:0b: b3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:8E:96:B5:74:19:16:FC:9F:1D:3D:F1:10:F5:15:42:B1:5C:5E:77 X509v3 Authority Key Identifier: keyid:1E:32:9E:98:F6:76:92:E9:B5:76:02:3A:2F:BC:55:7D:57:DD:55:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/HjKemPZ2kum1dgI6L7xVfVfdVWw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HjKemPZ2kum1dgI6L7xVfVfdVWw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91568F6/37D03DF6CE2811E9A6B6C17BC4F9AE02/4EF1DE0E822A11EDB2081A49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.170.0/23 103.38.254.0/24 Signature Algorithm: sha256WithRSAEncryption 18:56:d2:78:9a:e8:74:6b:29:1f:7f:b0:83:07:30:b6:e5:40: 2e:29:21:e0:d8:e2:3e:19:28:a5:6f:6f:f6:bc:d9:85:e0:3a: f0:4e:33:39:7d:c0:cb:1c:5b:58:33:d5:f7:c8:1f:38:75:00: 58:d2:68:57:a9:d9:d1:b8:e5:ae:52:35:09:8a:e9:8c:85:c4: f7:08:02:74:f1:34:30:cf:69:99:ca:f3:2b:62:68:5e:c4:16: b2:38:56:1f:4a:fb:e6:63:91:9b:ba:e1:79:b6:15:ab:77:22: b1:db:0b:16:5c:3a:b5:7f:24:db:99:b0:8b:df:b2:68:c0:fa: 9a:1e:4d:38:3b:86:9e:18:b9:cb:be:46:65:02:60:4f:08:f7: 4f:7a:e0:37:ec:48:b1:81:09:c8:77:53:22:ea:37:05:bd:60: 3d:0e:1d:dd:d3:10:55:c8:3f:c3:09:e9:15:f6:f4:d4:a6:37: d5:70:91:de:18:60:26:96:33:fa:df:dd:9f:51:7a:69:e0:9d: 28:09:08:98:0f:e6:30:1e:9a:9e:26:79:c1:2e:29:a0:cc:89: 05:a9:2f:1f:1d:c1:24:6c:0b:4f:e7:b7:da:1b:83:5e:6f:2e: aa:3b:c1:e7:f7:c6:4a:a8:4c:23:31:72:1f:dd:4c:21:e7:7d: 4d:17:5e:34 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTY4RjYxMTAvBgNVBAUTKDFFMzI5RTk4RjY3NjkyRTlCNTc2MDIzQTJGQkM1NTdE NTdERDU1NkMwHhcNMjMwNjAyMTk1OTU0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNGEzYS1mYzRjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAytRgZnKe+6H2JGx8pMYyJmHNX8srGX6kYCrdcvTlJGmJE4IsQJkQV81afYcD jlJ7u5GKzYZAPuI34r/J/YPDCFofx63bi4w4o8TQJdkhGSPBrlEoExRuzmZgQIii yp0J520NFqR7WlcA8Up3EQYMmw93iR1byq8YIkGDaZAvaL5zObcs+X9J+Hb46YqK jwNuZEys1wndsATbU4BWeeaawQ2lH58gCxIZ3V01QGdFLGKGScKvPD+pPwjTP5ar kJGaPwdbplYq8N5x0I6SLZnOOteyAi64dHmuzXmzZBgUJujJJRxhlrhFRZ0gtKYO ggdrg33ECe4TBRp9QlRVZAuzRwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFO+OlrV0 GRb8nx098RD1FUKxXF53MB8GA1UdIwQYMBaAFB4ynpj2dpLptXYCOi+8VX1X3VVs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NjhGNi8zN0QwM0RGNkNF MjgxMUU5QTZCNkMxN0JDNEY5QUUwMi9IaktlbVBaMmt1bTFkZ0k2TDd4VmZWZmRW V3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0hqS2VtUFoya3VtMWRnSTZMN3hWZlZmZFZXdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTY4RjYvMzdEMDNERjZDRTI4MTFFOUE2QjZDMTdCQzRGOUFFMDIvNEVGMURFMEU4 MjJBMTFFREIyMDgxQTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEr86oDBABnJv4wDQYJKoZIhvcNAQELBQADggEBABhW0nia 6HRrKR9/sIMHMLblQC4pIeDY4j4ZKKVvb/a82YXgOvBOMzl9wMscW1gz1ffIHzh1 AFjSaFep2dG45a5SNQmK6YyFxPcIAnTxNDDPaZnK8ytiaF7EFrI4Vh9K++ZjkZu6 4Xm2Fat3IrHbCxZcOrV/JNuZsIvfsmjA+poeTTg7hp4Yucu+RmUCYE8I90964Dfs SLGBCch3UyLqNwW9YD0OHd3TEFXIP8MJ6RX29NSmN9Vwkd4YYCaWM/rf3Z9Remng nSgJCJgP5jAemp4mecEuKaDMiQWpLx8dwSRsC0/nt9obg15vLqo7wef3xkqoTCMx ch/dTCHnfU0XXjQ= -----END CERTIFICATE-----Generated at Fri May 10 20:05:25 2024 by rpki-client on console-fra.rpki-client.org