$ rpki-client -vvf rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa File: CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa (raw, json) Hash identifier: LnEdIB0sQiBaFOFXc4sUkHoxa/OUoNANFJ/i1ZswMUM= Subject key identifier: 46:54:7C:CA:A9:31:FC:C1:AE:35:27:C2:B1:E9:2B:6B:DD:3B:19:46 Certificate issuer: /CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Certificate serial: 04FF Authority key identifier: 39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa Signing time: Thu 25 May 2023 01:58:24 +0000 ROA not before: Thu 25 May 2023 01:58:24 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 56186 IP address blocks: 43.245.240.0/22 maxlen: 23 103.13.8.0/22 maxlen: 22 202.3.80.0/21 maxlen: 21 202.92.216.0/21 maxlen: 21 202.92.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1279 (0x4ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91673ED/serialNumber=393566F441786D958D8A79118E8EF56FC872E5C5 Validity Not Before: May 25 01:58:24 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=646ec0c0-b79f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:58:0a:58:44:0c:52:57:8d:f2:b7:ca:80:10: ab:db:9e:c8:16:73:b8:11:6c:0d:4e:48:6e:b3:b0: 4d:cd:e3:78:c9:70:cd:75:b1:b1:b1:f3:c5:f3:53: 08:9f:e3:43:bf:1b:92:ce:d3:8d:3d:49:5a:e5:90: c0:2d:c2:8c:b1:22:98:1e:44:a1:39:1a:78:0b:1e: 8a:2f:91:e1:80:ac:3e:1e:73:5f:63:77:b7:ca:8f: 82:e8:80:7e:50:c5:b0:c4:85:3c:02:95:2e:1b:a2: e2:69:ae:dd:2b:5f:5c:ed:23:94:40:13:cb:39:c4: e4:66:ca:91:41:47:e3:e4:c4:8f:fa:cc:33:af:c4: c6:72:c6:02:d0:7c:0a:32:5e:11:1d:63:6d:de:66: 51:67:9b:ed:b0:d4:44:e5:cd:90:67:3b:77:d1:70: 1c:4b:6e:c6:8d:4e:30:27:5f:b2:83:69:75:04:42: 2e:d5:06:b3:3d:55:c7:2f:6e:ef:12:0b:2d:cb:ce: 49:19:66:57:20:5c:17:81:7c:30:1d:00:05:5f:3e: 49:03:06:4a:5a:85:35:e9:2c:2f:23:b5:35:e2:a7: a3:a5:cd:3b:26:c4:85:5f:41:63:da:88:51:23:e9: 4a:2b:e3:46:f8:0a:72:1d:ce:a3:0a:57:8a:67:2b: 07:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:54:7C:CA:A9:31:FC:C1:AE:35:27:C2:B1:E9:2B:6B:DD:3B:19:46 X509v3 Authority Key Identifier: keyid:39:35:66:F4:41:78:6D:95:8D:8A:79:11:8E:8E:F5:6F:C8:72:E5:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/OTVm9EF4bZWNinkRjo71b8hy5cU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OTVm9EF4bZWNinkRjo71b8hy5cU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91673ED/4D8FA20E7D4911EBA165737BC4F9AE02/CD1F0EC07D4D11EBAE81AF83C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.240.0/22 103.13.8.0/22 202.3.80.0/21 202.92.216.0/21 Signature Algorithm: sha256WithRSAEncryption 47:25:80:fd:e5:0e:2a:98:f4:fb:80:4b:78:7d:58:8d:6d:61: f8:06:6d:16:5a:b1:e3:5a:1c:b4:68:8d:61:87:ea:c7:ff:37: bc:bc:15:fc:b7:86:b4:c5:24:85:11:12:85:8e:a9:d8:cd:e3: 58:c0:5b:35:96:98:a9:9f:7a:25:9c:21:9e:f1:8e:c5:e9:7f: 99:44:e6:f4:43:62:8d:21:f3:b3:7e:c5:fc:c4:05:19:bf:50: de:fd:ec:11:07:ad:19:9e:c3:75:2b:da:f5:12:eb:23:fb:f5: 42:77:25:2b:8e:8f:32:93:2c:aa:f3:2a:6c:93:6e:65:2b:10: 33:e0:c5:8c:e9:91:9f:fc:11:e9:da:f0:08:ba:58:60:5d:85: 61:f9:37:c9:2f:8e:12:98:9c:a5:c1:de:f9:d2:b9:f8:be:10: 52:90:f7:d3:61:20:41:ca:3e:96:18:e6:fe:f1:cb:3d:5b:49: 67:94:d3:8b:e2:10:a0:63:77:01:98:f6:d5:0f:a4:c7:f6:26: fc:f1:2e:e2:69:77:fd:83:1a:22:10:56:35:53:db:1d:f3:59: 52:91:8e:d2:16:e7:7a:b9:5e:7a:c6:a0:94:4c:af:08:1d:6e: 2d:01:23:a0:56:4a:6a:e6:c2:1c:b1:c0:17:e6:8a:4c:0e:f9: 38:67:b0:e8 -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICBP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjczRUQxMTAvBgNVBAUTKDM5MzU2NkY0NDE3ODZEOTU4RDhBNzkxMThFOEVGNTZG Qzg3MkU1QzUwHhcNMjMwNTI1MDE1ODI0WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDZlYzBjMC1iNzlmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqVgKWEQMUleN8rfKgBCr257IFnO4EWwNTkhus7BNzeN4yXDNdbGxsfPF81MI n+NDvxuSztONPUla5ZDALcKMsSKYHkShORp4Cx6KL5HhgKw+HnNfY3e3yo+C6IB+ UMWwxIU8ApUuG6Liaa7dK19c7SOUQBPLOcTkZsqRQUfj5MSP+swzr8TGcsYC0HwK Ml4RHWNt3mZRZ5vtsNRE5c2QZzt30XAcS27GjU4wJ1+yg2l1BEIu1QazPVXHL27v Egsty85JGWZXIFwXgXwwHQAFXz5JAwZKWoU16SwvI7U14qejpc07JsSFX0Fj2ohR I+lKK+NG+ApyHc6jCleKZysHiQIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFEZUfMqp MfzBrjUnwrHpK2vdOxlGMB8GA1UdIwQYMBaAFDk1ZvRBeG2VjYp5EY6O9W/IcuXF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2NzNFRC80RDhGQTIwRTdE NDkxMUVCQTE2NTczN0JDNEY5QUUwMi9PVFZtOUVGNGJaV05pbmtSam83MWI4aHk1 Y1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09UVm05RUY0YlpXTmlua1JqbzcxYjhoeTVjVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjczRUQvNEQ4RkEyMEU3RDQ5MTFFQkExNjU3MzdCQzRGOUFFMDIvQ0QxRjBFQzA3 RDREMTFFQkFFODFBRjgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAIr9fADBAJnDQgDBAPKA1ADBAPKXNgwDQYJKoZIhvcNAQEL BQADggEBAEclgP3lDiqY9PuAS3h9WI1tYfgGbRZaseNaHLRojWGH6sf/N7y8Ffy3 hrTFJIUREoWOqdjN41jAWzWWmKmfeiWcIZ7xjsXpf5lE5vRDYo0h87N+xfzEBRm/ UN797BEHrRmew3Ur2vUS6yP79UJ3JSuOjzKTLKrzKmyTbmUrEDPgxYzpkZ/8Eena 8Ai6WGBdhWH5N8kvjhKYnKXB3vnSufi+EFKQ99NhIEHKPpYY5v7xyz1bSWeU04vi EKBjdwGY9tUPpMf2JvzxLuJpd/2DGiIQVjVT2x3zWVKRjtIW53q5XnrGoJRMrwgd bi0BI6BWSmrmwhyxwBfmikwO+ThnsOg= -----END CERTIFICATE-----Generated at Sun May 19 01:47:13 2024 by rpki-client on console-ams.rpki-client.org