$ rpki-client -vvf rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/DAF4B31C983E11ECA0050128C4F9AE02.roa File: DAF4B31C983E11ECA0050128C4F9AE02.roa (raw, json) Hash identifier: XiWwflIsuv/VhehmQullYCSTjJPi3vT5J53F2q66kVc= Subject key identifier: C9:7B:08:55:00:DC:FE:8B:F9:81:C0:2D:5A:36:C2:EA:7C:AD:24:37 Certificate issuer: /CN=A917C44C/serialNumber=18D24169B0254EA7F29943C505E2B5931AFAB926 Certificate serial: 0244 Authority key identifier: 18:D2:41:69:B0:25:4E:A7:F2:99:43:C5:05:E2:B5:93:1A:FA:B9:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNJBabAlTqfymUPFBeK1kxr6uSY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/DAF4B31C983E11ECA0050128C4F9AE02.roa Signing time: Sat 17 Jun 2023 03:31:36 +0000 ROA not before: Sat 17 Jun 2023 03:31:35 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 132268 IP address blocks: 43.243.58.0/23 maxlen: 23 45.253.124.0/22 maxlen: 22 103.9.106.0/24 maxlen: 24 103.242.38.0/23 maxlen: 23 103.242.48.0/24 maxlen: 24 2401:4340::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/GNJBabAlTqfymUPFBeK1kxr6uSY.crl rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/GNJBabAlTqfymUPFBeK1kxr6uSY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNJBabAlTqfymUPFBeK1kxr6uSY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 580 (0x244) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A917C44C/serialNumber=18D24169B0254EA7F29943C505E2B5931AFAB926 Validity Not Before: Jun 17 03:31:35 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=648d2917-3af0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:33:bc:d0:41:70:79:36:7d:71:ed:99:17:d3: 45:94:0a:d6:db:23:8d:73:d1:59:4b:e6:43:60:d5: 91:63:e1:4e:f8:9d:f8:65:87:c9:36:2c:57:50:3c: d5:ba:f9:58:66:28:0a:99:ee:26:c9:ab:70:d4:5a: 6b:bb:c7:b2:8a:b9:2d:90:39:7b:1b:c1:c2:77:a2: 93:87:02:ed:03:c8:3a:9b:ef:0f:e8:09:93:23:a4: be:8a:b2:4a:46:5c:03:53:be:82:5f:80:1e:d9:67: b6:b4:cc:67:b7:0a:55:4b:ab:d3:1d:67:0c:67:46: 59:ac:20:45:73:eb:28:92:22:e4:29:34:fd:ec:de: 74:cc:ad:5b:4c:9e:ed:de:2c:90:55:b2:30:b3:6a: fa:81:ce:ca:9b:86:35:a6:66:b6:80:0d:45:e3:e6: 7e:3d:92:96:a6:31:0d:79:c5:2c:50:c5:79:4b:ad: 96:bc:d0:80:85:f3:cf:87:2a:63:22:cd:1f:69:1c: 47:16:be:12:11:ef:ac:89:0e:e6:5a:8a:22:66:ee: 77:0e:91:5f:fb:26:ff:00:b5:0d:38:31:ef:75:60: a8:fb:65:2f:fa:99:ec:b8:49:ac:34:ea:96:d4:d3: ab:3f:19:5b:d3:fe:c1:06:d7:15:5a:43:0c:15:be: 82:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7B:08:55:00:DC:FE:8B:F9:81:C0:2D:5A:36:C2:EA:7C:AD:24:37 X509v3 Authority Key Identifier: keyid:18:D2:41:69:B0:25:4E:A7:F2:99:43:C5:05:E2:B5:93:1A:FA:B9:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/GNJBabAlTqfymUPFBeK1kxr6uSY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GNJBabAlTqfymUPFBeK1kxr6uSY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A917C44C/4B5B29AA945811EC99057A3AC4F9AE02/DAF4B31C983E11ECA0050128C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.58.0/23 45.253.124.0/22 103.9.106.0/24 103.242.38.0/23 103.242.48.0/24 IPv6: 2401:4340::/32 Signature Algorithm: sha256WithRSAEncryption 6b:7a:70:78:9e:fd:e2:d6:32:1a:f3:35:01:f0:ff:1f:0d:3e: 53:a4:3a:f0:b6:b5:0d:1a:06:25:58:11:b7:fd:48:b0:db:e8: 84:73:29:89:cb:7c:4e:0d:73:b1:6f:e8:2c:2a:68:90:f1:1f: cb:f0:d2:b0:3a:38:3a:5d:01:94:81:26:9f:24:4e:3a:58:6d: c3:ae:7b:48:8d:31:06:f7:2b:e4:1f:79:5b:87:b8:1c:17:34: fa:a5:06:94:c3:e3:52:54:f3:28:be:f9:0b:34:c5:9b:61:8e: 65:62:9f:64:c1:63:62:3f:ec:ca:16:93:0e:a6:5f:bf:f5:41: e3:20:3f:3e:5d:9f:9d:f7:0a:4b:13:81:95:e5:31:84:4e:ec: 51:40:17:c0:50:dc:82:34:08:d3:20:e8:42:af:20:fb:67:85: af:5d:60:81:55:d3:6b:7c:5f:16:b7:d1:fc:c4:18:99:fd:5d: 1a:60:7d:34:58:bf:0d:d1:60:ca:dd:05:ea:b8:fe:04:70:29: 7d:e2:c6:75:57:e1:2c:0c:ec:dd:82:2f:99:ac:84:bc:d4:76: 99:44:a8:83:58:30:c2:98:bc:7c:a7:87:05:15:2e:ee:3f:a9: 2c:a6:3f:c2:6a:62:da:62:8c:36:9b:f5:67:e7:e8:d5:70:82: 8e:ff:65:0e -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICAkQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx N0M0NEMxMTAvBgNVBAUTKDE4RDI0MTY5QjAyNTRFQTdGMjk5NDNDNTA1RTJCNTkz MUFGQUI5MjYwHhcNMjMwNjE3MDMzMTM1WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhkMjkxNy0zYWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuTO80EFweTZ9ce2ZF9NFlArW2yONc9FZS+ZDYNWRY+FO+J34ZYfJNixXUDzV uvlYZigKme4myatw1Fpru8eyirktkDl7G8HCd6KThwLtA8g6m+8P6AmTI6S+irJK RlwDU76CX4Ae2We2tMxntwpVS6vTHWcMZ0ZZrCBFc+sokiLkKTT97N50zK1bTJ7t 3iyQVbIws2r6gc7Km4Y1pma2gA1F4+Z+PZKWpjENecUsUMV5S62WvNCAhfPPhypj Is0faRxHFr4SEe+siQ7mWooiZu53DpFf+yb/ALUNODHvdWCo+2Uv+pnsuEmsNOqW 1NOrPxlb0/7BBtcVWkMMFb6CrwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFMl7CFUA 3P6L+YHALVo2wup8rSQ3MB8GA1UdIwQYMBaAFBjSQWmwJU6n8plDxQXitZMa+rkm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3QzQ0Qy80QjVCMjlBQTk0 NTgxMUVDOTkwNTdBM0FDNEY5QUUwMi9HTkpCYWJBbFRxZnltVVBGQmVLMWt4cjZ1 U1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dOSkJhYkFsVHFmeW1VUEZCZUsxa3hyNnVTWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx N0M0NEMvNEI1QjI5QUE5NDU4MTFFQzk5MDU3QTNBQzRGOUFFMDIvREFGNEIzMUM5 ODNFMTFFQ0EwMDUwMTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAEr8zoDBAIt/XwDBABnCWoDBAFn8iYDBABn8jAwDQQCAAIw BwMFACQBQ0AwDQYJKoZIhvcNAQELBQADggEBAGt6cHie/eLWMhrzNQHw/x8NPlOk OvC2tQ0aBiVYEbf9SLDb6IRzKYnLfE4Nc7Fv6CwqaJDxH8vw0rA6ODpdAZSBJp8k TjpYbcOue0iNMQb3K+QfeVuHuBwXNPqlBpTD41JU8yi++Qs0xZthjmVin2TBY2I/ 7MoWkw6mX7/1QeMgPz5dn533CksTgZXlMYRO7FFAF8BQ3II0CNMg6EKvIPtnha9d YIFV02t8Xxa30fzEGJn9XRpgfTRYvw3RYMrdBeq4/gRwKX3ixnVX4SwM7N2CL5ms hLzUdplEqINYMMKYvHynhwUVLu4/qSymP8JqYtpijDab9Wfn6NVwgo7/ZQ4= -----END CERTIFICATE-----Generated at Fri May 17 03:52:21 2024 by rpki-client on console-ams.rpki-client.org