$ rpki-client -vvf rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa File: B55EC19EAC2B11E996F6E511C4F9AE02.roa (raw, json) Hash identifier: hIX5A49EWtJSA5M1pXdXvwzS1FvjsEhtrb+D+enUUX4= Subject key identifier: 5E:8E:C3:54:E4:CD:A4:4E:17:E9:E1:38:B9:19:28:24:F5:D8:73:15 Certificate issuer: /CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Certificate serial: 0CA2 Authority key identifier: 4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa Signing time: Tue 20 Jun 2023 18:58:40 +0000 ROA not before: Tue 20 Jun 2023 18:58:40 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45668 IP address blocks: 103.232.48.0/22 maxlen: 24 110.74.128.0/19 maxlen: 24 110.74.160.0/19 maxlen: 24 2403:bc00::/32 maxlen: 32 2403:bc00:1::/48 maxlen: 48 2403:bc00:adc::/48 maxlen: 48 2403:bc00:7fff::/48 maxlen: 48 2403:bc00:8000::/48 maxlen: 48 2403:bc00:8001::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3234 (0xca2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91957C9/serialNumber=4F315EEF5ACB2EDA7A3729E79E135990C01E7074 Validity Not Before: Jun 20 18:58:40 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=6491f6df-1275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c8:34:c8:bf:de:24:b2:44:e7:99:23:8c:5a: 6d:c0:b0:4e:51:bb:6b:81:4f:49:76:85:bc:ae:66: 13:af:5e:7f:a3:74:b4:05:9c:2a:df:3d:c2:8a:9e: f1:c1:40:a6:3d:06:6f:be:0a:67:e9:8c:4b:01:0f: 25:2f:8f:1c:4f:c5:ad:0e:3c:4b:6e:bc:15:81:03: 2c:41:a8:d9:33:8b:3f:76:3f:a7:ed:c0:06:4e:d7: 06:12:70:7b:f3:f1:09:d4:8c:da:df:7d:2f:b3:dc: a4:20:61:e9:98:a0:de:65:c5:a1:39:af:43:a7:8d: e5:b7:28:2b:47:be:40:26:35:66:b6:82:d6:67:96: a2:8d:57:1f:98:31:98:b8:9f:d7:e8:0e:b4:83:93: 6b:7d:02:88:14:71:f9:e1:69:a5:b8:19:da:a5:9b: e8:81:e5:88:f3:50:4e:9c:2d:36:b3:85:d0:09:14: cb:8c:ca:c8:85:54:ec:ad:1b:d3:8f:a4:a1:42:a4: 9b:64:53:a0:6d:a2:25:d7:d4:82:ae:38:55:1f:57: 83:bc:87:04:99:ac:76:63:3d:12:4d:c6:66:35:b7: fc:01:24:41:32:f8:3b:b6:cb:5b:48:ba:9e:6f:4d: e8:1e:a0:4d:57:95:65:fb:bd:96:20:48:b2:90:29: bc:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:8E:C3:54:E4:CD:A4:4E:17:E9:E1:38:B9:19:28:24:F5:D8:73:15 X509v3 Authority Key Identifier: keyid:4F:31:5E:EF:5A:CB:2E:DA:7A:37:29:E7:9E:13:59:90:C0:1E:70:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/TzFe71rLLtp6NynnnhNZkMAecHQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TzFe71rLLtp6NynnnhNZkMAecHQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91957C9/C359E75EAC1911E983F2FC62C4F9AE02/B55EC19EAC2B11E996F6E511C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.232.48.0/22 110.74.128.0/18 IPv6: 2403:bc00::/32 Signature Algorithm: sha256WithRSAEncryption 6c:e5:ad:0c:7b:c2:dc:fb:eb:40:11:36:9e:d7:b7:08:35:1d: 7d:6e:1f:d8:88:f6:4c:55:84:39:b4:bf:b0:0e:1a:ca:58:cf: cd:f8:fb:bd:e7:31:db:9e:c0:76:24:57:ae:8f:98:f5:88:16: 43:56:6f:f6:16:4b:45:4a:5d:c8:a7:e4:e6:69:cf:93:aa:8f: e0:53:88:48:02:bb:31:ce:45:34:64:3a:fb:ca:a6:2f:d3:53: 39:46:6e:39:c8:a6:03:f0:51:97:d4:f4:3d:f5:ec:94:0b:0e: 68:33:31:15:aa:e7:e1:21:00:5a:9b:64:6a:ab:8b:cc:60:a1: d0:a1:86:9e:9a:86:0c:a8:01:24:d7:27:d2:01:27:d8:24:ae: ea:74:5e:a2:c9:be:9d:f3:a1:bf:08:fb:6c:09:70:bd:21:f3: cb:d0:f5:02:8f:47:f8:77:15:b6:f2:ba:2c:ee:73:09:b6:33: cb:7f:4c:f8:76:e1:e2:83:fb:19:84:81:82:60:2a:8c:f6:db: 5d:7f:7b:81:86:cc:59:b5:dc:2f:07:df:e8:84:6b:df:bb:25: 14:ce:cc:ba:b9:28:e7:90:8c:4b:31:f1:95:b4:50:65:73:c9: 59:46:07:ea:81:fe:ca:4f:f1:88:fc:e1:fd:fc:51:fe:9a:9a: 4f:a0:8c:33 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDKIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx OTU3QzkxMTAvBgNVBAUTKDRGMzE1RUVGNUFDQjJFREE3QTM3MjlFNzlFMTM1OTkw QzAxRTcwNzQwHhcNMjMwNjIwMTg1ODQwWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDkxZjZkZi0xMjc1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzMg0yL/eJLJE55kjjFptwLBOUbtrgU9JdoW8rmYTr15/o3S0BZwq3z3Cip7x wUCmPQZvvgpn6YxLAQ8lL48cT8WtDjxLbrwVgQMsQajZM4s/dj+n7cAGTtcGEnB7 8/EJ1Iza330vs9ykIGHpmKDeZcWhOa9Dp43ltygrR75AJjVmtoLWZ5aijVcfmDGY uJ/X6A60g5NrfQKIFHH54WmluBnapZvogeWI81BOnC02s4XQCRTLjMrIhVTsrRvT j6ShQqSbZFOgbaIl19SCrjhVH1eDvIcEmax2Yz0STcZmNbf8ASRBMvg7tstbSLqe b03oHqBNV5Vl+72WIEiykCm8lwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFF6Ow1Tk zaROF+nhOLkZKCT12HMVMB8GA1UdIwQYMBaAFE8xXu9ayy7aejcp554TWZDAHnB0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5NTdDOS9DMzU5RTc1RUFD MTkxMUU5ODNGMkZDNjJDNEY5QUUwMi9UekZlNzFyTEx0cDZOeW5ubmhOWmtNQWVj SFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1R6RmU3MXJMTHRwNk55bm5uaE5aa01BZWNIUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx OTU3QzkvQzM1OUU3NUVBQzE5MTFFOTgzRjJGQzYyQzRGOUFFMDIvQjU1RUMxOUVB QzJCMTFFOTk2RjZFNTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn6DADBAZuSoAwDQQCAAIwBwMFACQDvAAwDQYJKoZIhvcN AQELBQADggEBAGzlrQx7wtz760ARNp7Xtwg1HX1uH9iI9kxVhDm0v7AOGspYz834 +73nMduewHYkV66PmPWIFkNWb/YWS0VKXcin5OZpz5Oqj+BTiEgCuzHORTRkOvvK pi/TUzlGbjnIpgPwUZfU9D317JQLDmgzMRWq5+EhAFqbZGqri8xgodChhp6ahgyo ASTXJ9IBJ9gkrup0XqLJvp3zob8I+2wJcL0h88vQ9QKPR/h3Fbbyuizucwm2M8t/ TPh24eKD+xmEgYJgKoz2211/e4GGzFm13C8H3+iEa9+7JRTOzLq5KOeQjEsx8ZW0 UGVzyVlGB+qB/spP8Yj84f38Uf6amk+gjDM= -----END CERTIFICATE-----Generated at Sat May 18 19:21:04 2024 by rpki-client on console-fra.rpki-client.org