$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/443470FC7C1511EBB779C03EC4F9AE02.roa File: 443470FC7C1511EBB779C03EC4F9AE02.roa (raw, json) Hash identifier: hJAxgmR4Z+emMMwOy/r6GbMsFRX/U1CaozsenKNvc0Y= Subject key identifier: B8:6A:94:FA:1A:7E:A0:97:88:81:ED:BF:A7:41:C8:82:5C:E6:81:9C Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 35DB Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/443470FC7C1511EBB779C03EC4F9AE02.roa Signing time: Thu 04 Apr 2024 15:20:57 +0000 ROA not before: Thu 04 Apr 2024 15:20:57 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 136525 IP address blocks: 39.34.144.0/20 maxlen: 24 39.34.176.0/21 maxlen: 24 59.103.192.0/20 maxlen: 24 59.103.208.0/21 maxlen: 24 119.152.224.0/20 maxlen: 24 119.157.64.0/20 maxlen: 24 182.190.96.0/20 maxlen: 24 182.190.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13787 (0x35db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 4 15:20:57 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660ec559-5046 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5e:ee:db:73:80:b6:cf:27:a1:fa:0a:59:fb: 74:7d:32:de:9a:bb:60:55:32:63:88:1b:17:99:d7: 7c:28:29:26:02:ff:76:4e:34:16:4b:3a:5e:92:42: d3:d4:5c:19:a2:db:63:f4:a3:69:b4:a5:20:97:5b: d7:19:f8:6e:46:30:ee:19:25:46:82:3b:61:a0:4b: 7c:39:86:b8:5b:42:8a:8e:83:97:e8:74:02:eb:32: 59:7b:09:87:94:c8:b8:bc:17:d4:e8:15:3a:6e:75: c2:97:ad:28:cc:7c:6f:cc:36:e7:01:8d:0f:b8:27: a3:c5:21:6c:ec:a0:ef:6b:a0:c8:c8:78:33:97:2d: 49:e1:ab:fe:39:14:94:99:49:ee:ca:fa:bd:c8:9a: 03:dd:34:63:d6:91:da:7d:68:47:56:11:ac:84:19: b9:5e:90:ba:93:01:f6:cd:45:36:88:04:c8:36:8f: c4:0f:ff:54:40:a4:0e:8e:15:8a:61:d1:d5:2d:ac: b8:ec:c3:51:e5:2d:86:85:d8:6e:43:d7:b6:d8:8a: 7c:a0:f5:0e:8c:66:c4:85:74:c7:d5:d4:5d:f4:0b: 83:a9:eb:dd:d1:c7:9b:fa:2c:f2:43:4a:3b:cd:8f: 07:b8:20:e9:36:ec:d3:2f:2b:5f:f3:ac:a4:c2:b0: 86:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:6A:94:FA:1A:7E:A0:97:88:81:ED:BF:A7:41:C8:82:5C:E6:81:9C X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/443470FC7C1511EBB779C03EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 39.34.144.0/20 39.34.176.0/21 59.103.192.0-59.103.215.255 119.152.224.0/20 119.157.64.0/20 182.190.96.0/20 182.190.192.0/19 Signature Algorithm: sha256WithRSAEncryption ad:0e:71:8f:76:9b:8e:6d:87:ac:3b:3a:ce:f1:3f:1b:26:0a: 24:1f:fc:4d:76:b0:36:1b:c3:28:15:92:19:c1:f6:2d:36:74: 55:15:89:8c:87:fe:61:b8:bb:27:82:23:ac:e7:7d:45:56:88: 32:4e:61:a5:c1:52:2c:b9:c2:06:d6:f7:c7:db:cf:03:10:1a: 53:d3:d0:f5:db:6c:c3:3b:2f:62:3a:5e:cb:b7:dd:86:0a:e1: ce:02:c8:a3:64:33:eb:16:c0:7f:de:24:33:aa:94:a6:3c:bd: 65:20:b7:19:0f:88:42:62:12:5b:62:a8:f4:e8:d3:34:d3:58: 52:a9:f6:d3:d8:f1:af:d2:4d:17:3a:49:33:99:46:dd:1a:ff: 80:77:02:65:ad:a6:df:68:f6:14:76:86:1b:ad:85:1d:e4:e2: 07:42:07:1c:28:dc:08:ac:d0:f3:28:5e:2f:c9:50:5e:1c:73: c3:06:b9:37:e7:e8:4d:69:23:5c:68:2b:1e:ec:f9:b9:e4:19: af:4c:7e:c9:32:65:e1:be:b3:35:91:93:c2:7a:85:0d:30:86: ee:01:9b:b3:df:66:89:aa:c6:02:76:81:63:56:f3:e4:9c:50: be:05:0c:e7:2c:d1:1e:0f:3e:34:f8:4a:e8:8b:be:ea:f3:cb: ba:a8:e8:61 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICNdswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQwNDA0MTUyMDU3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlYzU1OS01MDQ2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtV7u23OAts8nofoKWft0fTLemrtgVTJjiBsXmdd8KCkmAv92TjQWSzpekkLT 1FwZottj9KNptKUgl1vXGfhuRjDuGSVGgjthoEt8OYa4W0KKjoOX6HQC6zJZewmH lMi4vBfU6BU6bnXCl60ozHxvzDbnAY0PuCejxSFs7KDva6DIyHgzly1J4av+ORSU mUnuyvq9yJoD3TRj1pHafWhHVhGshBm5XpC6kwH2zUU2iATINo/ED/9UQKQOjhWK YdHVLay47MNR5S2GhdhuQ9e22Ip8oPUOjGbEhXTH1dRd9AuDqevd0ceb+izyQ0o7 zY8HuCDpNuzTLytf86ykwrCGVQIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFLhqlPoa fqCXiIHtv6dByIJc5oGcMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvNDQzNDcwRkM3 QzE1MTFFQkI3NzlDMDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MDgEAgABMDIDBAQnIpADBAMnIrAwDAMEBjtnwAMEAztn0AMEBHeY4AMEBHed QAMEBLa+YAMEBba+wDANBgkqhkiG9w0BAQsFAAOCAQEArQ5xj3abjm2HrDs6zvE/ GyYKJB/8TXawNhvDKBWSGcH2LTZ0VRWJjIf+Ybi7J4IjrOd9RVaIMk5hpcFSLLnC Btb3x9vPAxAaU9PQ9dtswzsvYjpey7fdhgrhzgLIo2Qz6xbAf94kM6qUpjy9ZSC3 GQ+IQmISW2Ko9OjTNNNYUqn209jxr9JNFzpJM5lG3Rr/gHcCZa2m32j2FHaGG62F HeTiB0IHHCjcCKzQ8yheL8lQXhxzwwa5N+foTWkjXGgrHuz5ueQZr0x+yTJl4b6z NZGTwnqFDTCG7gGbs99miarGAnaBY1bz5JxQvgUM5yzRHg8+NPhK6Iu+6vPLuqjo YQ== -----END CERTIFICATE-----Generated at Sat May 4 15:55:02 2024 by rpki-client on console-ams.rpki-client.org