$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/58D5764A683311ECB9C17757C4F9AE02.roa File: 58D5764A683311ECB9C17757C4F9AE02.roa (raw, json) Hash identifier: CO44ykdfCTQ7Mv5nVqTIPuTfPATeSesiwshtkZkvJFE= Subject key identifier: D9:0E:6F:93:B6:92:D9:E9:3B:52:9A:B4:C8:05:1C:D4:83:44:75:AD Certificate issuer: /CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Certificate serial: 33AD Authority key identifier: BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/58D5764A683311ECB9C17757C4F9AE02.roa Signing time: Tue 30 Jan 2024 14:51:07 +0000 ROA not before: Tue 30 Jan 2024 14:51:07 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 17480 IP address blocks: 43.255.236.0/22 maxlen: 22 103.23.52.0/22 maxlen: 22 113.21.96.0/20 maxlen: 20 113.21.112.0/20 maxlen: 20 202.171.64.0/20 maxlen: 20 203.147.64.0/20 maxlen: 20 203.147.80.0/21 maxlen: 21 220.156.160.0/20 maxlen: 20 2401:c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 14:32:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13229 (0x33ad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9EE2/serialNumber=BA9D2BADA8268784F00AE858702EF8E29E72B4BC Validity Not Before: Jan 30 14:51:07 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b90cda-6f7f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:12:0a:55:0c:50:d0:d4:69:a9:5f:5d:18:e4: 09:17:2b:06:55:67:c9:ce:99:7b:4e:f0:ec:68:2e: 6b:fc:1e:c4:2a:54:67:26:75:e0:53:ba:fd:3d:9b: 99:ea:41:47:47:63:31:4a:0a:01:d9:90:aa:96:19: d9:85:a9:f0:29:ff:1d:91:4c:1a:69:21:e3:07:55: 36:d1:72:63:46:10:78:98:ee:82:90:ac:7c:83:42: 5f:09:4a:f1:fc:cf:60:22:1d:d2:06:fe:50:db:8c: 8b:f4:f5:1d:52:2c:c3:db:3d:e4:b5:31:b5:64:77: 75:f8:15:72:d9:21:eb:21:c6:21:28:3e:1f:8f:e8: b6:0f:9b:1e:20:4c:4f:f2:79:de:8d:b5:73:ad:8d: 44:5a:d3:a3:8d:a3:64:a1:a0:3b:ee:9d:76:71:21: 4f:3b:01:1f:26:7c:b7:43:fb:81:9d:8d:cc:5f:3d: 03:80:2b:5b:76:8c:92:a3:0b:98:0d:bf:09:2a:ed: 96:6a:1f:91:5b:31:18:35:34:3e:36:5d:39:ab:c8: 61:54:cb:e1:87:47:51:27:5b:4b:49:d2:a0:d9:40: bf:c7:cf:ad:63:19:d3:8c:ea:44:26:5b:a6:d8:82: ee:7c:08:59:32:4f:40:34:36:9b:b9:f8:01:71:eb: 79:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:0E:6F:93:B6:92:D9:E9:3B:52:9A:B4:C8:05:1C:D4:83:44:75:AD X509v3 Authority Key Identifier: keyid:BA:9D:2B:AD:A8:26:87:84:F0:0A:E8:58:70:2E:F8:E2:9E:72:B4:BC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/up0rragmh4TwCuhYcC744p5ytLw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/up0rragmh4TwCuhYcC744p5ytLw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9EE2/64324DD81D8811E2BDEF14E108B02CD2/58D5764A683311ECB9C17757C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.236.0/22 103.23.52.0/22 113.21.96.0/19 202.171.64.0/20 203.147.64.0-203.147.87.255 220.156.160.0/20 IPv6: 2401:c00::/32 Signature Algorithm: sha256WithRSAEncryption 6a:06:8b:32:54:82:f5:3a:51:55:c1:78:e8:7a:bd:33:d7:1a: 62:f4:c6:34:79:15:b6:d7:9c:63:a5:87:63:70:c0:c5:84:2f: 5a:61:41:69:47:f3:1a:fc:c4:b4:1a:33:98:93:4c:25:e7:2e: a7:f1:d2:4e:b3:c5:dc:bf:26:01:83:c7:92:63:3c:29:1d:83: 0a:df:41:b9:23:43:ad:a7:8b:e8:e3:43:f3:36:89:ba:db:56: 65:9e:83:0b:04:7f:32:1f:b5:96:b0:98:08:26:18:fb:a3:7d: bf:ee:c8:18:40:c6:06:ad:9f:14:8c:aa:72:7f:c8:1e:62:b1: e4:ff:92:cc:da:d5:ec:13:1e:bc:82:a3:4b:bf:a8:f1:45:55: a9:9f:3d:de:d7:1c:59:29:c7:37:4a:af:90:5b:63:cb:a0:44: 15:b3:85:f5:73:18:b9:0e:b5:d2:38:a6:6c:50:f4:9b:db:fa: 2d:e5:7a:a3:a5:8f:cd:13:dc:31:8a:5f:75:68:b0:7c:47:dc: 52:20:ae:aa:25:73:7a:26:fd:e9:0c:4b:aa:71:10:31:9c:fc: e6:2e:bc:5b:5b:90:e3:24:98:82:68:31:02:20:a1:de:e4:06: 73:3e:15:2f:48:25:d6:e6:e5:86:6a:a1:12:25:86:7b:33:cc: 50:9b:86:86 -----BEGIN CERTIFICATE----- MIIFpjCCBI6gAwIBAgICM60wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlFRTIxMTAvBgNVBAUTKEJBOUQyQkFEQTgyNjg3ODRGMDBBRTg1ODcwMkVGOEUy OUU3MkI0QkMwHhcNMjQwMTMwMTQ1MTA3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5MGNkYS02ZjdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBIKVQxQ0NRpqV9dGOQJFysGVWfJzpl7TvDsaC5r/B7EKlRnJnXgU7r9PZuZ 6kFHR2MxSgoB2ZCqlhnZhanwKf8dkUwaaSHjB1U20XJjRhB4mO6CkKx8g0JfCUrx /M9gIh3SBv5Q24yL9PUdUizD2z3ktTG1ZHd1+BVy2SHrIcYhKD4fj+i2D5seIExP 8nnejbVzrY1EWtOjjaNkoaA77p12cSFPOwEfJny3Q/uBnY3MXz0DgCtbdoySowuY Db8JKu2Wah+RWzEYNTQ+Nl05q8hhVMvhh0dRJ1tLSdKg2UC/x8+tYxnTjOpEJlum 2ILufAhZMk9ANDabufgBcet5OwIDAQABo4ICyjCCAsYwHQYDVR0OBBYEFNkOb5O2 ktnpO1KatMgFHNSDRHWtMB8GA1UdIwQYMBaAFLqdK62oJoeE8AroWHAu+OKecrS8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUVFMi82NDMyNEREODFE ODgxMUUyQkRFRjE0RTEwOEIwMkNEMi91cDBycmFnbWg0VHdDdWhZY0M3NDRwNXl0 THcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VwMHJyYWdtaDRUd0N1aFljQzc0NHA1eXRMdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlFRTIvNjQzMjRERDgxRDg4MTFFMkJERUYxNEUxMDhCMDJDRDIvNThENTc2NEE2 ODMzMTFFQ0I5QzE3NzU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwVAYIKwYBBQUHAQcBAf8E RTBDMDIEAgABMCwDBAIr/+wDBAJnFzQDBAVxFWADBATKq0AwDAMEBsuTQAMEA8uT UAMEBNycoDANBAIAAjAHAwUAJAEMADANBgkqhkiG9w0BAQsFAAOCAQEAagaLMlSC 9TpRVcF46Hq9M9caYvTGNHkVttecY6WHY3DAxYQvWmFBaUfzGvzEtBozmJNMJecu p/HSTrPF3L8mAYPHkmM8KR2DCt9BuSNDraeL6OND8zaJuttWZZ6DCwR/Mh+1lrCY CCYY+6N9v+7IGEDGBq2fFIyqcn/IHmKx5P+SzNrV7BMevIKjS7+o8UVVqZ893tcc WSnHN0qvkFtjy6BEFbOF9XMYuQ610jimbFD0m9v6LeV6o6WPzRPcMYpfdWiwfEfc UiCuqiVzeib96QxLqnEQMZz85i68W1uQ4ySYgmgxAiCh3uQGcz4VL0gl1ublhmqh EiWGezPMUJuGhg== -----END CERTIFICATE-----Generated at Fri May 24 18:23:58 2024 by rpki-client on console-ams.rpki-client.org