$ rpki-client -vvf rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/2A40C41C6EC511ED9672CB40C4F9AE02.roa File: 2A40C41C6EC511ED9672CB40C4F9AE02.roa (raw, json) Hash identifier: 5ACArxlK+Iiq2w4atQzrcIkaGeaDW2uYXfK1DQWLUTI= Subject key identifier: 55:AE:31:2D:F1:C6:40:2D:5F:0E:42:58:80:3A:09:8A:07:D5:33:2F Certificate issuer: /CN=A91AC4FA/serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7 Certificate serial: 7C Authority key identifier: 8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/2A40C41C6EC511ED9672CB40C4F9AE02.roa Signing time: Sat 01 Jul 2023 04:12:59 +0000 ROA not before: Sat 01 Jul 2023 04:12:59 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 17765 IP address blocks: 203.4.188.0/23 maxlen: 24 203.4.190.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.crl rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AC4FA/serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7 Validity Not Before: Jul 1 04:12:59 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=649fa7cb-31dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:19:13:a6:02:cc:20:45:9f:42:0c:cc:6e:93: 1b:0f:c0:c3:06:07:c1:fa:9d:b0:6c:63:1d:47:af: 27:c9:a5:7b:d4:f5:1d:85:4c:3c:20:2a:e2:e0:49: 66:ec:c5:66:65:5e:8a:5f:62:56:43:6b:c4:36:fb: 44:dc:c7:41:57:5f:bb:3c:0e:09:a9:aa:dc:1c:5d: 59:7f:23:dc:be:73:e2:ca:3f:1d:1a:12:12:79:0d: ff:73:7e:fc:a4:72:a8:1b:40:fc:13:42:4e:88:58: 83:1e:98:74:f4:c4:0e:55:d9:cc:7b:f7:4c:88:46: 2b:4e:ce:c3:ee:e2:0c:6f:51:4b:1b:c7:26:5b:a8: 7f:3a:4c:16:8f:27:37:b1:c7:57:67:3e:27:1a:fd: 22:5e:69:f1:f4:bb:a5:82:fa:48:e4:b6:c0:d2:2d: 55:7a:72:60:61:80:b0:3f:34:55:a8:c2:9e:5f:3c: 7c:e4:d4:3b:60:d3:c2:d9:fd:1b:ef:42:a2:5e:f7: 1d:b7:97:e4:c0:b3:25:9d:82:d3:a7:79:28:c4:78: 3f:97:b3:b8:61:87:94:78:bd:ce:f8:87:74:77:c7: f7:e0:bf:f5:a2:98:63:40:61:cd:aa:8d:b8:92:08: fb:0c:73:56:a0:60:9d:b8:d6:eb:f5:59:22:8c:86: 13:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:AE:31:2D:F1:C6:40:2D:5F:0E:42:58:80:3A:09:8A:07:D5:33:2F X509v3 Authority Key Identifier: keyid:8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/2A40C41C6EC511ED9672CB40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.4.188.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:bf:c8:62:60:22:ea:e4:fd:5b:be:7d:f7:64:d6:38:5b:95: 88:0b:ec:31:dc:81:64:d4:fc:74:51:cd:a6:99:e9:f6:83:46: 65:e1:77:57:7b:1f:b8:21:2a:17:f3:59:18:77:a8:33:7e:e5: 47:10:64:16:21:fd:f2:c4:79:ff:1f:8e:89:48:56:bb:10:65: 62:b3:0c:58:dd:c4:fa:6c:04:44:04:ea:6d:a2:8e:2f:09:f7: c6:3e:ed:f4:e5:e6:e7:b5:57:df:63:40:cb:40:ec:61:2d:f2: 86:4c:a6:05:62:9f:db:1b:d1:65:4f:3b:b1:43:a6:ef:bd:90: c0:86:9a:7c:f7:84:3b:73:a3:26:18:67:b5:76:8e:72:88:16: 79:ac:01:65:5f:ac:a0:7e:3d:8f:93:e6:b1:12:c3:e1:fc:60: 6a:a8:ef:a3:da:e3:60:dc:be:68:32:35:9c:d3:62:23:19:6d: d7:bd:35:df:59:d5:cc:a9:52:e1:72:ef:bb:0a:b3:d3:86:ee: 23:22:94:bc:83:37:ca:86:8e:cb:88:87:0e:58:b7:5e:dd:64: 85:06:5d:44:42:71:21:89:d0:cc:9b:33:82:a7:24:9d:2f:cf: c1:c5:be:ef:ee:fd:0d:b0:36:ce:0e:5a:df:38:04:95:0c:74: 5d:4a:22:40 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB QzRGQTExMC8GA1UEBRMoOEFGN0Q4Qjg2NEZEOTA0NTJGRkQ2REU5M0I1MTQ1NkM3 OUVGQjNDNzAeFw0yMzA3MDEwNDEyNTlaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0OWZhN2NiLTMxZGQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDDGROmAswgRZ9CDMxukxsPwMMGB8H6nbBsYx1HryfJpXvU9R2FTDwgKuLgSWbs xWZlXopfYlZDa8Q2+0Tcx0FXX7s8DgmpqtwcXVl/I9y+c+LKPx0aEhJ5Df9zfvyk cqgbQPwTQk6IWIMemHT0xA5V2cx790yIRitOzsPu4gxvUUsbxyZbqH86TBaPJzex x1dnPica/SJeafH0u6WC+kjktsDSLVV6cmBhgLA/NFWowp5fPHzk1Dtg08LZ/Rvv QqJe9x23l+TAsyWdgtOneSjEeD+Xs7hhh5R4vc74h3R3x/fgv/WimGNAYc2qjbiS CPsMc1agYJ241uv1WSKMhhMbAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVa4xLfHG QC1fDkJYgDoJigfVMy8wHwYDVR0jBBgwFoAUivfYuGT9kEUv/W3pO1FFbHnvs8cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUFDNEZBLzM3Q0I4Nzk4NkM4 QjExRUQ4N0FGRjU3MUM0RjlBRTAyL2l2Zll1R1Q5a0VVdl9XM3BPMUZGYkhudnM4 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvaXZmWXVHVDlrRVV2X1czcE8xRkZiSG52czhjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB QzRGQS8zN0NCODc5ODZDOEIxMUVEODdBRkY1NzFDNEY5QUUwMi8yQTQwQzQxQzZF QzUxMUVEOTY3MkNCNDBDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAssEvDANBgkqhkiG9w0BAQsFAAOCAQEAO7/IYmAi6uT9W759 92TWOFuViAvsMdyBZNT8dFHNppnp9oNGZeF3V3sfuCEqF/NZGHeoM37lRxBkFiH9 8sR5/x+OiUhWuxBlYrMMWN3E+mwERATqbaKOLwn3xj7t9OXm57VX32NAy0DsYS3y hkymBWKf2xvRZU87sUOm772QwIaafPeEO3OjJhhntXaOcogWeawBZV+soH49j5Pm sRLD4fxgaqjvo9rjYNy+aDI1nNNiIxlt170131nVzKlS4XLvuwqz04buIyKUvIM3 yoaOy4iHDli3Xt1khQZdREJxIYnQzJszgqcknS/PwcW+7+79DbA2zg5a3zgElQx0 XUoiQA== -----END CERTIFICATE-----Generated at Mon May 27 06:19:23 2024 by rpki-client on console-fra.rpki-client.org