$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/40965650EA4311EEA09F786BC4F9AE02.roa File: 40965650EA4311EEA09F786BC4F9AE02.roa (raw, json) Hash identifier: b/QAHCG+PR4LhEY16K2ElqbtOdPuyUQdQolX0U7xqqw= Subject key identifier: 37:09:B0:3B:D3:94:49:C9:AE:F9:4F:D7:C0:23:8A:52:9C:67:2F:2D Certificate issuer: /CN=A91ACF30/serialNumber=D3267AF9FB969089C3C12AFEBFD0FDE9BD867581 Certificate serial: 0717 Authority key identifier: D3:26:7A:F9:FB:96:90:89:C3:C1:2A:FE:BF:D0:FD:E9:BD:86:75:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0yZ6-fuWkInDwSr-v9D96b2GdYE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/40965650EA4311EEA09F786BC4F9AE02.roa Signing time: Mon 25 Mar 2024 01:01:46 +0000 ROA not before: Mon 25 Mar 2024 01:01:46 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 38278 IP address blocks: 45.114.28.0/22 maxlen: 22 103.115.220.0/24 maxlen: 24 103.115.221.0/24 maxlen: 24 103.115.222.0/24 maxlen: 24 103.115.223.0/24 maxlen: 24 103.248.108.0/22 maxlen: 24 103.251.0.0/22 maxlen: 24 111.221.48.0/21 maxlen: 24 202.169.24.0/21 maxlen: 24 2402:eec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/0yZ6-fuWkInDwSr-v9D96b2GdYE.crl rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/0yZ6-fuWkInDwSr-v9D96b2GdYE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0yZ6-fuWkInDwSr-v9D96b2GdYE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1815 (0x717) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACF30/serialNumber=D3267AF9FB969089C3C12AFEBFD0FDE9BD867581 Validity Not Before: Mar 25 01:01:46 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6600ccfa-edcb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:95:33:b5:88:c3:e9:ee:de:fc:c3:e0:ef:3d: db:1a:7e:04:57:22:2b:a4:bb:68:b5:37:4c:4d:95: 1d:0e:5d:5f:25:d9:86:12:0c:69:93:08:ba:2b:a7: f7:13:78:c1:5d:1d:cf:c1:ab:55:a0:1c:80:e5:f5: 4c:d7:ad:5f:d4:c9:55:d0:d5:ac:7f:79:17:53:58: 8d:97:79:07:07:b9:66:8d:27:8f:33:2a:3d:97:37: d5:41:62:bd:81:f1:fe:19:32:39:ad:d8:dd:a0:8c: fc:8a:c3:16:d7:57:2d:f3:d8:14:87:66:81:0f:cb: 6e:6e:75:c8:7e:e9:1e:2b:f2:59:0f:0b:de:2a:6e: 7e:76:74:e5:ba:66:08:a7:d4:30:d4:59:bd:99:be: 17:71:f3:24:61:a4:5f:90:e7:f6:93:16:18:c6:01: d2:f6:db:73:e0:5f:f7:27:f2:10:ae:28:7a:90:7d: 0e:27:21:1b:6f:53:4c:5a:fc:fb:94:7b:47:1b:3e: 50:0d:4d:91:40:31:a3:52:90:68:82:69:8d:ed:f9: 61:3e:21:9d:ac:41:38:2a:48:21:53:ca:a4:6b:d7: 92:42:1d:3f:26:68:81:c1:8a:c3:0a:7d:6e:c9:2e: 5e:d5:5a:2f:a1:2b:19:ae:20:9c:1e:60:b3:4a:52: a8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:09:B0:3B:D3:94:49:C9:AE:F9:4F:D7:C0:23:8A:52:9C:67:2F:2D X509v3 Authority Key Identifier: keyid:D3:26:7A:F9:FB:96:90:89:C3:C1:2A:FE:BF:D0:FD:E9:BD:86:75:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/0yZ6-fuWkInDwSr-v9D96b2GdYE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0yZ6-fuWkInDwSr-v9D96b2GdYE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACF30/3B912F12F18211EAA537970AC4F9AE02/40965650EA4311EEA09F786BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.114.28.0/22 103.115.220.0/22 103.248.108.0/22 103.251.0.0/22 111.221.48.0/21 202.169.24.0/21 IPv6: 2402:eec0::/32 Signature Algorithm: sha256WithRSAEncryption 6c:b0:08:8f:f1:cd:fc:a2:71:5f:f1:3b:1d:7a:2a:7a:5e:6d: de:7b:5e:29:b2:73:80:c5:47:d8:00:62:31:8d:49:c1:04:9d: 1d:3f:02:a2:f8:3e:3e:ba:d8:f3:10:70:30:3e:61:ba:6c:05: fe:17:7c:af:03:2b:20:e2:3f:11:82:af:5c:30:01:b8:84:7a: 2b:fa:b7:3e:87:35:82:e6:9c:cf:af:fe:ee:17:12:84:5e:9c: c6:39:e2:8a:ba:81:9c:ce:c7:5c:87:50:17:a3:93:f8:54:0c: 7b:d3:b7:9c:30:93:86:7a:1f:a8:34:b2:96:f7:e1:99:5e:f7: e9:7f:b9:28:7a:51:6e:ff:7c:93:85:09:60:eb:36:b3:64:51: ae:a3:5c:50:06:5a:de:a0:34:42:fb:59:a4:45:2d:9b:c7:34: 27:c6:c9:59:ab:2e:1b:24:cf:a7:bf:c3:c7:c7:bc:15:fa:81: cc:2f:9e:74:96:db:54:0b:ef:27:d8:7c:32:a5:b8:47:48:34: b1:89:94:9f:f8:a8:92:5c:f2:9c:71:0f:e6:4b:92:40:31:89: f6:f8:92:2d:14:42:4b:43:00:b7:4a:c9:64:e8:c8:63:cb:e2: 6e:9a:e1:19:29:5e:ea:91:51:a2:1f:71:1f:fa:10:e4:59:13: 58:50:93:27 -----BEGIN CERTIFICATE----- MIIFnjCCBIagAwIBAgICBxcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGMzAxMTAvBgNVBAUTKEQzMjY3QUY5RkI5NjkwODlDM0MxMkFGRUJGRDBGREU5 QkQ4Njc1ODEwHhcNMjQwMzI1MDEwMTQ2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAwY2NmYS1lZGNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoZUztYjD6e7e/MPg7z3bGn4EVyIrpLtotTdMTZUdDl1fJdmGEgxpkwi6K6f3 E3jBXR3PwatVoByA5fVM161f1MlV0NWsf3kXU1iNl3kHB7lmjSePMyo9lzfVQWK9 gfH+GTI5rdjdoIz8isMW11ct89gUh2aBD8tubnXIfukeK/JZDwveKm5+dnTlumYI p9Qw1Fm9mb4XcfMkYaRfkOf2kxYYxgHS9ttz4F/3J/IQrih6kH0OJyEbb1NMWvz7 lHtHGz5QDU2RQDGjUpBogmmN7flhPiGdrEE4KkghU8qka9eSQh0/JmiBwYrDCn1u yS5e1VovoSsZriCcHmCzSlKocwIDAQABo4ICwjCCAr4wHQYDVR0OBBYEFDcJsDvT lEnJrvlP18AjilKcZy8tMB8GA1UdIwQYMBaAFNMmevn7lpCJw8Eq/r/Q/em9hnWB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0YzMC8zQjkxMkYxMkYx ODIxMUVBQTUzNzk3MEFDNEY5QUUwMi8weVo2LWZ1V2tJbkR3U3ItdjlEOTZiMkdk WUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB5WjYtZnVXa0luRHdTci12OUQ5NmIyR2RZRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNGMzAvM0I5MTJGMTJGMTgyMTFFQUE1Mzc5NzBBQzRGOUFFMDIvNDA5NjU2NTBF QTQzMTFFRUEwOUY3ODZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwTAYIKwYBBQUHAQcBAf8E PTA7MCoEAgABMCQDBAItchwDBAJnc9wDBAJn+GwDBAJn+wADBANv3TADBAPKqRgw DQQCAAIwBwMFACQC7sAwDQYJKoZIhvcNAQELBQADggEBAGywCI/xzfyicV/xOx16 Knpebd57Ximyc4DFR9gAYjGNScEEnR0/AqL4Pj662PMQcDA+YbpsBf4XfK8DKyDi PxGCr1wwAbiEeiv6tz6HNYLmnM+v/u4XEoRenMY54oq6gZzOx1yHUBejk/hUDHvT t5wwk4Z6H6g0spb34Zle9+l/uSh6UW7/fJOFCWDrNrNkUa6jXFAGWt6gNEL7WaRF LZvHNCfGyVmrLhskz6e/w8fHvBX6gcwvnnSW21QL7yfYfDKluEdINLGJlJ/4qJJc 8pxxD+ZLkkAxifb4ki0UQktDALdKyWToyGPL4m6a4RkpXuqRUaIfcR/6EORZE1hQ kyc= -----END CERTIFICATE-----Generated at Sun May 19 00:30:20 2024 by rpki-client on console-ams.rpki-client.org