$ rpki-client -vvf rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/B2EA4D6E3BCD11EC8086E031C4F9AE02.roa File: B2EA4D6E3BCD11EC8086E031C4F9AE02.roa (raw, json) Hash identifier: Zgw7qLYJQV/I2L1Iu4hbkRSgxFvvyqaLEu1coTki0JA= Subject key identifier: E7:68:FC:FB:5F:37:C7:49:16:CF:15:24:89:AA:2A:EC:0D:DB:E5:55 Certificate issuer: /CN=A91AD0B2/serialNumber=44BA569BFD2EC816B069734513E0BBF2D34EB707 Certificate serial: 038C Authority key identifier: 44:BA:56:9B:FD:2E:C8:16:B0:69:73:45:13:E0:BB:F2:D3:4E:B7:07 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RLpWm_0uyBawaXNFE-C78tNOtwc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/B2EA4D6E3BCD11EC8086E031C4F9AE02.roa Signing time: Fri 09 Sep 2022 02:01:55 +0000 ROA not before: Fri 09 Sep 2022 02:01:55 +0000 ROA not after: Fri 01 Dec 2023 00:00:00 +0000 asID: 399955 IP address blocks: 43.242.200.0/22 maxlen: 24 103.38.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/RLpWm_0uyBawaXNFE-C78tNOtwc.crl rsync://rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/RLpWm_0uyBawaXNFE-C78tNOtwc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RLpWm_0uyBawaXNFE-C78tNOtwc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 May 2023 02:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 908 (0x38c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AD0B2/serialNumber=44BA569BFD2EC816B069734513E0BBF2D34EB707 Validity Not Before: Sep 9 02:01:55 2022 GMT Not After : Dec 1 00:00:00 2023 GMT Subject: CN=631a9e92-2f7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:24:35:94:15:76:38:dc:8d:92:60:e4:be:77: 81:24:c2:bf:80:e4:2f:4c:c4:3b:3b:f2:c8:37:f0: e6:b0:3b:74:38:47:29:12:c4:35:c4:25:cf:10:6b: 1f:22:75:b5:95:6c:d7:72:5b:ac:89:43:c2:d8:23: 15:f5:22:c8:06:8c:1e:6b:23:e0:ec:a6:fc:88:08: 81:1b:f6:8f:87:e2:7e:7a:3d:79:00:2b:17:40:d2: 00:7c:88:29:5f:b7:35:7a:57:c0:2b:ed:95:89:7e: 0e:42:55:29:93:3f:cf:96:1b:56:df:3f:be:da:d1: ec:e9:c1:13:82:ed:12:d3:4a:60:cb:f4:29:92:51: 32:d3:57:fc:ef:9f:b1:e6:05:f0:e0:e7:5e:ca:ff: 28:aa:38:c2:d2:82:2c:25:c3:03:9f:57:fd:78:4c: 47:fe:d0:49:ea:f0:7d:e9:f7:77:04:8f:3f:64:95: 99:d0:1c:f9:6a:96:f1:0e:80:5b:cf:c0:99:b2:f5: 12:7f:b7:14:18:9a:8e:61:71:1c:87:e5:39:0a:41: 62:b3:98:08:98:22:af:9d:88:10:83:42:fc:1c:db: 82:a0:9d:80:08:f2:18:8c:cd:27:e6:7a:ab:16:fc: 0f:18:53:2d:95:0f:a2:3e:85:d4:38:2a:fe:c7:02: 41:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:68:FC:FB:5F:37:C7:49:16:CF:15:24:89:AA:2A:EC:0D:DB:E5:55 X509v3 Authority Key Identifier: keyid:44:BA:56:9B:FD:2E:C8:16:B0:69:73:45:13:E0:BB:F2:D3:4E:B7:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/RLpWm_0uyBawaXNFE-C78tNOtwc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RLpWm_0uyBawaXNFE-C78tNOtwc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AD0B2/2213E5BCCB2E11EBB2D39748C4F9AE02/B2EA4D6E3BCD11EC8086E031C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.242.200.0/22 103.38.80.0/22 Signature Algorithm: sha256WithRSAEncryption 79:ac:2f:f4:ee:b9:cd:2c:22:d0:8f:66:14:9d:10:ad:74:1f: f6:c7:16:7c:c0:02:6e:87:90:77:4d:9d:69:89:fb:fd:a6:b6: d1:c5:a3:dc:c9:99:7f:a2:58:14:da:60:3a:36:f1:a1:36:1b: 3f:67:66:05:84:bb:0e:93:3b:30:0c:9f:b2:98:db:6e:a1:83: c5:81:72:46:72:28:f5:60:41:d2:11:5d:b1:6a:c2:9f:82:d7: 1d:30:47:19:92:b0:d1:41:83:3b:33:4f:ea:57:fa:b1:9f:d3: fe:53:40:50:4a:eb:ae:e9:0e:b9:15:18:58:9b:8d:ba:9f:a7: c0:f1:bc:c3:5e:73:f5:59:8e:19:3a:60:14:f8:4b:ca:a3:9f: dd:ca:8f:5f:68:81:e8:16:35:2f:2e:5b:bb:3b:2d:5f:5d:ac: ca:34:20:0b:59:1b:58:83:99:64:cf:93:85:b2:83:69:fa:5c: bb:3f:6b:cc:a7:79:aa:1f:b8:90:ac:72:3e:22:d6:e1:02:34: bf:a0:02:29:61:f3:b3:0b:86:86:87:da:98:8d:72:2a:6c:00: d8:d4:fd:9b:e6:de:75:bd:81:0c:4c:78:ef:a8:55:57:80:a1: 7a:ae:c6:22:d5:b6:df:b0:39:82:c0:4d:1a:6a:ab:62:ef:f1: da:f1:88:e3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA4wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUQwQjIxMTAvBgNVBAUTKDQ0QkE1NjlCRkQyRUM4MTZCMDY5NzM0NTEzRTBCQkYy RDM0RUI3MDcwHhcNMjIwOTA5MDIwMTU1WhcNMjMxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02MzFhOWU5Mi0yZjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuCQ1lBV2ONyNkmDkvneBJMK/gOQvTMQ7O/LIN/DmsDt0OEcpEsQ1xCXPEGsf InW1lWzXclusiUPC2CMV9SLIBoweayPg7Kb8iAiBG/aPh+J+ej15ACsXQNIAfIgp X7c1elfAK+2ViX4OQlUpkz/PlhtW3z++2tHs6cETgu0S00pgy/QpklEy01f875+x 5gXw4Odeyv8oqjjC0oIsJcMDn1f9eExH/tBJ6vB96fd3BI8/ZJWZ0Bz5apbxDoBb z8CZsvUSf7cUGJqOYXEch+U5CkFis5gImCKvnYgQg0L8HNuCoJ2ACPIYjM0n5nqr FvwPGFMtlQ+iPoXUOCr+xwJB7QIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOdo/Ptf N8dJFs8VJImqKuwN2+VVMB8GA1UdIwQYMBaAFES6Vpv9LsgWsGlzRRPgu/LTTrcH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRDBCMi8yMjEzRTVCQ0NC MkUxMUVCQjJEMzk3NDhDNEY5QUUwMi9STHBXbV8wdXlCYXdhWE5GRS1DNzh0Tk90 d2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JMcFdtXzB1eUJhd2FYTkZFLUM3OHROT3R3Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUQwQjIvMjIxM0U1QkNDQjJFMTFFQkIyRDM5NzQ4QzRGOUFFMDIvQjJFQTRENkUz QkNEMTFFQzgwODZFMDMxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr8sgDBAJnJlAwDQYJKoZIhvcNAQELBQADggEBAHmsL/Tu uc0sItCPZhSdEK10H/bHFnzAAm6HkHdNnWmJ+/2mttHFo9zJmX+iWBTaYDo28aE2 Gz9nZgWEuw6TOzAMn7KY226hg8WBckZyKPVgQdIRXbFqwp+C1x0wRxmSsNFBgzsz T+pX+rGf0/5TQFBK667pDrkVGFibjbqfp8DxvMNec/VZjhk6YBT4S8qjn93Kj19o gegWNS8uW7s7LV9drMo0IAtZG1iDmWTPk4Wyg2n6XLs/a8yneaofuJCscj4i1uEC NL+gAilh87MLhoaH2piNcipsANjU/Zvm3nW9gQxMeO+oVVeAoXquxiLVtt+wOYLA TRpqq2Lv8drxiOM= -----END CERTIFICATE-----Generated at Wed May 3 13:19:20 2023 by rpki-client on console-ams.rpki-client.org