$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa File: 2D478AFED02011ECB021972BC4F9AE02.roa (raw, json) Hash identifier: lhSOWEE4/EOCqrU6OVCiDww4eDtSUIa4uusgIAkRF+Q= Subject key identifier: 27:A6:A3:B1:20:D2:9E:A7:3F:17:71:CB:B7:2B:DF:AF:5B:F4:8D:F5 Certificate issuer: /CN=A91AE108/serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Certificate serial: 01AA Authority key identifier: 02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa Signing time: Sat 17 Jun 2023 04:32:30 +0000 ROA not before: Sat 17 Jun 2023 04:32:30 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 38549 IP address blocks: 203.21.76.0/24 maxlen: 24 203.21.77.0/24 maxlen: 24 2001:df0:20b::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 04:18:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 426 (0x1aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE108/serialNumber=02BB97FD8B1F620E02A1E2CADB59D656F01ADA45 Validity Not Before: Jun 17 04:32:30 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=648d375e-ac83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:0e:c1:5c:52:ed:78:4d:df:89:97:a9:41:6e: 8e:61:2b:68:1a:07:ab:f1:ef:97:01:61:c5:58:15: 5c:65:6e:37:49:65:ff:89:2a:76:ee:9f:43:69:80: 81:c3:34:51:f2:5c:ba:e8:72:0b:35:3a:e5:de:05: b6:06:70:61:4c:0e:cc:6f:36:ed:31:e9:01:3c:40: bd:f4:c8:73:b7:a8:c1:ba:fe:02:ee:94:46:bd:02: 80:22:20:9e:2a:53:a4:55:d7:45:cc:eb:73:d7:bd: c0:97:cb:f5:7a:61:20:53:b7:c7:5e:49:78:ab:30: fb:ac:fb:a2:9b:d9:91:68:1a:4b:14:b7:52:78:b3: 92:c2:95:b9:f4:a3:0d:41:0d:eb:e2:11:7f:57:25: 52:e0:aa:62:e3:ea:33:ee:31:eb:9c:4a:86:5d:6c: e5:83:c2:86:c8:85:b6:d7:f0:fa:90:71:0c:ab:7b: 96:7e:01:04:a9:30:dd:c8:cb:4c:a9:7e:fa:ad:56: cf:d0:a1:bd:33:1a:83:1a:af:c5:32:c8:11:2e:4e: f0:f4:0c:b2:8f:5d:a3:1a:4c:e8:04:a2:5b:d6:f8: 8c:9b:ea:66:f0:8e:2b:53:4a:2e:d7:93:1e:57:a2: ad:4d:b7:58:63:81:21:78:ea:f7:98:98:03:72:96: ae:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:A6:A3:B1:20:D2:9E:A7:3F:17:71:CB:B7:2B:DF:AF:5B:F4:8D:F5 X509v3 Authority Key Identifier: keyid:02:BB:97:FD:8B:1F:62:0E:02:A1:E2:CA:DB:59:D6:56:F0:1A:DA:45 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/AruX_YsfYg4CoeLK21nWVvAa2kU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AruX_YsfYg4CoeLK21nWVvAa2kU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE108/E3B046CCD01C11ECB354AF24C4F9AE02/2D478AFED02011ECB021972BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.21.76.0/23 IPv6: 2001:df0:20b::/48 Signature Algorithm: sha256WithRSAEncryption b1:ad:0c:db:23:24:a3:93:59:82:b3:6b:f1:a7:d7:36:40:a0: 4d:82:e5:5e:1c:c8:1e:27:e8:77:a1:e7:f0:2c:62:c4:c4:05: 5b:59:6d:7e:f9:32:c5:39:6c:02:d9:c3:ab:c6:92:fb:25:86: 8e:5c:84:4c:1a:cb:ef:c7:1b:06:14:3b:7a:b5:c5:82:6c:8b: d7:e4:8c:ae:7a:de:65:d6:a0:18:df:b6:4b:9d:29:6b:b2:82: 0e:2b:ca:0a:26:c5:77:1a:31:9e:8f:40:69:e6:fa:1a:6c:fd: 93:4e:5f:a2:89:7d:b6:03:b2:8e:dd:c2:e4:a2:6c:1b:af:7d: af:6f:68:5d:17:23:20:8c:47:d0:1a:3b:fd:30:24:06:f5:da: 5a:f0:b9:e7:28:8c:b2:d6:ab:b9:5a:3e:ec:bc:6d:10:04:cd: b4:86:69:30:17:ec:2b:e0:a4:a2:4d:e2:20:cf:9e:00:43:cb: 31:d7:b9:95:cd:b3:30:a3:5b:08:12:2c:c2:d9:bb:ea:bb:33: ea:56:53:dd:1c:8d:77:f8:29:83:29:1f:d5:3f:ea:da:3f:58: f5:80:8c:d6:33:19:fc:b4:b0:65:a8:bd:02:51:fa:36:21:0d: f3:e5:5a:f5:83:06:51:c6:22:ba:f9:7d:70:00:27:41:8c:60: 86:24:52:37 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAaowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUxMDgxMTAvBgNVBAUTKDAyQkI5N0ZEOEIxRjYyMEUwMkExRTJDQURCNTlENjU2 RjAxQURBNDUwHhcNMjMwNjE3MDQzMjMwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDhkMzc1ZS1hYzgzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlA7BXFLteE3fiZepQW6OYStoGger8e+XAWHFWBVcZW43SWX/iSp27p9DaYCB wzRR8ly66HILNTrl3gW2BnBhTA7MbzbtMekBPEC99Mhzt6jBuv4C7pRGvQKAIiCe KlOkVddFzOtz173Al8v1emEgU7fHXkl4qzD7rPuim9mRaBpLFLdSeLOSwpW59KMN QQ3r4hF/VyVS4Kpi4+oz7jHrnEqGXWzlg8KGyIW21/D6kHEMq3uWfgEEqTDdyMtM qX76rVbP0KG9MxqDGq/FMsgRLk7w9Ayyj12jGkzoBKJb1viMm+pm8I4rU0ou15Me V6KtTbdYY4EheOr3mJgDcpau2wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCemo7Eg 0p6nPxdxy7cr369b9I31MB8GA1UdIwQYMBaAFAK7l/2LH2IOAqHiyttZ1lbwGtpF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTEwOC9FM0IwNDZDQ0Qw MUMxMUVDQjM1NEFGMjRDNEY5QUUwMi9BcnVYX1lzZllnNENvZUxLMjFuV1Z2QWEy a1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FydVhfWXNmWWc0Q29lTEsyMW5XVnZBYTJrVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUUxMDgvRTNCMDQ2Q0NEMDFDMTFFQ0IzNTRBRjI0QzRGOUFFMDIvMkQ0NzhBRkVE MDIwMTFFQ0IwMjE5NzJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAHLFUwwDwQCAAIwCQMHACABDfACCzANBgkqhkiG9w0BAQsF AAOCAQEAsa0M2yMko5NZgrNr8afXNkCgTYLlXhzIHifod6Hn8CxixMQFW1ltfvky xTlsAtnDq8aS+yWGjlyETBrL78cbBhQ7erXFgmyL1+SMrnreZdagGN+2S50pa7KC DivKCibFdxoxno9Aaeb6Gmz9k05fool9tgOyjt3C5KJsG699r29oXRcjIIxH0Bo7 /TAkBvXaWvC55yiMstaruVo+7LxtEATNtIZpMBfsK+Ckok3iIM+eAEPLMde5lc2z MKNbCBIswtm76rsz6lZT3RyNd/gpgykf1T/q2j9Y9YCM1jMZ/LSwZai9AlH6NiEN 8+Va9YMGUcYiuvl9cAAnQYxghiRSNw== -----END CERTIFICATE-----Generated at Wed May 29 05:26:31 2024 by rpki-client on console-fra.rpki-client.org