$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/684394266FD111EDA007D478C4F9AE02.roa File: 684394266FD111EDA007D478C4F9AE02.roa (raw, json) Hash identifier: 5dpHq5udY8rsIr9XuddLhCYJAQkLYym8AZR6bO/1dDY= Subject key identifier: FF:BB:82:31:F3:66:0B:6C:AD:BD:36:18:F7:D6:39:56:21:02:71:9C Certificate issuer: /CN=A91AEB42/serialNumber=56237928548B082F5B13C16EDC3E6A7C2F80FCF1 Certificate serial: A6 Authority key identifier: 56:23:79:28:54:8B:08:2F:5B:13:C1:6E:DC:3E:6A:7C:2F:80:FC:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/684394266FD111EDA007D478C4F9AE02.roa Signing time: Sat 07 Oct 2023 04:04:51 +0000 ROA not before: Sat 07 Oct 2023 04:04:51 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132839 IP address blocks: 43.241.45.0/24 maxlen: 24 43.241.46.0/24 maxlen: 24 43.251.106.0/24 maxlen: 24 43.251.107.0/24 maxlen: 24 103.37.42.0/24 maxlen: 24 103.37.43.0/24 maxlen: 24 103.42.177.0/24 maxlen: 24 103.42.178.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.crl rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 05:38:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 166 (0xa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEB42/serialNumber=56237928548B082F5B13C16EDC3E6A7C2F80FCF1 Validity Not Before: Oct 7 04:04:51 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6520d8e3-5d3b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:72:f3:dd:13:16:0e:a0:a1:fa:0a:82:bb:31: d9:db:85:e9:fa:a5:4e:5a:86:58:7e:a2:79:44:66: 25:15:ff:04:8b:8d:62:fe:96:d7:af:f6:01:ef:7f: 05:89:56:2a:4c:e3:77:87:34:c3:fc:c7:f1:10:99: d7:aa:4d:5a:d0:d6:e6:1b:ef:6f:7e:aa:9f:b4:72: 91:39:c0:49:9d:66:a5:91:83:30:6b:5b:59:14:15: be:14:79:f3:8a:32:40:7e:e9:a1:d6:d0:a3:08:67: f1:bc:21:9c:58:c4:1f:86:86:43:9e:c8:81:27:67: 82:3e:c4:08:5a:35:34:99:48:2d:9c:17:39:f2:3d: ac:a5:23:22:31:24:8c:1b:af:17:9f:da:50:d1:9d: d0:93:98:1e:ad:77:92:f2:df:85:56:72:bf:ee:a2: 5a:b1:46:bd:8a:d7:aa:28:78:27:29:55:51:12:3d: 71:63:ce:4b:11:a8:95:71:5d:79:3e:a2:b1:a9:8f: 3d:60:a8:18:54:b2:eb:65:68:6c:d4:d7:1c:9b:25: 9b:6b:90:e0:bb:98:4b:3a:49:f8:5d:43:1e:28:6d: 4f:a9:10:4b:3b:4c:5b:82:6a:5b:b6:ad:c2:3f:33: 83:1e:9b:67:8a:f6:fe:05:ba:35:cc:c5:85:47:04: f6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:BB:82:31:F3:66:0B:6C:AD:BD:36:18:F7:D6:39:56:21:02:71:9C X509v3 Authority Key Identifier: keyid:56:23:79:28:54:8B:08:2F:5B:13:C1:6E:DC:3E:6A:7C:2F:80:FC:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ViN5KFSLCC9bE8Fu3D5qfC-A_PE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEB42/1AD97B646A6E11EDBB990363C4F9AE02/684394266FD111EDA007D478C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.241.45.0-43.241.46.255 43.251.106.0/23 103.37.42.0/23 103.42.177.0-103.42.178.255 Signature Algorithm: sha256WithRSAEncryption 76:2c:2a:94:1e:58:16:2d:ae:53:d3:41:de:19:2b:e5:e0:11: 37:18:83:b2:98:4a:ff:7c:f7:d3:26:e0:6a:ce:b8:ca:a0:4a: 30:fd:4a:ba:3c:88:5b:4f:36:7e:44:81:b5:36:21:70:5f:f4: b2:9f:7b:f6:88:b2:e3:65:17:2e:36:5a:20:cd:b0:43:d8:89: 97:5a:8f:b5:0f:d0:04:c0:26:a3:12:bc:56:55:9b:aa:18:18: 64:fc:f1:86:cd:bd:24:77:b8:78:bd:aa:04:95:3b:3d:4a:89: 80:b3:be:ec:f4:94:d6:71:b6:40:27:59:91:6e:6e:1e:8a:a3: b8:72:c1:99:ba:02:54:1c:46:cc:dc:fc:27:39:55:a4:07:aa: ca:b2:8a:8a:5c:f9:4b:ba:a3:fa:6c:34:4e:7d:65:ac:26:3e: b2:6c:e6:a0:c4:ca:ed:10:eb:b8:62:db:d1:86:34:96:af:41: b9:e4:1b:c8:49:2b:2f:5c:24:c6:2a:c8:bd:23:c3:a7:48:52: a5:cc:71:b9:80:f0:7b:06:4d:fe:37:8d:8a:4f:8f:ff:18:0d: f1:12:e4:42:e1:21:e6:09:8e:f2:2c:9e:e3:cf:9a:fc:0b:fe: 35:8f:f7:c8:0b:87:fa:f3:bb:f3:a8:d2:c2:04:6b:b0:ea:cf: 5f:3e:44:04 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgICAKYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVCNDIxMTAvBgNVBAUTKDU2MjM3OTI4NTQ4QjA4MkY1QjEzQzE2RURDM0U2QTdD MkY4MEZDRjEwHhcNMjMxMDA3MDQwNDUxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwZDhlMy01ZDNiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzHLz3RMWDqCh+gqCuzHZ24Xp+qVOWoZYfqJ5RGYlFf8Ei41i/pbXr/YB738F iVYqTON3hzTD/MfxEJnXqk1a0NbmG+9vfqqftHKROcBJnWalkYMwa1tZFBW+FHnz ijJAfumh1tCjCGfxvCGcWMQfhoZDnsiBJ2eCPsQIWjU0mUgtnBc58j2spSMiMSSM G68Xn9pQ0Z3Qk5gerXeS8t+FVnK/7qJasUa9iteqKHgnKVVREj1xY85LEaiVcV15 PqKxqY89YKgYVLLrZWhs1NccmyWba5Dgu5hLOkn4XUMeKG1PqRBLO0xbgmpbtq3C PzODHptnivb+Bbo1zMWFRwT2kwIDAQABo4ICtzCCArMwHQYDVR0OBBYEFP+7gjHz Zgtsrb02GPfWOVYhAnGcMB8GA1UdIwQYMBaAFFYjeShUiwgvWxPBbtw+anwvgPzx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUI0Mi8xQUQ5N0I2NDZB NkUxMUVEQkI5OTAzNjNDNEY5QUUwMi9WaU41S0ZTTENDOWJFOEZ1M0Q1cWZDLUFf UEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZpTjVLRlNMQ0M5YkU4RnUzRDVxZkMtQV9QRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVCNDIvMUFEOTdCNjQ2QTZFMTFFREJCOTkwMzYzQzRGOUFFMDIvNjg0Mzk0MjY2 RkQxMTFFREEwMDdENDc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQQYIKwYBBQUHAQcBAf8E MjAwMC4EAgABMCgwDAMEACvxLQMEACvxLgMEASv7agMEAWclKjAMAwQAZyqxAwQA ZyqyMA0GCSqGSIb3DQEBCwUAA4IBAQB2LCqUHlgWLa5T00HeGSvl4BE3GIOymEr/ fPfTJuBqzrjKoEow/Uq6PIhbTzZ+RIG1NiFwX/Syn3v2iLLjZRcuNlogzbBD2ImX Wo+1D9AEwCajErxWVZuqGBhk/PGGzb0kd7h4vaoElTs9SomAs77s9JTWcbZAJ1mR bm4eiqO4csGZugJUHEbM3PwnOVWkB6rKsoqKXPlLuqP6bDROfWWsJj6ybOagxMrt EOu4YtvRhjSWr0G55BvISSsvXCTGKsi9I8OnSFKlzHG5gPB7Bk3+N42KT4//GA3x EuRC4SHmCY7yLJ7jz5r8C/41j/fIC4f687vzqNLCBGuw6s9fPkQE -----END CERTIFICATE-----Generated at Wed May 1 07:07:05 2024 by rpki-client on console-fra.rpki-client.org