$ rpki-client -vvf rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa File: 3785190EF0FE11EEA034D07EC4F9AE02.roa (raw, json) Hash identifier: 7QHA7SnGm3Slg6UtKljXqvO3oOcVcBIhggVBhihsz2U= Subject key identifier: 70:2E:83:1F:05:81:92:A4:40:E0:E7:2A:61:FC:3A:3E:A2:7E:90:FC Certificate issuer: /CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Certificate serial: 297B Authority key identifier: E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa Signing time: Thu 27 Jun 2024 11:34:42 +0000 ROA not before: Thu 27 Jun 2024 11:34:42 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 24323 IP address blocks: 43.245.192.0/22 maxlen: 22 43.245.192.0/24 maxlen: 24 43.245.193.0/24 maxlen: 24 43.245.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Feb 2025 05:15:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10619 (0x297b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B01C7 Validity Not Before: Jun 27 11:34:42 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=667d4e52-8ae4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:55:14:a8:bb:ec:68:69:ab:4f:b0:30:e1:a1: bb:42:8f:64:23:85:09:df:25:b4:04:df:11:58:54: 73:78:77:67:b7:af:1c:63:bc:3a:b7:40:47:ba:30: 54:8c:d4:82:3b:aa:63:c4:a3:ba:96:ee:d1:10:e1: 92:38:45:e5:f2:5b:09:78:91:4d:27:78:61:d9:3f: f8:50:81:18:fb:fa:76:c4:ad:37:5e:75:80:c3:69: a9:ba:97:db:1d:b3:43:50:63:e6:e1:fd:35:7b:47: 8c:9a:48:91:d0:a2:cd:b0:6c:6d:23:07:4d:6f:50: 88:99:a9:9b:52:1e:62:4a:08:a3:5b:47:39:10:25: b4:82:08:49:69:ed:6c:5d:0a:94:68:c1:d0:09:c6: f0:0f:dd:33:0f:b0:24:96:25:49:e1:1c:08:5c:4b: 74:dd:1c:d6:80:56:b0:75:dd:08:34:29:df:6e:51: 31:7b:40:17:01:9e:30:ce:d5:c7:b0:68:96:4d:5c: 38:6c:06:94:c6:d1:59:0c:e3:f3:55:6d:86:ec:97: fe:01:fe:f2:97:00:08:dc:62:b0:37:0e:40:51:58: ee:8b:4d:52:93:9a:77:97:85:a7:83:3b:f5:fa:9f: 2f:e3:0b:da:09:25:62:a8:c7:28:34:25:d4:e3:fe: fa:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:2E:83:1F:05:81:92:A4:40:E0:E7:2A:61:FC:3A:3E:A2:7E:90:FC X509v3 Authority Key Identifier: keyid:E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.192.0/22 Signature Algorithm: sha256WithRSAEncryption 78:23:e6:43:17:54:79:43:4f:66:89:1c:4a:91:e0:af:b6:44: 54:1c:0a:cc:24:fe:e8:f3:52:e1:43:25:97:65:6e:1a:b4:82: ec:2a:bd:4d:93:79:4c:af:02:01:bf:3f:dc:c2:0d:3f:50:c4: 2b:40:c2:7b:5e:92:37:83:85:01:80:86:4c:31:29:9d:a4:60: 28:8b:99:d0:48:3d:86:6f:d6:b7:3d:1b:1a:82:d2:2b:4c:85: ea:ae:37:ba:b6:a9:f8:0f:3a:1f:6a:03:59:af:3a:68:a4:34: 01:69:f3:51:89:e5:fb:0c:20:49:ae:f9:05:21:7b:74:d9:ce: 1d:4b:94:8d:1e:9e:26:66:48:8e:37:13:49:f0:e5:f9:28:5a: eb:b4:a1:dc:67:0e:89:d1:de:3f:cb:2f:76:13:d2:2d:4d:2e: a1:31:71:73:ff:ef:7b:50:1a:dd:89:7e:07:af:93:53:24:37: 33:1a:fa:34:63:33:d1:a3:93:9f:7f:57:ea:3c:e6:cf:49:3d: d2:33:30:d5:28:7d:42:4d:2a:99:71:2a:5d:51:3d:98:c2:ec: 55:52:9d:ef:a5:2c:c2:e5:e0:d3:a0:fc:7b:63:7f:56:be:bb: 79:59:da:24:77:da:43:14:31:89:70:1c:c8:60:d8:c1:0e:aa: 62:38:20:04 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKXswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAxQzcxMTAvBgNVBAUTKEU4REY4RDVFNEM4NERBODdENzI5QTczQzFDNEU4NjEx MzgxQUIyQzEwHhcNMjQwNjI3MTEzNDQyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjdkNGU1Mi04YWU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA41UUqLvsaGmrT7Aw4aG7Qo9kI4UJ3yW0BN8RWFRzeHdnt68cY7w6t0BHujBU jNSCO6pjxKO6lu7REOGSOEXl8lsJeJFNJ3hh2T/4UIEY+/p2xK03XnWAw2mpupfb HbNDUGPm4f01e0eMmkiR0KLNsGxtIwdNb1CImambUh5iSgijW0c5ECW0gghJae1s XQqUaMHQCcbwD90zD7AkliVJ4RwIXEt03RzWgFawdd0INCnfblExe0AXAZ4wztXH sGiWTVw4bAaUxtFZDOPzVW2G7Jf+Af7ylwAI3GKwNw5AUVjui01Sk5p3l4Wngzv1 +p8v4wvaCSViqMcoNCXU4/764QIDAQABo4IClTCCApEwHQYDVR0OBBYEFHAugx8F gZKkQODnKmH8Oj6ifpD8MB8GA1UdIwQYMBaAFOjfjV5MhNqH1ymnPBxOhhE4GrLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDFDNy85N0NGMjBGQTMz MjMxMUU0QTZFNzQ5MTFDNEY5QUUwMi82Ti1OWGt5RTJvZlhLYWM4SEU2R0VUZ2Fz c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOLU5Ya3lFMm9mWEthYzhIRTZHRVRnYXNzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAxQzcvOTdDRjIwRkEzMzIzMTFFNEE2RTc0OTExQzRGOUFFMDIvMzc4NTE5MEVG MEZFMTFFRUEwMzREMDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr9cAwDQYJKoZIhvcNAQELBQADggEBAHgj5kMXVHlDT2aJ HEqR4K+2RFQcCswk/ujzUuFDJZdlbhq0guwqvU2TeUyvAgG/P9zCDT9QxCtAwnte kjeDhQGAhkwxKZ2kYCiLmdBIPYZv1rc9GxqC0itMhequN7q2qfgPOh9qA1mvOmik NAFp81GJ5fsMIEmu+QUhe3TZzh1LlI0eniZmSI43E0nw5fkoWuu0odxnDonR3j/L L3YT0i1NLqExcXP/73tQGt2Jfgevk1MkNzMa+jRjM9Gjk59/V+o85s9JPdIzMNUo fUJNKplxKl1RPZjC7FVSne+lLMLl4NOg/Htjf1a+u3lZ2iR32kMUMYlwHMhg2MEO qmI4IAQ= -----END CERTIFICATE-----Generated at Mon Feb 17 08:18:01 2025 by rpki-client