$ rpki-client -vvf rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa File: 3785190EF0FE11EEA034D07EC4F9AE02.roa (raw, json) Hash identifier: HTj3Qh/xXt5K2jquDffQEnajhNGU7uvbk/PH9Lr2CPY= Subject key identifier: 5B:41:B1:5C:60:C4:1C:C0:36:08:26:E6:77:CB:03:38:B8:89:4F:6B Certificate issuer: /CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Certificate serial: 2946 Authority key identifier: E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa Signing time: Tue 02 Apr 2024 15:33:09 +0000 ROA not before: Tue 02 Apr 2024 15:33:09 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 24323 IP address blocks: 43.245.192.0/22 maxlen: 22 43.245.193.0/24 maxlen: 24 43.245.194.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10566 (0x2946) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B01C7/serialNumber=E8DF8D5E4C84DA87D729A73C1C4E8611381AB2C1 Validity Not Before: Apr 2 15:33:09 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=660c2535-2ac2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:7c:87:2f:80:35:5a:a9:38:10:bc:85:d8:96: b1:3e:c9:62:55:4a:d1:b7:91:92:b1:a6:95:bb:28: c5:ba:e0:76:b5:2c:91:0a:c8:21:57:b2:a2:7d:84: 3f:21:40:41:e5:e1:12:d5:6c:20:44:89:0b:04:37: bc:66:90:ad:11:36:63:6e:cd:4b:81:98:35:a6:89: 80:be:cd:98:ca:19:ed:5e:b9:d5:a1:63:2c:02:d6: 1a:4d:7e:6b:f8:cd:6e:45:46:78:25:a0:b5:0e:a7: 53:8d:59:bf:59:44:10:f9:45:fb:c7:c1:9a:a8:2b: 7e:a2:a1:a2:b6:d0:ec:8c:9c:36:95:c4:69:03:b8: ac:90:ce:a6:e4:af:00:26:89:5c:67:13:49:6d:33: a5:bc:3c:e9:84:bf:d4:34:41:82:c3:48:e4:bf:df: ec:67:14:6f:03:a6:5d:53:bc:22:cb:25:cf:74:37: 46:5d:be:2b:0b:2a:38:a7:17:d9:00:fb:4a:b8:c9: 77:0c:b5:40:5d:dc:a2:bd:54:b4:7d:18:c0:b8:bb: 6f:a0:c9:0a:eb:f7:ba:a0:6f:28:30:5a:24:e0:34: 68:39:85:84:bc:cc:da:3f:ec:06:a0:d6:3c:b7:03: df:af:80:fb:b2:5d:6d:0d:f7:35:a1:c6:ea:71:aa: ab:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:41:B1:5C:60:C4:1C:C0:36:08:26:E6:77:CB:03:38:B8:89:4F:6B X509v3 Authority Key Identifier: keyid:E8:DF:8D:5E:4C:84:DA:87:D7:29:A7:3C:1C:4E:86:11:38:1A:B2:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/6N-NXkyE2ofXKac8HE6GETgassE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6N-NXkyE2ofXKac8HE6GETgassE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B01C7/97CF20FA332311E4A6E74911C4F9AE02/3785190EF0FE11EEA034D07EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.192.0/22 Signature Algorithm: sha256WithRSAEncryption 84:8f:c2:d0:b0:a4:6d:30:96:38:9b:c2:3c:39:1f:71:14:35: f0:61:77:f1:39:29:be:54:f8:c2:d9:dd:50:f7:03:c6:0b:0e: 53:c1:c8:72:f2:8e:9f:67:da:40:b8:f9:e6:2d:c4:f6:ab:83: 7d:9c:cd:dc:24:17:66:16:1b:30:23:eb:19:0e:2a:b3:c9:2e: bb:70:33:58:5e:7a:d5:fa:91:bf:88:d1:4b:21:49:79:ad:75: 70:f2:70:b9:93:e1:66:7a:d1:6c:dc:10:72:96:73:5b:17:45: 20:54:46:77:29:86:9e:30:fe:25:3c:b3:5d:56:44:03:9c:f3: be:e3:86:62:79:10:fd:7b:bc:5f:98:b7:fb:a1:d4:52:24:b7: f6:d8:95:ec:b5:ed:a0:0e:61:2f:a5:ee:ad:34:fa:7e:ff:8c: b0:84:41:81:c7:99:3a:3a:ea:85:35:74:21:ed:0f:61:81:c4: 60:cd:ec:be:73:48:41:65:e5:74:c2:68:2e:90:89:d2:4f:46: 92:39:4e:9a:b8:bd:c2:c3:94:ae:ca:00:d9:4c:cd:a7:44:b7: 76:0a:af:e6:91:a6:d5:6c:ba:b5:e4:ac:08:62:a4:a1:da:19: a4:1d:34:16:7f:60:8f:3d:dc:a9:4d:ae:79:b9:5b:46:10:f9: 4e:91:17:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICKUYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjAxQzcxMTAvBgNVBAUTKEU4REY4RDVFNEM4NERBODdENzI5QTczQzFDNEU4NjEx MzgxQUIyQzEwHhcNMjQwNDAyMTUzMzA5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjMjUzNS0yYWMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA83yHL4A1Wqk4ELyF2JaxPsliVUrRt5GSsaaVuyjFuuB2tSyRCsghV7KifYQ/ IUBB5eES1WwgRIkLBDe8ZpCtETZjbs1LgZg1pomAvs2YyhntXrnVoWMsAtYaTX5r +M1uRUZ4JaC1DqdTjVm/WUQQ+UX7x8GaqCt+oqGittDsjJw2lcRpA7iskM6m5K8A JolcZxNJbTOlvDzphL/UNEGCw0jkv9/sZxRvA6ZdU7wiyyXPdDdGXb4rCyo4pxfZ APtKuMl3DLVAXdyivVS0fRjAuLtvoMkK6/e6oG8oMFok4DRoOYWEvMzaP+wGoNY8 twPfr4D7sl1tDfc1ocbqcaqrswIDAQABo4IClTCCApEwHQYDVR0OBBYEFFtBsVxg xBzANggm5nfLAzi4iU9rMB8GA1UdIwQYMBaAFOjfjV5MhNqH1ymnPBxOhhE4GrLB MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMDFDNy85N0NGMjBGQTMz MjMxMUU0QTZFNzQ5MTFDNEY5QUUwMi82Ti1OWGt5RTJvZlhLYWM4SEU2R0VUZ2Fz c0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZOLU5Ya3lFMm9mWEthYzhIRTZHRVRnYXNzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjAxQzcvOTdDRjIwRkEzMzIzMTFFNEE2RTc0OTExQzRGOUFFMDIvMzc4NTE5MEVG MEZFMTFFRUEwMzREMDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAIr9cAwDQYJKoZIhvcNAQELBQADggEBAISPwtCwpG0wljib wjw5H3EUNfBhd/E5Kb5U+MLZ3VD3A8YLDlPByHLyjp9n2kC4+eYtxParg32czdwk F2YWGzAj6xkOKrPJLrtwM1heetX6kb+I0UshSXmtdXDycLmT4WZ60WzcEHKWc1sX RSBURncphp4w/iU8s11WRAOc877jhmJ5EP17vF+Yt/uh1FIkt/bYley17aAOYS+l 7q00+n7/jLCEQYHHmTo66oU1dCHtD2GBxGDN7L5zSEFl5XTCaC6QidJPRpI5Tpq4 vcLDlK7KANlMzadEt3YKr+aRptVsurXkrAhipKHaGaQdNBZ/YI893KlNrnm5W0YQ +U6RFxk= -----END CERTIFICATE-----Generated at Sat May 18 17:20:34 2024 by rpki-client on console-ams.rpki-client.org