$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/3C5E55F041A411ECA73C8C0EC4F9AE02.roa File: 3C5E55F041A411ECA73C8C0EC4F9AE02.roa (raw, json) Hash identifier: oKkOWzU+Vgiv5RBLsspfXvlXf9rTWtPxNzorpsuGpiQ= Subject key identifier: 6D:1C:C1:D9:C0:F0:CA:DE:FF:83:E8:04:05:E4:43:AF:28:71:FB:4C Certificate issuer: /CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Certificate serial: 0513 Authority key identifier: DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/3C5E55F041A411ECA73C8C0EC4F9AE02.roa Signing time: Fri 03 Nov 2023 00:52:38 +0000 ROA not before: Fri 03 Nov 2023 00:52:38 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 44356 IP address blocks: 103.229.96.0/24 maxlen: 24 180.178.72.0/22 maxlen: 22 180.178.72.0/24 maxlen: 24 180.178.73.0/24 maxlen: 24 180.178.74.0/24 maxlen: 24 180.178.75.0/24 maxlen: 24 180.178.76.0/24 maxlen: 24 180.178.77.0/24 maxlen: 24 180.178.78.0/23 maxlen: 24 2402:4400::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 00:49:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1299 (0x513) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2C88/serialNumber=DA013E178358CB35A8B765C9BC090AE9CF1C4FBE Validity Not Before: Nov 3 00:52:38 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65444456-ea49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:55:b0:17:d5:16:1f:a8:1b:82:24:75:d9:81: fb:38:f0:9c:86:92:22:67:b2:fc:f8:54:e9:9e:99: 74:e6:14:73:95:43:7d:f8:54:d9:6e:a8:0e:e6:f0: 85:c6:c9:bf:8a:c7:17:3b:78:2a:b9:32:d6:4c:82: d2:67:90:05:20:e5:df:07:70:cb:2d:23:0a:ea:ee: ba:2c:16:d5:22:96:7a:62:13:18:b6:f4:a9:50:ca: 8f:88:09:67:c9:5b:c4:43:33:2d:a7:aa:ec:96:84: 71:76:cb:8e:6f:a5:fe:1d:2e:fc:e1:ea:b7:a0:2e: d3:13:0d:dd:03:43:86:2a:8e:73:29:93:14:e9:07: 34:cd:30:e0:4c:af:0a:a3:15:e4:c0:a1:f1:c2:6a: 0a:4b:90:41:b7:77:6c:25:1e:65:64:e9:60:c3:b7: 97:fc:99:44:d8:ba:e5:ff:11:70:bc:76:ec:a2:8c: 62:c6:7a:cb:f8:83:c6:44:d3:80:4e:e3:aa:fb:ee: 92:c0:a2:fb:2a:be:e1:75:2b:4e:b2:5e:56:41:46: d2:36:00:6e:96:f0:22:59:a8:5e:20:f1:a2:a6:4a: e1:bf:67:39:40:fc:b1:af:db:b4:76:fa:91:28:22: 42:f8:2e:d0:be:ec:d2:65:45:50:65:70:32:4a:64: b4:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:1C:C1:D9:C0:F0:CA:DE:FF:83:E8:04:05:E4:43:AF:28:71:FB:4C X509v3 Authority Key Identifier: keyid:DA:01:3E:17:83:58:CB:35:A8:B7:65:C9:BC:09:0A:E9:CF:1C:4F:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/2gE-F4NYyzWot2XJvAkK6c8cT74.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2gE-F4NYyzWot2XJvAkK6c8cT74.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2C88/24299DCA978E11EBBD81B055C4F9AE02/3C5E55F041A411ECA73C8C0EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.96.0/24 180.178.72.0/21 IPv6: 2402:4400::/32 Signature Algorithm: sha256WithRSAEncryption 24:ed:5d:ca:44:07:e2:b5:46:c2:38:bb:41:7b:de:68:19:4c: 9d:9d:db:54:85:33:ff:e5:fc:7e:6a:35:12:36:93:34:2c:34: bf:5f:1f:47:72:35:41:ec:b3:14:68:9b:78:fe:be:15:f4:49: b1:2a:b3:51:6f:e0:11:ea:9b:fb:d6:c6:2b:69:1b:43:d3:5b: 9c:00:a2:81:7f:97:06:37:ce:a1:ea:97:5c:a5:17:7b:45:7b: fb:b2:ce:1a:ec:96:0e:f3:09:88:a0:06:e5:d7:77:3d:47:5b: 4f:6d:80:00:6a:79:3f:d6:2b:18:5e:3d:f9:25:a5:2a:15:0b: 12:a3:d0:f5:f3:61:f8:ca:d3:57:38:77:f3:e6:22:0e:58:21: 2c:48:11:84:1a:2c:5f:36:07:19:7e:21:ca:f7:5b:62:4d:9a: 4d:ab:0a:cd:a6:52:99:0f:4a:7c:e7:25:d5:58:c4:46:66:a3: 59:fa:40:25:23:7e:b9:4c:ce:fb:4f:a4:64:e3:99:ee:79:12: 23:52:8c:af:8b:65:1d:80:5c:33:71:28:13:8a:6a:ad:11:07: 9f:05:7c:4c:01:c0:97:24:8d:07:a2:9f:fe:58:41:29:33:66: cc:59:ab:88:87:1e:b6:8b:f7:3e:ed:97:c6:04:2e:f7:e7:81: 0a:43:df:ab -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICBRMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJDODgxMTAvBgNVBAUTKERBMDEzRTE3ODM1OENCMzVBOEI3NjVDOUJDMDkwQUU5 Q0YxQzRGQkUwHhcNMjMxMTAzMDA1MjM4WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ0NDQ1Ni1lYTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAplWwF9UWH6gbgiR12YH7OPCchpIiZ7L8+FTpnpl05hRzlUN9+FTZbqgO5vCF xsm/iscXO3gquTLWTILSZ5AFIOXfB3DLLSMK6u66LBbVIpZ6YhMYtvSpUMqPiAln yVvEQzMtp6rsloRxdsuOb6X+HS784eq3oC7TEw3dA0OGKo5zKZMU6Qc0zTDgTK8K oxXkwKHxwmoKS5BBt3dsJR5lZOlgw7eX/JlE2Lrl/xFwvHbsooxixnrL+IPGRNOA TuOq++6SwKL7Kr7hdStOsl5WQUbSNgBulvAiWaheIPGipkrhv2c5QPyxr9u0dvqR KCJC+C7QvuzSZUVQZXAySmS0GQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFG0cwdnA 8Mre/4PoBAXkQ68ocftMMB8GA1UdIwQYMBaAFNoBPheDWMs1qLdlybwJCunPHE++ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkM4OC8yNDI5OURDQTk3 OEUxMUVCQkQ4MUIwNTVDNEY5QUUwMi8yZ0UtRjROWXl6V290MlhKdkFrSzZjOGNU NzQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJnRS1GNE5ZeXpXb3QyWEp2QWtLNmM4Y1Q3NC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJDODgvMjQyOTlEQ0E5NzhFMTFFQkJEODFCMDU1QzRGOUFFMDIvM0M1RTU1RjA0 MUE0MTFFQ0E3M0M4QzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABn5WADBAO0skgwDQQCAAIwBwMFACQCRAAwDQYJKoZIhvcN AQELBQADggEBACTtXcpEB+K1RsI4u0F73mgZTJ2d21SFM//l/H5qNRI2kzQsNL9f H0dyNUHssxRom3j+vhX0SbEqs1Fv4BHqm/vWxitpG0PTW5wAooF/lwY3zqHql1yl F3tFe/uyzhrslg7zCYigBuXXdz1HW09tgABqeT/WKxhePfklpSoVCxKj0PXzYfjK 01c4d/PmIg5YISxIEYQaLF82Bxl+Icr3W2JNmk2rCs2mUpkPSnznJdVYxEZmo1n6 QCUjfrlMzvtPpGTjme55EiNSjK+LZR2AXDNxKBOKaq0RB58FfEwBwJckjQein/5Y QSkzZsxZq4iHHraL9z7tl8YELvfngQpD36s= -----END CERTIFICATE-----Generated at Wed May 15 02:26:59 2024 by rpki-client on console-fra.rpki-client.org