$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa File: 7CEC1452E17E11ECAB421316C4F9AE02.roa (raw, json) Hash identifier: b3Smxf2AJ0/tZN8SDqJDkMjcugC6D1yNgshDTKRjRwU= Subject key identifier: 8D:B2:14:D8:10:31:FA:CF:02:A9:B2:9D:17:D6:AA:6F:01:DC:A1:29 Certificate issuer: /CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Certificate serial: 07B9 Authority key identifier: B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa Signing time: Sat 08 Oct 2022 16:22:44 +0000 ROA not before: Sat 08 Oct 2022 16:22:44 +0000 ROA not after: Fri 01 Dec 2023 00:00:00 +0000 asID: 58895 IP address blocks: 43.246.220.0/22 maxlen: 24 103.35.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 May 2023 16:27:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1977 (0x7b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Validity Not Before: Oct 8 16:22:44 2022 GMT Not After : Dec 1 00:00:00 2023 GMT Subject: CN=6341a3d3-5078 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a3:84:9e:2a:88:1a:09:d4:fb:ec:f8:6c:70: ed:ba:33:cb:0e:3c:98:7c:66:7a:71:5d:af:23:ef: cd:72:b5:c3:3a:f2:7b:a8:e1:1a:10:79:83:fe:99: 39:2d:a3:20:d9:16:21:5b:9a:44:f9:6c:b6:0b:ad: 3e:98:7f:bb:86:4a:d5:a2:37:19:d9:6d:c4:51:3c: 3e:e0:bf:e0:48:a8:c8:8e:78:e1:02:06:a4:be:78: 87:45:e0:a0:e7:72:08:ce:c4:ac:88:08:eb:b0:1f: 65:3a:e2:6d:d3:b0:7e:f2:42:11:72:d4:7a:30:5f: db:5c:51:20:26:b7:9a:10:48:f7:e3:55:a8:b5:74: d5:6f:6a:22:d4:7b:1b:63:19:73:32:c2:2d:12:b6: 46:2b:ba:cf:9c:d1:e5:a3:15:db:1a:69:4e:3c:c4: db:c2:f7:51:7f:ae:e2:db:35:7b:cb:b7:dd:56:03: 45:34:90:4d:cf:a0:f8:f9:26:c6:a4:00:f4:cd:71: 2c:c0:7a:01:a9:99:d6:83:56:21:c5:25:79:b8:93: ad:2c:da:92:b4:82:ae:5b:c9:b8:92:ea:72:5d:87: 13:bd:b5:1a:84:5c:79:15:0e:2b:6f:83:26:da:d4: 9b:6d:82:60:ea:0f:7f:c2:7a:f7:f1:8e:52:75:83: 9e:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:B2:14:D8:10:31:FA:CF:02:A9:B2:9D:17:D6:AA:6F:01:DC:A1:29 X509v3 Authority Key Identifier: keyid:B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.220.0/22 103.35.208.0/22 Signature Algorithm: sha256WithRSAEncryption 1c:d0:76:b0:5e:4e:3e:15:7b:a4:3e:9a:bd:d4:b3:9c:3a:78: 41:03:a5:14:a3:51:5c:8b:fd:57:2d:af:dd:46:35:f7:5e:3c: 6e:d4:ed:5b:7e:f2:6a:f1:46:23:e1:a7:48:98:bb:d4:dc:98: c6:76:4f:fd:b4:32:87:fe:7c:31:9d:f4:a6:e6:0b:c7:31:62: 46:73:a7:91:57:94:d2:66:73:54:71:f6:a9:c1:12:34:62:6d: 72:4e:e1:40:9a:b7:b6:94:3e:63:89:d2:30:ec:a8:f0:b1:08: ff:11:75:51:a3:55:eb:8d:1f:8d:bd:6b:a4:b9:5c:86:61:3b: 68:79:15:d3:4b:ba:1f:0d:1f:9f:2d:b6:f0:ca:f0:12:51:ea: 01:8d:59:70:ec:bf:0d:12:9c:b4:10:e1:89:68:31:46:20:a7: 60:74:38:9f:ef:91:ec:16:82:1c:eb:f6:ca:56:42:cc:ef:46: c5:3e:aa:5e:74:88:fc:96:1d:86:27:56:4a:97:c9:3b:88:1d: 26:8e:9e:6d:c0:9f:4e:1d:75:23:34:24:52:89:ad:93:4c:9f: ee:5c:8e:81:d2:17:69:cc:c8:69:1f:48:83:66:3c:7e:1d:ec: 27:6d:4e:d5:ff:72:03:03:fe:d4:4f:9e:05:10:b7:60:fc:a9: dc:dc:9e:12 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB7kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJEMjkxMTAvBgNVBAUTKEI4RTk2QzZBMEQ5NTQ4QTJBMDQwQ0JFNzE5OTc0NUJB N0RCMUVEMjgwHhcNMjIxMDA4MTYyMjQ0WhcNMjMxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02MzQxYTNkMy01MDc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1KOEniqIGgnU++z4bHDtujPLDjyYfGZ6cV2vI+/NcrXDOvJ7qOEaEHmD/pk5 LaMg2RYhW5pE+Wy2C60+mH+7hkrVojcZ2W3EUTw+4L/gSKjIjnjhAgakvniHReCg 53IIzsSsiAjrsB9lOuJt07B+8kIRctR6MF/bXFEgJreaEEj341WotXTVb2oi1Hsb YxlzMsItErZGK7rPnNHloxXbGmlOPMTbwvdRf67i2zV7y7fdVgNFNJBNz6D4+SbG pAD0zXEswHoBqZnWg1YhxSV5uJOtLNqStIKuW8m4kupyXYcTvbUahFx5FQ4rb4Mm 2tSbbYJg6g9/wnr38Y5SdYOeyQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFI2yFNgQ MfrPAqmynRfWqm8B3KEpMB8GA1UdIwQYMBaAFLjpbGoNlUiioEDL5xmXRbp9se0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkQyOS9GNzFFNzE2NjU1 MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNLS2dRTXZuR1pkRnVuMng3 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPbHNhZzJWU0tLZ1FNdm5HWmRGdW4yeDdTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJEMjkvRjcxRTcxNjY1NTIxMTFFNUFEQjIwOTJBQzRGOUFFMDIvN0NFQzE0NTJF MTdFMTFFQ0FCNDIxMzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr9twDBAJnI9AwDQYJKoZIhvcNAQELBQADggEBABzQdrBe Tj4Ve6Q+mr3Us5w6eEEDpRSjUVyL/Vctr91GNfdePG7U7Vt+8mrxRiPhp0iYu9Tc mMZ2T/20Mof+fDGd9KbmC8cxYkZzp5FXlNJmc1Rx9qnBEjRibXJO4UCat7aUPmOJ 0jDsqPCxCP8RdVGjVeuNH429a6S5XIZhO2h5FdNLuh8NH58ttvDK8BJR6gGNWXDs vw0SnLQQ4YloMUYgp2B0OJ/vkewWghzr9spWQszvRsU+ql50iPyWHYYnVkqXyTuI HSaOnm3An04ddSM0JFKJrZNMn+5cjoHSF2nMyGkfSINmPH4d7CdtTtX/cgMD/tRP ngUQt2D8qdzcnhI= -----END CERTIFICATE-----Generated at Wed May 3 13:19:22 2023 by rpki-client on console-ams.rpki-client.org