$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa File: 7CEC1452E17E11ECAB421316C4F9AE02.roa (raw, json) Hash identifier: nG/jUopxkthLdcs0Bc0H5El6keEVWt1e+jWBx/e/uTE= Subject key identifier: 33:93:C1:11:EA:FF:A4:6C:12:A7:7D:70:B1:F9:81:BD:13:45:25:75 Certificate issuer: /CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Certificate serial: 087D Authority key identifier: B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa Signing time: Mon 16 Oct 2023 16:22:50 +0000 ROA not before: Mon 16 Oct 2023 16:22:50 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58895 IP address blocks: 43.246.220.0/22 maxlen: 24 103.35.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Apr 2024 16:09:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2173 (0x87d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Validity Not Before: Oct 16 16:22:50 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=652d635a-1070 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a1:a9:10:93:fb:d7:8b:d3:fe:87:98:86:3e: 3e:dc:f7:a5:73:03:0d:7f:82:12:fa:de:9f:7b:25: e1:89:9f:66:c1:d9:8d:db:ce:67:17:20:12:77:fe: 3f:d3:b6:54:d3:41:6c:31:ce:6b:f1:62:d2:10:50: d2:aa:f2:64:71:4f:c3:3e:fb:e7:1e:52:b7:fc:7c: d0:76:12:13:2c:ab:5c:00:f4:0d:c3:6d:b1:af:67: 9e:d4:61:72:c0:26:2a:86:fe:d3:e4:51:9d:13:0c: 6a:db:f0:88:b0:fa:27:d3:5e:31:1f:3a:f3:d0:3f: 32:11:e3:8c:93:5f:4d:7b:c5:32:3c:63:b2:0a:55: 4c:e8:01:4b:65:4e:18:cc:24:08:dc:21:ec:f2:72: 9d:2d:bd:cb:77:56:7a:ba:d6:c4:d0:f4:e5:cb:ff: 1f:ad:30:c3:ef:53:c8:48:d6:97:0c:b1:ae:3e:db: d7:ce:d0:41:5d:2b:6c:10:12:ed:f6:e3:2c:dd:1e: 5d:34:73:84:6d:08:86:bc:4c:c9:28:d6:b1:60:d5: b6:93:08:7f:6b:a9:c0:a0:d5:51:78:31:0a:bb:1b: 71:d8:b7:39:63:51:da:61:52:64:33:f4:5c:03:fb: f4:67:1f:7b:ce:7c:14:f7:b6:27:f2:57:f6:cf:a6: 76:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:93:C1:11:EA:FF:A4:6C:12:A7:7D:70:B1:F9:81:BD:13:45:25:75 X509v3 Authority Key Identifier: keyid:B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.220.0/22 103.35.208.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:c8:90:89:c9:46:ac:55:b5:fc:50:e6:18:bc:67:f3:26:7b: 91:e1:98:b9:a0:24:28:55:1a:e2:6e:44:f4:84:c2:a1:e7:d6: ba:6f:8e:1e:60:14:0b:cb:f3:e1:84:3d:ab:0c:eb:cf:39:8d: e7:ba:d3:36:75:4a:36:3a:eb:cb:ce:ce:14:9c:41:33:20:b9: 2d:5f:a2:9b:dd:5e:31:ce:ab:05:b8:40:dd:2d:49:b1:d2:21: f5:8d:05:72:08:d2:33:ea:d4:de:fa:82:d7:0e:0e:22:75:9a: bd:53:fb:82:c4:5c:ea:96:0e:f3:a5:69:f1:e3:db:93:6b:b0: 54:75:5f:92:b7:73:fd:2d:74:5f:2e:f2:87:d4:c0:1f:8b:50: ae:a5:99:cf:ea:77:80:f6:69:34:56:f6:fb:24:69:a2:58:1a: 53:7f:38:9d:33:7e:3c:10:bd:99:29:03:25:f2:a5:66:99:6c: 2d:cc:46:aa:c2:fb:1f:e3:e8:bf:35:51:8f:4f:9d:e2:04:8d: a8:a0:43:18:52:ff:57:c2:61:35:5c:d1:d9:cd:3f:85:b9:fd: 7a:ce:41:2d:bb:69:c3:5c:c0:3e:11:70:e7:29:81:17:48:76: 48:40:63:a9:78:af:89:25:d2:81:3e:7a:38:c2:90:32:ed:d7: 32:cb:ad:8b -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCH0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJEMjkxMTAvBgNVBAUTKEI4RTk2QzZBMEQ5NTQ4QTJBMDQwQ0JFNzE5OTc0NUJB N0RCMUVEMjgwHhcNMjMxMDE2MTYyMjUwWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkNjM1YS0xMDcwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqaGpEJP714vT/oeYhj4+3PelcwMNf4IS+t6feyXhiZ9mwdmN285nFyASd/4/ 07ZU00FsMc5r8WLSEFDSqvJkcU/DPvvnHlK3/HzQdhITLKtcAPQNw22xr2ee1GFy wCYqhv7T5FGdEwxq2/CIsPon014xHzrz0D8yEeOMk19Ne8UyPGOyClVM6AFLZU4Y zCQI3CHs8nKdLb3Ld1Z6utbE0PTly/8frTDD71PISNaXDLGuPtvXztBBXStsEBLt 9uMs3R5dNHOEbQiGvEzJKNaxYNW2kwh/a6nAoNVReDEKuxtx2Lc5Y1HaYVJkM/Rc A/v0Zx97znwU97Yn8lf2z6Z2zwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDOTwRHq /6RsEqd9cLH5gb0TRSV1MB8GA1UdIwQYMBaAFLjpbGoNlUiioEDL5xmXRbp9se0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkQyOS9GNzFFNzE2NjU1 MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNLS2dRTXZuR1pkRnVuMng3 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPbHNhZzJWU0tLZ1FNdm5HWmRGdW4yeDdTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJEMjkvRjcxRTcxNjY1NTIxMTFFNUFEQjIwOTJBQzRGOUFFMDIvN0NFQzE0NTJF MTdFMTFFQ0FCNDIxMzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr9twDBAJnI9AwDQYJKoZIhvcNAQELBQADggEBAD/IkInJ RqxVtfxQ5hi8Z/Mme5HhmLmgJChVGuJuRPSEwqHn1rpvjh5gFAvL8+GEPasM6885 jee60zZ1SjY668vOzhScQTMguS1fopvdXjHOqwW4QN0tSbHSIfWNBXII0jPq1N76 gtcODiJ1mr1T+4LEXOqWDvOlafHj25NrsFR1X5K3c/0tdF8u8ofUwB+LUK6lmc/q d4D2aTRW9vskaaJYGlN/OJ0zfjwQvZkpAyXypWaZbC3MRqrC+x/j6L81UY9PneIE jaigQxhS/1fCYTVc0dnNP4W5/XrOQS27acNcwD4RcOcpgRdIdkhAY6l4r4kl0oE+ ejjCkDLt1zLLrYs= -----END CERTIFICATE-----Generated at Tue Apr 23 18:44:24 2024 by rpki-client on console-ams.rpki-client.org