$ rpki-client -vvf rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/94C13908C4AF11EDBCC55111C4F9AE02.roa File: 94C13908C4AF11EDBCC55111C4F9AE02.roa (raw, json) Hash identifier: sgeGdTCEg1aVxZonkxQ4HN7mUJeSeC9YD1Zcflsl44w= Subject key identifier: BD:A1:CC:75:51:43:F3:48:D7:C1:49:77:6E:B3:A1:87:20:B8:DA:68 Certificate issuer: /CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Certificate serial: 01A1 Authority key identifier: 2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/94C13908C4AF11EDBCC55111C4F9AE02.roa Signing time: Tue 19 Mar 2024 05:37:19 +0000 ROA not before: Tue 19 Mar 2024 05:37:19 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 39486 IP address blocks: 43.228.237.0/24 maxlen: 24 103.109.244.0/24 maxlen: 24 103.192.205.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 04:58:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 417 (0x1a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B6587/serialNumber=2D634077CC847B59D4048D43E04B3309698FE638 Validity Not Before: Mar 19 05:37:19 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65f9248f-71cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2b:cf:74:e0:d7:f6:60:af:d8:da:19:93:5a: 57:67:f7:fa:5a:0c:06:c0:de:98:06:74:5e:fc:35: ce:2e:12:3b:36:a4:17:59:0b:a3:26:8e:a2:d5:e7: f7:0c:19:53:49:a0:cf:91:06:be:7d:26:2d:f5:6c: fe:91:0e:8d:89:9c:1d:10:54:b8:24:31:5b:25:fd: d9:6f:fb:14:a6:79:32:ba:e2:8e:c5:b5:95:4e:64: 49:6a:b6:1d:88:69:0c:ff:38:aa:4b:14:e7:d7:23: 51:96:04:f6:86:a4:b3:b7:cc:6c:bb:96:33:45:c5: ed:eb:d0:cc:86:c4:97:e5:06:ba:52:40:52:76:b7: e6:44:76:a3:66:02:9c:c8:f9:d0:32:a9:18:80:48: d8:37:30:ea:d8:4e:b0:de:b6:cf:f6:27:30:80:0a: 89:15:26:26:08:2c:39:5b:f2:5e:36:53:19:88:b2: 7b:e0:17:4f:b1:1c:b4:8b:9e:b1:31:05:cd:b2:10: cc:df:02:d9:0c:f7:f5:84:4e:86:39:d7:f0:5b:41: d9:b6:ea:08:35:61:64:04:44:4a:be:30:33:fb:fc: 7f:e5:77:17:1f:8e:45:b0:cc:c8:61:69:96:cd:c0: cc:51:24:54:2c:ee:4e:2f:88:37:36:81:10:d4:ea: 0d:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:A1:CC:75:51:43:F3:48:D7:C1:49:77:6E:B3:A1:87:20:B8:DA:68 X509v3 Authority Key Identifier: keyid:2D:63:40:77:CC:84:7B:59:D4:04:8D:43:E0:4B:33:09:69:8F:E6:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/LWNAd8yEe1nUBI1D4EszCWmP5jg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LWNAd8yEe1nUBI1D4EszCWmP5jg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B6587/417D71B4918611EDA84A124DC4F9AE02/94C13908C4AF11EDBCC55111C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.228.237.0/24 103.109.244.0/24 103.192.205.0/24 Signature Algorithm: sha256WithRSAEncryption 90:7e:22:39:a6:f7:e2:f0:d9:27:4f:6d:e0:e4:ba:67:63:a4: 3d:94:4f:84:8c:77:94:0d:98:bb:7e:aa:b8:ea:92:5c:13:af: c2:eb:6c:4a:ba:bc:01:f5:43:06:97:09:f5:99:84:66:af:3f: 36:84:1d:d3:e5:e2:6c:01:24:f7:08:3c:53:ce:68:f0:1f:63: eb:0e:16:98:d5:c9:33:9d:4d:69:03:cf:94:53:d9:c1:cc:11: b4:70:5d:43:95:35:d1:75:ea:23:05:0e:33:ad:84:0b:ab:f0: 85:34:1f:24:67:93:03:9f:b6:6a:13:aa:eb:f6:8e:d0:31:40: 4f:22:13:24:fc:c7:6f:f2:89:51:51:b1:da:3e:62:56:6a:d7: ec:03:e8:2f:4e:a5:d9:a3:93:09:ae:de:3d:1f:90:09:7f:33: 71:1c:da:15:46:63:7a:3f:4b:cc:4b:7b:f3:1e:30:62:0f:b3: e0:1f:10:80:1d:67:9a:ca:2b:22:34:da:d2:2f:9c:6d:b7:fd: a0:bd:d8:37:0c:c0:a5:ac:e1:88:b3:da:bf:2c:5a:5c:e7:7f: e6:f2:7b:cf:e9:82:84:fb:b0:42:59:c8:2a:15:d7:6c:66:2c: 34:41:c2:5c:43:64:28:f3:3c:c6:40:40:56:1c:d8:99:c5:f8: 56:c5:4f:0b -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAaEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjY1ODcxMTAvBgNVBAUTKDJENjM0MDc3Q0M4NDdCNTlENDA0OEQ0M0UwNEIzMzA5 Njk4RkU2MzgwHhcNMjQwMzE5MDUzNzE5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY5MjQ4Zi03MWNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqivPdODX9mCv2NoZk1pXZ/f6WgwGwN6YBnRe/DXOLhI7NqQXWQujJo6i1ef3 DBlTSaDPkQa+fSYt9Wz+kQ6NiZwdEFS4JDFbJf3Zb/sUpnkyuuKOxbWVTmRJarYd iGkM/ziqSxTn1yNRlgT2hqSzt8xsu5YzRcXt69DMhsSX5Qa6UkBSdrfmRHajZgKc yPnQMqkYgEjYNzDq2E6w3rbP9icwgAqJFSYmCCw5W/JeNlMZiLJ74BdPsRy0i56x MQXNshDM3wLZDPf1hE6GOdfwW0HZtuoINWFkBERKvjAz+/x/5XcXH45FsMzIYWmW zcDMUSRULO5OL4g3NoEQ1OoNUQIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFL2hzHVR Q/NI18FJd26zoYcguNpoMB8GA1UdIwQYMBaAFC1jQHfMhHtZ1ASNQ+BLMwlpj+Y4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNjU4Ny80MTdENzFCNDkx ODYxMUVEQTg0QTEyNERDNEY5QUUwMi9MV05BZDh5RWUxblVCSTFENEVzekNXbVA1 amcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xXTkFkOHlFZTFuVUJJMUQ0RXN6Q1dtUDVqZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjY1ODcvNDE3RDcxQjQ5MTg2MTFFREE4NEExMjREQzRGOUFFMDIvOTRDMTM5MDhD NEFGMTFFREJDQzU1MTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAAr5O0DBABnbfQDBABnwM0wDQYJKoZIhvcNAQELBQADggEB AJB+Ijmm9+Lw2SdPbeDkumdjpD2UT4SMd5QNmLt+qrjqklwTr8LrbEq6vAH1QwaX CfWZhGavPzaEHdPl4mwBJPcIPFPOaPAfY+sOFpjVyTOdTWkDz5RT2cHMEbRwXUOV NdF16iMFDjOthAur8IU0HyRnkwOftmoTquv2jtAxQE8iEyT8x2/yiVFRsdo+YlZq 1+wD6C9Opdmjkwmu3j0fkAl/M3Ec2hVGY3o/S8xLe/MeMGIPs+AfEIAdZ5rKKyI0 2tIvnG23/aC92DcMwKWs4Yiz2r8sWlznf+bye8/pgoT7sEJZyCoV12xmLDRBwlxD ZCjzPMZAQFYc2JnF+FbFTws= -----END CERTIFICATE-----Generated at Wed May 15 06:46:32 2024 by rpki-client on console-fra.rpki-client.org