$ rpki-client -vvf rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/61883292ADA511EDB2C68947C4F9AE02.roa File: 61883292ADA511EDB2C68947C4F9AE02.roa (raw, json) Hash identifier: 11PyH5TvXQ0r5ME5Ee83Ppo1yXxDKq4IEnegpCrapA8= Subject key identifier: 80:79:24:18:3F:6A:29:94:DB:1F:41:3A:3F:C7:1F:68:C2:B6:97:85 Certificate issuer: /CN=A91B834D/serialNumber=D0E54405B03D3D123459DE01BB400F4D7A8329D0 Certificate serial: C1 Authority key identifier: D0:E5:44:05:B0:3D:3D:12:34:59:DE:01:BB:40:0F:4D:7A:83:29:D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/61883292ADA511EDB2C68947C4F9AE02.roa Signing time: Sat 03 Feb 2024 05:17:04 +0000 ROA not before: Sat 03 Feb 2024 05:17:04 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133480 IP address blocks: 203.17.122.0/24 maxlen: 24 203.18.16.0/24 maxlen: 24 203.18.17.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.crl rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 193 (0xc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B834D/serialNumber=D0E54405B03D3D123459DE01BB400F4D7A8329D0 Validity Not Before: Feb 3 05:17:04 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bdcc50-0bc2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:15:ed:5e:bc:b1:c6:bb:12:aa:7f:99:27:1d: dc:25:f1:26:69:81:f7:52:83:1c:09:08:cd:ea:73: f2:5f:a5:31:4f:d4:ca:16:c9:65:d8:37:5e:b4:3d: f5:e1:2a:bf:a3:ba:93:60:28:7d:2c:c4:b9:86:c6: dc:23:b1:1a:e2:62:8e:22:cf:b9:fc:8e:8e:ed:60: 00:8f:ac:77:22:2b:b2:9d:1e:82:0e:c7:59:d1:1a: 9e:1b:0f:a8:6e:ce:d3:5d:7e:fc:f3:fc:aa:72:5a: 59:37:88:cf:9b:07:9a:1a:e8:ed:2c:ae:0b:20:46: 46:3d:83:0a:78:3d:5e:b3:f3:e6:e6:ee:53:51:28: 5f:b9:f8:f6:bc:59:68:62:bf:96:e1:43:23:62:28: 95:ce:1e:7f:cd:1f:1b:0b:36:c1:bc:4b:2a:8e:8c: 97:21:2a:ea:d1:fb:00:5f:31:33:2c:d5:c6:f1:53: 0d:43:9c:67:53:c9:d5:f3:1f:51:67:32:69:b2:31: 1e:71:aa:40:ff:84:43:65:a4:22:33:49:5b:c1:46: b2:ff:95:3b:58:43:0b:0f:b7:25:69:09:f5:b0:b6: 55:41:cb:d6:c1:23:31:13:46:a2:d8:54:3b:2d:46: 4f:71:5b:0d:83:12:02:48:40:48:fe:86:c6:66:af: d0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:79:24:18:3F:6A:29:94:DB:1F:41:3A:3F:C7:1F:68:C2:B6:97:85 X509v3 Authority Key Identifier: keyid:D0:E5:44:05:B0:3D:3D:12:34:59:DE:01:BB:40:0F:4D:7A:83:29:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0OVEBbA9PRI0Wd4Bu0APTXqDKdA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B834D/3A2C5196ADA111EDAB6DF42DC4F9AE02/61883292ADA511EDB2C68947C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.17.122.0/24 203.18.16.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:f2:21:d5:6a:4a:e2:eb:2f:dc:1c:9a:9f:a5:e0:1a:fd:c4: 8b:b6:2c:d4:2b:2e:ec:6d:bf:ac:69:79:3c:75:b5:33:ca:c5: 72:e6:35:58:79:98:38:63:44:6d:23:fa:30:cd:50:de:32:93: 8f:30:18:d6:d9:3c:50:68:d3:4a:e7:cd:34:5b:7a:76:70:5e: fd:68:d9:0e:bc:31:69:90:71:69:5c:35:89:6f:b1:f8:8c:7e: b6:a3:5a:ac:ca:b7:2f:31:6a:de:b1:f3:20:f4:5c:a8:32:21: e3:41:20:a3:9b:6b:cf:c2:1c:2b:29:8d:32:e9:1a:54:a3:8b: 2f:0c:ad:3f:df:94:a0:f4:02:d6:60:55:22:b4:26:ad:f4:84: cf:a0:cc:74:4a:b9:21:92:0b:1a:c4:36:f4:7f:2f:13:fb:98: 46:4b:3f:0d:91:23:93:a3:71:0a:d2:4d:50:d1:8c:16:d0:17: 02:f8:88:23:c3:07:20:f7:b3:59:59:7f:21:3b:fb:43:e4:d1: 35:2b:0f:cb:de:e5:24:ab:e7:4b:44:d3:53:2f:24:72:59:a1: 9f:7d:70:4b:b4:a8:a0:61:d9:e8:d0:a6:e2:cb:53:86:de:52: fa:f3:f4:5c:a8:83:42:17:a6:95:c4:de:11:4b:79:3c:fa:80: 23:0f:de:90 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAMEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjgzNEQxMTAvBgNVBAUTKEQwRTU0NDA1QjAzRDNEMTIzNDU5REUwMUJCNDAwRjRE N0E4MzI5RDAwHhcNMjQwMjAzMDUxNzA0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkY2M1MC0wYmMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9xXtXryxxrsSqn+ZJx3cJfEmaYH3UoMcCQjN6nPyX6UxT9TKFsll2DdetD31 4Sq/o7qTYCh9LMS5hsbcI7Ea4mKOIs+5/I6O7WAAj6x3IiuynR6CDsdZ0RqeGw+o bs7TXX788/yqclpZN4jPmweaGujtLK4LIEZGPYMKeD1es/Pm5u5TUShfufj2vFlo Yr+W4UMjYiiVzh5/zR8bCzbBvEsqjoyXISrq0fsAXzEzLNXG8VMNQ5xnU8nV8x9R ZzJpsjEecapA/4RDZaQiM0lbwUay/5U7WEMLD7claQn1sLZVQcvWwSMxE0ai2FQ7 LUZPcVsNgxICSEBI/obGZq/QCwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIB5JBg/ aimU2x9BOj/HH2jCtpeFMB8GA1UdIwQYMBaAFNDlRAWwPT0SNFneAbtAD016gynQ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCODM0RC8zQTJDNTE5NkFE QTExMUVEQUI2REY0MkRDNEY5QUUwMi8wT1ZFQmJBOVBSSTBXZDRCdTBBUFRYcURL ZEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBPVkVCYkE5UFJJMFdkNEJ1MEFQVFhxREtkQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjgzNEQvM0EyQzUxOTZBREExMTFFREFCNkRGNDJEQzRGOUFFMDIvNjE4ODMyOTJB REE1MTFFREIyQzY4OTQ3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBADLEXoDBAHLEhAwDQYJKoZIhvcNAQELBQADggEBAH7yIdVq SuLrL9wcmp+l4Br9xIu2LNQrLuxtv6xpeTx1tTPKxXLmNVh5mDhjRG0j+jDNUN4y k48wGNbZPFBo00rnzTRbenZwXv1o2Q68MWmQcWlcNYlvsfiMfrajWqzKty8xat6x 8yD0XKgyIeNBIKOba8/CHCspjTLpGlSjiy8MrT/flKD0AtZgVSK0Jq30hM+gzHRK uSGSCxrENvR/LxP7mEZLPw2RI5OjcQrSTVDRjBbQFwL4iCPDByD3s1lZfyE7+0Pk 0TUrD8ve5SSr50tE01MvJHJZoZ99cEu0qKBh2ejQpuLLU4beUvrz9Fyog0IXppXE 3hFLeTz6gCMP3pA= -----END CERTIFICATE-----Generated at Wed May 1 07:07:05 2024 by rpki-client on console-fra.rpki-client.org