$ rpki-client -vvf rpki.apnic.net/member_repository/A91B8D4F/449ECC56EEE111EBBADE2C79C4F9AE02/444AF4A2EEEE11EB90326C4FC4F9AE02.roa File: 444AF4A2EEEE11EB90326C4FC4F9AE02.roa (raw, json) Hash identifier: n+/h/w1/LwNdbpecf5U7gjmfuM7SLXYPYr6dzyYio/I= Subject key identifier: 4A:02:01:2F:66:85:28:4D:FA:47:59:F8:CD:22:9C:A4:3F:C3:FC:54 Certificate issuer: /CN=A91B8D4F/serialNumber=05E7C402BCF4821577177BC833055576CE193EB6 Certificate serial: 040F Authority key identifier: 05:E7:C4:02:BC:F4:82:15:77:17:7B:C8:33:05:55:76:CE:19:3E:B6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BefEArz0ghV3F3vIMwVVds4ZPrY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B8D4F/449ECC56EEE111EBBADE2C79C4F9AE02/444AF4A2EEEE11EB90326C4FC4F9AE02.roa Signing time: Tue 29 Aug 2023 00:41:59 +0000 ROA not before: Tue 29 Aug 2023 00:41:59 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 0 IP address blocks: 103.119.232.0/23 maxlen: 23 103.119.234.0/24 maxlen: 24 103.119.235.0/24 maxlen: 24 2403:4ac0::/48 maxlen: 48 2403:4ac0:1::/48 maxlen: 48 2403:4ac0:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B8D4F/449ECC56EEE111EBBADE2C79C4F9AE02/BefEArz0ghV3F3vIMwVVds4ZPrY.crl rsync://rpki.apnic.net/member_repository/A91B8D4F/449ECC56EEE111EBBADE2C79C4F9AE02/BefEArz0ghV3F3vIMwVVds4ZPrY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BefEArz0ghV3F3vIMwVVds4ZPrY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Apr 2024 01:35:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1039 (0x40f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B8D4F/serialNumber=05E7C402BCF4821577177BC833055576CE193EB6 Validity Not Before: Aug 29 00:41:59 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ed3ed7-535d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:43:9d:49:f0:86:4f:2d:f8:f6:36:6c:95:d4: 75:3b:73:ee:84:28:be:6c:3d:3b:0f:55:f5:3e:c3: 1d:69:46:35:c5:f1:6d:41:cc:25:4c:05:fa:ce:06: 4a:d4:b7:a1:e2:6c:ef:59:36:11:18:6c:30:cc:04: 83:cb:bc:33:f8:4b:5e:62:a7:08:40:f9:7b:5f:b1: 1c:3b:ee:56:d2:67:af:aa:6a:f9:98:c2:eb:c9:fb: 0c:5d:7d:91:40:19:59:c3:aa:a1:57:7e:3b:f0:3b: 2f:4c:16:62:46:11:c4:b7:4b:95:31:1f:c8:93:de: 50:5a:a9:99:e7:e1:0e:9c:31:cc:d7:4d:86:dc:03: 6b:d3:e2:c2:c6:9b:82:3e:2b:66:d4:6c:9b:a9:9f: d3:e7:88:78:62:1c:d1:28:e4:3e:62:81:44:da:e0: fe:73:5e:b8:b2:3e:73:62:e2:6d:90:05:50:fe:1a: 49:39:9f:81:b4:09:70:e9:f7:c3:8d:9e:f0:5d:b6: 8e:c7:89:21:5a:c7:eb:b0:2a:8a:d3:10:1f:13:67: e3:c0:de:04:69:11:53:b0:3d:eb:41:14:ea:f8:02: e4:13:b6:18:86:9b:a4:65:eb:38:73:92:0b:7f:b8: 47:4f:f9:c5:9c:c3:62:50:4f:9b:6f:96:6e:51:64: 53:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:02:01:2F:66:85:28:4D:FA:47:59:F8:CD:22:9C:A4:3F:C3:FC:54 X509v3 Authority Key Identifier: keyid:05:E7:C4:02:BC:F4:82:15:77:17:7B:C8:33:05:55:76:CE:19:3E:B6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B8D4F/449ECC56EEE111EBBADE2C79C4F9AE02/BefEArz0ghV3F3vIMwVVds4ZPrY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BefEArz0ghV3F3vIMwVVds4ZPrY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B8D4F/449ECC56EEE111EBBADE2C79C4F9AE02/444AF4A2EEEE11EB90326C4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.119.232.0/22 IPv6: 2403:4ac0::-2403:4ac0:2:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 19:95:02:c1:b4:ac:88:1d:68:90:06:34:e7:6b:dd:b0:13:be: cb:e6:15:e5:6d:52:0a:97:16:0e:bf:93:7e:e2:25:12:6d:cf: c3:0c:1d:a9:48:d6:14:eb:78:2e:32:e3:13:51:32:4c:e6:17: 09:9a:f5:57:25:db:86:5d:1e:31:eb:99:6b:a0:97:ef:8d:35: 38:82:7e:20:c2:ec:9e:19:3a:0d:99:4c:02:85:31:5b:a1:8c: 88:15:21:5c:e6:e7:51:72:ab:59:e6:13:47:2a:2e:c4:f9:2b: 15:47:d6:e9:3f:8e:35:8d:6a:af:54:9e:15:a5:8e:88:eb:e4: c8:52:a6:b0:3c:57:ee:35:66:b3:74:67:4c:29:5f:f7:0d:9a: 08:0b:0d:a7:b8:79:df:72:0f:b4:43:42:1b:b2:08:0d:09:6f: 71:48:fe:6f:f1:14:1b:a3:b9:95:a0:d7:50:7d:59:d2:fe:5b: f4:90:d7:3e:d9:76:a1:2b:3a:25:44:d1:ce:f0:90:e8:50:a4: 26:9e:d3:d0:c2:69:04:c9:e7:34:e5:9d:d3:62:87:6b:17:63: 26:de:c6:6e:5a:cd:88:68:5f:63:e8:78:88:99:e2:34:02:f0: 4a:19:d6:75:e9:0c:dc:6f:5c:f3:13:d1:cc:0b:4e:c0:25:24: 9e:8f:31:5f -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICBA8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjhENEYxMTAvBgNVBAUTKDA1RTdDNDAyQkNGNDgyMTU3NzE3N0JDODMzMDU1NTc2 Q0UxOTNFQjYwHhcNMjMwODI5MDA0MTU5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVkM2VkNy01MzVkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5kOdSfCGTy349jZsldR1O3PuhCi+bD07D1X1PsMdaUY1xfFtQcwlTAX6zgZK 1Leh4mzvWTYRGGwwzASDy7wz+EteYqcIQPl7X7EcO+5W0mevqmr5mMLryfsMXX2R QBlZw6qhV3478DsvTBZiRhHEt0uVMR/Ik95QWqmZ5+EOnDHM102G3ANr0+LCxpuC Pitm1GybqZ/T54h4YhzRKOQ+YoFE2uD+c164sj5zYuJtkAVQ/hpJOZ+BtAlw6ffD jZ7wXbaOx4khWsfrsCqK0xAfE2fjwN4EaRFTsD3rQRTq+ALkE7YYhpukZes4c5IL f7hHT/nFnMNiUE+bb5ZuUWRTKQIDAQABo4ICrzCCAqswHQYDVR0OBBYEFEoCAS9m hShN+kdZ+M0inKQ/w/xUMB8GA1UdIwQYMBaAFAXnxAK89IIVdxd7yDMFVXbOGT62 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOEQ0Ri80NDlFQ0M1NkVF RTExMUVCQkFERTJDNzlDNEY5QUUwMi9CZWZFQXJ6MGdoVjNGM3ZJTXdWVmRzNFpQ clkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0JlZkVBcnowZ2hWM0YzdklNd1ZWZHM0WlByWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjhENEYvNDQ5RUNDNTZFRUUxMTFFQkJBREUyQzc5QzRGOUFFMDIvNDQ0QUY0QTJF RUVFMTFFQjkwMzI2QzRGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAJnd+gwGAQCAAIwEjAQAwUGJANKwAMHACQDSsAAAjANBgkq hkiG9w0BAQsFAAOCAQEAGZUCwbSsiB1okAY052vdsBO+y+YV5W1SCpcWDr+TfuIl Em3PwwwdqUjWFOt4LjLjE1EyTOYXCZr1VyXbhl0eMeuZa6CX7401OIJ+IMLsnhk6 DZlMAoUxW6GMiBUhXObnUXKrWeYTRyouxPkrFUfW6T+ONY1qr1SeFaWOiOvkyFKm sDxX7jVms3RnTClf9w2aCAsNp7h533IPtENCG7IIDQlvcUj+b/EUG6O5laDXUH1Z 0v5b9JDXPtl2oSs6JUTRzvCQ6FCkJp7T0MJpBMnnNOWd02KHaxdjJt7GblrNiGhf Y+h4iJniNALwShnWdekM3G9c8xPRzAtOwCUkno8xXw== -----END CERTIFICATE-----Generated at Fri Apr 19 02:42:34 2024 by rpki-client on console-fra.rpki-client.org