$ rpki-client -vvf rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/8CA3BAEC7DCB11EC99806E25C4F9AE02.roa File: 8CA3BAEC7DCB11EC99806E25C4F9AE02.roa (raw, json) Hash identifier: oPYfSqxkN8npABudY2l+Ic8/CeJazaNkfy3rG5MWBXQ= Subject key identifier: C2:3D:B8:9D:28:F2:19:0F:79:3F:17:09:08:48:65:37:69:D7:AB:F9 Certificate issuer: /CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Certificate serial: 031A Authority key identifier: A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/8CA3BAEC7DCB11EC99806E25C4F9AE02.roa Signing time: Sat 13 Apr 2024 03:04:45 +0000 ROA not before: Sat 13 Apr 2024 03:04:45 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 58885 IP address blocks: 45.116.136.0/22 maxlen: 22 45.116.136.0/24 maxlen: 24 45.116.137.0/24 maxlen: 24 45.116.138.0/24 maxlen: 24 45.116.139.0/24 maxlen: 24 103.19.20.0/22 maxlen: 22 103.19.20.0/24 maxlen: 24 103.19.21.0/24 maxlen: 24 103.19.22.0/24 maxlen: 24 103.19.23.0/24 maxlen: 24 2001:df5:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 794 (0x31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B915D/serialNumber=A398DFD4D3975EAB96FD38033968246E475E28B3 Validity Not Before: Apr 13 03:04:45 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6619f64d-3c8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3c:6a:a8:ff:38:35:01:72:af:0f:48:f3:5c: b0:54:6d:a4:20:33:c6:5c:9e:35:ff:ff:d1:90:78: 27:2c:07:0e:0f:31:4d:4f:c1:18:e8:57:76:8d:a2: c6:91:be:7f:0b:86:d7:19:be:06:38:63:9e:73:b9: 87:68:5b:c8:66:e6:21:1f:7d:b2:56:e3:31:7c:15: 0a:11:b4:c6:6a:ac:df:e7:86:5d:48:1f:6e:c5:b5: 01:f9:a6:1d:9c:de:03:fd:6a:52:74:62:1f:b7:da: 7c:c9:a9:07:bb:b0:0b:b3:9e:3f:67:f9:67:ac:93: d5:10:24:e7:fc:ff:b6:53:02:7d:00:45:e5:f3:e9: f4:3e:26:54:47:0c:3a:e4:37:e0:7c:82:92:73:76: ea:cd:76:3c:76:a7:4e:44:66:2e:54:f1:6d:50:a0: dd:8a:7f:3b:21:6e:1a:4d:66:a2:c2:ab:73:19:6a: 4e:8d:3c:d9:4d:9e:26:47:2a:22:26:b3:f1:7c:28: 23:ed:79:da:cb:be:cd:99:96:10:26:ac:be:ec:47: 7b:a4:b2:ec:63:e8:8b:c0:c5:9d:6c:1e:fb:f5:19: a6:9e:34:a8:c8:96:3c:8a:c7:50:73:85:31:7c:9d: d7:89:94:d4:ef:2d:25:92:1b:bd:17:57:f9:0b:e3: f5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:3D:B8:9D:28:F2:19:0F:79:3F:17:09:08:48:65:37:69:D7:AB:F9 X509v3 Authority Key Identifier: keyid:A3:98:DF:D4:D3:97:5E:AB:96:FD:38:03:39:68:24:6E:47:5E:28:B3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/o5jf1NOXXquW_TgDOWgkbkdeKLM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o5jf1NOXXquW_TgDOWgkbkdeKLM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B915D/7109EFC47DC911ECBBFB6F24C4F9AE02/8CA3BAEC7DCB11EC99806E25C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 45.116.136.0/22 103.19.20.0/22 IPv6: 2001:df5:8000::/48 Signature Algorithm: sha256WithRSAEncryption b7:1e:3b:20:34:d8:27:03:19:cc:55:9e:73:e9:b2:9d:01:ce: 09:10:d1:51:6a:d3:71:21:03:14:39:ee:f0:ba:72:b0:b4:a6: f5:ac:88:55:46:3c:02:02:da:2d:da:ed:38:c2:42:0c:be:aa: 4c:dc:7f:02:12:ce:51:ce:b3:e4:26:4b:af:78:ca:18:fa:09: 2e:5e:6d:dc:ad:3b:46:04:d7:eb:29:b4:07:5d:57:4a:79:74: cb:90:1c:d0:1f:a6:c7:a3:d8:31:b7:b0:22:f4:ea:8e:a3:0b: 25:ff:a0:a4:c6:9f:73:e0:3b:8e:8e:2c:c2:61:70:81:0b:12: 83:6d:12:13:f5:fb:2f:a7:9f:ae:84:3e:fe:66:50:c4:35:f9: 6a:cd:40:10:36:e2:e6:2f:7d:eb:6f:55:27:8d:fd:f4:85:c0: 5a:27:ef:53:06:07:b4:d5:3b:5b:82:29:7e:00:d5:0d:21:a6: b8:70:24:26:bd:2d:c7:e4:3b:0f:19:d1:e7:a5:ab:e8:b7:ce: 18:fb:4b:46:47:ab:2f:66:9c:66:9c:8c:60:51:2c:e0:af:47: 02:82:e4:d5:00:c1:41:26:d4:78:25:1a:fd:33:e4:c4:7a:db: 10:cd:7c:c1:f3:ed:31:09:42:df:d7:43:37:6e:08:bb:83:a0: 06:c6:cd:60 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICAxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkxNUQxMTAvBgNVBAUTKEEzOThERkQ0RDM5NzVFQUI5NkZEMzgwMzM5NjgyNDZF NDc1RTI4QjMwHhcNMjQwNDEzMDMwNDQ1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE5ZjY0ZC0zYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuzxqqP84NQFyrw9I81ywVG2kIDPGXJ41///RkHgnLAcODzFNT8EY6Fd2jaLG kb5/C4bXGb4GOGOec7mHaFvIZuYhH32yVuMxfBUKEbTGaqzf54ZdSB9uxbUB+aYd nN4D/WpSdGIft9p8yakHu7ALs54/Z/lnrJPVECTn/P+2UwJ9AEXl8+n0PiZURww6 5DfgfIKSc3bqzXY8dqdORGYuVPFtUKDdin87IW4aTWaiwqtzGWpOjTzZTZ4mRyoi JrPxfCgj7Xnay77NmZYQJqy+7Ed7pLLsY+iLwMWdbB779RmmnjSoyJY8isdQc4Ux fJ3XiZTU7y0lkhu9F1f5C+P14wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMI9uJ0o 8hkPeT8XCQhIZTdp16v5MB8GA1UdIwQYMBaAFKOY39TTl16rlv04AzloJG5HXiiz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTE1RC83MTA5RUZDNDdE QzkxMUVDQkJGQjZGMjRDNEY5QUUwMi9vNWpmMU5PWFhxdVdfVGdET1dna2JrZGVL TE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL281amYxTk9YWHF1V19UZ0RPV2drYmtkZUtMTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkxNUQvNzEwOUVGQzQ3REM5MTFFQ0JCRkI2RjI0QzRGOUFFMDIvOENBM0JBRUM3 RENCMTFFQzk5ODA2RTI1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAItdIgDBAJnExQwDwQCAAIwCQMHACABDfWAADANBgkqhkiG 9w0BAQsFAAOCAQEAtx47IDTYJwMZzFWec+mynQHOCRDRUWrTcSEDFDnu8LpysLSm 9ayIVUY8AgLaLdrtOMJCDL6qTNx/AhLOUc6z5CZLr3jKGPoJLl5t3K07RgTX6ym0 B11XSnl0y5Ac0B+mx6PYMbewIvTqjqMLJf+gpMafc+A7jo4swmFwgQsSg20SE/X7 L6efroQ+/mZQxDX5as1AEDbi5i99629VJ4399IXAWifvUwYHtNU7W4IpfgDVDSGm uHAkJr0tx+Q7DxnR56Wr6LfOGPtLRkerL2acZpyMYFEs4K9HAoLk1QDBQSbUeCUa /TPkxHrbEM18wfPtMQlC39dDN24Iu4OgBsbNYA== -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org