$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/7AAFF88446BA11ECB8463B6AC4F9AE02.roa File: 7AAFF88446BA11ECB8463B6AC4F9AE02.roa (raw, json) Hash identifier: bk3YWO13qvzV1V5OwS6neaChdhLqD8dAb9uNZzEGn/o= Subject key identifier: F2:30:D5:1A:DA:01:3F:86:35:2B:C0:41:2F:77:88:15:01:B3:3D:37 Certificate issuer: /CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Certificate serial: 03B1 Authority key identifier: EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/7AAFF88446BA11ECB8463B6AC4F9AE02.roa Signing time: Thu 11 Jan 2024 02:03:59 +0000 ROA not before: Thu 11 Jan 2024 02:03:59 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 9744 IP address blocks: 103.203.48.0/22 maxlen: 24 116.213.36.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:16:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 945 (0x3b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAE34/serialNumber=EF6678DC0CEB34141C64A18AB24BF86CAB2FBD35 Validity Not Before: Jan 11 02:03:59 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659f4c8e-0ff6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:88:7c:00:d9:aa:78:23:49:a9:9b:6b:2e:a4: 0f:e3:f0:e0:19:f3:2c:c6:c5:d0:49:19:42:72:99: 99:57:e6:d1:30:ae:f4:6c:11:31:c2:00:3f:82:bb: 9a:35:1d:34:08:d2:8c:d0:fa:bd:c7:f1:3e:6f:2b: 4e:47:7e:51:9d:35:23:cc:ec:3e:9d:84:49:7c:a0: 59:69:84:0b:56:95:b1:c2:ad:7c:bf:15:ab:2b:11: 05:40:6f:74:37:8b:dc:9f:33:1b:b2:45:3b:ee:e7: 14:f0:b6:94:a2:72:bf:9c:a7:6b:34:71:a8:8d:25: 06:ee:d8:78:5c:42:cf:0a:8a:1a:d4:f0:b0:a1:08: c4:7f:1f:57:00:5f:d5:67:6f:a4:cb:02:99:16:b0: 4e:d7:80:aa:88:be:c7:2b:3a:f8:98:50:5f:3c:fd: d1:f0:48:bb:62:1e:1c:1d:1c:bd:c3:47:f9:e1:33: d6:73:d0:c1:11:7a:7c:f9:44:aa:2c:b3:3d:be:ac: 76:77:e1:a0:e9:00:06:aa:24:5a:a1:8a:4b:af:1a: 2f:2f:08:71:f3:cf:59:22:5a:42:70:1b:9f:93:0a: 79:54:bb:30:fd:cb:36:a9:3e:29:5b:a3:bf:64:cd: 97:d5:94:ee:00:78:77:c1:b6:75:df:74:72:9c:e1: 22:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:30:D5:1A:DA:01:3F:86:35:2B:C0:41:2F:77:88:15:01:B3:3D:37 X509v3 Authority Key Identifier: keyid:EF:66:78:DC:0C:EB:34:14:1C:64:A1:8A:B2:4B:F8:6C:AB:2F:BD:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/72Z43AzrNBQcZKGKskv4bKsvvTU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72Z43AzrNBQcZKGKskv4bKsvvTU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAE34/4BEFBECA30C211EC91A1701DC4F9AE02/7AAFF88446BA11ECB8463B6AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.203.48.0/22 116.213.36.0/22 Signature Algorithm: sha256WithRSAEncryption cc:2d:6d:7e:d3:bb:14:73:99:cc:58:13:51:e3:cf:4d:a4:16: 0c:5c:c5:20:63:8b:27:69:ae:db:47:00:f8:23:6a:56:55:2f: 62:d3:f0:fc:d1:1b:9a:ec:df:da:e2:7f:2f:4b:e5:72:88:f4: 37:f0:03:1c:79:5b:4e:38:a1:55:ae:e4:66:04:35:00:88:db: bf:89:cb:5f:8d:22:fe:41:94:b3:22:b9:0f:c3:17:0d:75:92: 5a:5f:d6:a4:3b:84:2b:04:a2:12:c5:6f:e7:5b:21:8e:e6:d1: 1e:cb:8a:a9:ed:e4:b4:4f:0c:9f:60:67:be:ca:20:c5:84:b2: 00:a3:3c:4e:58:73:6e:f7:be:36:71:04:04:a5:0c:65:7a:03: 84:f2:96:f7:18:27:2b:3b:3f:18:4a:6b:ac:53:e8:79:f9:cf: ac:20:78:9b:98:cd:96:72:a4:77:ff:e3:bc:8a:1c:86:b9:d1: 2f:8d:7e:be:72:a4:23:af:90:15:30:9a:8b:0a:a8:2d:9c:51: 59:6f:d1:f8:bf:24:9d:1e:16:f6:89:4f:97:ea:72:40:0a:6b: 26:5f:7e:49:48:c8:a1:d6:0e:d3:2c:d6:0a:ad:b6:2c:fa:15: 73:7b:99:3f:f3:7c:5d:a7:ae:92:b2:40:0f:d0:58:86:88:27: 89:15:36:fb -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICA7EwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFFMzQxMTAvBgNVBAUTKEVGNjY3OERDMENFQjM0MTQxQzY0QTE4QUIyNEJGODZD QUIyRkJEMzUwHhcNMjQwMTExMDIwMzU5WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTlmNGM4ZS0wZmY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsIh8ANmqeCNJqZtrLqQP4/DgGfMsxsXQSRlCcpmZV+bRMK70bBExwgA/grua NR00CNKM0Pq9x/E+bytOR35RnTUjzOw+nYRJfKBZaYQLVpWxwq18vxWrKxEFQG90 N4vcnzMbskU77ucU8LaUonK/nKdrNHGojSUG7th4XELPCooa1PCwoQjEfx9XAF/V Z2+kywKZFrBO14CqiL7HKzr4mFBfPP3R8Ei7Yh4cHRy9w0f54TPWc9DBEXp8+USq LLM9vqx2d+Gg6QAGqiRaoYpLrxovLwhx889ZIlpCcBufkwp5VLsw/cs2qT4pW6O/ ZM2X1ZTuAHh3wbZ133RynOEihwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPIw1Rra AT+GNSvAQS93iBUBsz03MB8GA1UdIwQYMBaAFO9meNwM6zQUHGShirJL+GyrL701 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUUzNC80QkVGQkVDQTMw QzIxMUVDOTFBMTcwMURDNEY5QUUwMi83Mlo0M0F6ck5CUWNaS0dLc2t2NGJLc3Z2 VFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyWjQzQXpyTkJRY1pLR0tza3Y0YktzdnZUVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFFMzQvNEJFRkJFQ0EzMEMyMTFFQzkxQTE3MDFEQzRGOUFFMDIvN0FBRkY4ODQ0 NkJBMTFFQ0I4NDYzQjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnyzADBAJ01SQwDQYJKoZIhvcNAQELBQADggEBAMwtbX7T uxRzmcxYE1Hjz02kFgxcxSBjiydprttHAPgjalZVL2LT8PzRG5rs39rify9L5XKI 9DfwAxx5W044oVWu5GYENQCI27+Jy1+NIv5BlLMiuQ/DFw11klpf1qQ7hCsEohLF b+dbIY7m0R7Liqnt5LRPDJ9gZ77KIMWEsgCjPE5Yc273vjZxBASlDGV6A4TylvcY Jys7PxhKa6xT6Hn5z6wgeJuYzZZypHf/47yKHIa50S+Nfr5ypCOvkBUwmosKqC2c UVlv0fi/JJ0eFvaJT5fqckAKayZffklIyKHWDtMs1gqttiz6FXN7mT/zfF2nrpKy QA/QWIaIJ4kVNvs= -----END CERTIFICATE-----Generated at Sun May 19 03:14:49 2024 by rpki-client on console-fra.rpki-client.org