$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa File: 5DA849821C1211EA819EA46EC4F9AE02.roa (raw, json) Hash identifier: D1neVkUYlxFZ0EMc3pDpN6WJMnlgVEuPxL9BgHGg7yA= Subject key identifier: BE:75:20:AC:F3:C0:1B:BD:B6:71:40:DE:EA:CE:98:91:03:1F:3C:B8 Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0A92 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa Signing time: Fri 02 Jun 2023 21:02:03 +0000 ROA not before: Fri 02 Jun 2023 21:02:03 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 138546 IP address blocks: 43.243.96.0/22 maxlen: 24 103.38.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:59:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2706 (0xa92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Jun 2 21:02:03 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a58cb-bafa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:78:1d:c3:26:91:d3:c9:f0:99:87:31:b8:6f: 24:48:6e:51:b2:48:6e:2e:3a:9a:06:a0:7f:82:b4: 40:ca:a7:eb:7f:fe:e7:30:4c:c9:e6:2c:6d:be:5a: 35:c8:0e:50:70:de:a8:99:61:2f:10:26:06:6b:7c: 77:bf:3d:bc:5a:1f:48:21:2c:d6:2d:52:d4:13:8b: ff:52:45:3d:3d:60:87:11:f1:90:41:0b:80:4a:56: a7:a6:e0:b6:d2:9f:10:8b:28:ea:0f:df:25:23:43: 08:11:3a:0f:84:96:a4:97:cc:15:e2:3c:9f:2c:fc: 46:41:7c:d8:9b:0a:0a:90:87:7b:a1:ed:f3:1b:da: f0:d6:e6:d2:39:ec:c1:f0:c3:af:91:42:4e:c2:ac: f7:31:e3:a7:59:00:bc:85:1d:17:3b:aa:2b:a3:68: aa:af:d7:a8:e1:df:d9:c3:27:65:46:95:d1:6b:c7: 22:b6:32:c2:d9:45:94:d8:66:31:b0:b6:e0:3c:4c: 59:17:50:21:bd:52:e3:0c:f7:9c:22:76:29:f3:f8: 2a:e9:33:4f:c2:31:c3:9a:f5:23:7d:fe:5f:82:ef: 2f:4c:b2:af:b4:ad:37:bc:54:6b:47:83:8e:2b:ae: 93:7a:ae:83:91:16:28:11:7b:f9:52:52:53:c2:da: 81:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:75:20:AC:F3:C0:1B:BD:B6:71:40:DE:EA:CE:98:91:03:1F:3C:B8 X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.96.0/22 103.38.196.0/22 Signature Algorithm: sha256WithRSAEncryption 2a:52:7e:59:ac:dc:25:a9:9d:99:b6:27:bd:bf:d2:b4:d3:89: 07:c8:20:e8:23:c2:c1:9e:8d:91:4b:68:c2:8a:cd:2f:14:d5: fd:96:9d:c6:66:00:1d:ba:e3:ec:e3:6b:3d:77:49:e1:a0:ac: 6b:be:af:8f:fc:f7:1c:f7:32:c1:ec:8f:c5:b4:d9:d3:a1:fe: 25:e9:19:94:a5:7e:db:f3:07:25:a7:80:38:73:eb:51:f0:1e: 5e:20:b0:d1:05:bf:40:a8:b2:2b:2b:13:eb:ce:9c:a3:1e:f8: 8d:fc:b4:80:c3:0f:61:ef:9e:e8:d0:40:e2:93:98:80:99:ea: 27:62:cb:e5:3e:69:28:04:e3:b2:e7:04:ef:e8:56:ba:6e:2b: bf:5f:1d:05:16:ee:af:2d:2c:99:9f:f7:ee:cb:5b:b5:35:03: 8d:15:ef:d3:f0:a5:92:c8:4a:ad:f1:7b:00:22:be:94:00:9d: 84:cf:a2:90:38:2f:66:af:68:9b:3b:2b:bf:ee:ae:6e:03:eb: c2:2c:5c:c3:db:e0:6f:df:87:36:e1:6c:24:0c:17:51:e8:59: af:be:eb:0e:3f:5e:51:3b:9f:da:4f:70:4a:c6:8e:86:a9:c2: ab:f9:ae:56:cb:6b:64:d6:f8:69:ba:e9:d1:a6:62:91:f4:f5: 2e:1c:ae:e6 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCpIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjMwNjAyMjEwMjAzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNThjYi1iYWZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHgdwyaR08nwmYcxuG8kSG5RskhuLjqaBqB/grRAyqfrf/7nMEzJ5ixtvlo1 yA5QcN6omWEvECYGa3x3vz28Wh9IISzWLVLUE4v/UkU9PWCHEfGQQQuASlanpuC2 0p8QiyjqD98lI0MIEToPhJakl8wV4jyfLPxGQXzYmwoKkId7oe3zG9rw1ubSOezB 8MOvkUJOwqz3MeOnWQC8hR0XO6oro2iqr9eo4d/ZwydlRpXRa8citjLC2UWU2GYx sLbgPExZF1AhvVLjDPecInYp8/gq6TNPwjHDmvUjff5fgu8vTLKvtK03vFRrR4OO K66Teq6DkRYoEXv5UlJTwtqBcwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFL51IKzz wBu9tnFA3urOmJEDHzy4MB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvNURBODQ5ODIx QzEyMTFFQTgxOUVBNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr82ADBAJnJsQwDQYJKoZIhvcNAQELBQADggEBACpSflms 3CWpnZm2J72/0rTTiQfIIOgjwsGejZFLaMKKzS8U1f2WncZmAB264+zjaz13SeGg rGu+r4/89xz3MsHsj8W02dOh/iXpGZSlftvzByWngDhz61HwHl4gsNEFv0Cosisr E+vOnKMe+I38tIDDD2HvnujQQOKTmICZ6idiy+U+aSgE47LnBO/oVrpuK79fHQUW 7q8tLJmf9+7LW7U1A40V79PwpZLISq3xewAivpQAnYTPopA4L2avaJs7K7/urm4D 68IsXMPb4G/fhzbhbCQMF1HoWa++6w4/XlE7n9pPcErGjoapwqv5rlbLa2TW+Gm6 6dGmYpH09S4cruY= -----END CERTIFICATE-----Generated at Sun May 26 23:05:39 2024 by rpki-client on console-ams.rpki-client.org