$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa File: 5DA849821C1211EA819EA46EC4F9AE02.roa (raw, json) Hash identifier: Df93j4Weq1kxcdV8kr7v+ET5zpZ4VWBdiPOhaQQF/zs= Subject key identifier: E2:47:A5:D8:6E:86:C3:21:28:E8:87:A5:17:41:13:FE:B8:7A:01:DC Certificate issuer: /CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Certificate serial: 0B57 Authority key identifier: B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa Signing time: Mon 10 Jun 2024 20:25:47 +0000 ROA not before: Mon 10 Jun 2024 20:25:47 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 138546 IP address blocks: 43.243.96.0/22 maxlen: 24 103.38.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:50:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2903 (0xb57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC966/serialNumber=B2A25DDE1A9EC91B59986A532F78835436183248 Validity Not Before: Jun 10 20:25:47 2024 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6667614b-9b73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e2:92:0a:9a:b4:01:af:e0:50:98:1b:ec:89: 82:73:2f:8e:17:d8:af:f8:2c:c2:0c:19:e4:9a:48: 07:42:2e:85:f2:6e:3b:e2:08:fa:c8:ce:61:3e:ce: bf:b4:9f:bb:31:2c:85:66:57:1a:89:8d:0f:91:45: d1:d5:a4:4b:00:81:29:f6:31:44:aa:e0:26:95:43: 62:c9:bc:8d:b2:e0:91:3f:5f:22:55:ef:53:41:f9: b8:48:a5:a7:20:83:9c:cc:2e:8e:0b:a3:7b:0b:42: 45:ed:15:0c:2e:47:11:c0:d8:a2:70:fd:37:0d:9b: 2a:63:20:c8:c4:1a:69:e3:f9:44:31:a8:4b:57:9e: 45:71:06:1e:e7:2f:c0:27:7d:a1:74:d7:29:41:07: b8:68:63:8f:74:16:0e:98:5b:5c:5a:fc:dc:9c:2c: b0:2a:2b:61:a6:33:10:62:6e:8b:96:a2:3d:44:e3: c0:15:95:34:a6:93:d9:0f:96:4d:80:c7:3d:45:4c: 53:93:2e:96:ed:2c:4b:9f:e7:33:fd:e5:af:fd:3f: 1a:93:6c:f7:3d:e9:a2:8e:35:94:64:43:b9:0b:6c: 6a:43:4f:ce:20:0f:73:63:a3:d6:70:b6:f7:38:2b: 2e:a6:a1:e5:ee:53:3b:5d:ee:91:d7:d4:c0:60:a8: 51:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:47:A5:D8:6E:86:C3:21:28:E8:87:A5:17:41:13:FE:B8:7A:01:DC X509v3 Authority Key Identifier: keyid:B2:A2:5D:DE:1A:9E:C9:1B:59:98:6A:53:2F:78:83:54:36:18:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/sqJd3hqeyRtZmGpTL3iDVDYYMkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sqJd3hqeyRtZmGpTL3iDVDYYMkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC966/A1952BA21C1111EAB6C3C76DC4F9AE02/5DA849821C1211EA819EA46EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.243.96.0/22 103.38.196.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:5c:37:ca:95:45:9e:ad:4b:6e:61:0a:e6:3e:73:d8:1e:12: df:61:d1:70:16:ee:31:7d:29:b0:18:2b:2d:14:04:22:c9:0b: 17:7b:0f:4d:44:66:ea:75:52:bd:df:04:25:06:14:50:ad:77: c0:2a:e3:3f:f0:c7:f9:60:ae:2a:55:f2:8e:ad:82:f4:d9:22: 2e:c4:e4:0b:bf:e1:41:1c:b9:64:03:16:f6:db:cd:55:29:a3: 67:52:4e:35:d6:9d:a7:01:ac:1a:72:fa:4f:c8:87:0d:e6:0e: 45:8c:e7:33:2b:2d:3d:c1:b3:76:1b:1e:ae:8d:c0:e4:2b:c8: 4a:dd:00:44:7d:fb:3f:f0:2d:4d:ea:1a:56:e4:47:89:cc:31: be:ac:03:3a:57:55:e1:8f:1f:37:48:85:9d:66:5b:c7:35:ec: 33:b7:1c:35:da:e1:c5:45:55:7b:fd:e0:6f:9a:bf:a5:2e:47: b9:68:4d:b4:d7:fd:86:80:16:9e:8c:0c:ab:49:c5:f5:f5:13: d6:df:d4:a3:e2:1e:5a:31:83:a0:cf:1c:e7:fd:8b:02:8d:85: c8:f4:94:69:02:7c:96:0f:13:f2:91:6f:0d:02:a8:21:62:ac: 3f:62:75:d5:07:34:8e:41:43:6a:9c:7d:08:92:8c:7d:be:6a: 12:95:b9:5f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICC1cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM5NjYxMTAvBgNVBAUTKEIyQTI1RERFMUE5RUM5MUI1OTk4NkE1MzJGNzg4MzU0 MzYxODMyNDgwHhcNMjQwNjEwMjAyNTQ3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjY3NjE0Yi05YjczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs+KSCpq0Aa/gUJgb7ImCcy+OF9iv+CzCDBnkmkgHQi6F8m474gj6yM5hPs6/ tJ+7MSyFZlcaiY0PkUXR1aRLAIEp9jFEquAmlUNiybyNsuCRP18iVe9TQfm4SKWn IIOczC6OC6N7C0JF7RUMLkcRwNiicP03DZsqYyDIxBpp4/lEMahLV55FcQYe5y/A J32hdNcpQQe4aGOPdBYOmFtcWvzcnCywKithpjMQYm6LlqI9ROPAFZU0ppPZD5ZN gMc9RUxTky6W7SxLn+cz/eWv/T8ak2z3PemijjWUZEO5C2xqQ0/OIA9zY6PWcLb3 OCsupqHl7lM7Xe6R19TAYKhRewIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOJHpdhu hsMhKOiHpRdBE/64egHcMB8GA1UdIwQYMBaAFLKiXd4anskbWZhqUy94g1Q2GDJI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzk2Ni9BMTk1MkJBMjFD MTExMUVBQjZDM0M3NkRDNEY5QUUwMi9zcUpkM2hxZXlSdFptR3BUTDNpRFZEWVlN a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NxSmQzaHFleVJ0Wm1HcFRMM2lEVkRZWU1rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM5NjYvQTE5NTJCQTIxQzExMTFFQUI2QzNDNzZEQzRGOUFFMDIvNURBODQ5ODIx QzEyMTFFQTgxOUVBNDZFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr82ADBAJnJsQwDQYJKoZIhvcNAQELBQADggEBAItcN8qV RZ6tS25hCuY+c9geEt9h0XAW7jF9KbAYKy0UBCLJCxd7D01EZup1Ur3fBCUGFFCt d8Aq4z/wx/lgripV8o6tgvTZIi7E5Au/4UEcuWQDFvbbzVUpo2dSTjXWnacBrBpy +k/Ihw3mDkWM5zMrLT3Bs3YbHq6NwOQryErdAER9+z/wLU3qGlbkR4nMMb6sAzpX VeGPHzdIhZ1mW8c17DO3HDXa4cVFVXv94G+av6UuR7loTbTX/YaAFp6MDKtJxfX1 E9bf1KPiHloxg6DPHOf9iwKNhcj0lGkCfJYPE/KRbw0CqCFirD9iddUHNI5BQ2qc fQiSjH2+ahKVuV8= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:02 2024 by rpki-client on console-fra.rpki-client.org