$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7C3B57D48FBE11EA9797847DC4F9AE02.roa File: 7C3B57D48FBE11EA9797847DC4F9AE02.roa (raw, json) Hash identifier: tVnphRRZgGFSH92354sv/OpGtYFdnNRhky6OfyETCg4= Subject key identifier: 58:62:D2:25:E6:F2:2E:28:05:27:58:92:D7:EE:8A:AB:45:26:96:D3 Certificate issuer: /CN=A91C1A14/serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Certificate serial: 0890 Authority key identifier: 59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7C3B57D48FBE11EA9797847DC4F9AE02.roa Signing time: Fri 02 Feb 2024 21:19:17 +0000 ROA not before: Fri 02 Feb 2024 21:19:17 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 17557 IP address blocks: 43.225.98.0/24 maxlen: 24 43.225.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2192 (0x890) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A14/serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Validity Not Before: Feb 2 21:19:17 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65bd5c55-0653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:ac:99:c4:12:fb:a4:95:13:8f:e4:e3:8c:37: 88:82:98:16:ed:28:ee:1f:e9:b1:a5:aa:29:96:76: cd:35:1f:80:77:cb:f4:45:a8:2c:c5:73:af:fc:4d: 58:f6:d1:17:14:e9:22:51:f3:58:c8:65:ef:87:7c: 08:a7:9b:d9:d3:36:9b:fb:e8:b5:0f:5f:d6:5b:0c: 25:be:86:71:5e:04:6a:3b:d7:81:17:27:9e:85:10: 5c:2c:89:17:5e:98:13:66:af:d7:8c:e3:4c:a7:9a: b5:d7:85:6e:d2:be:47:4e:2e:c0:33:4f:29:67:78: 2e:c5:7e:a3:4e:91:34:86:5f:ee:b1:cd:e7:d8:00: 4c:6b:36:31:c3:6b:8b:26:0c:30:1a:b5:ca:50:1a: f4:a3:42:01:f3:2a:e0:ff:1f:b9:61:91:8b:0b:82: 47:8d:f3:f0:d9:1b:0c:51:83:f7:24:9c:93:0f:29: a9:b2:bb:57:c2:21:b3:5e:43:dd:19:43:90:71:97: 2a:a7:e9:c0:85:6f:5b:c8:35:79:fb:5e:34:3c:4a: ad:fb:b0:9a:c8:60:20:3a:4f:13:9b:05:85:15:e6: e9:99:89:04:8f:c7:88:38:78:5c:c1:dc:48:35:59: 94:06:aa:da:89:1f:7c:81:8e:72:04:1a:a7:b9:5d: 36:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:62:D2:25:E6:F2:2E:28:05:27:58:92:D7:EE:8A:AB:45:26:96:D3 X509v3 Authority Key Identifier: keyid:59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/7C3B57D48FBE11EA9797847DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.98.0/23 Signature Algorithm: sha256WithRSAEncryption 50:41:fd:88:74:09:d0:9f:01:b1:de:66:01:88:03:ba:3d:a6: 69:72:b6:93:fd:5d:b9:d8:1f:82:f2:17:4a:c7:55:35:63:ee: 95:18:37:2d:f0:d5:f7:d8:1f:46:b9:a0:98:07:e2:b2:52:fb: 16:45:b0:15:5a:6d:9e:92:75:8c:75:c0:a4:4f:89:4c:00:af: 27:0c:11:df:bc:a2:5b:c6:11:ab:bf:ad:21:07:b4:bf:c1:15: 3d:a0:e1:28:42:19:72:1d:1d:93:a6:2b:b9:68:97:53:1d:56: 8c:78:26:e1:1b:2f:39:2c:38:74:29:73:8a:3a:4c:96:9e:15: 62:fc:e0:59:6c:ba:07:d9:f3:79:9c:fd:f2:3a:a3:62:5e:4d: a6:48:e2:2d:fb:b2:5e:b3:76:fe:a6:de:12:d1:f8:37:b1:fa: 1d:51:d4:ca:3b:cf:a0:61:1f:7c:09:01:5c:33:b0:19:18:3d: 15:22:52:08:7a:04:d1:af:88:60:e2:2a:67:10:01:16:d5:24: c9:64:46:6a:fa:75:dc:da:42:1f:5e:e1:0c:c1:bb:8c:c0:46: e2:5c:47:ff:15:bf:74:9f:e5:3e:fd:d1:ae:2e:8b:df:56:07: 76:5e:4a:82:b9:b2:96:c0:d1:fb:45:d1:d1:07:76:fc:7a:fc: 44:3a:e7:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCJAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMTQxMTAvBgNVBAUTKDU5OERENUEzOUFFNDc3NjU4QUQ1QkNCRkUzNjI2NEEx QTYxRDY3MDgwHhcNMjQwMjAyMjExOTE3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJkNWM1NS0wNjUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtqyZxBL7pJUTj+TjjDeIgpgW7SjuH+mxpaoplnbNNR+Ad8v0RagsxXOv/E1Y 9tEXFOkiUfNYyGXvh3wIp5vZ0zab++i1D1/WWwwlvoZxXgRqO9eBFyeehRBcLIkX XpgTZq/XjONMp5q114Vu0r5HTi7AM08pZ3guxX6jTpE0hl/usc3n2ABMazYxw2uL JgwwGrXKUBr0o0IB8yrg/x+5YZGLC4JHjfPw2RsMUYP3JJyTDympsrtXwiGzXkPd GUOQcZcqp+nAhW9byDV5+140PEqt+7CayGAgOk8TmwWFFebpmYkEj8eIOHhcwdxI NVmUBqraiR98gY5yBBqnuV02KwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFhi0iXm 8i4oBSdYktfuiqtFJpbTMB8GA1UdIwQYMBaAFFmN1aOa5HdlitW8v+NiZKGmHWcI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUExNC9GN0U4NjQ0NjhG QkMxMUVBQThDMzEyN0JDNEY5QUUwMi9XWTNWbzVya2QyV0sxYnlfNDJKa29hWWRa d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dZM1ZvNXJrZDJXSzFieV80Mkprb2FZZFp3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBMTQvRjdFODY0NDY4RkJDMTFFQUE4QzMxMjdCQzRGOUFFMDIvN0MzQjU3RDQ4 RkJFMTFFQTk3OTc4NDdEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAEr4WIwDQYJKoZIhvcNAQELBQADggEBAFBB/Yh0CdCfAbHe ZgGIA7o9pmlytpP9XbnYH4LyF0rHVTVj7pUYNy3w1ffYH0a5oJgH4rJS+xZFsBVa bZ6SdYx1wKRPiUwArycMEd+8olvGEau/rSEHtL/BFT2g4ShCGXIdHZOmK7lol1Md Vox4JuEbLzksOHQpc4o6TJaeFWL84FlsugfZ83mc/fI6o2JeTaZI4i37sl6zdv6m 3hLR+Dex+h1R1Mo7z6BhH3wJAVwzsBkYPRUiUgh6BNGviGDiKmcQARbVJMlkRmr6 ddzaQh9e4QzBu4zARuJcR/8Vv3Sf5T790a4ui99WB3ZeSoK5spbA0ftF0dEHdvx6 /EQ6570= -----END CERTIFICATE-----Generated at Thu May 16 22:23:38 2024 by rpki-client on console-fra.rpki-client.org