$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/E5D4B662020C11EF924D0064C4F9AE02.roa File: E5D4B662020C11EF924D0064C4F9AE02.roa (raw, json) Hash identifier: rU8ueRHigkcnrboSiyuAgDPtglpiwxpoV+xUGO9FxD4= Subject key identifier: 37:74:1C:04:BF:0A:1A:D0:71:1F:55:59:53:E6:59:15:0A:CC:C9:B9 Certificate issuer: /CN=A91C1A14/serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Certificate serial: 08BE Authority key identifier: 59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/E5D4B662020C11EF924D0064C4F9AE02.roa Signing time: Wed 24 Apr 2024 07:34:08 +0000 ROA not before: Wed 24 Apr 2024 07:34:07 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 198381 IP address blocks: 43.225.96.0/23 maxlen: 23 103.244.132.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 21:27:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2238 (0x8be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1A14/serialNumber=598DD5A39AE477658AD5BCBFE36264A1A61D6708 Validity Not Before: Apr 24 07:34:07 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6628b5ef-05c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:db:a2:bb:99:9a:17:d9:a5:56:c3:bd:54:35: 50:f6:75:26:6c:4b:01:42:d2:7f:a5:e4:30:eb:ad: dc:ec:31:20:4f:67:4f:55:c7:8f:22:de:82:2c:44: 4e:38:4f:0a:f1:66:a8:c7:9f:d5:8d:b1:ad:1b:ce: 4c:e6:a3:3f:60:f9:5c:b0:1f:45:07:cb:b3:b7:40: cc:b8:36:a0:e5:37:c5:0f:64:34:e0:c9:0b:71:0e: d7:b3:39:0a:bb:62:0b:fd:a5:16:21:74:ea:03:9b: 91:35:47:0e:1e:ef:5d:3c:64:8f:09:b8:2f:b1:aa: bc:32:47:d5:a1:71:32:a3:ab:15:a2:61:50:22:63: f5:a3:2f:61:68:b5:91:d8:03:c8:32:98:49:48:b5: c9:2a:6d:86:57:d2:0f:1f:1f:74:55:59:93:f5:00: 92:2d:a7:59:ad:66:a8:b1:e8:a6:01:27:47:fc:2f: 18:2d:d0:95:0b:33:8d:08:c5:79:5c:c4:2a:41:fa: 44:67:61:f1:a0:96:f1:9f:f5:0e:75:66:28:20:a2: a5:0d:0c:3f:96:b2:c4:4b:d2:95:ef:f0:92:30:39: 51:74:2d:54:08:ea:18:64:8a:4d:be:56:ac:d6:8c: 46:7b:f4:ab:ce:44:ba:f6:64:65:48:87:a2:d0:d6: cb:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:74:1C:04:BF:0A:1A:D0:71:1F:55:59:53:E6:59:15:0A:CC:C9:B9 X509v3 Authority Key Identifier: keyid:59:8D:D5:A3:9A:E4:77:65:8A:D5:BC:BF:E3:62:64:A1:A6:1D:67:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/WY3Vo5rkd2WK1by_42JkoaYdZwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WY3Vo5rkd2WK1by_42JkoaYdZwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1A14/F7E864468FBC11EAA8C3127BC4F9AE02/E5D4B662020C11EF924D0064C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.225.96.0/23 103.244.132.0/23 Signature Algorithm: sha256WithRSAEncryption 01:8b:15:7b:6d:ed:b3:3f:22:e1:74:16:c0:f7:0e:30:3b:a2: 10:13:07:a6:9a:3c:d0:ee:c9:45:cb:31:b2:87:b9:2a:9d:04: 33:6b:bd:db:72:6f:f9:c0:80:fd:4b:cf:7a:2a:91:33:0e:61: ca:46:a1:c8:75:c0:4f:e0:17:c1:31:f4:26:f7:35:e7:fc:53: 98:ef:c7:26:51:64:1c:b6:7f:fd:a9:e8:96:4d:3d:b1:bf:4e: 7f:7c:39:ae:8c:71:3d:65:92:e0:1f:37:7e:53:3f:d2:c4:76: 7c:f1:1b:df:ed:cb:1d:6a:84:ed:4b:05:ea:3b:ef:ca:7c:d9: d8:19:ef:fe:e6:7d:2c:ab:6e:55:44:d2:f9:1b:71:28:b2:d3: 36:a7:b1:2e:37:90:c0:f5:c2:ae:d2:19:ce:ed:70:0f:3a:52: 04:3d:f3:c2:46:ff:16:de:0f:29:bc:b2:2a:3a:fd:f7:03:e2: 6b:ed:08:6f:b4:6f:97:0b:9b:5f:77:b0:63:5b:8f:bb:88:22: 4b:4f:25:3f:ed:b0:d8:ea:3f:15:66:63:fe:75:d6:fe:7f:15: 19:b2:8c:03:3c:08:2c:fc:61:97:cc:9c:94:d5:72:cf:e2:55: 5a:c4:96:ee:6f:4a:5b:ce:37:34:4a:e4:e5:d8:c7:73:40:b8: 7b:c4:73:3f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFBMTQxMTAvBgNVBAUTKDU5OERENUEzOUFFNDc3NjU4QUQ1QkNCRkUzNjI2NEEx QTYxRDY3MDgwHhcNMjQwNDI0MDczNDA3WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI4YjVlZi0wNWM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtuiu5maF9mlVsO9VDVQ9nUmbEsBQtJ/peQw663c7DEgT2dPVcePIt6CLERO OE8K8Waox5/VjbGtG85M5qM/YPlcsB9FB8uzt0DMuDag5TfFD2Q04MkLcQ7XszkK u2IL/aUWIXTqA5uRNUcOHu9dPGSPCbgvsaq8MkfVoXEyo6sVomFQImP1oy9haLWR 2APIMphJSLXJKm2GV9IPHx90VVmT9QCSLadZrWaoseimASdH/C8YLdCVCzONCMV5 XMQqQfpEZ2HxoJbxn/UOdWYoIKKlDQw/lrLES9KV7/CSMDlRdC1UCOoYZIpNvlas 1oxGe/SrzkS69mRlSIei0NbLxwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDd0HAS/ ChrQcR9VWVPmWRUKzMm5MB8GA1UdIwQYMBaAFFmN1aOa5HdlitW8v+NiZKGmHWcI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUExNC9GN0U4NjQ0NjhG QkMxMUVBQThDMzEyN0JDNEY5QUUwMi9XWTNWbzVya2QyV0sxYnlfNDJKa29hWWRa d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dZM1ZvNXJrZDJXSzFieV80Mkprb2FZZFp3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFBMTQvRjdFODY0NDY4RkJDMTFFQUE4QzMxMjdCQzRGOUFFMDIvRTVENEI2NjIw MjBDMTFFRjkyNEQwMDY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAEr4WADBAFn9IQwDQYJKoZIhvcNAQELBQADggEBAAGLFXtt 7bM/IuF0FsD3DjA7ohATB6aaPNDuyUXLMbKHuSqdBDNrvdtyb/nAgP1Lz3oqkTMO YcpGoch1wE/gF8Ex9Cb3Nef8U5jvxyZRZBy2f/2p6JZNPbG/Tn98Oa6McT1lkuAf N35TP9LEdnzxG9/tyx1qhO1LBeo778p82dgZ7/7mfSyrblVE0vkbcSiy0zansS43 kMD1wq7SGc7tcA86UgQ988JG/xbeDym8sio6/fcD4mvtCG+0b5cLm193sGNbj7uI IktPJT/tsNjqPxVmY/511v5/FRmyjAM8CCz8YZfMnJTVcs/iVVrElu5vSlvONzRK 5OXYx3NAuHvEcz8= -----END CERTIFICATE-----Generated at Wed May 22 23:16:56 2024 by rpki-client on console-ams.rpki-client.org