$ rpki-client -vvf rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa File: 3C726724C06211EC93514712C4F9AE02.roa (raw, json) Hash identifier: j6hIMCos5ji83MsCCKvUWZ3p9vGSzAjTPCtYLKcHso8= Subject key identifier: 47:86:80:91:36:8D:D5:B8:2A:26:A2:87:68:E8:20:92:8A:D1:1E:41 Certificate issuer: /CN=A91C3B8A/serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5 Certificate serial: 09AE Authority key identifier: 45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa Signing time: Thu 02 Feb 2023 21:28:01 +0000 ROA not before: Thu 02 Feb 2023 21:28:01 +0000 ROA not after: Wed 01 May 2024 00:00:00 +0000 asID: 397373 IP address blocks: 103.229.198.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Mar 2023 20:59:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2478 (0x9ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C3B8A/serialNumber=4550C69051BAA18AF112DC76B5F5DF9E6B7940D5 Validity Not Before: Feb 2 21:28:01 2023 GMT Not After : May 1 00:00:00 2024 GMT Subject: CN=63dc2ae0-2ea4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:da:1c:dd:fc:85:d0:8c:8b:d2:36:da:5d:93: b1:c3:02:b8:bb:b6:a8:6e:78:18:56:7a:15:1e:0f: 04:bb:26:c1:ec:56:c1:81:e8:d6:60:6f:91:5f:f0: b9:12:55:c3:d8:c8:66:83:d2:43:e6:8e:5f:65:53: 25:dc:9b:3e:c5:d9:6e:d1:86:35:b3:46:0a:9a:91: 1f:e4:fc:71:0e:71:f1:d8:b4:ed:30:fa:7a:71:c1: 27:b8:c5:01:de:01:f4:c6:4d:36:bb:6b:2e:41:58: 6b:a4:d9:0d:9a:33:dd:6b:e0:3b:09:20:dd:70:83: 66:2c:a6:25:f8:ae:29:a7:f2:ca:a7:3b:90:b5:83: 4b:05:18:e3:ff:5d:cb:02:22:83:34:02:c8:37:44: c0:08:61:2b:b1:9a:62:a2:42:82:1f:ee:26:8b:13: 47:64:2f:ae:77:fb:f8:40:5f:46:62:54:f9:9e:00: ab:58:7b:8c:e4:9a:20:62:c2:5e:57:a7:5b:3f:d8: 53:e6:fd:67:f3:aa:fa:6b:4f:17:25:ba:cb:2b:f4: b0:ed:82:38:8e:4b:ef:35:06:ae:70:45:c5:1f:0e: 22:f2:14:7c:fb:f6:4b:44:42:8a:3e:31:9d:04:2b: 3a:4d:b5:68:ae:30:16:1f:55:dc:d2:47:5b:f1:36: 0b:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:86:80:91:36:8D:D5:B8:2A:26:A2:87:68:E8:20:92:8A:D1:1E:41 X509v3 Authority Key Identifier: keyid:45:50:C6:90:51:BA:A1:8A:F1:12:DC:76:B5:F5:DF:9E:6B:79:40:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/RVDGkFG6oYrxEtx2tfXfnmt5QNU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RVDGkFG6oYrxEtx2tfXfnmt5QNU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C3B8A/08C43924384D11EAA4F55B73C4F9AE02/3C726724C06211EC93514712C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.229.198.0/23 Signature Algorithm: sha256WithRSAEncryption 72:d5:b6:e0:61:59:b4:03:b5:f4:b9:cd:4b:6f:56:cf:3f:48: 77:bb:42:0e:65:fc:48:ae:63:0d:b9:69:04:14:7a:86:47:66: 9f:c5:dc:19:7e:85:4d:82:fb:8d:fb:53:c1:45:39:b8:48:9d: 7d:7a:b1:b8:b1:4f:87:2c:f2:76:7c:57:ce:f2:0d:cf:30:80: b7:66:89:59:7b:1b:d5:fd:42:6a:1b:0b:d7:ee:e4:e7:5d:b3: f0:47:74:43:4e:87:e5:8a:61:10:49:d5:59:f0:a3:97:9a:bc: 9c:22:98:01:33:a4:45:bb:f7:8d:84:84:db:53:7f:25:b8:25: 53:51:fd:a9:34:e6:35:80:a4:6d:fe:d2:b9:47:2e:94:ae:21: f6:2a:73:43:15:79:26:27:1a:19:40:c7:10:1b:11:7d:c8:3f: 42:76:55:af:62:79:6d:ee:68:2e:65:8a:78:9e:e2:55:6d:91: 7c:e1:aa:f4:c4:4b:8c:b1:f6:b0:fa:ca:dc:41:4a:28:9e:b7: 8a:6f:35:94:c0:da:02:d6:7b:1a:58:cd:9b:53:82:66:ca:37: 5e:cc:6c:f1:e8:08:ec:07:8a:4e:ae:e2:a0:ee:7a:8a:75:76: 41:82:7a:ea:25:7a:34:3c:35:63:eb:a4:5b:21:2d:8d:f3:fb: 3b:09:03:8e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzNCOEExMTAvBgNVBAUTKDQ1NTBDNjkwNTFCQUExOEFGMTEyREM3NkI1RjVERjlF NkI3OTQwRDUwHhcNMjMwMjAyMjEyODAxWhcNMjQwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02M2RjMmFlMC0yZWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4Noc3fyF0IyL0jbaXZOxwwK4u7aobngYVnoVHg8EuybB7FbBgejWYG+RX/C5 ElXD2Mhmg9JD5o5fZVMl3Js+xdlu0YY1s0YKmpEf5PxxDnHx2LTtMPp6ccEnuMUB 3gH0xk02u2suQVhrpNkNmjPda+A7CSDdcINmLKYl+K4pp/LKpzuQtYNLBRjj/13L AiKDNALIN0TACGErsZpiokKCH+4mixNHZC+ud/v4QF9GYlT5ngCrWHuM5JogYsJe V6dbP9hT5v1n86r6a08XJbrLK/Sw7YI4jkvvNQaucEXFHw4i8hR8+/ZLREKKPjGd BCs6TbVorjAWH1Xc0kdb8TYLrwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEeGgJE2 jdW4Kiaih2joIJKK0R5BMB8GA1UdIwQYMBaAFEVQxpBRuqGK8RLcdrX1355reUDV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDM0I4QS8wOEM0MzkyNDM4 NEQxMUVBQTRGNTVCNzNDNEY5QUUwMi9SVkRHa0ZHNm9ZcnhFdHgydGZYZm5tdDVR TlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JWREdrRkc2b1lyeEV0eDJ0Zlhmbm10NVFOVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzNCOEEvMDhDNDM5MjQzODREMTFFQUE0RjU1QjczQzRGOUFFMDIvM0M3MjY3MjRD MDYyMTFFQzkzNTE0NzEyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFn5cYwDQYJKoZIhvcNAQELBQADggEBAHLVtuBhWbQDtfS5 zUtvVs8/SHe7Qg5l/EiuYw25aQQUeoZHZp/F3Bl+hU2C+437U8FFObhInX16sbix T4cs8nZ8V87yDc8wgLdmiVl7G9X9QmobC9fu5Odds/BHdENOh+WKYRBJ1Vnwo5ea vJwimAEzpEW7942EhNtTfyW4JVNR/ak05jWApG3+0rlHLpSuIfYqc0MVeSYnGhlA xxAbEX3IP0J2Va9ieW3uaC5linie4lVtkXzhqvTES4yx9rD6ytxBSiiet4pvNZTA 2gLWexpYzZtTgmbKN17MbPHoCOwHik6u4qDueop1dkGCeuolejQ8NWPrpFshLY3z +zsJA44= -----END CERTIFICATE-----Generated at Wed Mar 15 11:54:16 2023 by rpki-client on console-fra.rpki-client.org