$ rpki-client -vvf rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/DF49B4400B4B11EEBAD3047AC4F9AE02.roa File: DF49B4400B4B11EEBAD3047AC4F9AE02.roa (raw, json) Hash identifier: 4ZluWaRFJyFeOP9xnmq3elh/rOt90VuN3X6ZFi8v76c= Subject key identifier: B6:7F:1D:A7:24:93:09:A6:B8:0E:42:92:41:8B:43:3D:BF:71:8B:75 Certificate issuer: /CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Certificate serial: 02DC Authority key identifier: 70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/DF49B4400B4B11EEBAD3047AC4F9AE02.roa Signing time: Fri 15 Mar 2024 03:05:25 +0000 ROA not before: Fri 15 Mar 2024 03:05:25 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 60021 IP address blocks: 103.84.44.0/24 maxlen: 24 103.84.45.0/24 maxlen: 24 103.84.46.0/24 maxlen: 24 103.84.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 732 (0x2dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C63A6/serialNumber=701F3C14F0AD7EEF65D34D003CDC1924648CDE37 Validity Not Before: Mar 15 03:05:25 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f3baf5-e4b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a0:26:f0:59:da:59:b1:1f:5c:b4:68:a5:29: 4d:fe:e2:81:26:48:25:b9:ff:b9:37:3a:35:d0:20: 02:2e:9f:73:f7:de:e0:6f:6b:7b:f5:09:a5:7d:97: de:3f:36:22:a4:ea:09:5d:68:4c:d1:0c:81:9f:0a: 16:48:ec:4f:09:e6:90:c4:e9:4d:50:f4:bc:10:46: 64:59:f4:2c:92:24:63:a6:15:ea:ec:b9:c6:89:16: 77:64:ff:45:1e:db:62:fe:e6:0f:02:ab:b4:58:5b: 2c:9a:a2:1c:90:be:82:a1:9c:8b:ba:73:24:57:c4: 17:af:5f:7c:f5:22:f4:cf:8a:5d:63:be:a7:45:76: a2:df:01:36:82:87:d4:e8:c8:64:28:e3:29:64:94: 81:b3:8d:35:e7:e4:b9:0f:a6:80:01:63:06:19:15: f4:a7:4c:14:d9:4c:e9:01:52:23:43:bb:3b:6a:41: d1:0a:12:a9:b1:1f:98:71:e0:f7:11:53:d6:60:bd: c5:00:64:22:a3:5a:9a:b9:1e:a6:69:44:2d:0c:66: 4e:2d:c0:90:b0:61:0d:40:73:aa:29:9c:81:68:9c: 25:b0:fd:b1:a8:c4:e4:b4:c9:fc:81:af:0a:7f:b2: 95:04:a1:5c:ae:5b:af:51:f9:ed:75:c2:9d:3d:d5: 11:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:7F:1D:A7:24:93:09:A6:B8:0E:42:92:41:8B:43:3D:BF:71:8B:75 X509v3 Authority Key Identifier: keyid:70:1F:3C:14:F0:AD:7E:EF:65:D3:4D:00:3C:DC:19:24:64:8C:DE:37 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/cB88FPCtfu9l000APNwZJGSM3jc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cB88FPCtfu9l000APNwZJGSM3jc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C63A6/0D39C4E49A9B11EC82C70B20C4F9AE02/DF49B4400B4B11EEBAD3047AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.44.0/22 Signature Algorithm: sha256WithRSAEncryption 52:2c:b8:70:ef:35:e0:a2:40:3a:e0:53:39:b0:ec:43:95:a5: 72:60:20:b3:ee:2b:19:c1:51:ef:0f:84:a2:a0:f8:6a:ab:63: 84:ce:bb:d9:dd:e4:e7:ad:dd:44:e8:51:04:ae:72:f4:0f:3a: 31:20:77:31:7b:98:b6:22:49:2e:ea:b5:b6:86:24:07:6a:ef: d5:34:21:9c:50:3f:d4:ec:9a:62:4b:57:a3:46:5e:7c:62:fd: 2d:d8:c5:91:cc:ad:2a:ef:8c:c2:5d:b9:38:46:fb:04:4b:f7: 47:68:1b:95:af:7b:23:4a:be:41:ad:b1:dd:26:84:f2:67:be: 18:36:63:67:44:90:d3:9a:65:0b:19:ca:f2:84:de:c1:1f:12: 80:44:8d:f7:7e:67:d9:64:36:5f:9e:70:c3:1b:0b:f6:d1:3b: 29:e1:42:35:2f:6b:9c:75:52:3c:2f:bc:63:38:f9:a4:ad:ea: 82:02:a6:c9:ee:94:45:d5:10:25:2a:6b:99:08:7c:4e:55:ca: 87:fa:1c:d1:cb:ea:e1:e1:5f:59:0e:07:91:39:8e:67:f9:73: e0:0d:dd:59:91:67:94:0f:8a:dd:ad:41:9f:e6:d3:98:a3:32: 6e:5c:1b:d2:1e:64:1a:97:b8:29:8d:91:e7:a0:65:2d:9b:3e: c5:b0:74:2a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzYzQTYxMTAvBgNVBAUTKDcwMUYzQzE0RjBBRDdFRUY2NUQzNEQwMDNDREMxOTI0 NjQ4Q0RFMzcwHhcNMjQwMzE1MDMwNTI1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYzYmFmNS1lNGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKAm8FnaWbEfXLRopSlN/uKBJkgluf+5Nzo10CACLp9z997gb2t79QmlfZfe PzYipOoJXWhM0QyBnwoWSOxPCeaQxOlNUPS8EEZkWfQskiRjphXq7LnGiRZ3ZP9F Htti/uYPAqu0WFssmqIckL6CoZyLunMkV8QXr1989SL0z4pdY76nRXai3wE2gofU 6MhkKOMpZJSBs4015+S5D6aAAWMGGRX0p0wU2UzpAVIjQ7s7akHRChKpsR+YceD3 EVPWYL3FAGQio1qauR6maUQtDGZOLcCQsGENQHOqKZyBaJwlsP2xqMTktMn8ga8K f7KVBKFcrluvUfntdcKdPdUREQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLZ/Hack kwmmuA5CkkGLQz2/cYt1MB8GA1UdIwQYMBaAFHAfPBTwrX7vZdNNADzcGSRkjN43 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNjNBNi8wRDM5QzRFNDlB OUIxMUVDODJDNzBCMjBDNEY5QUUwMi9jQjg4RlBDdGZ1OWwwMDBBUE53WkpHU00z amMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2NCODhGUEN0ZnU5bDAwMEFQTndaSkdTTTNqYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzYzQTYvMEQzOUM0RTQ5QTlCMTFFQzgyQzcwQjIwQzRGOUFFMDIvREY0OUI0NDAw QjRCMTFFRUJBRDMwNDdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnVCwwDQYJKoZIhvcNAQELBQADggEBAFIsuHDvNeCiQDrg Uzmw7EOVpXJgILPuKxnBUe8PhKKg+GqrY4TOu9nd5Oet3UToUQSucvQPOjEgdzF7 mLYiSS7qtbaGJAdq79U0IZxQP9TsmmJLV6NGXnxi/S3YxZHMrSrvjMJduThG+wRL 90doG5WveyNKvkGtsd0mhPJnvhg2Y2dEkNOaZQsZyvKE3sEfEoBEjfd+Z9lkNl+e cMMbC/bROynhQjUva5x1UjwvvGM4+aSt6oICpsnulEXVECUqa5kIfE5Vyof6HNHL 6uHhX1kOB5E5jmf5c+AN3VmRZ5QPit2tQZ/m05ijMm5cG9IeZBqXuCmNkeegZS2b PsWwdCo= -----END CERTIFICATE-----Generated at Sun May 19 03:48:52 2024 by rpki-client on console-fra.rpki-client.org