$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/5BC42F286E9F11EC90A66E2BC4F9AE02.roa File: 5BC42F286E9F11EC90A66E2BC4F9AE02.roa (raw, json) Hash identifier: eeQtzFZqnwiH/llZCo9bAYQVABGOP1DFaWPPPbKMfqY= Subject key identifier: 92:18:1C:69:9F:71:85:2D:DB:CA:14:23:E7:3B:CC:72:AF:41:F3:B2 Certificate issuer: /CN=A91C7AC5/serialNumber=BF3FBC0DA96E2E513AAA58812C694BCD07B8DD77 Certificate serial: 0778 Authority key identifier: BF:3F:BC:0D:A9:6E:2E:51:3A:AA:58:81:2C:69:4B:CD:07:B8:DD:77 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vz-8DaluLlE6qliBLGlLzQe43Xc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/5BC42F286E9F11EC90A66E2BC4F9AE02.roa Signing time: Fri 24 Nov 2023 21:49:38 +0000 ROA not before: Fri 24 Nov 2023 21:49:38 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 55822 IP address blocks: 103.214.196.0/22 maxlen: 24 144.48.144.0/22 maxlen: 24 218.100.44.0/24 maxlen: 24 218.100.75.0/24 maxlen: 24 2001:de8:10::/48 maxlen: 48 2001:de8:13::/48 maxlen: 48 2001:de8:13:1::/64 maxlen: 64 2001:de8:13:2::/64 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/vz-8DaluLlE6qliBLGlLzQe43Xc.crl rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/vz-8DaluLlE6qliBLGlLzQe43Xc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vz-8DaluLlE6qliBLGlLzQe43Xc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1912 (0x778) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7AC5/serialNumber=BF3FBC0DA96E2E513AAA58812C694BCD07B8DD77 Validity Not Before: Nov 24 21:49:38 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65611a72-948b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:bf:df:e7:34:79:9b:8d:6b:03:46:67:56:48: 79:10:18:36:be:61:62:56:6b:54:be:93:c7:d9:e6: 2e:24:13:e2:c8:60:d2:57:50:82:08:07:dc:9b:38: 3b:65:29:f2:9d:3c:47:69:df:a2:de:06:a6:8c:9f: 23:e1:98:6c:28:5d:2e:99:8c:9b:0b:41:2a:cc:f1: 4c:3e:a5:77:5c:16:e7:3c:c7:b0:5d:d8:15:4b:de: c6:11:4e:c0:89:5b:09:ce:16:d7:27:34:4b:7d:b3: 95:21:66:6c:b8:cf:c5:55:67:fe:0f:82:28:20:f1: 39:96:7d:4c:44:e8:a7:dd:f0:79:e9:f2:fd:56:f4: 02:42:e4:9a:33:0a:e4:09:b0:be:32:34:94:bd:94: 5f:6b:f9:e3:a9:95:01:6c:85:cd:3d:2b:19:a9:d8: 04:57:1a:da:80:2a:4b:2d:80:17:54:49:5f:8d:fb: 93:64:c6:02:51:e9:d1:4b:a5:a4:cc:7b:cd:7a:54: c5:a9:d6:2d:13:1c:e2:4b:6e:59:ac:c7:78:38:66: ea:cb:40:ef:fb:d7:0d:2f:c6:84:bd:4f:62:59:90: e1:2d:80:cf:0f:60:87:51:04:5f:24:3f:82:8e:a0: 31:5e:41:d6:d5:1d:46:f8:32:07:95:41:90:35:b6: ec:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:18:1C:69:9F:71:85:2D:DB:CA:14:23:E7:3B:CC:72:AF:41:F3:B2 X509v3 Authority Key Identifier: keyid:BF:3F:BC:0D:A9:6E:2E:51:3A:AA:58:81:2C:69:4B:CD:07:B8:DD:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/vz-8DaluLlE6qliBLGlLzQe43Xc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vz-8DaluLlE6qliBLGlLzQe43Xc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7AC5/A3EB5C00C0D511EA908C0178C4F9AE02/5BC42F286E9F11EC90A66E2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.214.196.0/22 144.48.144.0/22 218.100.44.0/24 218.100.75.0/24 IPv6: 2001:de8:10::/48 2001:de8:13::/48 Signature Algorithm: sha256WithRSAEncryption 16:71:42:b4:2c:5c:23:f9:c1:1a:a0:62:42:c8:69:13:3a:96: 67:b3:ba:55:56:a1:1c:54:b5:67:77:66:4c:07:8f:08:2c:40: f2:a1:bf:f7:a7:ff:82:43:46:9c:4a:68:da:e6:51:a4:c3:18: 31:74:07:1e:f3:08:2f:fe:8e:d0:23:59:b3:69:87:1f:b3:20: 54:b4:26:d4:cb:80:ad:70:9d:60:ab:80:a5:b1:8f:b6:81:55: b5:61:7e:03:34:2b:95:04:e6:d1:50:53:b6:cf:c2:d7:70:7d: 2f:3b:36:32:0f:37:3b:3a:10:7f:f4:32:52:2d:1e:bd:d1:e9: 95:f9:ca:a1:7c:9a:0d:83:3c:19:14:46:7a:a9:06:0a:35:2c: d5:57:5d:c3:70:49:e9:57:1e:3c:98:bd:12:b5:97:2e:72:0d: 97:2e:eb:e7:23:74:6d:86:1c:c5:0a:94:df:50:d9:8d:c6:3e: 07:c4:33:f9:7b:58:df:d3:76:f8:ef:56:8e:1b:46:56:1f:ee: 19:47:37:c9:4d:35:81:02:13:17:32:28:24:2f:cb:8d:2c:94: 74:7f:d8:84:8c:87:56:25:02:1f:4a:b8:b3:de:49:cf:c0:db: 3d:fd:ca:33:97:42:06:b7:e6:1f:38:37:5b:90:d7:4b:da:e4: 09:2c:3b:04 -----BEGIN CERTIFICATE----- MIIFnTCCBIWgAwIBAgICB3gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdBQzUxMTAvBgNVBAUTKEJGM0ZCQzBEQTk2RTJFNTEzQUFBNTg4MTJDNjk0QkNE MDdCOERENzcwHhcNMjMxMTI0MjE0OTM4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYxMWE3Mi05NDhiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuL/f5zR5m41rA0ZnVkh5EBg2vmFiVmtUvpPH2eYuJBPiyGDSV1CCCAfcmzg7 ZSnynTxHad+i3gamjJ8j4ZhsKF0umYybC0EqzPFMPqV3XBbnPMewXdgVS97GEU7A iVsJzhbXJzRLfbOVIWZsuM/FVWf+D4IoIPE5ln1MROin3fB56fL9VvQCQuSaMwrk CbC+MjSUvZRfa/njqZUBbIXNPSsZqdgEVxragCpLLYAXVElfjfuTZMYCUenRS6Wk zHvNelTFqdYtExziS25ZrMd4OGbqy0Dv+9cNL8aEvU9iWZDhLYDPD2CHUQRfJD+C jqAxXkHW1R1G+DIHlUGQNbbsJwIDAQABo4ICwTCCAr0wHQYDVR0OBBYEFJIYHGmf cYUt28oUI+c7zHKvQfOyMB8GA1UdIwQYMBaAFL8/vA2pbi5ROqpYgSxpS80HuN13 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0FDNS9BM0VCNUMwMEMw RDUxMUVBOTA4QzAxNzhDNEY5QUUwMi92ei04RGFsdUxsRTZxbGlCTEdsTHpRZTQz WGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z6LThEYWx1TGxFNnFsaUJMR2xMelFlNDNYYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdBQzUvQTNFQjVDMDBDMEQ1MTFFQTkwOEMwMTc4QzRGOUFFMDIvNUJDNDJGMjg2 RTlGMTFFQzkwQTY2RTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSwYIKwYBBQUHAQcBAf8E PDA6MB4EAgABMBgDBAJn1sQDBAKQMJADBADaZCwDBADaZEswGAQCAAIwEgMHACAB DegAEAMHACABDegAEzANBgkqhkiG9w0BAQsFAAOCAQEAFnFCtCxcI/nBGqBiQshp EzqWZ7O6VVahHFS1Z3dmTAePCCxA8qG/96f/gkNGnEpo2uZRpMMYMXQHHvMIL/6O 0CNZs2mHH7MgVLQm1MuArXCdYKuApbGPtoFVtWF+AzQrlQTm0VBTts/C13B9Lzs2 Mg83OzoQf/QyUi0evdHplfnKoXyaDYM8GRRGeqkGCjUs1Vddw3BJ6VcePJi9ErWX LnINly7r5yN0bYYcxQqU31DZjcY+B8Qz+XtY39N2+O9WjhtGVh/uGUc3yU01gQIT FzIoJC/LjSyUdH/YhIyHViUCH0q4s95Jz8DbPf3KM5dCBrfmHzg3W5DXS9rkCSw7 BA== -----END CERTIFICATE-----Generated at Sun May 19 00:16:18 2024 by rpki-client on console-fra.rpki-client.org