$ rpki-client -vvf rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/437E6F641A2A11ED8E5B3178C4F9AE02.roa File: 437E6F641A2A11ED8E5B3178C4F9AE02.roa (raw, json) Hash identifier: hoH+aozMY2IU51e7wcI5cV7fi797Q+zPM7u/G866EuI= Subject key identifier: 43:48:CE:7D:92:FE:95:C2:28:EE:88:B5:4F:9B:B8:20:E7:42:33:A9 Certificate issuer: /CN=A91C862F/serialNumber=9CB2195EBAA20960DAF882FB5F47EB55A19D22EC Certificate serial: 02D5 Authority key identifier: 9C:B2:19:5E:BA:A2:09:60:DA:F8:82:FB:5F:47:EB:55:A1:9D:22:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/437E6F641A2A11ED8E5B3178C4F9AE02.roa Signing time: Tue 19 Mar 2024 03:25:00 +0000 ROA not before: Tue 19 Mar 2024 03:25:00 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140889 IP address blocks: 103.182.170.0/24 maxlen: 24 103.182.171.0/24 maxlen: 24 2001:df0:7f40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.crl rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 725 (0x2d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C862F/serialNumber=9CB2195EBAA20960DAF882FB5F47EB55A19D22EC Validity Not Before: Mar 19 03:25:00 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65f9058c-34ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:17:e5:e2:5d:2c:2f:1b:ee:ef:f6:67:2a:1c: e9:cb:7b:22:c8:4f:36:96:9e:17:03:4a:11:d8:c5: 7c:d6:a5:ed:17:71:41:fd:53:e2:75:7d:88:85:56: cc:29:05:2c:cd:5a:37:64:41:e0:e2:60:f5:87:a9: 6e:64:1b:0e:64:0c:7f:18:a5:8c:80:36:fa:73:21: 01:14:bf:1b:de:39:4d:e0:c3:16:16:85:5c:5e:a0: a8:df:ee:dc:53:cd:58:41:b4:24:56:b2:30:6b:a1: 30:80:67:fb:6a:6e:6a:a6:34:76:74:05:c8:9b:61: 3d:5f:48:1b:27:3d:ec:fa:33:77:aa:f1:00:23:99: 40:2f:9b:5d:95:36:94:1c:c3:09:45:87:de:ab:af: 58:2a:a6:fb:e6:4f:3c:58:7d:22:b5:7e:38:20:0d: 6f:75:fc:ba:06:06:17:28:84:10:03:d1:72:10:46: 1e:75:ed:9f:d3:5c:62:7e:d3:a8:8b:2c:72:71:07: 5f:9b:6d:ee:7e:52:28:53:ba:bc:b5:de:b0:08:b0: 02:e8:7b:c5:ed:4b:a5:04:44:ac:f5:96:d7:0b:bf: 7a:1b:61:3b:28:61:4e:1d:50:96:53:a5:49:b6:9f: c0:c8:5a:93:f1:d7:39:de:02:b7:ab:c0:3e:23:ed: e3:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:48:CE:7D:92:FE:95:C2:28:EE:88:B5:4F:9B:B8:20:E7:42:33:A9 X509v3 Authority Key Identifier: keyid:9C:B2:19:5E:BA:A2:09:60:DA:F8:82:FB:5F:47:EB:55:A1:9D:22:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/nLIZXrqiCWDa-IL7X0frVaGdIuw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/nLIZXrqiCWDa-IL7X0frVaGdIuw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C862F/D5E1DDEA965F11ECAD217376C4F9AE02/437E6F641A2A11ED8E5B3178C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.182.170.0/23 IPv6: 2001:df0:7f40::/48 Signature Algorithm: sha256WithRSAEncryption 6d:87:d7:24:e9:19:62:67:e5:a3:6e:81:c7:f7:7a:00:7b:44: 25:29:b1:ca:79:f6:a7:9c:65:cc:88:7b:d3:c2:a7:66:9e:4b: 63:27:83:01:99:cd:49:da:1f:74:cf:dd:26:32:68:50:84:49: d1:fb:6e:fb:ca:c9:12:9d:f2:2a:39:20:c0:6b:99:b3:86:45: ce:02:41:41:c7:b4:87:85:87:d4:d0:c2:da:77:2d:12:7e:c4: 10:b2:89:b5:51:21:43:d1:6f:f7:91:f3:e4:da:44:a5:4e:5e: e2:b5:06:8c:b7:84:54:6e:e0:21:13:54:35:47:11:f8:bc:56: 60:23:01:8b:4c:d6:85:73:49:8f:fc:59:45:f7:0e:8b:0f:00: 16:17:1c:b0:72:b3:48:73:4f:93:76:11:af:a0:be:c5:8b:c8: 04:52:6c:93:87:5d:32:1b:4b:c4:b4:55:7d:b9:67:81:27:f2: 5c:d4:bb:d2:06:1e:f1:41:46:f0:a5:17:8f:21:68:f6:d5:5d: 13:86:57:d5:57:fe:c0:e1:3e:88:75:df:6d:c6:87:fa:14:77: 2b:cd:be:6c:b6:1e:79:21:bd:89:c0:aa:f2:b0:64:14:16:d4: 87:4e:2b:0c:9e:22:dd:89:a0:c5:a9:46:be:bf:bf:6d:5a:a2: 98:d3:f7:c1 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAtUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qzg2MkYxMTAvBgNVBAUTKDlDQjIxOTVFQkFBMjA5NjBEQUY4ODJGQjVGNDdFQjU1 QTE5RDIyRUMwHhcNMjQwMzE5MDMyNTAwWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWY5MDU4Yy0zNGJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6xfl4l0sLxvu7/ZnKhzpy3siyE82lp4XA0oR2MV81qXtF3FB/VPidX2IhVbM KQUszVo3ZEHg4mD1h6luZBsOZAx/GKWMgDb6cyEBFL8b3jlN4MMWFoVcXqCo3+7c U81YQbQkVrIwa6EwgGf7am5qpjR2dAXIm2E9X0gbJz3s+jN3qvEAI5lAL5tdlTaU HMMJRYfeq69YKqb75k88WH0itX44IA1vdfy6BgYXKIQQA9FyEEYede2f01xiftOo iyxycQdfm23uflIoU7q8td6wCLAC6HvF7UulBESs9ZbXC796G2E7KGFOHVCWU6VJ tp/AyFqT8dc53gK3q8A+I+3jgQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFENIzn2S /pXCKO6ItU+buCDnQjOpMB8GA1UdIwQYMBaAFJyyGV66oglg2viC+19H61WhnSLs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDODYyRi9ENUUxRERFQTk2 NUYxMUVDQUQyMTczNzZDNEY5QUUwMi9uTElaWHJxaUNXRGEtSUw3WDBmclZhR2RJ dXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL25MSVpYcnFpQ1dEYS1JTDdYMGZyVmFHZEl1dy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qzg2MkYvRDVFMURERUE5NjVGMTFFQ0FEMjE3Mzc2QzRGOUFFMDIvNDM3RTZGNjQx QTJBMTFFRDhFNUIzMTc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntqowDwQCAAIwCQMHACABDfB/QDANBgkqhkiG9w0BAQsF AAOCAQEAbYfXJOkZYmflo26Bx/d6AHtEJSmxynn2p5xlzIh708KnZp5LYyeDAZnN SdofdM/dJjJoUIRJ0ftu+8rJEp3yKjkgwGuZs4ZFzgJBQce0h4WH1NDC2nctEn7E ELKJtVEhQ9Fv95Hz5NpEpU5e4rUGjLeEVG7gIRNUNUcR+LxWYCMBi0zWhXNJj/xZ RfcOiw8AFhccsHKzSHNPk3YRr6C+xYvIBFJsk4ddMhtLxLRVfblngSfyXNS70gYe 8UFG8KUXjyFo9tVdE4ZX1Vf+wOE+iHXfbcaH+hR3K82+bLYeeSG9icCq8rBkFBbU h04rDJ4i3YmgxalGvr+/bVqimNP3wQ== -----END CERTIFICATE-----Generated at Sun May 19 04:20:43 2024 by rpki-client on console-ams.rpki-client.org