$ rpki-client -vvf rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/96F093D4BEA011EB8CAD965FC4F9AE02.roa File: 96F093D4BEA011EB8CAD965FC4F9AE02.roa (raw, json) Hash identifier: /vQQ5lhFzVE5J0DcEdqHnJDb6NDLcF26MBF4BLF50z4= Subject key identifier: 00:6D:CC:F4:F0:1F:66:08:AB:5D:06:97:EC:62:5F:FB:AE:1B:59:C4 Certificate issuer: /CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Certificate serial: 0514 Authority key identifier: 2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/96F093D4BEA011EB8CAD965FC4F9AE02.roa Signing time: Thu 15 Feb 2024 00:52:46 +0000 ROA not before: Thu 15 Feb 2024 00:52:46 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 139898 IP address blocks: 43.245.56.0/22 maxlen: 24 103.25.140.0/22 maxlen: 24 103.116.88.0/23 maxlen: 24 103.146.200.0/23 maxlen: 24 2405:9f40::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1300 (0x514) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CEA40/serialNumber=2C3D235A1B219F416610900B003B8ABFDC1702A2 Validity Not Before: Feb 15 00:52:46 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cd605e-bfa7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:c1:41:c0:aa:35:e8:23:ec:d1:98:7e:1c:51: a6:75:6e:37:87:35:bc:17:d4:bb:6a:4f:1b:8c:39: 24:e9:40:f3:f9:91:46:0e:67:0b:a6:48:df:eb:2b: ce:78:5f:ba:77:fc:be:15:92:9f:b7:4a:7f:a6:fe: 91:dd:b4:f6:6d:7a:eb:e5:e8:2a:65:97:79:b9:9b: b3:f6:57:03:02:7d:73:17:48:83:8b:d5:87:77:ca: 6b:5e:31:a4:a1:aa:8f:f9:d6:ef:6c:14:23:d4:64: a4:3e:1d:6b:60:d5:e4:53:ad:2e:40:44:ef:4b:87: b4:4b:a5:48:ff:ef:54:95:02:2b:98:79:7e:29:d9: 2c:57:4e:2e:46:69:ab:41:d0:fd:9c:d0:60:4f:c2: 48:9b:8c:21:55:72:62:74:a4:ca:fa:71:d9:8f:af: b6:54:ae:aa:bc:55:e7:dd:04:16:61:b0:f1:dc:66: 64:86:18:89:a2:10:09:b0:a1:f9:29:d4:0c:b3:95: 0b:67:c9:6b:99:1f:64:8d:28:27:e0:99:8c:f7:69: 5a:b9:63:c6:a1:e7:00:7b:64:11:45:72:6f:b0:f3: 6f:90:83:b7:27:97:44:3e:2c:63:6a:15:aa:1d:43: 71:5b:49:b2:65:07:da:c9:f7:7b:02:b2:55:49:2e: 8f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6D:CC:F4:F0:1F:66:08:AB:5D:06:97:EC:62:5F:FB:AE:1B:59:C4 X509v3 Authority Key Identifier: keyid:2C:3D:23:5A:1B:21:9F:41:66:10:90:0B:00:3B:8A:BF:DC:17:02:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/LD0jWhshn0FmEJALADuKv9wXAqI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LD0jWhshn0FmEJALADuKv9wXAqI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CEA40/8E964BCEAF7911EB84217A58C4F9AE02/96F093D4BEA011EB8CAD965FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.245.56.0/22 103.25.140.0/22 103.116.88.0/23 103.146.200.0/23 IPv6: 2405:9f40::/32 Signature Algorithm: sha256WithRSAEncryption 2b:4e:14:e7:a7:e9:be:82:26:e5:02:cc:12:68:c2:fd:69:a9: 3a:24:93:eb:6d:62:7b:f9:6f:68:38:4c:3c:4d:d7:7d:a5:b7: a1:4f:4b:03:1b:22:26:4d:3c:9f:04:f5:22:63:31:15:16:db: b7:f6:7b:3b:5d:30:d8:7e:17:31:07:ee:9b:53:98:77:c3:39: 7b:87:0f:cc:87:78:0c:fd:70:3d:d9:1a:ef:b7:97:67:d8:eb: 00:7c:9f:4f:78:40:7f:a1:92:a4:86:b7:4f:58:64:21:b4:3f: 74:c5:fc:71:6c:f4:86:2c:64:0c:9b:5d:7c:86:ca:78:91:82: d1:ab:7d:dd:42:77:9f:fd:f2:2f:a8:26:c1:da:21:02:37:7b: 61:35:68:04:dc:6f:23:99:c9:79:45:3f:51:1b:1e:7f:fc:25: 1e:24:aa:84:b2:92:8b:d9:89:fb:da:00:ad:bf:3f:39:e6:79: 94:9e:d8:80:17:d5:ee:cf:6d:e3:b3:e3:b9:38:3f:c2:94:61: f5:33:b5:2a:c9:11:db:c1:c5:22:e5:e3:72:07:23:88:41:20: 36:0e:b2:9c:3b:c6:af:d4:4c:a5:5f:76:67:f5:7d:a8:8d:36: f8:24:a8:26:84:3b:7f:85:4b:bb:4e:5c:f1:45:84:56:06:da: b2:a0:35:c6 -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICBRQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0VBNDAxMTAvBgNVBAUTKDJDM0QyMzVBMUIyMTlGNDE2NjEwOTAwQjAwM0I4QUJG REMxNzAyQTIwHhcNMjQwMjE1MDA1MjQ2WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNkNjA1ZS1iZmE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6cFBwKo16CPs0Zh+HFGmdW43hzW8F9S7ak8bjDkk6UDz+ZFGDmcLpkjf6yvO eF+6d/y+FZKft0p/pv6R3bT2bXrr5egqZZd5uZuz9lcDAn1zF0iDi9WHd8prXjGk oaqP+dbvbBQj1GSkPh1rYNXkU60uQETvS4e0S6VI/+9UlQIrmHl+KdksV04uRmmr QdD9nNBgT8JIm4whVXJidKTK+nHZj6+2VK6qvFXn3QQWYbDx3GZkhhiJohAJsKH5 KdQMs5ULZ8lrmR9kjSgn4JmM92lauWPGoecAe2QRRXJvsPNvkIO3J5dEPixjahWq HUNxW0myZQfayfd7ArJVSS6P4QIDAQABo4ICtjCCArIwHQYDVR0OBBYEFABtzPTw H2YIq10Gl+xiX/uuG1nEMB8GA1UdIwQYMBaAFCw9I1obIZ9BZhCQCwA7ir/cFwKi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRUE0MC84RTk2NEJDRUFG NzkxMUVCODQyMTdBNThDNEY5QUUwMi9MRDBqV2hzaG4wRm1FSkFMQUR1S3Y5d1hB cUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xEMGpXaHNobjBGbUVKQUxBRHVLdjl3WEFxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0VBNDAvOEU5NjRCQ0VBRjc5MTFFQjg0MjE3QTU4QzRGOUFFMDIvOTZGMDkzRDRC RUEwMTFFQjhDQUQ5NjVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBAIr9TgDBAJnGYwDBAFndFgDBAFnksgwDQQCAAIwBwMFACQF n0AwDQYJKoZIhvcNAQELBQADggEBACtOFOen6b6CJuUCzBJowv1pqTokk+ttYnv5 b2g4TDxN132lt6FPSwMbIiZNPJ8E9SJjMRUW27f2eztdMNh+FzEH7ptTmHfDOXuH D8yHeAz9cD3ZGu+3l2fY6wB8n094QH+hkqSGt09YZCG0P3TF/HFs9IYsZAybXXyG yniRgtGrfd1Cd5/98i+oJsHaIQI3e2E1aATcbyOZyXlFP1EbHn/8JR4kqoSykovZ ifvaAK2/PznmeZSe2IAX1e7PbeOz47k4P8KUYfUztSrJEdvBxSLl43IHI4hBIDYO spw7xq/UTKVfdmf1faiNNvgkqCaEO3+FS7tOXPFFhFYG2rKgNcY= -----END CERTIFICATE-----Generated at Fri May 17 01:47:19 2024 by rpki-client on console-fra.rpki-client.org