$ rpki-client -vvf rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/75D9F37C007A11ECA444E049C4F9AE02.roa File: 75D9F37C007A11ECA444E049C4F9AE02.roa (raw, json) Hash identifier: Kz6knT09BN75Hy4drCxOmviKRWibuyMhNXF9yl8uRZ8= Subject key identifier: 1F:25:83:1E:60:E8:52:80:82:C3:BD:CC:56:35:AF:E0:F6:69:0B:C5 Certificate issuer: /CN=A91CF24F/serialNumber=6DC5248164BB952E8B9ED9239BE7106A63CEF06C Certificate serial: 08B0 Authority key identifier: 6D:C5:24:81:64:BB:95:2E:8B:9E:D9:23:9B:E7:10:6A:63:CE:F0:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcUkgWS7lS6Lntkjm-cQamPO8Gw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/75D9F37C007A11ECA444E049C4F9AE02.roa Signing time: Mon 04 Mar 2024 21:49:15 +0000 ROA not before: Mon 04 Mar 2024 21:49:15 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132405 IP address blocks: 43.230.100.0/22 maxlen: 24 43.245.72.0/21 maxlen: 24 43.250.92.0/22 maxlen: 24 103.12.22.0/24 maxlen: 24 103.13.86.0/23 maxlen: 24 103.41.216.0/22 maxlen: 24 103.49.127.0/24 maxlen: 24 103.49.144.0/23 maxlen: 24 103.82.136.0/22 maxlen: 24 103.247.224.0/23 maxlen: 24 103.253.92.0/22 maxlen: 24 2001:df0:2c7::/48 maxlen: 64 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/bcUkgWS7lS6Lntkjm-cQamPO8Gw.crl rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/bcUkgWS7lS6Lntkjm-cQamPO8Gw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcUkgWS7lS6Lntkjm-cQamPO8Gw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 20:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2224 (0x8b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CF24F/serialNumber=6DC5248164BB952E8B9ED9239BE7106A63CEF06C Validity Not Before: Mar 4 21:49:15 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e641db-bf6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:48:34:ad:ca:d3:9f:aa:06:0b:05:72:64:31: 3b:a6:25:a0:50:ba:cb:5a:74:b9:ec:49:a4:99:b4: 10:44:e1:d0:ed:a0:58:73:5b:3e:4e:a3:d7:1e:95: 91:60:2e:78:b3:81:52:c1:6c:f4:98:29:b5:b4:e0: 27:93:f0:5d:5f:d7:dc:da:ae:35:1d:e6:ed:10:d3: 55:37:cd:0e:fc:64:78:17:46:7b:77:e3:02:47:77: 0e:a2:71:33:77:3f:c0:85:f5:8f:a3:14:67:71:f1: 23:ca:e0:c4:77:29:32:fd:09:e3:0f:87:0f:76:49: 34:25:de:c9:9a:b6:0e:2b:10:c1:54:e9:a3:c9:a4: 4c:45:8d:42:fd:a2:72:e1:9f:b8:cf:50:fb:53:65: a9:6a:dd:7a:b0:fc:a7:0e:e1:90:19:b3:c8:f6:bb: 3d:c4:a3:36:d7:bc:40:2e:ac:b0:e4:ab:72:02:a8: dc:47:33:d3:e1:f5:40:40:b2:64:a5:85:0c:48:0e: 37:04:04:82:e3:14:ae:43:59:08:78:1c:0f:c5:73: 29:39:87:46:a6:b6:ed:17:b0:18:05:7e:8b:5c:81: cd:4a:54:43:8c:83:db:b8:4f:ee:84:98:c0:83:4c: a1:98:d5:16:fd:40:63:e5:ad:3c:28:22:0a:54:36: e6:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:25:83:1E:60:E8:52:80:82:C3:BD:CC:56:35:AF:E0:F6:69:0B:C5 X509v3 Authority Key Identifier: keyid:6D:C5:24:81:64:BB:95:2E:8B:9E:D9:23:9B:E7:10:6A:63:CE:F0:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/bcUkgWS7lS6Lntkjm-cQamPO8Gw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bcUkgWS7lS6Lntkjm-cQamPO8Gw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CF24F/37C110B88F5911EAAB70E234C4F9AE02/75D9F37C007A11ECA444E049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.100.0/22 43.245.72.0/21 43.250.92.0/22 103.12.22.0/24 103.13.86.0/23 103.41.216.0/22 103.49.127.0/24 103.49.144.0/23 103.82.136.0/22 103.247.224.0/23 103.253.92.0/22 IPv6: 2001:df0:2c7::/48 Signature Algorithm: sha256WithRSAEncryption c3:ad:35:7b:b0:9c:44:ab:56:8b:0b:78:53:20:d8:d1:48:1d: d9:ed:61:71:c6:68:1b:7b:04:4a:a3:fc:34:3f:6d:dd:45:66: 0e:4b:91:28:4f:1c:b7:eb:d7:5a:46:1f:2e:bf:74:3c:5b:6c: 4b:25:c8:80:fd:67:88:cf:5c:a3:f7:12:14:96:83:62:9b:14: 20:0a:ad:ad:7b:99:3a:fb:a2:cc:62:bd:04:fe:a7:7b:c4:9e: 41:23:70:2e:ed:73:8e:25:0a:0f:b4:87:f4:d4:bf:a3:63:c8: c6:15:f7:50:84:f6:b5:38:67:29:e2:b1:c7:08:42:72:81:f9: d7:af:50:66:93:c9:c3:c6:1b:55:a1:39:21:bf:e7:f0:96:8e: 74:e8:85:06:15:3e:21:bc:ca:ea:a1:c4:7a:33:52:e5:c9:a0: 72:0e:f4:7c:34:60:f2:1b:e0:fe:b8:39:72:4f:19:96:52:94: 06:f4:9d:87:6d:85:11:b1:42:d5:b5:f9:57:be:ce:8d:2b:2e: 3b:df:ff:75:cc:92:eb:6a:32:bc:cc:f2:7d:df:97:35:27:a4: 29:00:81:f2:47:f7:c1:5a:5b:2c:42:a9:7a:f3:5c:cc:48:61: 39:22:8a:8b:30:13:08:e0:4a:be:2b:f9:9a:71:d6:ae:fb:b9: 3b:82:7b:94 -----BEGIN CERTIFICATE----- MIIFvjCCBKagAwIBAgICCLAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0YyNEYxMTAvBgNVBAUTKDZEQzUyNDgxNjRCQjk1MkU4QjlFRDkyMzlCRTcxMDZB NjNDRUYwNkMwHhcNMjQwMzA0MjE0OTE1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2NDFkYi1iZjZiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzEg0rcrTn6oGCwVyZDE7piWgULrLWnS57EmkmbQQROHQ7aBYc1s+TqPXHpWR YC54s4FSwWz0mCm1tOAnk/BdX9fc2q41HebtENNVN80O/GR4F0Z7d+MCR3cOonEz dz/AhfWPoxRncfEjyuDEdyky/QnjD4cPdkk0Jd7JmrYOKxDBVOmjyaRMRY1C/aJy 4Z+4z1D7U2Wpat16sPynDuGQGbPI9rs9xKM217xALqyw5KtyAqjcRzPT4fVAQLJk pYUMSA43BASC4xSuQ1kIeBwPxXMpOYdGprbtF7AYBX6LXIHNSlRDjIPbuE/uhJjA g0yhmNUW/UBj5a08KCIKVDbmrQIDAQABo4IC4jCCAt4wHQYDVR0OBBYEFB8lgx5g 6FKAgsO9zFY1r+D2aQvFMB8GA1UdIwQYMBaAFG3FJIFku5Uui57ZI5vnEGpjzvBs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRjI0Ri8zN0MxMTBCODhG NTkxMUVBQUI3MEUyMzRDNEY5QUUwMi9iY1VrZ1dTN2xTNkxudGtqbS1jUWFtUE84 R3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JjVWtnV1M3bFM2TG50a2ptLWNRYW1QTzhHdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0YyNEYvMzdDMTEwQjg4RjU5MTFFQUFCNzBFMjM0QzRGOUFFMDIvNzVEOUYzN0Mw MDdBMTFFQ0E0NDRFMDQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwbAYIKwYBBQUHAQcBAf8E XTBbMEgEAgABMEIDBAIr5mQDBAMr9UgDBAIr+lwDBABnDBYDBAFnDVYDBAJnKdgD BABnMX8DBAFnMZADBAJnUogDBAFn9+ADBAJn/VwwDwQCAAIwCQMHACABDfACxzAN BgkqhkiG9w0BAQsFAAOCAQEAw601e7CcRKtWiwt4UyDY0Ugd2e1hccZoG3sESqP8 ND9t3UVmDkuRKE8ct+vXWkYfLr90PFtsSyXIgP1niM9co/cSFJaDYpsUIAqtrXuZ OvuizGK9BP6ne8SeQSNwLu1zjiUKD7SH9NS/o2PIxhX3UIT2tThnKeKxxwhCcoH5 169QZpPJw8YbVaE5Ib/n8JaOdOiFBhU+IbzK6qHEejNS5cmgcg70fDRg8hvg/rg5 ck8ZllKUBvSdh22FEbFC1bX5V77OjSsuO9//dcyS62oyvMzyfd+XNSekKQCB8kf3 wVpbLEKpevNczEhhOSKKizATCOBKviv5mnHWrvu5O4J7lA== -----END CERTIFICATE-----Generated at Mon May 20 22:01:05 2024 by rpki-client on console-fra.rpki-client.org