$ rpki-client -vvf rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/B3B97C46510311EDA562C34DC4F9AE02.roa File: B3B97C46510311EDA562C34DC4F9AE02.roa (raw, json) Hash identifier: RIPvfK8QUF5wmav7mk9nMb7DDj6cSNmzn+eFWQglssU= Subject key identifier: 95:BA:1E:18:4D:51:74:9B:5C:8A:B4:47:56:18:3F:D3:98:36:22:F0 Certificate issuer: /CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Certificate serial: 0DC5 Authority key identifier: AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/B3B97C46510311EDA562C34DC4F9AE02.roa Signing time: Thu 28 Dec 2023 18:56:54 +0000 ROA not before: Thu 28 Dec 2023 18:56:54 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 58460 IP address blocks: 202.42.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 18:59:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3525 (0xdc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CFFA0/serialNumber=ADD9418F0F9B55F3B7376A093DB11DBAD3AEFEC8 Validity Not Before: Dec 28 18:56:54 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=658dc4f6-b323 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:34:5c:01:c4:b3:1b:ab:a4:2c:4b:82:25:c4: 8b:16:59:12:e1:72:7f:2d:3f:ce:ff:1a:ae:05:dc: fa:0b:9d:dc:d3:2e:0e:4a:82:6a:10:3d:1d:34:8c: 5b:5b:13:0f:52:4a:89:e8:03:14:e9:d6:d4:e3:4f: 0b:ef:32:29:a9:5d:f9:14:8c:a0:89:85:99:03:98: 14:0a:e2:16:9e:66:7a:e8:1b:94:50:c0:74:7c:11: 32:25:c1:4b:99:32:63:86:de:7d:c1:4c:e6:9f:d2: ef:53:30:9c:8b:97:63:7f:9d:d0:a2:16:72:2e:8c: cb:fa:d2:3c:b7:67:6e:9e:82:18:9f:2b:e6:55:7a: 46:d6:d2:49:16:ee:43:7d:91:77:ec:31:69:9f:1d: 7c:78:08:6a:e8:39:8c:ff:43:2d:0f:f7:96:e7:8e: b4:92:69:38:80:95:71:b8:62:e8:7b:2f:ab:56:a2: 9a:a3:73:22:37:f3:f2:88:37:e8:ba:8d:53:85:8c: 38:f3:72:df:ff:fa:c3:96:23:55:62:8f:c7:b9:9f: 70:23:ad:5f:8e:84:8c:b9:55:81:9f:09:b0:55:19: 73:5a:58:a1:cc:bc:17:1e:e5:02:71:6f:32:9d:12: f3:b7:a6:d1:73:6b:5e:a7:c7:b0:60:f2:77:7c:8a: 04:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:BA:1E:18:4D:51:74:9B:5C:8A:B4:47:56:18:3F:D3:98:36:22:F0 X509v3 Authority Key Identifier: keyid:AD:D9:41:8F:0F:9B:55:F3:B7:37:6A:09:3D:B1:1D:BA:D3:AE:FE:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/rdlBjw-bVfO3N2oJPbEdutOu_sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rdlBjw-bVfO3N2oJPbEdutOu_sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CFFA0/1D66D486D8CB11E9BAE24D21C4F9AE02/B3B97C46510311EDA562C34DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 202.42.184.0/22 Signature Algorithm: sha256WithRSAEncryption 96:43:7a:ff:44:f5:ac:85:3f:1d:7d:2b:57:36:1f:cd:b8:99: bd:a1:94:0e:16:9b:f0:f1:9f:3c:60:fe:2b:ea:85:6a:97:c0: 1b:11:0e:f7:43:af:35:ba:d7:e9:bb:78:50:ad:83:1e:8e:e5: f6:77:85:3b:57:8f:ac:b9:6d:12:c3:86:da:20:66:44:7c:69: 50:35:a3:2b:90:6f:91:80:29:3e:7b:f7:08:f5:09:eb:0e:ab: ca:26:bf:f5:c9:9d:51:e0:aa:79:80:f1:82:56:97:eb:e0:97: 17:9a:8f:9d:5b:cc:ab:c9:2a:83:5a:39:6e:4b:23:14:8c:66: 1f:aa:92:93:3c:cb:88:f0:9a:df:f7:5b:51:f2:b9:ae:a9:c0: 00:c9:cc:1d:a4:0c:0a:0d:c3:00:cc:ad:43:c1:56:18:01:62: 16:b0:31:71:ae:88:c1:8d:52:78:66:90:94:de:b0:d5:32:79: ce:5c:b5:06:a2:6b:ec:6e:f0:4e:5c:28:b4:4d:56:b4:c5:2e: 37:70:7e:56:56:e0:db:d6:14:02:f2:d8:74:96:bf:f4:db:70: 71:1e:6f:d6:6a:60:48:f3:cb:33:94:54:6a:b0:dc:cc:07:f6: f2:1f:f0:0a:0c:53:98:66:8f:98:4e:97:98:b3:7d:be:9f:a3: 06:d9:8c:4a -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDcUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0ZGQTAxMTAvBgNVBAUTKEFERDk0MThGMEY5QjU1RjNCNzM3NkEwOTNEQjExREJB RDNBRUZFQzgwHhcNMjMxMjI4MTg1NjU0WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThkYzRmNi1iMzIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9DRcAcSzG6ukLEuCJcSLFlkS4XJ/LT/O/xquBdz6C53c0y4OSoJqED0dNIxb WxMPUkqJ6AMU6dbU408L7zIpqV35FIygiYWZA5gUCuIWnmZ66BuUUMB0fBEyJcFL mTJjht59wUzmn9LvUzCci5djf53QohZyLozL+tI8t2dunoIYnyvmVXpG1tJJFu5D fZF37DFpnx18eAhq6DmM/0MtD/eW5460kmk4gJVxuGLoey+rVqKao3MiN/PyiDfo uo1ThYw483Lf//rDliNVYo/HuZ9wI61fjoSMuVWBnwmwVRlzWlihzLwXHuUCcW8y nRLzt6bRc2tep8ewYPJ3fIoEFwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJW6HhhN UXSbXIq0R1YYP9OYNiLwMB8GA1UdIwQYMBaAFK3ZQY8Pm1XztzdqCT2xHbrTrv7I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRkZBMC8xRDY2RDQ4NkQ4 Q0IxMUU5QkFFMjREMjFDNEY5QUUwMi9yZGxCanctYlZmTzNOMm9KUGJFZHV0T3Vf c2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JkbEJqdy1iVmZPM04yb0pQYkVkdXRPdV9zZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0ZGQTAvMUQ2NkQ0ODZEOENCMTFFOUJBRTI0RDIxQzRGOUFFMDIvQjNCOTdDNDY1 MTAzMTFFREE1NjJDMzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBALKKrgwDQYJKoZIhvcNAQELBQADggEBAJZDev9E9ayFPx19 K1c2H824mb2hlA4Wm/Dxnzxg/ivqhWqXwBsRDvdDrzW61+m7eFCtgx6O5fZ3hTtX j6y5bRLDhtogZkR8aVA1oyuQb5GAKT579wj1CesOq8omv/XJnVHgqnmA8YJWl+vg lxeaj51bzKvJKoNaOW5LIxSMZh+qkpM8y4jwmt/3W1Hyua6pwADJzB2kDAoNwwDM rUPBVhgBYhawMXGuiMGNUnhmkJTesNUyec5ctQaia+xu8E5cKLRNVrTFLjdwflZW 4NvWFALy2HSWv/TbcHEeb9ZqYEjzyzOUVGqw3MwH9vIf8AoMU5hmj5hOl5izfb6f owbZjEo= -----END CERTIFICATE-----Generated at Thu May 2 20:50:36 2024 by rpki-client on console-fra.rpki-client.org