$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/F3529CDCAE1511EE92D99E46C4F9AE02.roa File: F3529CDCAE1511EE92D99E46C4F9AE02.roa (raw, json) Hash identifier: vERej6PFMwMOORNrIHg1KRCb9Qq6yxbmNgCH2y9OYoM= Subject key identifier: 4A:2B:23:67:D7:1A:87:EF:65:54:82:79:E4:A1:20:06:F7:72:34:8D Certificate issuer: /CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Certificate serial: 0B4E Authority key identifier: E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/F3529CDCAE1511EE92D99E46C4F9AE02.roa Signing time: Mon 08 Jan 2024 11:06:20 +0000 ROA not before: Mon 08 Jan 2024 11:06:20 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 17471 IP address blocks: 103.7.112.0/22 maxlen: 24 122.99.96.0/21 maxlen: 24 202.125.64.0/20 maxlen: 24 203.83.160.0/19 maxlen: 24 203.191.32.0/23 maxlen: 24 2407:f040::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 19:26:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2894 (0xb4e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4345/serialNumber=E537D0C348FD7DC49F5FC3B0066A31C584FAE1AB Validity Not Before: Jan 8 11:06:20 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=659bd72b-9508 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:d0:64:bc:1b:94:23:0b:f4:9e:67:20:0c:6c: 0c:7a:7a:a1:8d:1a:48:04:f2:9e:2e:e6:bf:1f:b7: d9:2a:80:30:1c:07:d7:2b:e2:94:49:bf:93:93:28: 4e:3c:2d:dd:fb:1b:ce:43:49:43:c3:5b:69:64:84: 3f:c6:74:68:00:fd:41:c7:5b:7c:74:c5:36:1d:0d: 71:7c:11:4c:f9:c1:c8:a3:1f:1c:56:50:a7:91:c6: 18:a2:44:45:3c:1d:c1:0d:f6:58:4d:54:fb:2a:98: 4a:fd:99:47:20:ef:7a:ec:f5:b6:66:cf:27:dc:fa: 19:46:da:82:e2:0a:ee:1c:3b:86:cd:09:40:60:b6: f4:63:4f:8a:12:c9:49:51:bc:2c:d5:1b:97:01:f0: 41:16:41:f0:9a:a2:54:d3:44:ed:3e:37:75:cf:74: 19:e2:f8:25:05:89:36:9d:f4:78:4c:31:a9:c9:15: 35:ae:e0:0c:b1:40:00:36:09:60:8d:a3:26:3e:2e: 78:23:56:5b:df:c8:27:f9:2c:91:8f:7c:1a:8e:e3: 10:18:70:21:ea:c2:b9:ec:e5:30:6d:c7:22:27:af: 74:1d:c9:45:d1:a3:ee:1a:2f:58:51:58:b6:e1:51: 2b:58:58:74:c9:2b:ba:91:3a:ab:2f:ea:76:c2:70: 78:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:2B:23:67:D7:1A:87:EF:65:54:82:79:E4:A1:20:06:F7:72:34:8D X509v3 Authority Key Identifier: keyid:E5:37:D0:C3:48:FD:7D:C4:9F:5F:C3:B0:06:6A:31:C5:84:FA:E1:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/5TfQw0j9fcSfX8OwBmoxxYT64as.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5TfQw0j9fcSfX8OwBmoxxYT64as.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4345/EC78CDDA053811EAB5897668C4F9AE02/F3529CDCAE1511EE92D99E46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.112.0/22 122.99.96.0/21 202.125.64.0/20 203.83.160.0/19 203.191.32.0/23 IPv6: 2407:f040::/32 Signature Algorithm: sha256WithRSAEncryption 4d:1a:48:0b:32:48:d9:05:e4:d8:76:84:9d:7f:a7:43:8e:81: 84:7e:05:72:34:90:e6:1e:0e:48:ba:e9:92:6e:eb:2f:4c:90: 6e:3d:15:ae:06:78:ec:57:38:f0:f5:5e:fb:14:99:1f:ea:4f: ab:93:bd:1a:45:40:c6:e1:ea:aa:46:7e:40:61:05:23:70:b7: 42:db:e5:82:89:50:8b:5f:af:2b:8b:c7:e5:97:b7:11:4b:3e: 9a:34:dd:f7:5b:02:a5:99:cb:b2:cd:50:c8:de:98:76:92:e4: 7a:48:43:26:c9:0c:5f:f0:72:54:d4:a7:f4:97:7d:5a:a0:c3: f0:6e:f9:8f:de:ce:44:57:b7:2c:7a:c2:f8:0a:76:7a:83:ea: 7f:5b:8f:14:8c:a3:05:27:88:1e:5f:d3:61:b8:9b:bb:a1:a6: a4:41:a8:bd:d2:f9:f6:a1:c0:f7:8f:c4:82:5a:63:8c:d7:15: 76:88:1b:4e:27:71:67:26:10:e0:98:b3:b9:f8:42:64:e7:ca: 50:88:7a:d2:a0:ad:22:7b:c7:3a:95:94:08:1d:6f:b2:20:8c: 14:d2:9a:8c:9b:1e:c3:d3:ed:f6:46:2b:6a:fb:54:86:f1:9f: 25:45:a9:16:45:cd:5c:b7:0a:b2:00:87:74:38:9a:ec:99:dd: 2d:2b:54:0f -----BEGIN CERTIFICATE----- MIIFmDCCBICgAwIBAgICC04wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzNDUxMTAvBgNVBAUTKEU1MzdEMEMzNDhGRDdEQzQ5RjVGQzNCMDA2NkEzMUM1 ODRGQUUxQUIwHhcNMjQwMTA4MTEwNjIwWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTliZDcyYi05NTA4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAtNBkvBuUIwv0nmcgDGwMenqhjRpIBPKeLua/H7fZKoAwHAfXK+KUSb+TkyhO PC3d+xvOQ0lDw1tpZIQ/xnRoAP1Bx1t8dMU2HQ1xfBFM+cHIox8cVlCnkcYYokRF PB3BDfZYTVT7KphK/ZlHIO967PW2Zs8n3PoZRtqC4gruHDuGzQlAYLb0Y0+KEslJ Ubws1RuXAfBBFkHwmqJU00TtPjd1z3QZ4vglBYk2nfR4TDGpyRU1ruAMsUAANglg jaMmPi54I1Zb38gn+SyRj3wajuMQGHAh6sK57OUwbcciJ690HclF0aPuGi9YUVi2 4VErWFh0ySu6kTqrL+p2wnB4pwIDAQABo4ICvDCCArgwHQYDVR0OBBYEFEorI2fX GofvZVSCeeShIAb3cjSNMB8GA1UdIwQYMBaAFOU30MNI/X3En1/DsAZqMcWE+uGr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDM0NS9FQzc4Q0REQTA1 MzgxMUVBQjU4OTc2NjhDNEY5QUUwMi81VGZRdzBqOWZjU2ZYOE93Qm1veHhZVDY0 YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVUZlF3MGo5ZmNTZlg4T3dCbW94eFlUNjRhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQzNDUvRUM3OENEREEwNTM4MTFFQUI1ODk3NjY4QzRGOUFFMDIvRjM1MjlDRENB RTE1MTFFRTkyRDk5RTQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRgYIKwYBBQUHAQcBAf8E NzA1MCQEAgABMB4DBAJnB3ADBAN6Y2ADBATKfUADBAXLU6ADBAHLvyAwDQQCAAIw BwMFACQH8EAwDQYJKoZIhvcNAQELBQADggEBAE0aSAsySNkF5Nh2hJ1/p0OOgYR+ BXI0kOYeDki66ZJu6y9MkG49Fa4GeOxXOPD1XvsUmR/qT6uTvRpFQMbh6qpGfkBh BSNwt0Lb5YKJUItfryuLx+WXtxFLPpo03fdbAqWZy7LNUMjemHaS5HpIQybJDF/w clTUp/SXfVqgw/Bu+Y/ezkRXtyx6wvgKdnqD6n9bjxSMowUniB5f02G4m7uhpqRB qL3S+fahwPePxIJaY4zXFXaIG04ncWcmEOCYs7n4QmTnylCIetKgrSJ7xzqVlAgd b7IgjBTSmoybHsPT7fZGK2r7VIbxnyVFqRZFzVy3CrIAh3Q4muyZ3S0rVA8= -----END CERTIFICATE-----Generated at Thu May 16 20:25:56 2024 by rpki-client on console-ams.rpki-client.org