$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/AAE6C020CC5E11ED8812DA68C4F9AE02.roa File: AAE6C020CC5E11ED8812DA68C4F9AE02.roa (raw, json) Hash identifier: lSoidaFmpDS5MY9m7Ma1YPASIErHiR97XohoZLyqWYY= Subject key identifier: 38:D8:1C:16:B2:F0:0A:86:AF:62:A5:93:53:06:13:94:B1:BC:B4:46 Certificate issuer: /CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Certificate serial: 63 Authority key identifier: B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/AAE6C020CC5E11ED8812DA68C4F9AE02.roa Signing time: Fri 29 Sep 2023 04:45:37 +0000 ROA not before: Fri 29 Sep 2023 04:45:37 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 24316 IP address blocks: 203.30.100.0/22 maxlen: 22 203.30.100.0/23 maxlen: 23 203.30.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 04:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 99 (0x63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4A16/serialNumber=B13832FCA4934496236AC3894998C3DD513D7C09 Validity Not Before: Sep 29 04:45:37 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65165670-da1c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:bb:18:d8:f1:37:48:99:4c:f7:46:fd:f9:8f: a9:16:8a:5e:7b:2b:77:2f:2b:91:21:ce:9d:8e:15: eb:e8:fa:7b:cf:3f:bc:a2:5d:31:ef:1e:8a:04:61: 26:f8:f6:8c:e1:06:81:b4:8a:74:91:b3:66:89:b7: 04:f1:6e:3c:4d:98:a0:80:ab:5c:47:5a:fe:04:e8: 8c:d4:c3:57:65:2d:3e:a9:6b:7d:1c:7f:0d:31:94: 42:07:ea:7e:b0:e3:73:ff:33:79:5a:26:02:c4:72: 3d:29:80:d8:fc:4a:50:16:73:22:b7:7d:c9:23:41: 89:f7:a8:c1:97:0a:4d:5f:4a:c6:85:e7:9b:cb:a1: 80:79:83:e3:ca:5c:bf:ab:a4:14:c2:c5:a6:6c:36: 38:10:61:67:00:c8:55:2c:90:56:d5:40:43:72:4b: 34:17:71:42:d7:41:90:31:d4:b5:d0:c0:15:da:f2: b4:6f:fb:a0:fb:03:df:8e:11:ba:8e:74:63:97:b9: 92:a3:ed:75:34:3d:87:e0:e7:66:ae:d0:ad:96:d5: 67:fe:e0:53:49:2f:2f:b9:48:5c:97:1a:b6:b3:de: fe:05:41:c4:74:e5:61:96:e7:a3:b5:cc:b0:e7:28: 82:ea:ba:52:d3:6f:c0:76:33:5d:1c:c9:6b:c9:ad: 7a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:D8:1C:16:B2:F0:0A:86:AF:62:A5:93:53:06:13:94:B1:BC:B4:46 X509v3 Authority Key Identifier: keyid:B1:38:32:FC:A4:93:44:96:23:6A:C3:89:49:98:C3:DD:51:3D:7C:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/sTgy_KSTRJYjasOJSZjD3VE9fAk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sTgy_KSTRJYjasOJSZjD3VE9fAk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4A16/BAE7EFFECC5311ED81F4C515C4F9AE02/AAE6C020CC5E11ED8812DA68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.30.100.0/22 Signature Algorithm: sha256WithRSAEncryption 55:c0:0e:d0:3d:ac:d8:88:7e:a3:ea:ec:b1:56:46:67:cc:06: 53:93:ed:c4:ba:72:ff:1b:54:a0:eb:e2:56:ef:0e:dd:0d:70: 78:6d:61:bd:83:5c:4f:15:81:80:d7:5a:6f:0c:29:51:d4:66: ee:ac:ce:b9:8d:24:f7:c5:f9:4f:08:1a:23:99:29:5b:0d:dd: 0c:2b:a7:4f:66:85:5b:74:4e:b5:0b:8b:cf:8e:01:c4:97:de: 33:e4:c2:63:1a:05:34:db:64:05:13:5c:a3:50:5a:dd:e4:89: 6f:78:16:fc:13:9c:3b:90:cc:75:8a:84:12:14:c7:98:2f:67: f1:5d:57:05:18:a6:44:b3:96:e9:67:12:02:c5:e0:57:e7:12: e8:0e:91:d8:3b:68:de:34:5d:25:06:ae:ce:9b:b0:df:05:45: 75:96:70:88:29:f8:bf:a3:97:a4:62:44:ed:9a:ba:9a:9f:f0: 94:41:42:96:1e:a7:65:27:53:3f:87:7b:a1:a4:ba:2e:ff:29: b7:7c:2c:5d:76:00:50:bb:0f:3a:ef:a4:5a:c0:b6:09:06:c3: 6e:d5:eb:62:90:9e:78:14:4d:26:27:b8:e6:69:05:55:09:a7: f2:ce:4f:d5:cd:aa:d3:45:33:7b:ec:c2:7f:a5:23:79:7b:62: 73:1e:fe:d8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NEExNjExMC8GA1UEBRMoQjEzODMyRkNBNDkzNDQ5NjIzNkFDMzg5NDk5OEMzREQ1 MTNEN0MwOTAeFw0yMzA5MjkwNDQ1MzdaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MTY1NjcwLWRhMWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDEuxjY8TdImUz3Rv35j6kWil57K3cvK5Ehzp2OFevo+nvPP7yiXTHvHooEYSb4 9ozhBoG0inSRs2aJtwTxbjxNmKCAq1xHWv4E6IzUw1dlLT6pa30cfw0xlEIH6n6w 43P/M3laJgLEcj0pgNj8SlAWcyK3fckjQYn3qMGXCk1fSsaF55vLoYB5g+PKXL+r pBTCxaZsNjgQYWcAyFUskFbVQENySzQXcULXQZAx1LXQwBXa8rRv+6D7A9+OEbqO dGOXuZKj7XU0PYfg52au0K2W1Wf+4FNJLy+5SFyXGraz3v4FQcR05WGW56O1zLDn KILqulLTb8B2M10cyWvJrXrxAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUONgcFrLw CoavYqWTUwYTlLG8tEYwHwYDVR0jBBgwFoAUsTgy/KSTRJYjasOJSZjD3VE9fAkw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0QTE2L0JBRTdFRkZFQ0M1 MzExRUQ4MUY0QzUxNUM0RjlBRTAyL3NUZ3lfS1NUUkpZamFzT0pTWmpEM1ZFOWZB ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvc1RneV9LU1RSSllqYXNPSlNaakQzVkU5ZkFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEExNi9CQUU3RUZGRUNDNTMxMUVEODFGNEM1MTVDNEY5QUUwMi9BQUU2QzAyMEND NUUxMUVEODgxMkRBNjhDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAsseZDANBgkqhkiG9w0BAQsFAAOCAQEAVcAO0D2s2Ih+o+rs sVZGZ8wGU5PtxLpy/xtUoOviVu8O3Q1weG1hvYNcTxWBgNdabwwpUdRm7qzOuY0k 98X5TwgaI5kpWw3dDCunT2aFW3ROtQuLz44BxJfeM+TCYxoFNNtkBRNco1Ba3eSJ b3gW/BOcO5DMdYqEEhTHmC9n8V1XBRimRLOW6WcSAsXgV+cS6A6R2Dto3jRdJQau zpuw3wVFdZZwiCn4v6OXpGJE7Zq6mp/wlEFClh6nZSdTP4d7oaS6Lv8pt3wsXXYA ULsPOu+kWsC2CQbDbtXrYpCeeBRNJie45mkFVQmn8s5P1c2q00Uze+zCf6UjeXti cx7+2A== -----END CERTIFICATE-----Generated at Thu May 23 06:54:45 2024 by rpki-client on console-fra.rpki-client.org