$ rpki-client -vvf rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/51273D9A08EE11E99E30172AC4F9AE02.roa File: 51273D9A08EE11E99E30172AC4F9AE02.roa (raw, json) Hash identifier: i6cJunhUx1IUyrSi+spBz4Du5zWwhOZp61t1jw1sa98= Subject key identifier: 35:79:E1:55:EE:81:B9:96:0A:F2:73:D3:F8:13:BB:B1:8E:14:FA:5C Certificate issuer: /CN=A91D7454/serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Certificate serial: 1081 Authority key identifier: 33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/51273D9A08EE11E99E30172AC4F9AE02.roa Signing time: Sat 20 Apr 2024 18:06:07 +0000 ROA not before: Sat 20 Apr 2024 18:06:07 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132615 IP address blocks: 43.250.224.0/22 maxlen: 22 103.17.20.0/22 maxlen: 22 103.17.20.0/24 maxlen: 24 103.17.21.0/24 maxlen: 24 103.17.22.0/24 maxlen: 24 103.17.23.0/24 maxlen: 24 2001:df0:3000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:04:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4225 (0x1081) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D7454/serialNumber=3311BF97E21B726A9C0056BBE4A85B1F7F295F35 Validity Not Before: Apr 20 18:06:07 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6624040e-2ce7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a6:d8:ad:f7:7c:88:bb:f2:2a:12:bd:c5:75: 9c:26:a9:c0:9d:99:43:f1:96:16:99:2a:07:a0:ce: ee:cc:c7:9a:bc:6e:9b:f9:73:8c:db:4d:73:2d:03: a1:7b:8b:00:3a:94:e6:8a:7f:18:c5:e3:f5:db:e5: f9:7d:54:74:7e:46:02:8d:95:0b:c2:e2:d4:51:62: ef:b4:c3:2c:8e:76:67:a0:b4:03:fe:df:18:63:7c: 8e:0f:f0:7b:b1:93:3b:d9:39:c3:3a:80:99:8d:f6: cf:86:4c:80:05:29:01:47:87:e4:78:ac:79:b5:d2: da:fc:4c:91:cb:63:f9:e1:86:e2:98:7b:99:45:09: 73:c5:4e:b2:14:00:c6:b5:e5:2b:15:e5:1c:a4:28: f9:4f:e6:00:54:f1:c3:1f:2a:36:6f:aa:ac:e9:07: db:cf:e7:26:87:1f:6a:a4:06:2c:76:f7:4b:c7:27: d2:0a:d8:9d:44:8a:23:b9:ca:09:a4:ff:1b:3b:c2: 3c:ec:ac:39:a3:c2:87:a6:f6:ba:27:4e:40:c6:c4: b8:16:46:e5:11:51:ce:e2:be:41:c0:ea:4b:1b:25: e7:63:7e:6f:4e:4f:a4:a7:52:f0:e7:64:5c:4e:e4: ee:b0:ea:6b:81:c3:7b:51:41:f1:f9:c5:96:7f:2a: 76:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:79:E1:55:EE:81:B9:96:0A:F2:73:D3:F8:13:BB:B1:8E:14:FA:5C X509v3 Authority Key Identifier: keyid:33:11:BF:97:E2:1B:72:6A:9C:00:56:BB:E4:A8:5B:1F:7F:29:5F:35 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/MxG_l-IbcmqcAFa75KhbH38pXzU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MxG_l-IbcmqcAFa75KhbH38pXzU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D7454/79C61E7C08EB11E9AF8BCD23C4F9AE02/51273D9A08EE11E99E30172AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.250.224.0/22 103.17.20.0/22 IPv6: 2001:df0:3000::/48 Signature Algorithm: sha256WithRSAEncryption 20:e4:ad:d2:8c:d1:f5:14:6e:65:86:a5:60:8c:a4:6f:a8:2a: 8d:d2:33:dd:59:77:5f:f2:c7:63:64:c3:60:46:b5:56:82:23: d6:dc:2e:18:51:88:67:4e:42:6b:1f:cd:68:14:eb:4e:1e:bf: 5a:f9:a5:98:c0:25:6b:3c:9a:c1:7c:a1:33:d6:21:f0:c2:d3: 8a:f0:df:e2:e0:2f:55:fd:2a:a0:70:3e:90:d2:77:ad:87:c7: 20:c4:85:5d:a8:1e:58:75:2c:1a:69:cb:b3:fb:bc:79:ba:ae: f6:d1:0d:13:d0:fb:2b:88:8f:15:9d:19:10:54:67:a6:4a:b1: a8:92:91:18:50:57:ee:07:20:28:48:0c:5f:a9:73:07:c1:7c: 70:3e:66:52:8e:99:c7:fa:3c:6b:ad:5d:c8:83:13:54:83:96: 16:8a:80:1b:72:94:3c:99:83:f5:bc:01:e8:55:3d:b5:48:a7: 83:94:10:18:ca:15:f3:ab:c5:4b:a6:5f:d9:72:e7:49:09:3b: 41:86:8f:3c:f0:a2:4a:75:1e:45:d5:fb:20:7c:f2:fc:74:5f: 90:71:9c:6b:5c:9c:2b:5e:2a:5f:4b:94:18:ae:69:58:49:e7: f2:48:37:f7:ad:ad:55:17:4d:aa:92:de:f8:8f:90:c5:62:98: 9b:5b:8b:3f -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICEIEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc0NTQxMTAvBgNVBAUTKDMzMTFCRjk3RTIxQjcyNkE5QzAwNTZCQkU0QTg1QjFG N0YyOTVGMzUwHhcNMjQwNDIwMTgwNjA3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjI0MDQwZS0yY2U3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsabYrfd8iLvyKhK9xXWcJqnAnZlD8ZYWmSoHoM7uzMeavG6b+XOM201zLQOh e4sAOpTmin8YxeP12+X5fVR0fkYCjZULwuLUUWLvtMMsjnZnoLQD/t8YY3yOD/B7 sZM72TnDOoCZjfbPhkyABSkBR4fkeKx5tdLa/EyRy2P54YbimHuZRQlzxU6yFADG teUrFeUcpCj5T+YAVPHDHyo2b6qs6Qfbz+cmhx9qpAYsdvdLxyfSCtidRIojucoJ pP8bO8I87Kw5o8KHpva6J05AxsS4FkblEVHO4r5BwOpLGyXnY35vTk+kp1Lw52Rc TuTusOprgcN7UUHx+cWWfyp2WQIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFDV54VXu gbmWCvJz0/gTu7GOFPpcMB8GA1UdIwQYMBaAFDMRv5fiG3JqnABWu+SoWx9/KV81 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzQ1NC83OUM2MUU3QzA4 RUIxMUU5QUY4QkNEMjNDNEY5QUUwMi9NeEdfbC1JYmNtcWNBRmE3NUtoYkgzOHBY elUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL014R19sLUliY21xY0FGYTc1S2hiSDM4cFh6VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc0NTQvNzlDNjFFN0MwOEVCMTFFOUFGOEJDRDIzQzRGOUFFMDIvNTEyNzNEOUEw OEVFMTFFOTlFMzAxNzJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAIr+uADBAJnERQwDwQCAAIwCQMHACABDfAwADANBgkqhkiG 9w0BAQsFAAOCAQEAIOSt0ozR9RRuZYalYIykb6gqjdIz3Vl3X/LHY2TDYEa1VoIj 1twuGFGIZ05Cax/NaBTrTh6/WvmlmMAlazyawXyhM9Yh8MLTivDf4uAvVf0qoHA+ kNJ3rYfHIMSFXageWHUsGmnLs/u8ebqu9tENE9D7K4iPFZ0ZEFRnpkqxqJKRGFBX 7gcgKEgMX6lzB8F8cD5mUo6Zx/o8a61dyIMTVIOWFoqAG3KUPJmD9bwB6FU9tUin g5QQGMoV86vFS6Zf2XLnSQk7QYaPPPCiSnUeRdX7IHzy/HRfkHGca1ycK14qX0uU GK5pWEnn8kg3962tVRdNqpLe+I+QxWKYm1uLPw== -----END CERTIFICATE-----Generated at Thu May 16 19:10:56 2024 by rpki-client on console-fra.rpki-client.org