$ rpki-client -vvf rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/47772F946C2011EAA5965B3CC4F9AE02.roa File: 47772F946C2011EAA5965B3CC4F9AE02.roa (raw, json) Hash identifier: OJuUeP3/MhnZuj46uoZjHhNgvQX9+E3YIgo5c+femP0= Subject key identifier: F8:18:2C:2F:29:CE:4E:62:46:F4:5E:C5:DC:34:B2:9A:57:29:15:17 Certificate issuer: /CN=A91D76BE/serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Certificate serial: 093E Authority key identifier: DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/47772F946C2011EAA5965B3CC4F9AE02.roa Signing time: Mon 22 Jan 2024 20:58:53 +0000 ROA not before: Mon 22 Jan 2024 20:58:53 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 133932 IP address blocks: 103.44.223.0/24 maxlen: 24 103.76.3.0/24 maxlen: 24 103.76.28.0/23 maxlen: 24 116.206.84.0/22 maxlen: 22 116.206.84.0/24 maxlen: 24 116.206.85.0/24 maxlen: 24 116.206.86.0/24 maxlen: 24 116.206.87.0/24 maxlen: 24 2402:1040::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2366 (0x93e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D76BE/serialNumber=DD118BBB349F2C9B40DD9BB71A5B61C64BDB3E11 Validity Not Before: Jan 22 20:58:53 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65aed70c-97a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:9d:a1:e8:61:fd:25:b1:5c:fc:30:5a:4e:3c: f9:86:b5:b4:bb:e7:aa:70:c1:91:b5:c7:e5:cf:c2: 1a:b9:05:b8:29:e6:d5:9a:8e:b1:1b:4c:2e:5c:ef: 2f:81:c5:79:fd:1e:eb:de:20:00:1a:60:43:5a:ab: f3:d0:53:31:b4:42:14:97:23:67:1b:2e:8a:50:8b: bc:8a:1a:85:7a:40:a9:e3:9e:31:71:0f:3f:8b:96: a5:a2:57:b5:31:bb:1d:c9:df:45:59:3f:16:05:c0: 3b:ac:9b:e0:f1:24:71:5b:56:fc:2f:f8:76:03:30: f9:1c:8d:9d:e5:58:67:6e:a0:64:c6:8a:4a:d7:d0: e3:e1:f9:09:3a:fa:34:93:84:2a:5d:19:54:37:b8: 78:b9:3a:cc:30:66:14:e8:c4:27:29:6d:12:7f:71: 94:ca:7a:47:5b:0c:c4:c8:1e:a5:40:3c:12:9e:60: 08:6a:96:c1:30:3b:7b:6d:59:58:46:75:06:b5:df: 9c:63:cb:50:ac:d6:27:f0:ab:e4:9d:35:c1:f2:00: 47:1c:60:a0:d4:ff:80:13:73:10:45:6f:ca:09:b3: 09:78:c4:5f:7c:9d:b5:94:13:d5:b2:4f:3b:dd:af: 7e:ee:95:93:1c:53:bb:88:a3:b1:ae:31:22:1a:7c: af:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:18:2C:2F:29:CE:4E:62:46:F4:5E:C5:DC:34:B2:9A:57:29:15:17 X509v3 Authority Key Identifier: keyid:DD:11:8B:BB:34:9F:2C:9B:40:DD:9B:B7:1A:5B:61:C6:4B:DB:3E:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/3RGLuzSfLJtA3Zu3GlthxkvbPhE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3RGLuzSfLJtA3Zu3GlthxkvbPhE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D76BE/44C29E0E6B7711EA86594476C4F9AE02/47772F946C2011EAA5965B3CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.44.223.0/24 103.76.3.0/24 103.76.28.0/23 116.206.84.0/22 IPv6: 2402:1040::/32 Signature Algorithm: sha256WithRSAEncryption 86:74:75:43:e8:88:61:eb:1a:07:37:f3:c2:90:10:cd:e6:aa: b4:fb:07:d2:03:71:c2:7a:62:1c:7c:c4:c1:34:60:7f:49:7a: c1:23:d6:c5:dc:93:fe:4c:1b:d3:89:b2:fe:af:8e:77:4b:3a: ea:a1:5d:9d:af:0e:75:b8:ff:1c:52:87:be:61:ce:d9:ad:77: 4d:46:ba:6b:69:58:0f:79:68:12:e8:d2:27:ac:ca:ed:73:74: f6:0c:43:2e:fd:dd:0d:8b:ce:63:7f:e8:d3:56:84:d0:16:a2: 6d:c2:51:52:22:95:ac:9a:03:92:33:47:c1:26:47:51:78:e8: 69:bb:57:c1:23:b8:3f:f6:db:47:6e:7b:e3:98:41:90:41:14: 30:78:05:13:76:71:fa:b3:6e:dc:81:52:b8:a7:8a:25:5d:08: 06:dd:41:17:b0:a7:eb:1c:30:bb:dc:47:41:b0:61:b3:8c:66: 53:90:75:f2:5f:7a:9b:7c:f5:dc:ee:be:62:06:ca:29:ed:f3: e8:41:2d:1c:2c:81:fa:f2:a7:a2:f0:41:63:72:3e:10:0b:14: f3:6f:c6:03:73:20:a6:da:5e:54:de:a2:34:e7:9d:e5:0e:00: c0:db:82:73:9f:5a:4d:de:8b:6e:ad:1f:9f:f6:9e:c2:57:11: 7c:18:f8:5e -----BEGIN CERTIFICATE----- MIIFkjCCBHqgAwIBAgICCT4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDc2QkUxMTAvBgNVBAUTKEREMTE4QkJCMzQ5RjJDOUI0MEREOUJCNzFBNUI2MUM2 NEJEQjNFMTEwHhcNMjQwMTIyMjA1ODUzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWFlZDcwYy05N2E3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsp2h6GH9JbFc/DBaTjz5hrW0u+eqcMGRtcflz8IauQW4KebVmo6xG0wuXO8v gcV5/R7r3iAAGmBDWqvz0FMxtEIUlyNnGy6KUIu8ihqFekCp454xcQ8/i5alole1 Mbsdyd9FWT8WBcA7rJvg8SRxW1b8L/h2AzD5HI2d5VhnbqBkxopK19Dj4fkJOvo0 k4QqXRlUN7h4uTrMMGYU6MQnKW0Sf3GUynpHWwzEyB6lQDwSnmAIapbBMDt7bVlY RnUGtd+cY8tQrNYn8KvknTXB8gBHHGCg1P+AE3MQRW/KCbMJeMRffJ21lBPVsk87 3a9+7pWTHFO7iKOxrjEiGnyvaQIDAQABo4ICtjCCArIwHQYDVR0OBBYEFPgYLC8p zk5iRvRexdw0sppXKRUXMB8GA1UdIwQYMBaAFN0Ri7s0nyybQN2btxpbYcZL2z4R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENzZCRS80NEMyOUUwRTZC NzcxMUVBODY1OTQ0NzZDNEY5QUUwMi8zUkdMdXpTZkxKdEEzWnUzR2x0aHhrdmJQ aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNSR0x1elNmTEp0QTNadTNHbHRoeGt2YlBoRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDc2QkUvNDRDMjlFMEU2Qjc3MTFFQTg2NTk0NDc2QzRGOUFFMDIvNDc3NzJGOTQ2 QzIwMTFFQUE1OTY1QjNDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQAYIKwYBBQUHAQcBAf8E MTAvMB4EAgABMBgDBABnLN8DBABnTAMDBAFnTBwDBAJ0zlQwDQQCAAIwBwMFACQC EEAwDQYJKoZIhvcNAQELBQADggEBAIZ0dUPoiGHrGgc388KQEM3mqrT7B9IDccJ6 Yhx8xME0YH9JesEj1sXck/5MG9OJsv6vjndLOuqhXZ2vDnW4/xxSh75hztmtd01G umtpWA95aBLo0iesyu1zdPYMQy793Q2LzmN/6NNWhNAWom3CUVIilayaA5IzR8Em R1F46Gm7V8EjuD/220due+OYQZBBFDB4BRN2cfqzbtyBUriniiVdCAbdQRewp+sc MLvcR0GwYbOMZlOQdfJfept89dzuvmIGyint8+hBLRwsgfryp6LwQWNyPhALFPNv xgNzIKbaXlTeojTnneUOAMDbgnOfWk3ei26tH5/2nsJXEXwY+F4= -----END CERTIFICATE-----Generated at Thu May 16 22:34:53 2024 by rpki-client on console-ams.rpki-client.org