$ rpki-client -vvf rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/5409C188C6CB11ECB185E43EC4F9AE02.roa File: 5409C188C6CB11ECB185E43EC4F9AE02.roa (raw, json) Hash identifier: 1tW/9m8K6hKwaVLborofF/7fcb8cDIytF76cEXSJGeQ= Subject key identifier: CD:44:11:BF:30:A7:AD:91:A1:0C:9A:B0:A8:A8:95:59:4C:B7:CD:E3 Certificate issuer: /CN=A91D873B/serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Certificate serial: 021C Authority key identifier: 03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/5409C188C6CB11ECB185E43EC4F9AE02.roa Signing time: Wed 29 Nov 2023 03:34:16 +0000 ROA not before: Wed 29 Nov 2023 03:34:16 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132742 IP address blocks: 43.249.220.0/22 maxlen: 24 103.41.80.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 04:10:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 540 (0x21c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D873B/serialNumber=03BD909A1A15A4503DFAD594C3C6DE9B94604E66 Validity Not Before: Nov 29 03:34:16 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6566b138-15d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:4d:54:04:0d:5b:96:7a:e4:e8:33:fe:3f:6c: ad:ff:06:07:aa:e8:02:6f:19:ef:07:9b:f4:89:16: f9:47:21:0f:a7:bd:c4:7d:93:03:ed:d5:fb:4d:d3: 11:04:c8:c9:e2:4d:61:48:c6:22:dc:fc:5f:bc:63: a0:e8:f5:df:76:c6:0d:f9:f1:36:d0:8f:11:35:7c: 62:fe:ce:a8:74:b2:1b:0c:46:82:23:a5:2f:0c:91: 10:5a:f4:3b:26:8a:2c:c7:d9:49:62:48:2c:19:35: ff:d6:c0:8e:71:41:7c:e4:06:28:92:de:53:8d:79: 78:06:dd:69:c4:e5:ed:a6:70:37:a3:56:c0:cb:b7: 74:48:3c:55:cf:43:1c:af:9a:6c:e8:26:25:c5:d1: 28:b1:de:dd:2c:88:6a:23:d5:a0:f5:a9:43:79:3e: 6e:a5:8a:b3:c1:b6:46:7d:f4:57:45:24:0e:1d:4c: b5:7e:56:02:68:0b:8e:80:78:9d:af:8a:74:4b:a9: c9:82:d1:b4:16:c3:94:66:ee:af:6f:4e:18:57:c3: 0e:b1:bb:2b:99:8a:54:57:45:29:c9:9c:c1:02:fd: a8:14:f1:e6:60:a4:3d:bf:f6:f1:2b:56:a9:23:64: af:18:5c:18:36:74:e0:dd:3a:21:ec:a1:e2:46:dc: 73:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:44:11:BF:30:A7:AD:91:A1:0C:9A:B0:A8:A8:95:59:4C:B7:CD:E3 X509v3 Authority Key Identifier: keyid:03:BD:90:9A:1A:15:A4:50:3D:FA:D5:94:C3:C6:DE:9B:94:60:4E:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/A72QmhoVpFA9-tWUw8bem5RgTmY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/A72QmhoVpFA9-tWUw8bem5RgTmY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D873B/4A16BBDAC60411ECAA94594BC4F9AE02/5409C188C6CB11ECB185E43EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.249.220.0/22 103.41.80.0/22 Signature Algorithm: sha256WithRSAEncryption 97:19:88:6b:ba:1a:84:96:ca:c3:28:9b:31:bb:03:18:39:7e: d8:a1:b7:44:eb:29:ea:51:fd:f8:2f:13:ec:ab:45:b6:1d:9c: 2a:43:bb:2e:64:90:5d:81:bf:e7:7e:ab:c4:e5:31:ef:e7:73: 5b:84:5f:c7:8d:35:e1:18:26:44:13:10:2a:bb:95:d0:9a:06: d4:1b:28:4d:db:94:bc:58:b3:65:eb:85:fa:b5:59:94:d3:df: 55:10:65:b0:17:b5:70:dd:62:94:e2:53:c5:a0:a3:f5:ba:ae: 9f:16:f2:13:4f:df:47:83:c0:32:5a:31:1d:d7:c9:57:30:f9: 6e:f8:ad:76:2d:66:fe:93:de:c2:3d:fb:b5:04:4a:13:b1:f2: d7:43:15:c8:6c:69:d8:6c:54:a9:c8:74:5f:a9:47:8b:b4:39: 81:7b:cc:de:b8:00:25:7b:64:9c:9e:2e:d2:7b:2d:a1:90:d2: bc:5b:de:37:9a:5f:c8:75:d1:1f:94:2c:d4:e6:91:01:b9:15: 80:d2:a8:69:b3:98:34:37:41:78:12:b7:d2:c4:e5:78:da:3d: ed:e6:26:09:a6:f9:55:b9:d8:96:e4:3d:28:26:ab:87:be:52: 26:69:b8:b7:41:d2:9d:fb:a4:c2:6c:9a:95:6b:87:9c:b5:6e: 47:44:7d:b9 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAhwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3M0IxMTAvBgNVBAUTKDAzQkQ5MDlBMUExNUE0NTAzREZBRDU5NEMzQzZERTlC OTQ2MDRFNjYwHhcNMjMxMTI5MDMzNDE2WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2YjEzOC0xNWQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2U1UBA1blnrk6DP+P2yt/wYHqugCbxnvB5v0iRb5RyEPp73EfZMD7dX7TdMR BMjJ4k1hSMYi3PxfvGOg6PXfdsYN+fE20I8RNXxi/s6odLIbDEaCI6UvDJEQWvQ7 Joosx9lJYkgsGTX/1sCOcUF85AYokt5TjXl4Bt1pxOXtpnA3o1bAy7d0SDxVz0Mc r5ps6CYlxdEosd7dLIhqI9Wg9alDeT5upYqzwbZGffRXRSQOHUy1flYCaAuOgHid r4p0S6nJgtG0FsOUZu6vb04YV8MOsbsrmYpUV0UpyZzBAv2oFPHmYKQ9v/bxK1ap I2SvGFwYNnTg3Toh7KHiRtxzPQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFM1EEb8w p62RoQyasKiolVlMt83jMB8GA1UdIwQYMBaAFAO9kJoaFaRQPfrVlMPG3puUYE5m MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODczQi80QTE2QkJEQUM2 MDQxMUVDQUE5NDU5NEJDNEY5QUUwMi9BNzJRbWhvVnBGQTktdFdVdzhiZW01UmdU bVkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0E3MlFtaG9WcEZBOS10V1V3OGJlbTVSZ1RtWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg3M0IvNEExNkJCREFDNjA0MTFFQ0FBOTQ1OTRCQzRGOUFFMDIvNTQwOUMxODhD NkNCMTFFQ0IxODVFNDNFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr+dwDBAJnKVAwDQYJKoZIhvcNAQELBQADggEBAJcZiGu6 GoSWysMomzG7Axg5ftiht0TrKepR/fgvE+yrRbYdnCpDuy5kkF2Bv+d+q8TlMe/n c1uEX8eNNeEYJkQTECq7ldCaBtQbKE3blLxYs2Xrhfq1WZTT31UQZbAXtXDdYpTi U8Wgo/W6rp8W8hNP30eDwDJaMR3XyVcw+W74rXYtZv6T3sI9+7UEShOx8tdDFchs adhsVKnIdF+pR4u0OYF7zN64ACV7ZJyeLtJ7LaGQ0rxb3jeaX8h10R+ULNTmkQG5 FYDSqGmzmDQ3QXgSt9LE5XjaPe3mJgmm+VW52JbkPSgmq4e+UiZpuLdB0p37pMJs mpVrh5y1bkdEfbk= -----END CERTIFICATE-----Generated at Wed May 29 06:12:26 2024 by rpki-client on console-ams.rpki-client.org