$ rpki-client -vvf rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa File: 2F220BBA95AA11ED84962E13C4F9AE02.roa (raw, json) Hash identifier: S+EUoixcFUVdydhYEhX1psMP89cFdxeSHCpw9U6Kva0= Subject key identifier: 0A:82:8F:E8:10:7D:8D:D0:BD:B1:26:C1:A1:14:E8:3D:B7:2A:27:8C Certificate issuer: /CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Certificate serial: 0742 Authority key identifier: 49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa Signing time: Wed 01 May 2024 03:19:00 +0000 ROA not before: Wed 01 May 2024 03:19:00 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 61414 IP address blocks: 103.213.244.0/22 maxlen: 24 144.48.4.0/22 maxlen: 24 2401:1640::/32 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1858 (0x742) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DA10A/serialNumber=49B5A46463E3A2B70A33446014EBF40E5C9EFE74 Validity Not Before: May 1 03:19:00 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6631b4a4-6a43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a6:4e:0b:4b:cf:29:f1:69:c7:a5:2a:95:c0: 2a:a4:a9:22:4a:62:97:57:d0:b4:55:1a:ed:50:06: fc:c5:28:e4:ec:05:b1:33:87:d6:4b:10:3f:3f:49: 3c:27:7e:2c:82:14:d1:3e:b3:43:1d:e7:2d:48:a1: 00:80:6b:15:4e:50:08:63:7d:84:3a:a8:a3:68:32: 4a:4b:9b:c5:cf:fe:9e:fb:70:82:26:45:9c:f1:1d: a2:ef:80:9f:b1:38:9d:e6:31:46:88:79:ec:60:ac: a1:2b:41:0c:8e:8a:ae:46:47:44:3b:53:bd:a5:a9: 2c:e4:6a:a4:33:41:62:b4:71:85:0f:b5:c1:15:15: 3b:fb:39:c1:10:42:3d:44:dd:53:76:26:e3:40:5f: 73:93:75:f8:4c:3d:b9:80:9b:96:7d:0c:5c:d2:b7: 9f:d4:1a:ad:86:b1:92:b2:ac:6e:1b:a9:6f:44:43: e3:86:8a:46:2b:ce:26:59:d8:a9:bc:54:53:5d:f3: c1:f8:d7:67:7b:01:6b:d5:74:02:62:60:09:b8:5d: c6:55:e4:76:a0:8e:4b:9b:c0:20:9e:6d:85:f1:a9: 3d:4f:fd:db:a4:bf:83:7b:d1:d5:e7:82:c9:ca:d8: 3e:4f:03:64:03:3d:26:bd:cb:48:de:41:de:ee:b4: 92:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:82:8F:E8:10:7D:8D:D0:BD:B1:26:C1:A1:14:E8:3D:B7:2A:27:8C X509v3 Authority Key Identifier: keyid:49:B5:A4:64:63:E3:A2:B7:0A:33:44:60:14:EB:F4:0E:5C:9E:FE:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/SbWkZGPjorcKM0RgFOv0Dlye_nQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SbWkZGPjorcKM0RgFOv0Dlye_nQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DA10A/E340204CF18711EAB9734B1CC4F9AE02/2F220BBA95AA11ED84962E13C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.244.0/22 144.48.4.0/22 IPv6: 2401:1640::/32 Signature Algorithm: sha256WithRSAEncryption 40:5f:87:67:5e:45:41:4f:19:9d:84:88:49:71:39:2f:9a:8e: d8:4c:80:31:00:6a:ef:11:74:4f:39:76:f5:63:cc:e4:2d:2c: a6:37:d4:4a:c1:b6:cf:93:ae:66:49:a4:56:97:d8:a0:fa:d1: ea:77:bc:ea:d0:08:81:33:6a:2b:04:11:bf:9d:fb:97:23:8d: 62:ea:d2:1e:63:89:0f:54:46:bb:ca:3b:ea:1f:1e:22:50:ce: 02:f4:ba:7d:ef:dc:ab:d5:c5:c1:c2:16:b8:01:f2:ca:a4:e1: c8:d6:a5:2d:7f:3e:7b:f1:3d:37:cc:3e:56:57:66:ca:93:92: db:8a:d4:ce:38:10:7d:b1:e7:f3:87:14:13:8f:ad:08:ff:38: 64:9c:c2:16:9b:60:71:f3:49:9e:a5:25:d6:4d:62:16:40:00: b3:3b:a1:03:06:2f:64:ac:dc:00:91:4e:1a:bb:50:b3:94:cb: ff:6f:a5:91:bf:f7:45:24:d3:b2:88:8d:53:52:20:da:89:5f: ef:d6:bd:61:50:f3:63:22:18:d8:20:27:69:1b:62:12:19:5e: ad:d4:e9:17:7d:bb:f5:3b:44:52:22:d8:48:5b:41:b7:85:85: a7:aa:eb:0c:5d:df:44:bb:4d:58:f0:96:24:5c:c8:d8:ce:0c: 65:26:90:89 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB0IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REExMEExMTAvBgNVBAUTKDQ5QjVBNDY0NjNFM0EyQjcwQTMzNDQ2MDE0RUJGNDBF NUM5RUZFNzQwHhcNMjQwNTAxMDMxOTAwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxYjRhNC02YTQzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApaZOC0vPKfFpx6UqlcAqpKkiSmKXV9C0VRrtUAb8xSjk7AWxM4fWSxA/P0k8 J34sghTRPrNDHectSKEAgGsVTlAIY32EOqijaDJKS5vFz/6e+3CCJkWc8R2i74Cf sTid5jFGiHnsYKyhK0EMjoquRkdEO1O9paks5GqkM0FitHGFD7XBFRU7+znBEEI9 RN1TdibjQF9zk3X4TD25gJuWfQxc0ref1BqthrGSsqxuG6lvREPjhopGK84mWdip vFRTXfPB+NdnewFr1XQCYmAJuF3GVeR2oI5Lm8Agnm2F8ak9T/3bpL+De9HV54LJ ytg+TwNkAz0mvctI3kHe7rSShwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFAqCj+gQ fY3QvbEmwaEU6D23KieMMB8GA1UdIwQYMBaAFEm1pGRj46K3CjNEYBTr9A5cnv50 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQTEwQS9FMzQwMjA0Q0Yx ODcxMUVBQjk3MzRCMUNDNEY5QUUwMi9TYldrWkdQam9yY0tNMFJnRk92MERseWVf blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NiV2taR1Bqb3JjS00wUmdGT3YwRGx5ZV9uUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REExMEEvRTM0MDIwNENGMTg3MTFFQUI5NzM0QjFDQzRGOUFFMDIvMkYyMjBCQkE5 NUFBMTFFRDg0OTYyRTEzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJn1fQDBAKQMAQwDQQCAAIwBwMFACQBFkAwDQYJKoZIhvcN AQELBQADggEBAEBfh2deRUFPGZ2EiElxOS+ajthMgDEAau8RdE85dvVjzOQtLKY3 1ErBts+TrmZJpFaX2KD60ep3vOrQCIEzaisEEb+d+5cjjWLq0h5jiQ9URrvKO+of HiJQzgL0un3v3KvVxcHCFrgB8sqk4cjWpS1/PnvxPTfMPlZXZsqTktuK1M44EH2x 5/OHFBOPrQj/OGScwhabYHHzSZ6lJdZNYhZAALM7oQMGL2Ss3ACRThq7ULOUy/9v pZG/90Uk07KIjVNSINqJX+/WvWFQ82MiGNggJ2kbYhIZXq3U6Rd9u/U7RFIi2Ehb QbeFhaeq6wxd30S7TVjwliRcyNjODGUmkIk= -----END CERTIFICATE-----Generated at Sun May 19 00:30:22 2024 by rpki-client on console-ams.rpki-client.org