$ rpki-client -vvf rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/543386248C5811E782F42951C4F9AE02.roa File: 543386248C5811E782F42951C4F9AE02.roa (raw, json) Hash identifier: 5EJvxSG52Q0omsSTU0w25Epc1lEmIaeLZWBNDFGGpl0= Subject key identifier: 98:16:88:33:AF:B4:46:2C:28:AC:B9:5C:28:8D:E3:44:37:5E:7A:CD Certificate issuer: /CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Certificate serial: 2694 Authority key identifier: 5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/543386248C5811E782F42951C4F9AE02.roa Signing time: Wed 10 Apr 2024 16:23:38 +0000 ROA not before: Wed 10 Apr 2024 16:23:38 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 132206 IP address blocks: 112.206.224.0/20 maxlen: 20 112.206.229.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 16:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9876 (0x2694) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DFB70/serialNumber=5D2DD154B5DCE21FB786C526DBDEF1B045928AB8 Validity Not Before: Apr 10 16:23:38 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6616bd0a-072a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:fc:13:d3:8f:65:3c:7a:f2:1b:77:d0:d0:28: df:20:fe:c8:40:a3:b6:f9:91:4f:d6:be:b7:20:69: 70:71:4b:5c:ae:a0:98:6b:8e:1b:31:84:a8:89:0f: 45:21:cd:d3:7a:3e:a9:f6:db:00:f8:12:2b:6c:4c: b5:9c:3e:29:23:4d:07:03:17:c7:20:4d:cd:d5:11: 3b:9e:e6:16:d0:75:4d:0e:e4:20:53:b9:08:a4:2b: 1e:ee:07:f0:37:7a:18:fe:e6:c7:69:61:76:45:a7: 12:e6:36:3f:d8:81:3b:33:89:89:66:ab:3b:56:05: 04:f1:90:6a:64:e9:b8:59:75:18:5f:93:de:08:1a: 3e:8e:e7:99:cd:91:20:49:c1:bb:60:c9:ac:6f:9c: 0c:51:d5:f2:10:c8:6d:ca:14:47:ad:82:25:5e:b8: 09:45:c1:95:f2:73:89:59:6b:e5:11:1b:75:39:48: d3:bf:3f:81:53:31:39:bf:22:5c:d6:99:31:ea:00: 72:83:d1:b2:5b:37:ce:2c:8b:88:66:cc:bf:68:51: e8:25:b2:81:61:c2:e5:69:48:c3:aa:d0:bf:ae:14: b5:bc:f5:29:2d:ab:94:83:99:31:43:e6:21:df:4e: a6:ab:16:d4:89:2f:03:8f:ff:f7:b1:c3:e9:11:92: 46:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:16:88:33:AF:B4:46:2C:28:AC:B9:5C:28:8D:E3:44:37:5E:7A:CD X509v3 Authority Key Identifier: keyid:5D:2D:D1:54:B5:DC:E2:1F:B7:86:C5:26:DB:DE:F1:B0:45:92:8A:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/XS3RVLXc4h-3hsUm297xsEWSirg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XS3RVLXc4h-3hsUm297xsEWSirg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DFB70/2983647C838F11E586FC5812C4F9AE02/543386248C5811E782F42951C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 112.206.224.0/20 Signature Algorithm: sha256WithRSAEncryption af:7a:30:65:5e:68:96:5f:0f:8b:53:8f:98:2f:df:5f:f8:e3: ed:74:48:b8:fe:43:c1:4f:7d:f6:6d:fc:ae:8d:ee:45:de:60: a8:76:d7:05:ad:40:f8:c0:f0:ac:b6:38:c3:2b:a7:ee:00:5a: f1:74:9c:e8:9f:24:e9:d2:6b:e3:33:51:75:0e:c1:27:6c:87: a0:e4:97:c9:6c:b6:d3:39:53:c7:fb:00:6b:e9:56:ec:ca:b4: 40:ed:93:67:90:77:e6:1f:f3:69:de:c3:41:3a:88:11:1c:67: de:71:b5:86:d5:d1:fa:83:ed:3b:c6:26:b1:a6:aa:13:ba:a9: de:b1:9f:fe:28:d6:67:e1:d8:ae:9d:0d:2a:15:33:df:fe:db: c3:31:29:bd:02:60:ee:b3:82:1c:8e:46:8b:4f:a4:ea:a3:1a: e6:05:bf:b5:8a:3e:f9:d0:a7:d5:0a:76:26:c3:ca:ee:d9:0b: 99:56:73:f6:1a:b3:fc:63:b0:fa:e4:8c:99:19:ba:8e:08:0d: 04:19:81:fb:16:18:00:7a:d1:fd:a7:c9:2d:84:00:0b:b4:84: 2b:b8:8b:25:49:2c:80:dc:9a:33:2c:e5:58:24:3b:e9:a8:68: e1:00:a2:fe:7a:e2:5d:c2:4f:7f:39:ea:f3:0b:d1:1a:65:40: 25:e4:71:1b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICJpQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REZCNzAxMTAvBgNVBAUTKDVEMkREMTU0QjVEQ0UyMUZCNzg2QzUyNkRCREVGMUIw NDU5MjhBQjgwHhcNMjQwNDEwMTYyMzM4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YmQwYS0wNzJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxfwT049lPHryG3fQ0CjfIP7IQKO2+ZFP1r63IGlwcUtcrqCYa44bMYSoiQ9F Ic3Tej6p9tsA+BIrbEy1nD4pI00HAxfHIE3N1RE7nuYW0HVNDuQgU7kIpCse7gfw N3oY/ubHaWF2RacS5jY/2IE7M4mJZqs7VgUE8ZBqZOm4WXUYX5PeCBo+jueZzZEg ScG7YMmsb5wMUdXyEMhtyhRHrYIlXrgJRcGV8nOJWWvlERt1OUjTvz+BUzE5vyJc 1pkx6gByg9GyWzfOLIuIZsy/aFHoJbKBYcLlaUjDqtC/rhS1vPUpLauUg5kxQ+Yh 306mqxbUiS8Dj//3scPpEZJGmQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJgWiDOv tEYsKKy5XCiN40Q3XnrNMB8GA1UdIwQYMBaAFF0t0VS13OIft4bFJtve8bBFkoq4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERkI3MC8yOTgzNjQ3Qzgz OEYxMUU1ODZGQzU4MTJDNEY5QUUwMi9YUzNSVkxYYzRoLTNoc1VtMjk3eHNFV1Np cmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hTM1JWTFhjNGgtM2hzVW0yOTd4c0VXU2lyZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REZCNzAvMjk4MzY0N0M4MzhGMTFFNTg2RkM1ODEyQzRGOUFFMDIvNTQzMzg2MjQ4 QzU4MTFFNzgyRjQyOTUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBARwzuAwDQYJKoZIhvcNAQELBQADggEBAK96MGVeaJZfD4tT j5gv31/44+10SLj+Q8FPffZt/K6N7kXeYKh21wWtQPjA8Ky2OMMrp+4AWvF0nOif JOnSa+MzUXUOwSdsh6Dkl8lsttM5U8f7AGvpVuzKtEDtk2eQd+Yf82new0E6iBEc Z95xtYbV0fqD7TvGJrGmqhO6qd6xn/4o1mfh2K6dDSoVM9/+28MxKb0CYO6zghyO RotPpOqjGuYFv7WKPvnQp9UKdibDyu7ZC5lWc/Yas/xjsPrkjJkZuo4IDQQZgfsW GAB60f2nyS2EAAu0hCu4iyVJLIDcmjMs5VgkO+moaOEAov564l3CT3856vML0Rpl QCXkcRs= -----END CERTIFICATE-----Generated at Thu May 2 17:18:57 2024 by rpki-client on console-ams.rpki-client.org