$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/0E1EAB66961011ECA540626AC4F9AE02.roa File: 0E1EAB66961011ECA540626AC4F9AE02.roa (raw, json) Hash identifier: 6kVn7C0ZSDBwhN9FcsUW2PhQHtoF2EngOIoKIk6pXWU= Subject key identifier: 6D:AF:D0:38:6B:2A:86:D2:14:BC:79:71:D5:65:83:5E:EF:AE:6F:92 Certificate issuer: /CN=A91E2A61/serialNumber=2B517C6B79E3CEB0389D41ABC5ECE2107FEC53FB Certificate serial: 0293 Authority key identifier: 2B:51:7C:6B:79:E3:CE:B0:38:9D:41:AB:C5:EC:E2:10:7F:EC:53:FB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/0E1EAB66961011ECA540626AC4F9AE02.roa Signing time: Wed 15 Nov 2023 02:54:41 +0000 ROA not before: Wed 15 Nov 2023 02:54:41 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 133199 IP address blocks: 43.255.28.0/24 maxlen: 24 43.255.29.0/24 maxlen: 24 43.255.30.0/24 maxlen: 24 43.255.31.0/24 maxlen: 24 103.74.192.0/24 maxlen: 24 103.74.193.0/24 maxlen: 24 103.74.194.0/24 maxlen: 24 103.74.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.crl rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 03:15:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 659 (0x293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2A61/serialNumber=2B517C6B79E3CEB0389D41ABC5ECE2107FEC53FB Validity Not Before: Nov 15 02:54:41 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=655432f1-2be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:80:98:f9:63:a4:00:85:5a:7b:05:79:4c:3a: 53:d6:9b:a2:73:0f:f8:cb:9a:30:75:f7:58:a7:94: 44:36:83:9e:66:b9:79:4f:ea:fd:26:cb:81:d7:7f: 05:63:ca:6f:50:31:43:c8:33:e4:48:96:39:9c:ad: 9a:ca:fc:f8:e6:ff:60:3a:bf:d1:4a:e2:ac:c3:b4: 23:b4:d4:7a:95:52:d8:37:1c:86:36:38:d1:06:90: d9:a6:10:5e:e6:9b:48:f9:21:48:c7:d1:5b:29:a3: 52:18:dc:8d:04:ba:24:02:1c:6a:b0:66:57:c8:d3: 9b:41:ea:fc:b1:51:f8:87:a3:ec:80:e7:d5:a3:aa: 2f:14:9a:31:5d:cd:6b:c0:e6:4a:df:be:2f:c8:68: e6:73:7f:62:e4:f8:26:48:bd:83:bf:36:55:69:98: 29:19:5b:c3:1c:b1:e9:7b:c4:ae:e6:5b:d1:ae:9c: 97:c4:28:b3:3d:76:ba:4e:f5:61:7b:ac:e9:00:20: 12:98:99:31:00:c4:aa:65:5b:25:bb:19:2e:ee:29: d4:43:9e:75:86:6b:50:2f:8b:4c:5f:94:16:40:69: 4b:ba:14:1b:23:37:b2:40:ba:8a:0d:63:6b:93:09: 90:d6:ee:04:42:e2:f3:09:cd:e9:15:03:bd:13:ac: a6:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:AF:D0:38:6B:2A:86:D2:14:BC:79:71:D5:65:83:5E:EF:AE:6F:92 X509v3 Authority Key Identifier: keyid:2B:51:7C:6B:79:E3:CE:B0:38:9D:41:AB:C5:EC:E2:10:7F:EC:53:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/K1F8a3njzrA4nUGrxeziEH_sU_s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/K1F8a3njzrA4nUGrxeziEH_sU_s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2A61/EDC08FE6960B11ECBBE4BE64C4F9AE02/0E1EAB66961011ECA540626AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.255.28.0/22 103.74.192.0/22 Signature Algorithm: sha256WithRSAEncryption 48:e6:fe:c9:b6:e9:af:57:63:22:aa:d0:dc:fe:a1:b9:da:c3: 02:85:2a:0d:76:b7:9d:cc:59:43:a7:73:a1:8c:1a:c0:39:7d: d8:5f:7e:6f:ee:44:f8:44:4f:f9:6f:94:a4:ee:6c:62:a1:fb: 48:20:ef:94:c6:f7:5d:eb:54:fa:5b:8f:ab:c3:83:c1:9a:85: 7e:a4:cf:71:28:92:ba:c2:2e:5a:c1:f8:16:8d:e6:c0:5a:90: 33:d9:eb:69:93:c5:37:f4:24:32:f5:b2:2e:a4:c8:01:fb:66: dc:1a:9f:87:b5:30:99:6f:0c:92:ce:89:a8:35:7b:06:3b:f0: 58:63:8f:6f:7f:a8:bc:82:4d:04:ff:9a:ab:82:85:c9:36:e3: c0:f7:77:35:a4:9f:a5:dd:56:d7:5e:39:98:1e:82:36:18:d7: fc:08:00:0b:8d:17:7b:47:91:77:d6:0e:54:0a:e3:81:51:56: ef:2a:ee:0b:59:8e:37:1e:47:fc:4f:c7:76:a7:1e:22:a6:0e: 61:e0:5c:9a:50:70:07:65:96:fa:0d:d1:f0:bb:8b:18:38:00: 3e:04:ce:04:a0:c6:c8:8e:ae:7e:b8:38:11:e0:4b:b2:3a:2d: fd:16:3a:94:9c:22:f4:36:08:bf:df:b4:54:f9:d8:b5:25:33: 45:47:1b:1e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICApMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJBNjExMTAvBgNVBAUTKDJCNTE3QzZCNzlFM0NFQjAzODlENDFBQkM1RUNFMjEw N0ZFQzUzRkIwHhcNMjMxMTE1MDI1NDQxWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU0MzJmMS0yYmU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1ICY+WOkAIVaewV5TDpT1puicw/4y5owdfdYp5RENoOeZrl5T+r9JsuB138F Y8pvUDFDyDPkSJY5nK2ayvz45v9gOr/RSuKsw7QjtNR6lVLYNxyGNjjRBpDZphBe 5ptI+SFIx9FbKaNSGNyNBLokAhxqsGZXyNObQer8sVH4h6PsgOfVo6ovFJoxXc1r wOZK374vyGjmc39i5PgmSL2DvzZVaZgpGVvDHLHpe8Su5lvRrpyXxCizPXa6TvVh e6zpACASmJkxAMSqZVsluxku7inUQ551hmtQL4tMX5QWQGlLuhQbIzeyQLqKDWNr kwmQ1u4EQuLzCc3pFQO9E6ymjwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFG2v0Dhr KobSFLx5cdVlg17vrm+SMB8GA1UdIwQYMBaAFCtRfGt5486wOJ1Bq8Xs4hB/7FP7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkE2MS9FREMwOEZFNjk2 MEIxMUVDQkJFNEJFNjRDNEY5QUUwMi9LMUY4YTNuanpyQTRuVUdyeGV6aUVIX3NV X3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0sxRjhhM25qenJBNG5VR3J4ZXppRUhfc1Vfcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJBNjEvRURDMDhGRTY5NjBCMTFFQ0JCRTRCRTY0QzRGOUFFMDIvMEUxRUFCNjY5 NjEwMTFFQ0E1NDA2MjZBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr/xwDBAJnSsAwDQYJKoZIhvcNAQELBQADggEBAEjm/sm2 6a9XYyKq0Nz+obnawwKFKg12t53MWUOnc6GMGsA5fdhffm/uRPhET/lvlKTubGKh +0gg75TG913rVPpbj6vDg8GahX6kz3EokrrCLlrB+BaN5sBakDPZ62mTxTf0JDL1 si6kyAH7Ztwan4e1MJlvDJLOiag1ewY78Fhjj29/qLyCTQT/mquChck248D3dzWk n6XdVtdeOZgegjYY1/wIAAuNF3tHkXfWDlQK44FRVu8q7gtZjjceR/xPx3anHiKm DmHgXJpQcAdllvoN0fC7ixg4AD4EzgSgxsiOrn64OBHgS7I6Lf0WOpScIvQ2CL/f tFT52LUlM0VHGx4= -----END CERTIFICATE-----Generated at Thu Apr 25 03:53:12 2024 by rpki-client on console-fra.rpki-client.org