$ rpki-client -vvf rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/3443D714D46111ECB708EA24C4F9AE02.roa File: 3443D714D46111ECB708EA24C4F9AE02.roa (raw, json) Hash identifier: U8EB6upYFrJ4UfMW5CZQh628uac/PqerE0Ocy3lzW3M= Subject key identifier: 14:D5:96:F1:EA:1F:61:4C:5B:A0:78:FD:89:38:86:57:78:9F:60:E8 Certificate issuer: /CN=A91E54CF/serialNumber=C1BECF97CA95E06DC06E00C239F62CC6942416D1 Certificate serial: 06F6 Authority key identifier: C1:BE:CF:97:CA:95:E0:6D:C0:6E:00:C2:39:F6:2C:C6:94:24:16:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/3443D714D46111ECB708EA24C4F9AE02.roa Signing time: Fri 04 Aug 2023 21:38:40 +0000 ROA not before: Fri 04 Aug 2023 21:38:40 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132325 IP address blocks: 103.70.224.0/22 maxlen: 22 103.70.224.0/24 maxlen: 24 103.70.225.0/24 maxlen: 24 103.70.226.0/24 maxlen: 24 103.70.227.0/24 maxlen: 24 182.255.60.0/22 maxlen: 22 182.255.60.0/24 maxlen: 24 182.255.61.0/24 maxlen: 24 182.255.62.0/24 maxlen: 24 182.255.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.crl rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1782 (0x6f6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E54CF/serialNumber=C1BECF97CA95E06DC06E00C239F62CC6942416D1 Validity Not Before: Aug 4 21:38:40 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cd6fe0-484a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:56:92:75:4c:4b:45:fc:5e:e4:57:2f:78:3c: 1d:c3:ad:b6:50:df:de:8a:28:d0:f3:a5:c4:11:94: 5b:e3:e5:83:7c:33:a2:1c:52:9d:a0:a6:44:28:1c: 0c:31:53:80:24:a5:4b:b2:6e:3b:ef:22:4c:b0:0e: cf:9f:af:82:d3:1a:69:d8:a9:26:97:40:76:73:f1: ba:b2:18:ff:aa:1b:03:55:e0:a8:a7:d8:f4:62:c4: dd:fe:85:91:aa:70:b1:1f:72:bd:f0:d6:93:2a:64: 35:b4:c4:dd:79:51:14:3c:0a:6d:9d:1f:ab:25:cf: 4d:8e:d7:27:9f:0e:e9:cd:f1:61:33:ec:9e:ef:58: 64:f4:a9:03:b6:05:47:f2:71:0b:3f:43:d2:93:8a: d9:c8:8d:62:82:49:a4:4c:55:3b:86:7e:01:81:32: a5:36:3e:ab:fe:aa:64:c2:1c:fb:78:51:2a:bb:48: f1:60:aa:00:7a:f2:53:3f:9c:a6:c5:ff:e4:ac:51: e5:22:43:58:88:df:cc:b9:8d:ac:4c:a0:95:1a:2b: bd:88:1f:d6:6d:5f:8b:75:11:3e:88:e4:8c:02:90: 77:ca:2a:84:26:0c:dd:da:85:bb:7c:e8:17:ce:68: 40:93:0c:be:86:dd:9b:a7:5d:56:05:2f:5c:7a:1d: 01:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:D5:96:F1:EA:1F:61:4C:5B:A0:78:FD:89:38:86:57:78:9F:60:E8 X509v3 Authority Key Identifier: keyid:C1:BE:CF:97:CA:95:E0:6D:C0:6E:00:C2:39:F6:2C:C6:94:24:16:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wb7Pl8qV4G3AbgDCOfYsxpQkFtE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E54CF/D8F3ACACCC8F11EABC1F1442C4F9AE02/3443D714D46111ECB708EA24C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.224.0/22 182.255.60.0/22 Signature Algorithm: sha256WithRSAEncryption 01:94:3a:55:b0:6a:29:21:31:0a:db:a8:cd:5b:97:76:b1:97: 55:c9:dc:f2:e3:24:a4:31:5c:00:6a:c2:3a:fe:15:01:f0:29: 01:c7:b0:68:77:f4:93:00:9f:d1:14:50:9c:bc:31:aa:46:0e: 60:0f:ac:99:37:4f:bd:ce:24:35:b9:83:cb:ae:10:85:29:37: 67:37:7e:8f:8c:01:2f:b9:c3:32:51:1b:db:64:7b:4e:fa:cc: ea:79:d8:a5:01:7b:3d:1f:49:b9:3b:a2:bc:00:05:dd:37:e7: 2e:8b:21:6b:83:5b:32:cb:f2:bf:3c:fd:b9:f5:aa:20:82:46: c9:32:6c:d0:3c:d2:67:dc:55:71:e5:44:ad:bc:78:94:45:02: 5f:8b:98:53:f7:9a:f2:06:8c:2f:3e:f6:6d:70:20:fd:f4:cf: e3:b5:82:e9:b6:d8:55:6f:62:64:a5:a7:c7:b9:6a:e8:91:13: 65:5f:8e:af:31:fc:d9:07:ae:d0:f8:f4:b5:ea:46:fd:69:c4: 32:e5:b3:e7:5a:26:06:fc:6e:f0:c0:9c:18:de:3e:91:d4:db: ef:9b:11:1d:ee:f1:ee:88:4e:ef:e6:a3:bd:c0:d7:0e:66:7b: 01:08:62:2d:ac:4f:64:43:4e:ea:31:5a:91:ca:25:7d:98:c6: ea:36:1b:56 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBvYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTU0Q0YxMTAvBgNVBAUTKEMxQkVDRjk3Q0E5NUUwNkRDMDZFMDBDMjM5RjYyQ0M2 OTQyNDE2RDEwHhcNMjMwODA0MjEzODQwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkNmZlMC00ODRhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVaSdUxLRfxe5FcveDwdw622UN/eiijQ86XEEZRb4+WDfDOiHFKdoKZEKBwM MVOAJKVLsm477yJMsA7Pn6+C0xpp2Kkml0B2c/G6shj/qhsDVeCop9j0YsTd/oWR qnCxH3K98NaTKmQ1tMTdeVEUPAptnR+rJc9Njtcnnw7pzfFhM+ye71hk9KkDtgVH 8nELP0PSk4rZyI1igkmkTFU7hn4BgTKlNj6r/qpkwhz7eFEqu0jxYKoAevJTP5ym xf/krFHlIkNYiN/MuY2sTKCVGiu9iB/WbV+LdRE+iOSMApB3yiqEJgzd2oW7fOgX zmhAkwy+ht2bp11WBS9ceh0BGwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBTVlvHq H2FMW6B4/Yk4hld4n2DoMB8GA1UdIwQYMBaAFMG+z5fKleBtwG4Awjn2LMaUJBbR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNTRDRi9EOEYzQUNBQ0ND OEYxMUVBQkMxRjE0NDJDNEY5QUUwMi93YjdQbDhxVjRHM0FiZ0RDT2ZZc3hwUWtG dEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3diN1BsOHFWNEczQWJnRENPZllzeHBRa0Z0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTU0Q0YvRDhGM0FDQUNDQzhGMTFFQUJDMUYxNDQyQzRGOUFFMDIvMzQ0M0Q3MTRE NDYxMTFFQ0I3MDhFQTI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnRuADBAK2/zwwDQYJKoZIhvcNAQELBQADggEBAAGUOlWw aikhMQrbqM1bl3axl1XJ3PLjJKQxXABqwjr+FQHwKQHHsGh39JMAn9EUUJy8MapG DmAPrJk3T73OJDW5g8uuEIUpN2c3fo+MAS+5wzJRG9tke076zOp52KUBez0fSbk7 orwABd035y6LIWuDWzLL8r88/bn1qiCCRskybNA80mfcVXHlRK28eJRFAl+LmFP3 mvIGjC8+9m1wIP30z+O1gum22FVvYmSlp8e5auiRE2Vfjq8x/NkHrtD49LXqRv1p xDLls+daJgb8bvDAnBjePpHU2++bER3u8e6ITu/mo73A1w5mewEIYi2sT2RDTuox WpHKJX2Yxuo2G1Y= -----END CERTIFICATE-----Generated at Fri May 10 23:04:13 2024 by rpki-client on console-ams.rpki-client.org