$ rpki-client -vvf rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa File: 350711FA881211EE9710F928C4F9AE02.roa (raw, json) Hash identifier: sfPAnXr7xEHdgMJNllmq4r53ptUK/6CUfSS0o5vq3Ug= Subject key identifier: 3A:C2:95:A3:F1:3F:CF:92:7A:E3:2C:F3:CB:6D:FD:87:F2:17:65:5E Certificate issuer: /CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Certificate serial: 0D32 Authority key identifier: 53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa Signing time: Tue 21 Nov 2023 02:35:42 +0000 ROA not before: Tue 21 Nov 2023 02:35:42 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 24433 IP address blocks: 203.15.122.0/24 maxlen: 24 203.27.220.0/23 maxlen: 24 2405:140::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 18:35:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3378 (0xd32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E6856/serialNumber=5382642EBD799A0F8286D0654829ED768430F9E4 Validity Not Before: Nov 21 02:35:42 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=655c177e-0c15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:52:15:89:be:6d:96:77:6c:2c:58:64:0a:0c: 0f:0b:b7:14:2f:76:dd:d7:ca:57:3b:49:a3:ae:ba: 33:3d:6f:3a:42:b1:34:50:d0:1f:11:9c:d3:d3:98: 80:df:9f:16:29:c2:da:f1:cc:c1:67:aa:1c:2d:a8: 56:16:b4:2b:1e:f8:a3:24:b1:4b:c5:46:45:6d:63: 82:37:87:1f:62:1d:13:e0:da:8f:d0:6b:8d:02:eb: fd:3a:e0:0f:04:9c:d1:6e:11:42:b1:aa:52:0c:9c: 04:20:d9:cd:71:dc:f0:0e:32:45:91:bd:bc:db:82: 0f:99:b4:67:65:e1:04:f3:de:7f:b4:2e:c3:f5:da: b5:af:81:fa:88:8e:13:3a:61:c2:07:eb:9a:57:13: 21:38:14:4e:87:90:e2:7c:96:a6:5d:1f:56:34:43: 75:be:49:48:80:c8:02:77:58:e2:5f:50:3d:be:4f: 23:b4:bc:59:74:57:f1:71:75:43:e8:2c:23:f2:85: 6b:7c:8f:35:3b:6a:8f:1c:39:3d:fa:f9:56:f1:43: d4:51:e4:9f:99:a8:21:c3:53:16:40:56:47:33:61: 16:54:60:a0:3e:04:e1:ef:b3:4d:24:b5:07:04:f3: ae:8b:6d:cf:2d:28:50:9f:43:db:6a:f9:c6:0f:83: d9:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:C2:95:A3:F1:3F:CF:92:7A:E3:2C:F3:CB:6D:FD:87:F2:17:65:5E X509v3 Authority Key Identifier: keyid:53:82:64:2E:BD:79:9A:0F:82:86:D0:65:48:29:ED:76:84:30:F9:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/U4JkLr15mg-ChtBlSCntdoQw-eQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4JkLr15mg-ChtBlSCntdoQw-eQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E6856/2CD45FBA9E2411E9B143BE71C4F9AE02/350711FA881211EE9710F928C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 203.15.122.0/24 203.27.220.0/23 IPv6: 2405:140::/32 Signature Algorithm: sha256WithRSAEncryption 08:16:00:7a:c7:bb:e8:49:6f:31:7f:99:1a:5b:0b:7e:d3:e7: c2:60:77:f2:be:e9:da:1d:35:ed:02:da:c7:92:e0:1a:a3:ec: ab:1f:24:97:d6:c8:16:87:81:8b:15:62:d1:cc:30:98:41:ac: dd:88:44:bd:e4:8f:39:26:d6:0e:87:ee:67:73:ed:67:54:ce: 10:cc:1c:cc:9f:12:36:8a:94:c5:86:3b:0d:d0:2c:a0:5e:e0: bf:10:6f:d6:54:aa:1a:a8:f3:c2:ba:bc:83:9d:ff:0a:13:be: 96:de:09:58:cd:78:dd:99:3b:09:f5:ba:2f:41:a7:c1:05:22: 3a:59:8a:e9:4f:c1:c1:d0:34:97:63:20:51:34:97:11:89:c1: 59:fc:9e:c3:f2:35:1f:06:be:37:43:e2:16:0f:a5:47:68:e2: 7a:47:e0:e3:40:cf:f1:1c:01:91:2d:06:dd:96:e2:9a:58:cc: e9:5c:14:46:d3:77:b5:49:67:1a:ca:80:f0:98:c0:e2:b3:a4: e5:a6:47:9e:6a:b0:28:02:84:4a:d6:92:61:00:66:e4:3e:e9: 47:2b:cd:16:2b:e7:98:99:4c:7b:80:b4:ac:6f:17:1b:43:f2: 65:bd:37:fc:f9:6f:a0:a4:0d:da:0e:cd:f8:4d:1e:da:80:62: 89:be:f2:da -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDTIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTY4NTYxMTAvBgNVBAUTKDUzODI2NDJFQkQ3OTlBMEY4Mjg2RDA2NTQ4MjlFRDc2 ODQzMEY5RTQwHhcNMjMxMTIxMDIzNTQyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVjMTc3ZS0wYzE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAulIVib5tlndsLFhkCgwPC7cUL3bd18pXO0mjrrozPW86QrE0UNAfEZzT05iA 358WKcLa8czBZ6ocLahWFrQrHvijJLFLxUZFbWOCN4cfYh0T4NqP0GuNAuv9OuAP BJzRbhFCsapSDJwEINnNcdzwDjJFkb2824IPmbRnZeEE895/tC7D9dq1r4H6iI4T OmHCB+uaVxMhOBROh5DifJamXR9WNEN1vklIgMgCd1jiX1A9vk8jtLxZdFfxcXVD 6Cwj8oVrfI81O2qPHDk9+vlW8UPUUeSfmaghw1MWQFZHM2EWVGCgPgTh77NNJLUH BPOui23PLShQn0PbavnGD4PZaQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDrClaPx P8+SeuMs88tt/YfyF2VeMB8GA1UdIwQYMBaAFFOCZC69eZoPgobQZUgp7XaEMPnk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNjg1Ni8yQ0Q0NUZCQTlF MjQxMUU5QjE0M0JFNzFDNEY5QUUwMi9VNEprTHIxNW1nLUNodEJsU0NudGRvUXct ZVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0SmtMcjE1bWctQ2h0QmxTQ250ZG9Rdy1lUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTY4NTYvMkNENDVGQkE5RTI0MTFFOUIxNDNCRTcxQzRGOUFFMDIvMzUwNzExRkE4 ODEyMTFFRTk3MTBGOTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBADLD3oDBAHLG9wwDQQCAAIwBwMFACQFAUAwDQYJKoZIhvcN AQELBQADggEBAAgWAHrHu+hJbzF/mRpbC37T58Jgd/K+6dodNe0C2seS4Bqj7Ksf JJfWyBaHgYsVYtHMMJhBrN2IRL3kjzkm1g6H7mdz7WdUzhDMHMyfEjaKlMWGOw3Q LKBe4L8Qb9ZUqhqo88K6vIOd/woTvpbeCVjNeN2ZOwn1ui9Bp8EFIjpZiulPwcHQ NJdjIFE0lxGJwVn8nsPyNR8GvjdD4hYPpUdo4npH4ONAz/EcAZEtBt2W4ppYzOlc FEbTd7VJZxrKgPCYwOKzpOWmR55qsCgChErWkmEAZuQ+6UcrzRYr55iZTHuAtKxv FxtD8mW9N/z5b6CkDdoOzfhNHtqAYom+8to= -----END CERTIFICATE-----Generated at Thu May 16 19:10:57 2024 by rpki-client on console-fra.rpki-client.org