$ rpki-client -vvf rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/EF31E31847CE11EEB588375DC4F9AE02.roa File: EF31E31847CE11EEB588375DC4F9AE02.roa (raw, json) Hash identifier: QXH5hAugaFjvEdnEVywy5kmJrtY3XKt8VoVhSSAgxFw= Subject key identifier: 3C:80:55:06:F3:86:57:89:60:B6:07:ED:BA:93:8D:3D:C9:4F:E5:C9 Certificate issuer: /CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Certificate serial: 04 Authority key identifier: 2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/EF31E31847CE11EEB588375DC4F9AE02.roa Signing time: Thu 31 Aug 2023 07:23:11 +0000 ROA not before: Thu 31 Aug 2023 07:23:11 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 136744 IP address blocks: 43.230.12.0/22 maxlen: 24 103.248.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 06:34:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EA485/serialNumber=2A56ECF0F1FF39FB1515600D120A3472BE14B732 Validity Not Before: Aug 31 07:23:11 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64f03fdf-80fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:88:64:61:26:b5:40:9e:57:ec:17:f8:26:01: da:75:1a:d7:47:92:fe:81:b3:3b:f5:65:4b:bb:10: 12:03:d1:c9:5f:36:20:73:e1:93:11:78:71:77:cb: ed:35:ab:7f:29:75:83:be:a8:a0:d2:b9:e1:4f:5b: 85:21:44:0c:51:5e:57:82:d5:38:68:b4:82:0a:ce: 7e:80:41:e0:61:b0:ba:7f:e6:70:c2:80:e1:1d:33: 4c:99:dd:f3:d4:d8:75:de:93:59:a0:56:66:64:a3: dd:b2:1b:d2:1c:54:c0:11:4c:0e:6a:b0:d1:5e:31: e2:1b:f4:4f:0b:41:7e:1d:05:a9:f2:19:e3:61:df: 9a:1b:91:02:7f:47:29:6a:5e:d3:59:7b:d9:a0:41: 44:43:d0:96:e6:93:c9:18:9f:2f:90:b4:1e:0c:fd: 64:c4:24:17:f1:90:ac:97:da:ee:98:76:6a:2e:96: 47:a0:01:e9:ad:9f:08:ee:4d:99:ad:31:e4:c6:99: d8:20:0c:56:b0:51:52:13:75:fa:6b:1d:80:59:4b: f0:bf:ab:e8:ab:5f:a9:f1:27:84:42:95:ab:23:58: 58:ea:f5:79:b4:0b:21:17:4c:79:a2:9c:08:e2:90: ac:02:aa:73:92:9b:56:65:ea:9d:52:03:86:60:0a: b8:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:80:55:06:F3:86:57:89:60:B6:07:ED:BA:93:8D:3D:C9:4F:E5:C9 X509v3 Authority Key Identifier: keyid:2A:56:EC:F0:F1:FF:39:FB:15:15:60:0D:12:0A:34:72:BE:14:B7:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/Klbs8PH_OfsVFWANEgo0cr4UtzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Klbs8PH_OfsVFWANEgo0cr4UtzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EA485/62A9286647CE11EE86C2385CC4F9AE02/EF31E31847CE11EEB588375DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.230.12.0/22 103.248.252.0/22 Signature Algorithm: sha256WithRSAEncryption 05:e6:6f:b3:cb:71:51:81:61:94:5b:e9:2f:0d:a6:b3:85:29: 26:34:b3:49:33:35:d1:4f:de:3c:29:e6:5c:aa:0e:bd:a4:62: 19:d9:61:a2:0d:e9:2a:93:d2:d0:20:4c:03:a2:70:f8:be:11: de:5b:f3:b4:bc:7f:5f:2f:2d:78:fc:bc:92:6f:ce:c2:39:66: dc:9a:3a:56:c8:ea:3b:5c:e4:b1:0c:8d:68:3e:7c:b6:0e:c8: ef:dc:25:71:d4:ed:95:12:09:5e:66:75:93:28:6a:07:58:b2: b8:f6:4f:98:84:94:16:3e:b5:2c:d8:90:4e:10:5a:78:2d:77: 33:94:84:c9:03:b0:ec:90:7f:38:90:3c:1f:23:b7:17:02:aa: 20:b9:d6:bf:5f:55:b7:0b:22:e9:f7:25:26:dc:10:d7:e0:5a: cb:b9:37:36:3a:6a:9a:25:42:6c:5c:7a:d8:61:bf:50:a0:28: 6b:fd:d5:50:0b:76:69:84:63:44:25:b5:5a:4b:5e:24:c4:f5: a5:d5:f2:f8:30:52:aa:74:4c:e1:36:07:62:b3:93:c5:bc:9e: 6f:1e:33:e1:b2:d7:54:8d:70:70:37:35:4f:cb:0e:e9:53:8f: ce:4b:31:ac:39:3d:d0:f0:b4:1d:2a:a8:12:c0:e7:b3:25:5b: c3:47:0d:81 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF QTQ4NTExMC8GA1UEBRMoMkE1NkVDRjBGMUZGMzlGQjE1MTU2MDBEMTIwQTM0NzJC RTE0QjczMjAeFw0yMzA4MzEwNzIzMTFaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZjAzZmRmLTgwZmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCwiGRhJrVAnlfsF/gmAdp1GtdHkv6Bszv1ZUu7EBID0clfNiBz4ZMReHF3y+01 q38pdYO+qKDSueFPW4UhRAxRXleC1ThotIIKzn6AQeBhsLp/5nDCgOEdM0yZ3fPU 2HXek1mgVmZko92yG9IcVMARTA5qsNFeMeIb9E8LQX4dBanyGeNh35obkQJ/Rylq XtNZe9mgQURD0Jbmk8kYny+QtB4M/WTEJBfxkKyX2u6YdmoulkegAemtnwjuTZmt MeTGmdggDFawUVITdfprHYBZS/C/q+irX6nxJ4RClasjWFjq9Xm0CyEXTHminAji kKwCqnOSm1Zl6p1SA4ZgCrgRAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQUPIBVBvOG V4lgtgftupONPclP5ckwHwYDVR0jBBgwFoAUKlbs8PH/OfsVFWANEgo0cr4UtzIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVBNDg1LzYyQTkyODY2NDdD RTExRUU4NkMyMzg1Q0M0RjlBRTAyL0tsYnM4UEhfT2ZzVkZXQU5FZ28wY3I0VXR6 SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvS2xiczhQSF9PZnNWRldBTkVnbzBjcjRVdHpJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF QTQ4NS82MkE5Mjg2NjQ3Q0UxMUVFODZDMjM4NUNDNEY5QUUwMi9FRjMxRTMxODQ3 Q0UxMUVFQjU4ODM3NURDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAivmDAMEAmf4/DANBgkqhkiG9w0BAQsFAAOCAQEABeZvs8tx UYFhlFvpLw2ms4UpJjSzSTM10U/ePCnmXKoOvaRiGdlhog3pKpPS0CBMA6Jw+L4R 3lvztLx/Xy8tePy8km/Owjlm3Jo6VsjqO1zksQyNaD58tg7I79wlcdTtlRIJXmZ1 kyhqB1iyuPZPmISUFj61LNiQThBaeC13M5SEyQOw7JB/OJA8HyO3FwKqILnWv19V twsi6fclJtwQ1+Bay7k3NjpqmiVCbFx62GG/UKAoa/3VUAt2aYRjRCW1WkteJMT1 pdXy+DBSqnRM4TYHYrOTxbyebx4z4bLXVI1wcDc1T8sO6VOPzksxrDk90PC0HSqo EsDnsyVbw0cNgQ== -----END CERTIFICATE-----Generated at Sun May 5 08:21:13 2024 by rpki-client on console-ams.rpki-client.org