$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa File: A10812CA0CD511EB9433AE69C4F9AE02.roa (raw, json) Hash identifier: a5Oqhzfh+WaBH67r7bDw9PUnq0IPn3kK+b8Kc7vybP4= Subject key identifier: E2:47:9E:CE:44:D0:FC:1A:B3:F0:E0:2A:A6:F1:AE:89:88:50:D8:6E Certificate issuer: /CN=A91EBC50/serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Certificate serial: 06C5 Authority key identifier: 43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa Signing time: Thu 28 Mar 2024 23:01:53 +0000 ROA not before: Thu 28 Mar 2024 23:01:53 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 9290 IP address blocks: 103.11.144.0/22 maxlen: 22 110.34.52.0/22 maxlen: 22 121.127.35.0/24 maxlen: 24 202.47.95.0/24 maxlen: 24 203.83.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1733 (0x6c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBC50/serialNumber=4354D5CFA564EE71B34E8874EEB1B9868F8807DD Validity Not Before: Mar 28 23:01:53 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605f6e1-59df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3f:9c:dd:7f:3a:f5:f1:26:fd:80:d7:18:7f: 3b:cd:af:54:df:76:6a:1b:9d:81:2e:ad:e6:b8:7d: 38:7a:a1:1a:af:32:e9:22:51:2c:75:0c:fe:13:49: 47:8e:4b:32:ea:bb:1a:7c:27:5a:be:e1:cb:50:42: ee:66:5f:ad:c4:ce:c7:2e:db:c0:f7:52:50:c7:1d: 2c:fe:ff:d3:c7:c1:a5:f7:4c:27:2a:2e:87:cf:24: 2e:e3:87:d0:82:44:00:18:46:bd:81:54:61:c6:56: a3:fa:b9:5f:b0:7c:28:a7:b2:43:8a:23:a3:cf:f1: 34:48:ef:e6:da:8d:f6:a1:1a:d1:a8:48:7d:f7:d9: be:5c:8b:6c:c0:07:dc:01:67:36:44:32:bf:75:d4: 31:7b:02:fb:86:cc:b5:ea:82:3b:8c:61:5f:b2:4f: 50:86:dd:49:1a:be:7a:40:8a:92:86:e8:99:21:2d: a9:73:d7:57:30:00:6e:59:87:a4:77:88:26:46:d8: 55:23:2a:64:e3:ae:40:96:34:63:33:22:43:d8:02: ce:b6:2d:15:5c:76:e0:0a:de:fd:c3:32:53:03:6f: 54:42:43:44:48:b4:62:5d:ed:2a:c7:68:14:fb:b8: 29:c5:59:04:96:2d:bb:c8:f4:ca:99:84:64:00:b4: 17:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:47:9E:CE:44:D0:FC:1A:B3:F0:E0:2A:A6:F1:AE:89:88:50:D8:6E X509v3 Authority Key Identifier: keyid:43:54:D5:CF:A5:64:EE:71:B3:4E:88:74:EE:B1:B9:86:8F:88:07:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/Q1TVz6Vk7nGzToh07rG5ho-IB90.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q1TVz6Vk7nGzToh07rG5ho-IB90.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBC50/E4858AC40CD411EBBCD79C69C4F9AE02/A10812CA0CD511EB9433AE69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.11.144.0/22 110.34.52.0/22 121.127.35.0/24 202.47.95.0/24 203.83.219.0/24 Signature Algorithm: sha256WithRSAEncryption b5:e2:a3:e9:14:e3:de:9f:8f:3e:d8:82:af:f7:1c:a7:b3:53: 7c:67:a2:4d:00:67:28:53:1d:a3:49:08:3f:dd:20:2b:14:6a: c5:a4:f8:50:b6:9e:48:34:a7:b8:db:5f:64:09:7d:87:d3:58: 4f:8b:49:ce:6c:00:83:91:03:82:9e:78:fa:1c:56:9e:59:1d: 43:bd:1a:a8:f3:48:70:29:51:43:5b:80:a2:81:75:6a:cd:bb: bd:8e:c5:37:b3:6c:e1:ba:7f:6f:ef:96:4c:40:c7:bb:9d:26: 78:68:ff:ac:d3:46:5e:2b:56:55:a1:5e:bb:dc:12:54:82:ea: 05:61:00:f3:35:4d:3f:2b:56:2f:e3:2e:0a:07:33:26:10:d4: eb:e6:74:2f:f7:7a:73:b6:d6:5c:7c:c8:c1:be:87:ed:59:6e: ff:42:b4:3b:45:1d:1f:d2:d6:39:d5:48:79:3b:1e:2f:d1:8d: e6:f8:34:96:0d:bd:06:04:51:59:fe:66:02:76:1a:fe:12:5f: 3e:2b:76:30:57:7c:9b:09:90:31:38:c1:89:9c:de:92:b2:98: ae:a8:63:91:1c:00:ed:3b:78:9b:f4:e2:ae:0a:e8:53:9b:6d: 97:30:5a:2b:63:ca:a7:61:fd:5b:bf:2b:dd:e6:84:14:1a:08: 29:ff:6c:87 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICBsUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJDNTAxMTAvBgNVBAUTKDQzNTRENUNGQTU2NEVFNzFCMzRFODg3NEVFQjFCOTg2 OEY4ODA3REQwHhcNMjQwMzI4MjMwMTUzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1ZjZlMS01OWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4D+c3X869fEm/YDXGH87za9U33ZqG52BLq3muH04eqEarzLpIlEsdQz+E0lH jksy6rsafCdavuHLUELuZl+txM7HLtvA91JQxx0s/v/Tx8Gl90wnKi6HzyQu44fQ gkQAGEa9gVRhxlaj+rlfsHwop7JDiiOjz/E0SO/m2o32oRrRqEh999m+XItswAfc AWc2RDK/ddQxewL7hsy16oI7jGFfsk9Qht1JGr56QIqShuiZIS2pc9dXMABuWYek d4gmRthVIypk465AljRjMyJD2ALOti0VXHbgCt79wzJTA29UQkNESLRiXe0qx2gU +7gpxVkEli27yPTKmYRkALQX7wIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFOJHns5E 0Pwas/DgKqbxromIUNhuMB8GA1UdIwQYMBaAFENU1c+lZO5xs06IdO6xuYaPiAfd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkM1MC9FNDg1OEFDNDBD RDQxMUVCQkNENzlDNjlDNEY5QUUwMi9RMVRWejZWazduR3pUb2gwN3JHNWhvLUlC OTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ExVFZ6NlZrN25HelRvaDA3ckc1aG8tSUI5MC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJDNTAvRTQ4NThBQzQwQ0Q0MTFFQkJDRDc5QzY5QzRGOUFFMDIvQTEwODEyQ0Ew Q0Q1MTFFQjk0MzNBRTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAJnC5ADBAJuIjQDBAB5fyMDBADKL18DBADLU9swDQYJKoZI hvcNAQELBQADggEBALXio+kU496fjz7Ygq/3HKezU3xnok0AZyhTHaNJCD/dICsU asWk+FC2nkg0p7jbX2QJfYfTWE+LSc5sAIORA4KeePocVp5ZHUO9GqjzSHApUUNb gKKBdWrNu72OxTezbOG6f2/vlkxAx7udJnho/6zTRl4rVlWhXrvcElSC6gVhAPM1 TT8rVi/jLgoHMyYQ1OvmdC/3enO21lx8yMG+h+1Zbv9CtDtFHR/S1jnVSHk7Hi/R jeb4NJYNvQYEUVn+ZgJ2Gv4SXz4rdjBXfJsJkDE4wYmc3pKymK6oY5EcAO07eJv0 4q4K6FObbZcwWitjyqdh/Vu/K93mhBQaCCn/bIc= -----END CERTIFICATE-----Generated at Thu May 16 23:48:43 2024 by rpki-client on console-fra.rpki-client.org