$ rpki-client -vvf rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/763018B4D29811ED8CDDB83AC4F9AE02.roa File: 763018B4D29811ED8CDDB83AC4F9AE02.roa (raw, json) Hash identifier: G2cUE4XCDbRjo3hZZ2YVvtK0RuJ9Lk3l6kRgEwAu52s= Subject key identifier: F3:DB:2C:04:91:6E:41:C9:32:5A:FC:D6:87:A8:91:C3:99:85:D8:07 Certificate issuer: /CN=A91EDADE/serialNumber=A60F8DA478BD772F4F2B3E4C79D5C181DDE56893 Certificate serial: 71 Authority key identifier: A6:0F:8D:A4:78:BD:77:2F:4F:2B:3E:4C:79:D5:C1:81:DD:E5:68:93 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pg-NpHi9dy9PKz5MedXBgd3laJM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/763018B4D29811ED8CDDB83AC4F9AE02.roa Signing time: Thu 09 Nov 2023 05:36:21 +0000 ROA not before: Thu 09 Nov 2023 05:36:21 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 45352 IP address blocks: 58.84.40.0/22 maxlen: 22 58.84.40.0/24 maxlen: 24 58.84.41.0/24 maxlen: 24 58.84.42.0/24 maxlen: 24 58.84.43.0/24 maxlen: 24 103.197.56.0/22 maxlen: 22 103.197.56.0/24 maxlen: 24 103.197.57.0/24 maxlen: 24 103.197.58.0/24 maxlen: 24 103.197.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/pg-NpHi9dy9PKz5MedXBgd3laJM.crl rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/pg-NpHi9dy9PKz5MedXBgd3laJM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pg-NpHi9dy9PKz5MedXBgd3laJM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 113 (0x71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EDADE/serialNumber=A60F8DA478BD772F4F2B3E4C79D5C181DDE56893 Validity Not Before: Nov 9 05:36:21 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654c6fd5-7f49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:72:34:01:87:fb:2a:9a:93:da:5c:74:86:e9: 47:cc:8f:44:ad:08:cf:c5:7e:36:7a:34:6b:ca:b9: 24:6f:a5:2d:d2:70:f4:41:04:21:07:9b:1c:c3:4a: 7d:d8:59:74:74:b4:24:1c:17:ec:9f:35:bd:d5:e3: 61:b1:0d:cb:bd:5c:36:c2:8a:0c:22:83:02:c1:4b: b6:e5:49:44:06:df:c6:1e:d9:2b:fd:64:a2:65:ce: ed:bd:a5:20:90:63:77:c6:88:6f:f5:0d:19:ae:ea: a2:e6:00:18:23:7f:7b:b8:e5:38:4b:f0:55:37:11: b9:f4:a7:18:2e:24:0a:30:2c:15:14:12:da:16:34: 34:40:47:44:93:76:fa:6b:3a:bc:f2:e1:dc:a4:60: ef:e6:17:39:66:10:a9:28:87:03:42:7f:25:b1:59: 99:8a:d6:80:73:88:00:cf:80:70:cb:7f:c7:70:0c: a7:f3:e2:5f:7c:6f:1b:20:76:58:9a:ad:74:a3:e3: 2c:a1:2e:d6:eb:5d:05:56:32:56:31:6a:b7:fb:0d: 66:02:f4:95:f7:e0:02:ec:2c:4e:11:b0:3d:9f:f0: b4:02:32:10:cf:c5:2e:4e:32:df:24:7b:f5:90:94: 3b:39:d0:7d:6d:cd:ad:40:f5:0a:ae:ec:cc:13:82: f6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:DB:2C:04:91:6E:41:C9:32:5A:FC:D6:87:A8:91:C3:99:85:D8:07 X509v3 Authority Key Identifier: keyid:A6:0F:8D:A4:78:BD:77:2F:4F:2B:3E:4C:79:D5:C1:81:DD:E5:68:93 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/pg-NpHi9dy9PKz5MedXBgd3laJM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pg-NpHi9dy9PKz5MedXBgd3laJM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EDADE/7098F4DCD29511EDA2418439C4F9AE02/763018B4D29811ED8CDDB83AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 58.84.40.0/22 103.197.56.0/22 Signature Algorithm: sha256WithRSAEncryption bb:2c:13:db:04:69:4a:fe:f3:c3:15:f6:5c:f8:b3:8c:87:21: 48:6a:5e:1f:a4:8e:80:28:c8:26:b8:83:86:26:9d:88:20:e7: 99:81:e9:4d:bc:2a:36:54:b9:e2:73:45:63:b2:dc:10:82:bb: 91:fb:e5:c3:f5:eb:be:94:53:61:e6:ab:df:c6:dd:d1:91:84: 61:39:0c:74:67:b0:38:f7:c2:a4:70:ca:f5:51:b0:55:ba:0b: 90:6f:44:13:51:40:5e:a8:b1:41:d6:dc:7c:ec:61:2c:f6:6e: 26:75:f6:82:1e:ba:34:42:0e:e0:7b:ca:5b:96:bf:8b:2d:5f: 8a:fc:07:68:3b:b5:18:d0:bb:a4:b6:69:01:fc:1d:42:c2:ec: 24:5f:84:c1:cb:30:e7:90:5e:55:d2:5a:09:10:d1:2f:7b:b3: cf:84:0f:82:3a:7e:5d:2e:3c:ca:00:a9:a2:8c:b4:cf:ff:5c: 37:9d:78:76:7d:a3:54:dc:20:08:05:b7:bf:13:ca:fb:71:86: c8:f5:b7:d4:4e:e7:7a:68:df:61:54:6d:76:0b:24:ee:b1:ce: c3:1c:73:8b:58:ef:71:e6:78:df:d3:53:75:c9:92:55:2e:a8: af:67:b9:3d:a8:dc:7b:91:a5:cd:ae:8d:d8:38:6a:b0:9b:16: df:13:94:e8 -----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIBcTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF REFERTExMC8GA1UEBRMoQTYwRjhEQTQ3OEJENzcyRjRGMkIzRTRDNzlENUMxODFE REU1Njg5MzAeFw0yMzExMDkwNTM2MjFaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NGM2ZmQ1LTdmNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDVcjQBh/sqmpPaXHSG6UfMj0StCM/FfjZ6NGvKuSRvpS3ScPRBBCEHmxzDSn3Y WXR0tCQcF+yfNb3V42GxDcu9XDbCigwigwLBS7blSUQG38Ye2Sv9ZKJlzu29pSCQ Y3fGiG/1DRmu6qLmABgjf3u45ThL8FU3Ebn0pxguJAowLBUUEtoWNDRAR0STdvpr Orzy4dykYO/mFzlmEKkohwNCfyWxWZmK1oBziADPgHDLf8dwDKfz4l98bxsgdlia rXSj4yyhLtbrXQVWMlYxarf7DWYC9JX34ALsLE4RsD2f8LQCMhDPxS5OMt8ke/WQ lDs50H1tza1A9Qqu7MwTgvZVAgMBAAGjggKbMIIClzAdBgNVHQ4EFgQU89ssBJFu QckyWvzWh6iRw5mF2AcwHwYDVR0jBBgwFoAUpg+NpHi9dy9PKz5MedXBgd3laJMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVEQURFLzcwOThGNERDRDI5 NTExRURBMjQxODQzOUM0RjlBRTAyL3BnLU5wSGk5ZHk5UEt6NU1lZFhCZ2QzbGFK TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcGctTnBIaTlkeTlQS3o1TWVkWEJnZDNsYUpNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF REFERS83MDk4RjREQ0QyOTUxMUVEQTI0MTg0MzlDNEY5QUUwMi83NjMwMThCNEQy OTgxMUVEOENEREI4M0FDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAlBggrBgEFBQcBBwEB/wQW MBQwEgQCAAEwDAMEAjpUKAMEAmfFODANBgkqhkiG9w0BAQsFAAOCAQEAuywT2wRp Sv7zwxX2XPizjIchSGpeH6SOgCjIJriDhiadiCDnmYHpTbwqNlS54nNFY7LcEIK7 kfvlw/XrvpRTYear38bd0ZGEYTkMdGewOPfCpHDK9VGwVboLkG9EE1FAXqixQdbc fOxhLPZuJnX2gh66NEIO4HvKW5a/iy1fivwHaDu1GNC7pLZpAfwdQsLsJF+Ewcsw 55BeVdJaCRDRL3uzz4QPgjp+XS48ygCpooy0z/9cN514dn2jVNwgCAW3vxPK+3GG yPW31E7nemjfYVRtdgsk7rHOwxxzi1jvceZ439NTdcmSVS6or2e5Pajce5Glza6N 2DhqsJsW3xOU6A== -----END CERTIFICATE-----Generated at Sun May 19 07:40:46 2024 by rpki-client on console-fra.rpki-client.org