$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/9507A58E66CC11EB8CD9533AC4F9AE02.roa File: 9507A58E66CC11EB8CD9533AC4F9AE02.roa (raw, json) Hash identifier: EO9TW61oX5tn54S0K2Lsn1in2OKfp6cspW8QUVHScGc= Subject key identifier: A4:73:E3:94:E6:59:19:2D:DD:85:4B:3E:AD:C6:C6:52:0F:71:FC:24 Certificate issuer: /CN=A91F1AD0/serialNumber=4302125EFB149E451560C7495B7D43CD9E9ACFF7 Certificate serial: 058D Authority key identifier: 43:02:12:5E:FB:14:9E:45:15:60:C7:49:5B:7D:43:CD:9E:9A:CF:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwISXvsUnkUVYMdJW31DzZ6az_c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/9507A58E66CC11EB8CD9533AC4F9AE02.roa Signing time: Wed 08 Nov 2023 23:51:56 +0000 ROA not before: Wed 08 Nov 2023 23:51:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 137236 IP address blocks: 43.226.12.0/22 maxlen: 24 103.101.80.0/22 maxlen: 24 202.8.72.0/22 maxlen: 24 2401:ccc0::/33 maxlen: 33 2401:ccc0:8000::/33 maxlen: 33 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/QwISXvsUnkUVYMdJW31DzZ6az_c.crl rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/QwISXvsUnkUVYMdJW31DzZ6az_c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwISXvsUnkUVYMdJW31DzZ6az_c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 May 2024 00:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1421 (0x58d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1AD0/serialNumber=4302125EFB149E451560C7495B7D43CD9E9ACFF7 Validity Not Before: Nov 8 23:51:56 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654c1f1c-3359 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:49:cd:d0:4c:82:30:34:07:42:b7:9f:86:13: 82:32:3c:3a:0b:eb:e8:c7:7a:8c:59:9c:09:2f:17: d4:29:47:94:7b:4d:c5:c9:62:60:ec:fb:46:a1:5a: 90:a0:fc:17:ba:60:fc:07:43:04:09:f6:56:c1:0a: 67:a0:fe:0f:b0:d5:85:c6:d8:e1:1e:99:86:f8:03: 3e:ff:7c:a5:b9:75:72:22:e0:69:d3:4c:33:26:eb: 8b:e9:8e:1a:1c:aa:96:75:c5:63:1f:5b:08:25:a7: 7e:cd:cc:1d:a5:01:eb:fa:fe:03:66:32:e6:2e:9b: 3b:38:cd:70:2a:ba:76:dd:c8:db:8f:70:bd:c1:61: ec:30:e5:6f:c9:6e:1d:f1:23:35:8c:61:48:8c:f2: c4:af:95:cc:88:b5:10:4e:a4:12:e0:0c:46:11:56: 43:66:4f:13:78:ff:c8:7b:5d:30:5f:39:f5:71:4c: 00:45:11:9e:ca:a7:33:5f:ac:8b:60:9b:90:4e:45: 33:51:45:1e:fb:82:fe:9c:e8:8e:b4:bb:64:ff:db: d3:5e:ee:07:67:a6:fa:11:c6:18:da:3b:7d:78:46: 63:90:1d:55:04:62:c9:c0:d4:92:23:16:cc:81:18: 93:41:6b:c7:37:92:3a:f4:d6:f6:a2:bd:06:53:be: da:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:73:E3:94:E6:59:19:2D:DD:85:4B:3E:AD:C6:C6:52:0F:71:FC:24 X509v3 Authority Key Identifier: keyid:43:02:12:5E:FB:14:9E:45:15:60:C7:49:5B:7D:43:CD:9E:9A:CF:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/QwISXvsUnkUVYMdJW31DzZ6az_c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QwISXvsUnkUVYMdJW31DzZ6az_c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1AD0/86EF4BDE66CA11EBAC642735C4F9AE02/9507A58E66CC11EB8CD9533AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.226.12.0/22 103.101.80.0/22 202.8.72.0/22 IPv6: 2401:ccc0::/32 Signature Algorithm: sha256WithRSAEncryption 87:be:78:ca:26:ee:82:73:97:55:ba:fb:8a:68:b0:5b:d1:f6: 11:ae:37:a6:fe:46:bb:4c:f7:fc:84:38:80:5c:16:78:69:1b: c3:10:4f:61:b8:26:61:42:a0:72:2c:3b:d3:43:21:78:a8:52: c3:00:b2:6d:59:91:07:d1:8d:95:a4:65:5a:49:d8:a7:2c:a1: 76:df:ad:23:df:a2:2d:bf:ce:d6:1c:db:be:c3:1d:63:8e:b4: 63:f1:68:33:19:64:a3:06:ea:81:33:d4:1d:f1:35:1f:6c:11: f6:d5:2c:9a:ac:90:96:ea:0d:21:87:a5:54:cd:57:25:00:6e: 56:c3:7c:3f:ed:cc:d5:9b:6d:73:4c:b9:45:64:42:23:cb:e5: a5:82:9e:8e:a7:ff:21:f2:91:fc:c2:82:c4:73:b1:4f:3f:e9: 45:54:bd:85:bc:48:e2:70:3f:82:9f:33:6b:10:f1:cc:e6:aa: 38:46:7a:b8:3b:d8:3c:83:65:d8:93:92:0e:c5:84:d6:76:d8: 97:a1:89:dc:32:d9:f8:da:4b:a0:dd:71:fd:34:7d:36:7c:d7: ec:c7:1c:11:88:63:fc:35:b5:da:12:fd:f7:73:1d:a5:0f:a9: ce:e2:6a:b5:1b:3a:57:43:38:ef:41:52:8c:86:16:fd:f4:95: a9:2c:29:55 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICBY0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjFBRDAxMTAvBgNVBAUTKDQzMDIxMjVFRkIxNDlFNDUxNTYwQzc0OTVCN0Q0M0NE OUU5QUNGRjcwHhcNMjMxMTA4MjM1MTU2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRjMWYxYy0zMzU5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw0nN0EyCMDQHQrefhhOCMjw6C+vox3qMWZwJLxfUKUeUe03FyWJg7PtGoVqQ oPwXumD8B0MECfZWwQpnoP4PsNWFxtjhHpmG+AM+/3yluXVyIuBp00wzJuuL6Y4a HKqWdcVjH1sIJad+zcwdpQHr+v4DZjLmLps7OM1wKrp23cjbj3C9wWHsMOVvyW4d 8SM1jGFIjPLEr5XMiLUQTqQS4AxGEVZDZk8TeP/Ie10wXzn1cUwARRGeyqczX6yL YJuQTkUzUUUe+4L+nOiOtLtk/9vTXu4HZ6b6EcYY2jt9eEZjkB1VBGLJwNSSIxbM gRiTQWvHN5I69Nb2or0GU77a/QIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFKRz45Tm WRkt3YVLPq3GxlIPcfwkMB8GA1UdIwQYMBaAFEMCEl77FJ5FFWDHSVt9Q82ems/3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMUFEMC84NkVGNEJERTY2 Q0ExMUVCQUM2NDI3MzVDNEY5QUUwMi9Rd0lTWHZzVW5rVVZZTWRKVzMxRHpaNmF6 X2MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1F3SVNYdnNVbmtVVllNZEpXMzFEelo2YXpfYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjFBRDAvODZFRjRCREU2NkNBMTFFQkFDNjQyNzM1QzRGOUFFMDIvOTUwN0E1OEU2 NkNDMTFFQjhDRDk1MzNBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAIr4gwDBAJnZVADBALKCEgwDQQCAAIwBwMFACQBzMAwDQYJ KoZIhvcNAQELBQADggEBAIe+eMom7oJzl1W6+4posFvR9hGuN6b+RrtM9/yEOIBc FnhpG8MQT2G4JmFCoHIsO9NDIXioUsMAsm1ZkQfRjZWkZVpJ2KcsoXbfrSPfoi2/ ztYc277DHWOOtGPxaDMZZKMG6oEz1B3xNR9sEfbVLJqskJbqDSGHpVTNVyUAblbD fD/tzNWbbXNMuUVkQiPL5aWCno6n/yHykfzCgsRzsU8/6UVUvYW8SOJwP4KfM2sQ 8czmqjhGerg72DyDZdiTkg7FhNZ22Jehidwy2fjaS6Ddcf00fTZ81+zHHBGIY/w1 tdoS/fdzHaUPqc7iarUbOldDOO9BUoyGFv30laksKVU= -----END CERTIFICATE-----Generated at Wed May 15 01:43:53 2024 by rpki-client on console-ams.rpki-client.org