$ rpki-client -vvf rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/11AA6C3E22A111ED848DF584C4F9AE02.roa File: 11AA6C3E22A111ED848DF584C4F9AE02.roa (raw, json) Hash identifier: 1uFlebZA519OqpXoM4QXBxmovSoHUvM3q5yLtoaHh3w= Subject key identifier: 16:10:52:25:A7:BA:DE:A3:71:0F:E5:04:6B:80:1C:E3:7A:39:5E:3F Certificate issuer: /CN=A91F692A/serialNumber=C2B605BDB4F2B6ED2B051DC42B2E803FB6078E4D Certificate serial: 016D Authority key identifier: C2:B6:05:BD:B4:F2:B6:ED:2B:05:1D:C4:2B:2E:80:3F:B6:07:8E:4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrYFvbTytu0rBR3EKy6AP7YHjk0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/11AA6C3E22A111ED848DF584C4F9AE02.roa Signing time: Wed 03 Apr 2024 05:07:30 +0000 ROA not before: Wed 03 Apr 2024 05:07:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 56135 IP address blocks: 101.234.72.0/22 maxlen: 22 103.29.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/wrYFvbTytu0rBR3EKy6AP7YHjk0.crl rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/wrYFvbTytu0rBR3EKy6AP7YHjk0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrYFvbTytu0rBR3EKy6AP7YHjk0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 04:35:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F692A/serialNumber=C2B605BDB4F2B6ED2B051DC42B2E803FB6078E4D Validity Not Before: Apr 3 05:07:30 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660ce412-5acf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5f:27:51:9f:5a:7d:51:aa:6e:01:68:01:72: 9c:c0:57:a6:60:6c:87:f2:1b:94:ae:07:9d:c7:07: bd:9e:14:ea:db:00:44:b4:8b:3e:ef:7b:1f:9a:a0: 6c:6c:4c:6d:b6:8d:9e:75:46:54:1b:ff:e3:d9:2d: c7:3d:1a:99:88:9d:e6:36:63:55:d7:e6:13:48:9d: 97:32:48:20:b3:55:f2:0a:23:bd:e3:f5:26:68:c3: b4:c3:42:12:58:0a:cf:d5:2c:ad:fd:12:c9:89:73: df:d3:24:cb:f9:37:59:8f:21:e5:74:79:af:1a:44: 94:e6:46:ba:7f:79:79:59:73:9e:e3:f2:de:76:9f: 76:be:b6:7a:af:d6:7c:86:1e:20:ff:cd:97:7c:46: 40:73:9a:f2:e9:d4:0e:59:95:55:6d:6d:6c:68:b6: 66:ed:61:a7:98:03:ec:a7:bf:01:37:c8:be:d3:9a: 49:ba:fa:3f:3a:f2:45:96:5b:97:63:8b:f3:1d:6f: a8:bb:dc:ec:3e:4b:0e:22:9b:53:0b:e9:87:bb:81: f3:e5:fe:88:65:36:63:6e:3d:e4:4d:65:e7:fd:c9: b0:2f:c7:06:89:c4:05:b5:92:60:d6:4e:13:f3:f0: c8:9c:7a:3a:9e:70:a3:ff:3b:b9:ec:96:90:a1:29: 4f:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:10:52:25:A7:BA:DE:A3:71:0F:E5:04:6B:80:1C:E3:7A:39:5E:3F X509v3 Authority Key Identifier: keyid:C2:B6:05:BD:B4:F2:B6:ED:2B:05:1D:C4:2B:2E:80:3F:B6:07:8E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/wrYFvbTytu0rBR3EKy6AP7YHjk0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/wrYFvbTytu0rBR3EKy6AP7YHjk0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F692A/489E0F0C229C11ED9A213568C4F9AE02/11AA6C3E22A111ED848DF584C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 101.234.72.0/22 103.29.192.0/22 Signature Algorithm: sha256WithRSAEncryption ac:12:0b:a4:61:cc:22:c1:3e:9d:e2:ec:f8:ae:b4:a2:f4:54: a6:e8:ca:42:1e:ab:2d:44:f4:b7:68:db:9d:da:f0:47:71:b0: 13:50:ab:04:a2:b4:f0:c1:a9:90:b4:7d:7f:0b:81:10:e6:7f: 06:69:d5:f4:98:60:bd:4b:78:83:2c:25:c1:68:60:c0:31:aa: c8:7d:b4:14:4d:01:33:23:4e:ec:5f:78:0d:c8:60:c6:f1:fc: 27:29:a8:17:c0:a3:d1:76:17:57:01:55:0c:07:6b:30:ed:88: 38:f3:09:af:d1:d2:d3:20:08:17:e1:e8:55:a8:c1:4e:1b:ea: f9:d7:02:15:0f:bc:0b:1a:b1:d2:bb:7c:56:44:50:62:f6:d8: ee:c2:dd:65:1f:06:51:18:d0:15:5c:a8:74:49:eb:68:d3:fd: 0f:6a:a2:d4:af:14:9a:b2:82:ed:77:b8:da:b6:5a:68:31:02: 8f:09:c3:09:29:e0:97:6f:79:47:19:22:a2:f3:50:c2:16:4b: 15:e5:73:4e:4f:b1:97:15:bb:9d:a4:bc:60:a9:bb:1f:d5:48: 3b:bc:9b:93:5d:17:1a:f0:60:cc:54:8e:b3:64:9c:44:74:64: e0:c9:72:8d:61:04:ec:2d:dd:98:5f:c7:2a:7c:a4:99:03:4a: 9a:00:3c:a3 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY5MkExMTAvBgNVBAUTKEMyQjYwNUJEQjRGMkI2RUQyQjA1MURDNDJCMkU4MDNG QjYwNzhFNEQwHhcNMjQwNDAzMDUwNzMwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBjZTQxMi01YWNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxl8nUZ9afVGqbgFoAXKcwFemYGyH8huUrgedxwe9nhTq2wBEtIs+73sfmqBs bExtto2edUZUG//j2S3HPRqZiJ3mNmNV1+YTSJ2XMkggs1XyCiO94/UmaMO0w0IS WArP1Syt/RLJiXPf0yTL+TdZjyHldHmvGkSU5ka6f3l5WXOe4/Ledp92vrZ6r9Z8 hh4g/82XfEZAc5ry6dQOWZVVbW1saLZm7WGnmAPsp78BN8i+05pJuvo/OvJFlluX Y4vzHW+ou9zsPksOIptTC+mHu4Hz5f6IZTZjbj3kTWXn/cmwL8cGicQFtZJg1k4T 8/DInHo6nnCj/zu57JaQoSlPmQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFBYQUiWn ut6jcQ/lBGuAHON6OV4/MB8GA1UdIwQYMBaAFMK2Bb208rbtKwUdxCsugD+2B45N MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjkyQS80ODlFMEYwQzIy OUMxMUVEOUEyMTM1NjhDNEY5QUUwMi93cllGdmJUeXR1MHJCUjNFS3k2QVA3WUhq azAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3dyWUZ2YlR5dHUwckJSM0VLeTZBUDdZSGprMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY5MkEvNDg5RTBGMEMyMjlDMTFFRDlBMjEzNTY4QzRGOUFFMDIvMTFBQTZDM0Uy MkExMTFFRDg0OERGNTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJl6kgDBAJnHcAwDQYJKoZIhvcNAQELBQADggEBAKwSC6Rh zCLBPp3i7PiutKL0VKboykIeqy1E9Ldo253a8EdxsBNQqwSitPDBqZC0fX8LgRDm fwZp1fSYYL1LeIMsJcFoYMAxqsh9tBRNATMjTuxfeA3IYMbx/CcpqBfAo9F2F1cB VQwHazDtiDjzCa/R0tMgCBfh6FWowU4b6vnXAhUPvAsasdK7fFZEUGL22O7C3WUf BlEY0BVcqHRJ62jT/Q9qotSvFJqygu13uNq2WmgxAo8Jwwkp4JdveUcZIqLzUMIW SxXlc05PsZcVu52kvGCpux/VSDu8m5NdFxrwYMxUjrNknER0ZODJco1hBOwt3Zhf xyp8pJkDSpoAPKM= -----END CERTIFICATE-----Generated at Thu May 23 05:07:08 2024 by rpki-client on console-fra.rpki-client.org