$ rpki-client -vvf rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa File: 49CB8044609511E8BF4FB410C4F9AE02.roa (raw, json) Hash identifier: 3PdWKa4LJgt42CXeWExlONrXuebctSGzKewd05gAfFQ= Subject key identifier: E6:54:87:CE:AD:F7:2F:63:4B:7A:81:48:5B:39:39:46:0E:A2:3B:1C Certificate issuer: /CN=A91FAA31/serialNumber=01402253F31BCACFFB73D685D700C9B6B741043C Certificate serial: 11B6 Authority key identifier: 01:40:22:53:F3:1B:CA:CF:FB:73:D6:85:D7:00:C9:B6:B7:41:04:3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa Signing time: Sun 29 May 2022 18:16:04 +0000 ROA not before: Sun 29 May 2022 18:16:04 +0000 ROA not after: Sun 30 Jul 2023 00:00:00 +0000 asID: 38203 IP address blocks: 103.219.160.0/22 maxlen: 22 103.219.160.0/24 maxlen: 24 103.219.161.0/24 maxlen: 24 103.219.162.0/24 maxlen: 24 103.219.163.0/24 maxlen: 24 123.253.144.0/22 maxlen: 22 123.253.144.0/24 maxlen: 24 123.253.145.0/24 maxlen: 24 123.253.146.0/24 maxlen: 24 123.253.147.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.crl rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Mar 2023 17:53:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4534 (0x11b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FAA31/serialNumber=01402253F31BCACFFB73D685D700C9B6B741043C Validity Not Before: May 29 18:16:04 2022 GMT Not After : Jul 30 00:00:00 2023 GMT Subject: CN=6293b864-424e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b4:93:b4:bf:0d:13:01:f9:02:e6:b1:c1:df: 71:8f:4f:6c:25:da:f4:b1:d0:e1:82:51:2a:d8:c2: fb:17:28:2e:18:25:79:9a:aa:08:7d:fa:ed:25:5e: 1c:62:f6:32:be:46:87:8b:93:d6:f0:d0:ac:b0:48: cc:94:93:9a:52:e4:22:b5:29:4c:50:00:e4:f2:a0: 55:cd:bd:e0:47:ca:a9:7a:87:66:77:57:bf:87:c8: 98:0c:f3:12:48:c6:4a:82:91:55:d6:f6:4e:c3:df: 37:ba:ca:a7:d4:69:b9:72:95:10:ea:0e:bb:c9:e3: f9:ba:d3:6b:fd:b1:ec:5e:4b:b0:0c:69:d2:56:ed: 18:39:db:85:75:72:36:38:ee:3f:e6:9b:58:5f:75: 62:45:03:c5:cd:d7:54:9c:1f:9f:2b:21:15:ab:cf: 1f:78:fd:58:7d:01:f4:e8:df:f7:e4:7b:16:c4:c9: fc:0a:91:5a:32:17:e0:82:f7:f1:2e:d0:f5:62:50: 45:12:bf:2f:31:d5:10:18:ae:b9:ea:66:96:8a:ce: b7:95:1d:2e:7d:c7:33:a3:47:55:be:a8:c1:a6:22: 56:4e:7f:89:8a:0f:ec:d3:78:77:9f:76:d5:e0:54: 06:a3:2d:6b:8f:39:10:e8:76:13:e2:dd:fa:00:1c: b0:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:54:87:CE:AD:F7:2F:63:4B:7A:81:48:5B:39:39:46:0E:A2:3B:1C X509v3 Authority Key Identifier: keyid:01:40:22:53:F3:1B:CA:CF:FB:73:D6:85:D7:00:C9:B6:B7:41:04:3C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/AUAiU_Mbys_7c9aF1wDJtrdBBDw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AUAiU_Mbys_7c9aF1wDJtrdBBDw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FAA31/DD644878609411E8B56C1810C4F9AE02/49CB8044609511E8BF4FB410C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.219.160.0/22 123.253.144.0/22 Signature Algorithm: sha256WithRSAEncryption 85:cd:e3:75:df:e8:e3:b0:2a:f6:22:a5:fc:ce:3c:3c:13:f0: 17:f9:31:e8:74:df:33:8a:cd:f6:ff:72:b1:aa:6b:f8:be:44: 11:b1:34:ce:9a:b4:0a:c7:86:9f:44:02:aa:db:fd:ed:14:ba: 84:62:6a:f7:e6:57:70:7a:a6:c0:99:81:67:8d:75:54:04:fb: 7d:8f:5d:b7:c3:57:7a:21:d5:1d:d2:01:96:93:90:33:85:98: 4c:b3:e8:2e:7c:d1:7e:8f:b9:0c:2d:3b:94:d3:97:16:86:ed: 9c:69:0a:5e:af:89:b5:c1:87:f0:a7:db:74:76:59:87:c3:2d: db:df:a8:ff:cd:e8:31:18:1c:bc:e8:e0:d8:53:5f:2f:dd:ab: 93:20:35:48:a3:91:8c:4f:70:45:70:e4:4c:ac:3a:dd:ca:25: 71:db:13:8f:3b:73:99:62:8c:e7:12:67:92:0e:24:b7:37:dd: 53:9c:59:93:10:80:43:00:fd:06:5b:eb:b3:6d:f0:c4:0a:8b: 9e:90:6d:94:ef:97:fa:0e:8d:8b:1d:4f:50:19:a0:e3:eb:81: 4c:98:0a:94:46:64:cc:4c:5b:a5:72:68:f1:f8:5e:f8:4f:58: 43:86:1a:18:9a:59:48:5c:dd:01:14:5c:13:58:b4:22:aa:3f: 48:9d:e7:90 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEbYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkFBMzExMTAvBgNVBAUTKDAxNDAyMjUzRjMxQkNBQ0ZGQjczRDY4NUQ3MDBDOUI2 Qjc0MTA0M0MwHhcNMjIwNTI5MTgxNjA0WhcNMjMwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02MjkzYjg2NC00MjRlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2LSTtL8NEwH5Auaxwd9xj09sJdr0sdDhglEq2ML7FyguGCV5mqoIffrtJV4c YvYyvkaHi5PW8NCssEjMlJOaUuQitSlMUADk8qBVzb3gR8qpeodmd1e/h8iYDPMS SMZKgpFV1vZOw983usqn1Gm5cpUQ6g67yeP5utNr/bHsXkuwDGnSVu0YOduFdXI2 OO4/5ptYX3ViRQPFzddUnB+fKyEVq88feP1YfQH06N/35HsWxMn8CpFaMhfggvfx LtD1YlBFEr8vMdUQGK656maWis63lR0ufcczo0dVvqjBpiJWTn+Jig/s03h3n3bV 4FQGoy1rjzkQ6HYT4t36ABywGwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFOZUh86t 9y9jS3qBSFs5OUYOojscMB8GA1UdIwQYMBaAFAFAIlPzG8rP+3PWhdcAyba3QQQ8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQUEzMS9ERDY0NDg3ODYw OTQxMUU4QjU2QzE4MTBDNEY5QUUwMi9BVUFpVV9NYnlzXzdjOWFGMXdESnRyZEJC RHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FVQWlVX01ieXNfN2M5YUYxd0RKdHJkQkJEdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkFBMzEvREQ2NDQ4Nzg2MDk0MTFFOEI1NkMxODEwQzRGOUFFMDIvNDlDQjgwNDQ2 MDk1MTFFOEJGNEZCNDEwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn26ADBAJ7/ZAwDQYJKoZIhvcNAQELBQADggEBAIXN43Xf 6OOwKvYipfzOPDwT8Bf5Meh03zOKzfb/crGqa/i+RBGxNM6atArHhp9EAqrb/e0U uoRiavfmV3B6psCZgWeNdVQE+32PXbfDV3oh1R3SAZaTkDOFmEyz6C580X6PuQwt O5TTlxaG7ZxpCl6vibXBh/Cn23R2WYfDLdvfqP/N6DEYHLzo4NhTXy/dq5MgNUij kYxPcEVw5EysOt3KJXHbE487c5lijOcSZ5IOJLc33VOcWZMQgEMA/QZb67Nt8MQK i56QbZTvl/oOjYsdT1AZoOPrgUyYCpRGZMxMW6VyaPH4XvhPWEOGGhiaWUhc3QEU XBNYtCKqP0id55A= -----END CERTIFICATE-----Generated at Wed Mar 15 11:54:33 2023 by rpki-client on console-fra.rpki-client.org