$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/25B9F9C454BE11EE810E4C27C4F9AE02.roa File: 25B9F9C454BE11EE810E4C27C4F9AE02.roa (raw, json) Hash identifier: 48a67zy1NAdY4ZXpuPRZ045rOPehCOnyYz0ToZfyAWQ= Subject key identifier: 00:EB:22:C6:73:57:3A:09:65:28:36:3E:6C:C4:DE:1A:95:D2:8C:16 Certificate issuer: /CN=A91FB92B/serialNumber=F5414292429F53DAB186B42E56414959A80BEA08 Certificate serial: 04 Authority key identifier: F5:41:42:92:42:9F:53:DA:B1:86:B4:2E:56:41:49:59:A8:0B:EA:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UFCkkKfU9qxhrQuVkFJWagL6gg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/25B9F9C454BE11EE810E4C27C4F9AE02.roa Signing time: Sat 16 Sep 2023 18:29:00 +0000 ROA not before: Sat 16 Sep 2023 18:29:00 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 59217 IP address blocks: 103.114.44.0/22 maxlen: 24 2402:cac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/9UFCkkKfU9qxhrQuVkFJWagL6gg.crl rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/9UFCkkKfU9qxhrQuVkFJWagL6gg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UFCkkKfU9qxhrQuVkFJWagL6gg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB92B/serialNumber=F5414292429F53DAB186B42E56414959A80BEA08 Validity Not Before: Sep 16 18:29:00 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6505f3ec-3010 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:74:9f:8a:a5:98:85:8c:20:6e:60:3f:61:04: 05:84:09:be:3f:02:de:03:cd:f9:c9:62:ad:01:07: 8d:ee:14:8f:e4:52:28:92:5d:55:91:90:04:92:2d: 89:c0:69:f7:a3:85:91:a9:fc:32:a1:50:ec:21:ad: c6:4b:cd:c8:92:f9:d4:27:e3:25:d5:06:62:0b:7f: 49:c7:de:f5:9b:76:b4:34:59:16:cc:ca:ed:99:05: 13:62:80:f6:7c:00:db:97:74:b0:4e:8f:81:5e:0a: da:57:8a:bb:b7:c2:8c:d8:9f:07:7e:5d:0d:10:96: 2a:af:4f:ae:0f:b4:bc:10:18:3e:73:7b:31:58:a9: 9f:77:09:ac:69:50:c8:11:c0:7d:42:01:c5:ca:25: 94:4a:f9:96:e3:54:28:d8:f5:0b:a0:ec:88:69:ca: c9:dc:27:3d:fc:6c:dc:ea:b1:58:19:d5:c9:00:ab: b7:01:53:51:06:aa:fa:fa:3d:e4:00:7a:4c:ec:6f: ff:b3:3b:22:35:36:3e:b2:60:08:eb:d1:86:8c:9e: df:0c:b3:0b:96:5f:22:08:b9:a0:55:6c:f1:3c:94: 97:f9:6a:6d:c8:ad:b1:54:be:e6:c5:9f:ea:1e:18: 92:86:a2:4c:07:f5:21:ec:cd:0b:7e:51:15:97:6f: da:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:EB:22:C6:73:57:3A:09:65:28:36:3E:6C:C4:DE:1A:95:D2:8C:16 X509v3 Authority Key Identifier: keyid:F5:41:42:92:42:9F:53:DA:B1:86:B4:2E:56:41:49:59:A8:0B:EA:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/9UFCkkKfU9qxhrQuVkFJWagL6gg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9UFCkkKfU9qxhrQuVkFJWagL6gg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB92B/C46081F254BD11EE8102F07FC4F9AE02/25B9F9C454BE11EE810E4C27C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.44.0/22 IPv6: 2402:cac0::/32 Signature Algorithm: sha256WithRSAEncryption 59:c5:b9:7c:05:e6:b3:16:9d:36:c9:10:03:6d:13:e3:78:75: 5f:30:9d:3c:18:92:60:7f:c4:ec:b1:b0:8e:05:0f:89:27:fc: 43:7d:b1:ab:62:64:7d:0c:45:5e:d4:24:50:9a:c8:9f:cc:46: cf:dd:88:45:5b:16:0d:be:05:0f:13:36:94:1f:77:4a:fb:02: 86:69:6a:be:d3:e8:5f:a8:1e:3f:88:27:57:ea:2a:60:37:b4: b1:04:2e:90:f5:fd:82:5b:cb:33:3c:68:c8:6b:fe:9a:c0:f5: 4b:83:78:e5:ac:af:b1:31:50:4e:cf:cf:d8:b4:7a:2f:99:c0: 88:ef:d1:68:d3:93:1d:9d:97:9b:18:11:2e:2e:47:55:11:55: 03:3c:d6:e8:59:dd:35:7f:9f:70:26:ac:23:10:e1:99:ff:7f: 10:29:99:0d:72:12:a0:bb:fc:54:82:fc:6f:77:7c:83:bb:fd: bf:28:57:9b:26:b0:fd:b6:b5:9b:42:71:2a:fb:76:f0:6c:23: a3:37:2c:77:17:60:3a:a1:bb:ab:a1:fb:d0:e0:55:bd:1c:9b: d3:1e:fb:b6:69:42:34:fe:db:0c:bb:f4:09:3f:c0:c5:6f:2b: ca:73:7b:4b:b2:ab:e8:05:0c:a6:2b:26:27:3f:ed:48:ea:33: e3:bb:33:ff -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG QjkyQjExMC8GA1UEBRMoRjU0MTQyOTI0MjlGNTNEQUIxODZCNDJFNTY0MTQ5NTlB ODBCRUEwODAeFw0yMzA5MTYxODI5MDBaFw0yNDA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MDVmM2VjLTMwMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCWdJ+KpZiFjCBuYD9hBAWECb4/At4DzfnJYq0BB43uFI/kUiiSXVWRkASSLYnA afejhZGp/DKhUOwhrcZLzciS+dQn4yXVBmILf0nH3vWbdrQ0WRbMyu2ZBRNigPZ8 ANuXdLBOj4FeCtpXiru3wozYnwd+XQ0QliqvT64PtLwQGD5zezFYqZ93CaxpUMgR wH1CAcXKJZRK+ZbjVCjY9Qug7IhpysncJz38bNzqsVgZ1ckAq7cBU1EGqvr6PeQA ekzsb/+zOyI1Nj6yYAjr0YaMnt8MswuWXyIIuaBVbPE8lJf5am3IrbFUvubFn+oe GJKGokwH9SHszQt+URWXb9q3AgMBAAGjggKkMIICoDAdBgNVHQ4EFgQUAOsixnNX OgllKDY+bMTeGpXSjBYwHwYDVR0jBBgwFoAU9UFCkkKfU9qxhrQuVkFJWagL6ggw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZCOTJCL0M0NjA4MUYyNTRC RDExRUU4MTAyRjA3RkM0RjlBRTAyLzlVRkNra0tmVTlxeGhyUXVWa0ZKV2FnTDZn Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOVVGQ2trS2ZVOXF4aHJRdVZrRkpXYWdMNmdnLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG QjkyQi9DNDYwODFGMjU0QkQxMUVFODEwMkYwN0ZDNEY5QUUwMi8yNUI5RjlDNDU0 QkUxMUVFODEwRTRDMjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAuBggrBgEFBQcBBwEB/wQf MB0wDAQCAAEwBgMEAmdyLDANBAIAAjAHAwUAJALKwDANBgkqhkiG9w0BAQsFAAOC AQEAWcW5fAXmsxadNskQA20T43h1XzCdPBiSYH/E7LGwjgUPiSf8Q32xq2JkfQxF XtQkUJrIn8xGz92IRVsWDb4FDxM2lB93SvsChmlqvtPoX6geP4gnV+oqYDe0sQQu kPX9glvLMzxoyGv+msD1S4N45ayvsTFQTs/P2LR6L5nAiO/RaNOTHZ2XmxgRLi5H VRFVAzzW6FndNX+fcCasIxDhmf9/ECmZDXISoLv8VIL8b3d8g7v9vyhXmyaw/ba1 m0JxKvt28GwjozcsdxdgOqG7q6H70OBVvRyb0x77tmlCNP7bDLv0CT/AxW8rynN7 S7Kr6AUMpismJz/tSOoz47sz/w== -----END CERTIFICATE-----Generated at Fri May 31 08:39:03 2024 by rpki-client on console-fra.rpki-client.org