$ rpki-client -vvf rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/C1B1AEC6051111EBBA2CAF5CC4F9AE02.roa File: C1B1AEC6051111EBBA2CAF5CC4F9AE02.roa (raw, json) Hash identifier: M4pjCMYYfpB1KEdpnrpm8Bjvlm6TuG5EpxaK1nBrHRM= Subject key identifier: 8A:E1:F2:23:00:C5:6C:F0:EC:B4:94:BE:BC:E0:27:AF:24:BE:0C:E5 Certificate issuer: /CN=A91273D6/serialNumber=2FDF7A6AF904DF2CD47E65CCC0C9C5CCBF2398E5 Certificate serial: 06DF Authority key identifier: 2F:DF:7A:6A:F9:04:DF:2C:D4:7E:65:CC:C0:C9:C5:CC:BF:23:98:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L996avkE3yzUfmXMwMnFzL8jmOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/C1B1AEC6051111EBBA2CAF5CC4F9AE02.roa Signing time: Thu 02 May 2024 23:12:37 +0000 ROA not before: Thu 02 May 2024 23:12:37 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 56199 IP address blocks: 103.156.194.0/24 maxlen: 24 2001:df0:215::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/L996avkE3yzUfmXMwMnFzL8jmOU.crl rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/L996avkE3yzUfmXMwMnFzL8jmOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L996avkE3yzUfmXMwMnFzL8jmOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 22:26:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1759 (0x6df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91273D6/serialNumber=2FDF7A6AF904DF2CD47E65CCC0C9C5CCBF2398E5 Validity Not Before: May 2 23:12:37 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66341de5-4dea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:aa:1b:f2:ba:56:e2:c2:ec:b9:ce:35:a3:03: cc:fe:ff:1d:8b:71:84:f4:47:f0:67:f5:a4:a6:10: f2:2c:f6:b8:af:d3:43:48:87:18:c2:52:36:64:93: a6:95:23:59:8a:08:7a:c5:4f:8c:d7:65:80:6a:f7: 6f:fc:1d:a0:da:92:48:7f:52:53:22:f3:6b:2d:73: e9:fb:ae:79:12:2b:f2:1e:73:cc:db:d5:be:68:d8: 60:0a:e3:8b:7e:70:aa:da:21:7f:89:54:66:13:86: 81:13:55:ad:fb:df:28:c2:43:68:eb:d4:0a:36:81: f1:54:94:73:d1:ec:c2:f4:a7:38:81:76:86:36:e7: a0:93:a2:3a:12:f1:76:72:09:db:70:ed:9c:d5:32: 48:63:c5:4a:d0:3c:d0:8e:67:6a:06:16:f2:2e:de: b8:64:53:f9:f8:55:42:e1:9f:fb:55:fd:52:31:9a: 05:2a:bf:6c:f7:c2:a5:e8:e4:80:dc:45:0d:40:cd: 6e:6c:2a:79:06:12:e0:2b:1f:77:d0:eb:2b:04:58: 25:36:9f:e7:a6:b6:71:c9:32:38:3c:df:86:37:e5: a8:75:4f:f5:99:13:31:e8:63:10:e4:9d:d6:bc:5a: 5b:56:36:ca:a1:4f:57:58:fc:ff:85:a1:0e:94:2f: 38:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:E1:F2:23:00:C5:6C:F0:EC:B4:94:BE:BC:E0:27:AF:24:BE:0C:E5 X509v3 Authority Key Identifier: keyid:2F:DF:7A:6A:F9:04:DF:2C:D4:7E:65:CC:C0:C9:C5:CC:BF:23:98:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/L996avkE3yzUfmXMwMnFzL8jmOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/L996avkE3yzUfmXMwMnFzL8jmOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91273D6/139E1244051011EB80E3175BC4F9AE02/C1B1AEC6051111EBBA2CAF5CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.194.0/24 IPv6: 2001:df0:215::/48 Signature Algorithm: sha256WithRSAEncryption ac:40:41:c0:1a:1b:a2:93:8d:8f:2b:22:c9:14:62:43:59:07: 92:1b:a1:4d:84:b5:7f:87:09:ff:97:34:98:12:be:b0:d9:d7: 85:2b:5c:8f:5a:71:7a:37:c7:e4:e8:71:c5:65:ad:38:fe:37: 6f:f2:b8:97:4d:fa:7b:57:94:c0:55:0a:88:61:61:f7:6e:89: 70:88:75:bb:25:f8:f6:cc:d0:f4:71:eb:90:3a:62:7f:23:d1: f1:be:ac:9e:6b:b2:74:6a:9e:90:2d:61:10:3f:32:62:e3:80: 66:70:45:1f:60:bf:fe:17:3f:10:bd:83:0c:da:1d:e9:79:21: ff:64:eb:fa:cb:84:6f:7c:05:1a:a6:f1:b3:9f:c2:10:e0:15: 73:11:6b:d0:ec:99:49:a9:0b:31:64:23:7f:f0:7e:fa:72:2b: b2:0a:c5:e9:b8:2c:1d:9f:69:95:c5:b7:0e:49:65:32:4a:9d: 05:1f:2e:74:8f:08:62:ed:63:a7:c0:62:b6:39:7d:9c:82:cd: bb:01:d9:99:26:80:2e:1f:4f:1e:a6:ac:8c:fa:8d:8e:a5:9f: 50:a9:a7:3f:02:4d:c6:40:f7:c9:f6:3a:0d:7a:5a:c1:99:1a: ea:80:24:0a:24:84:52:e2:eb:2c:36:18:e1:10:a8:b3:75:35: d5:97:79:bd -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBt8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjczRDYxMTAvBgNVBAUTKDJGREY3QTZBRjkwNERGMkNENDdFNjVDQ0MwQzlDNUND QkYyMzk4RTUwHhcNMjQwNTAyMjMxMjM3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjM0MWRlNS00ZGVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAv6ob8rpW4sLsuc41owPM/v8di3GE9EfwZ/WkphDyLPa4r9NDSIcYwlI2ZJOm lSNZigh6xU+M12WAavdv/B2g2pJIf1JTIvNrLXPp+655EivyHnPM29W+aNhgCuOL fnCq2iF/iVRmE4aBE1Wt+98owkNo69QKNoHxVJRz0ezC9Kc4gXaGNuegk6I6EvF2 cgnbcO2c1TJIY8VK0DzQjmdqBhbyLt64ZFP5+FVC4Z/7Vf1SMZoFKr9s98Kl6OSA 3EUNQM1ubCp5BhLgKx930OsrBFglNp/nprZxyTI4PN+GN+WodU/1mRMx6GMQ5J3W vFpbVjbKoU9XWPz/haEOlC84bQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIrh8iMA xWzw7LSUvrzgJ68kvgzlMB8GA1UdIwQYMBaAFC/femr5BN8s1H5lzMDJxcy/I5jl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzNENi8xMzlFMTI0NDA1 MTAxMUVCODBFMzE3NUJDNEY5QUUwMi9MOTk2YXZrRTN5elVmbVhNd01uRnpMOGpt T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0w5OTZhdmtFM3l6VWZtWE13TW5Gekw4am1PVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjczRDYvMTM5RTEyNDQwNTEwMTFFQjgwRTMxNzVCQzRGOUFFMDIvQzFCMUFFQzYw NTExMTFFQkJBMkNBRjVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnnMIwDwQCAAIwCQMHACABDfACFTANBgkqhkiG9w0BAQsF AAOCAQEArEBBwBobopONjysiyRRiQ1kHkhuhTYS1f4cJ/5c0mBK+sNnXhStcj1px ejfH5OhxxWWtOP43b/K4l036e1eUwFUKiGFh926JcIh1uyX49szQ9HHrkDpifyPR 8b6snmuydGqekC1hED8yYuOAZnBFH2C//hc/EL2DDNod6Xkh/2Tr+suEb3wFGqbx s5/CEOAVcxFr0OyZSakLMWQjf/B++nIrsgrF6bgsHZ9plcW3DkllMkqdBR8udI8I Yu1jp8Bitjl9nILNuwHZmSaALh9PHqasjPqNjqWfUKmnPwJNxkD3yfY6DXpawZka 6oAkCiSEUuLrLDYY4RCos3U11Zd5vQ== -----END CERTIFICATE-----Generated at Fri Jun 7 00:12:00 2024 by rpki-client on console-ams.rpki-client.org