$ rpki-client -vvf rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/94817492A7AF11EE9ABC7953C4F9AE02.roa File: 94817492A7AF11EE9ABC7953C4F9AE02.roa (raw, json) Hash identifier: HgxaoN8Br3KuibZBkCY5/xfpk9D+s0PnF6iR086YM9s= Subject key identifier: 85:F4:EC:2D:48:F9:E5:57:85:67:9B:58:95:C6:DD:23:E0:AB:80:33 Certificate issuer: /CN=A91583E4/serialNumber=8A74EF40E65A127C0E666B14A6C6574A536F3673 Certificate serial: B6 Authority key identifier: 8A:74:EF:40:E6:5A:12:7C:0E:66:6B:14:A6:C6:57:4A:53:6F:36:73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/inTvQOZaEnwOZmsUpsZXSlNvNnM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/94817492A7AF11EE9ABC7953C4F9AE02.roa Signing time: Wed 03 Jan 2024 05:26:21 +0000 ROA not before: Wed 03 Jan 2024 05:26:21 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150738 IP address blocks: 103.76.194.0/23 maxlen: 23 103.76.195.0/24 maxlen: 24 2001:df1:e1c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/inTvQOZaEnwOZmsUpsZXSlNvNnM.crl rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/inTvQOZaEnwOZmsUpsZXSlNvNnM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/inTvQOZaEnwOZmsUpsZXSlNvNnM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 182 (0xb6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91583E4/serialNumber=8A74EF40E65A127C0E666B14A6C6574A536F3673 Validity Not Before: Jan 3 05:26:21 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6594effd-88fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f4:7e:a4:06:a2:b3:f7:02:e9:3f:f6:c0:c6: 2c:9d:9f:3c:c4:09:42:48:de:c0:d3:90:4f:3b:ae: d7:58:b8:8a:76:41:f7:f7:85:d6:e2:d8:68:89:01: ff:65:02:6d:30:69:c8:a6:e9:f7:69:11:36:6a:ba: a1:62:13:a8:83:9f:23:a9:6c:42:49:f9:02:8e:87: ce:85:9a:73:21:41:7d:98:dd:b0:2e:44:b2:ca:50: 70:c8:ee:b8:a5:46:15:b7:58:21:14:de:64:fe:07: 12:a1:29:e7:65:f3:b4:74:56:5b:7d:a7:f9:2c:31: 07:28:f5:f8:8f:82:90:f2:99:14:00:a0:2a:0d:21: 30:14:e5:19:31:7e:82:5d:88:dd:90:f4:51:91:74: c2:2a:3b:23:6a:93:a5:60:91:b8:18:06:5c:a4:d7: 84:a9:4d:47:12:82:57:f6:fc:0f:67:4b:89:ac:8e: be:08:06:37:50:e6:e2:2d:e9:b2:50:e3:d7:74:f7: d3:40:b8:7c:12:9e:1c:7a:65:4d:c9:eb:60:d8:88: 8b:9d:4b:fa:b0:53:3d:0b:1a:e3:7e:20:d5:40:a0: 61:f1:7a:aa:87:3b:3d:57:86:df:4c:0d:83:65:6c: 15:9e:df:05:d0:f2:cd:a0:80:c8:ea:ac:7f:82:1e: 19:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:F4:EC:2D:48:F9:E5:57:85:67:9B:58:95:C6:DD:23:E0:AB:80:33 X509v3 Authority Key Identifier: keyid:8A:74:EF:40:E6:5A:12:7C:0E:66:6B:14:A6:C6:57:4A:53:6F:36:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/inTvQOZaEnwOZmsUpsZXSlNvNnM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/inTvQOZaEnwOZmsUpsZXSlNvNnM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91583E4/05FEF44A9E0C11EDBA9D1D26C4F9AE02/94817492A7AF11EE9ABC7953C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.76.194.0/23 IPv6: 2001:df1:e1c0::/48 Signature Algorithm: sha256WithRSAEncryption 49:6f:84:68:87:cc:e0:04:5a:02:95:65:c8:01:71:0e:1a:c6: 66:a1:f1:fb:0b:57:cc:82:14:8f:34:54:f4:7a:a3:54:fc:7f: 26:cf:02:50:ac:d3:c5:b7:19:68:a0:db:08:1a:af:07:d4:c5: e9:68:5e:96:5c:7f:c0:14:ef:90:d6:a3:ea:ac:40:35:86:07: 33:d8:7b:f6:b7:79:6b:ae:f9:d6:d9:10:05:f0:64:4f:27:17: 90:d2:f2:08:08:27:62:7f:56:91:2b:bd:88:46:92:24:28:2a: 6c:81:46:c8:91:77:98:72:cf:98:67:2b:43:51:25:c6:58:f9: 95:95:d9:b8:b8:a7:66:60:4d:c9:8a:20:03:fa:31:d8:97:32: aa:43:78:b7:fa:d2:25:66:15:6b:a4:7f:f0:9b:60:d1:bd:ea: 30:aa:f5:f4:64:73:91:c3:8c:e8:a0:57:89:fe:f2:d4:51:d6: e8:b5:bc:e0:4c:c7:5e:04:0a:d5:06:e1:ad:35:40:96:8f:9f: 5c:a2:48:01:32:68:a5:00:3e:ae:60:72:ac:e7:39:55:13:2f: f9:bb:7f:72:dc:59:4b:c3:c1:3f:70:79:79:13:2f:ca:95:9a: ad:ad:e0:35:37:89:85:7a:19:b5:22:ca:57:78:21:17:07:d8: 9e:58:6b:1e -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICALYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgzRTQxMTAvBgNVBAUTKDhBNzRFRjQwRTY1QTEyN0MwRTY2NkIxNEE2QzY1NzRB NTM2RjM2NzMwHhcNMjQwMTAzMDUyNjIxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk0ZWZmZC04OGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr/R+pAais/cC6T/2wMYsnZ88xAlCSN7A05BPO67XWLiKdkH394XW4thoiQH/ ZQJtMGnIpun3aRE2arqhYhOog58jqWxCSfkCjofOhZpzIUF9mN2wLkSyylBwyO64 pUYVt1ghFN5k/gcSoSnnZfO0dFZbfaf5LDEHKPX4j4KQ8pkUAKAqDSEwFOUZMX6C XYjdkPRRkXTCKjsjapOlYJG4GAZcpNeEqU1HEoJX9vwPZ0uJrI6+CAY3UObiLemy UOPXdPfTQLh8Ep4cemVNyetg2IiLnUv6sFM9CxrjfiDVQKBh8Xqqhzs9V4bfTA2D ZWwVnt8F0PLNoIDI6qx/gh4ZwQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIX07C1I +eVXhWebWJXG3SPgq4AzMB8GA1UdIwQYMBaAFIp070DmWhJ8DmZrFKbGV0pTbzZz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODNFNC8wNUZFRjQ0QTlF MEMxMUVEQkE5RDFEMjZDNEY5QUUwMi9pblR2UU9aYUVud09abXNVcHNaWFNsTnZO bk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2luVHZRT1phRW53T1ptc1Vwc1pYU2xOdk5uTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgzRTQvMDVGRUY0NEE5RTBDMTFFREJBOUQxRDI2QzRGOUFFMDIvOTQ4MTc0OTJB N0FGMTFFRTlBQkM3OTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnTMIwDwQCAAIwCQMHACABDfHhwDANBgkqhkiG9w0BAQsF AAOCAQEASW+EaIfM4ARaApVlyAFxDhrGZqHx+wtXzIIUjzRU9HqjVPx/Js8CUKzT xbcZaKDbCBqvB9TF6Whellx/wBTvkNaj6qxANYYHM9h79rd5a6751tkQBfBkTycX kNLyCAgnYn9WkSu9iEaSJCgqbIFGyJF3mHLPmGcrQ1Elxlj5lZXZuLinZmBNyYog A/ox2JcyqkN4t/rSJWYVa6R/8Jtg0b3qMKr19GRzkcOM6KBXif7y1FHW6LW84EzH XgQK1QbhrTVAlo+fXKJIATJopQA+rmByrOc5VRMv+bt/ctxZS8PBP3B5eRMvypWa ra3gNTeJhXoZtSLKV3ghFwfYnlhrHg== -----END CERTIFICATE-----Generated at Thu Jun 13 06:58:29 2024 by rpki-client on console-fra.rpki-client.org