$ rpki-client -vvf rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa File: 0081F3D6F22111EE8EEC070EC4F9AE02.roa (raw, json) Hash identifier: O0WToewD6QdFMbl6xT5t2Q3rykz6toPpLMo5BA08OvY= Subject key identifier: F5:0E:3B:39:96:8A:DC:88:09:EA:AE:E1:DF:18:79:C3:CB:5B:A5:82 Certificate issuer: /CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Certificate serial: 05A5 Authority key identifier: DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa Signing time: Thu 04 Apr 2024 01:16:45 +0000 ROA not before: Thu 04 Apr 2024 01:16:45 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 137455 IP address blocks: 103.2.240.0/22 maxlen: 24 103.74.200.0/23 maxlen: 23 103.74.202.0/23 maxlen: 23 103.109.112.0/22 maxlen: 24 2402:78c0:1000::/36 maxlen: 36 2402:78c0:2000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91604AC/serialNumber=DCAE871B7C5CB79BC7ECF679B3B2D3C956A7D9E3 Validity Not Before: Apr 4 01:16:45 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660dff7d-7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fb:59:5d:4c:c1:6c:44:37:08:8f:04:c7:f3: 47:cd:4f:c5:0a:2c:4e:19:df:ec:75:21:c7:d2:f8: b9:44:a1:1a:8d:4e:23:5f:65:a2:f5:88:47:f7:35: c9:76:01:5d:88:0c:f9:cf:4a:7f:d5:b1:90:47:26: 4e:24:75:b7:c5:0e:98:87:de:05:e4:12:d0:71:5b: e4:c3:65:62:58:d8:62:57:65:15:2e:6f:ff:d8:54: 16:88:64:e1:05:19:9e:d0:7b:43:22:53:fb:3e:63: 68:c4:61:97:17:34:51:af:41:ae:1d:59:2b:35:da: 78:6d:76:8b:ff:b3:cf:c3:b6:56:3a:57:b2:aa:b5: 37:7b:83:72:80:20:47:b8:7d:d0:b2:c9:6e:35:15: ca:80:e9:0e:1e:c9:2e:a0:da:91:7f:67:37:10:f2: 37:81:49:3f:37:90:66:40:0b:48:7e:f9:82:d9:34: 7a:9b:0f:10:cd:66:46:eb:42:ec:96:52:28:a8:0b: 77:20:53:d4:7b:2f:e4:41:a2:ba:55:f1:c8:17:58: 99:76:6b:0a:86:be:f8:a8:a2:46:d9:93:8b:3b:7d: 52:59:77:2b:d9:77:a1:ba:9c:d4:e9:7c:30:c7:0a: 54:a8:44:25:d0:d7:ef:86:c8:82:25:19:1b:ad:02: cf:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:0E:3B:39:96:8A:DC:88:09:EA:AE:E1:DF:18:79:C3:CB:5B:A5:82 X509v3 Authority Key Identifier: keyid:DC:AE:87:1B:7C:5C:B7:9B:C7:EC:F6:79:B3:B2:D3:C9:56:A7:D9:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/3K6HG3xct5vH7PZ5s7LTyVan2eM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3K6HG3xct5vH7PZ5s7LTyVan2eM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91604AC/49720996814511EBB2DD5D4BC4F9AE02/0081F3D6F22111EE8EEC070EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.2.240.0/22 103.74.200.0/22 103.109.112.0/22 IPv6: 2402:78c0:1000::-2402:78c0:2fff:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption 8e:e6:c2:34:df:50:f7:96:a7:c5:ec:9f:a5:b7:b9:77:38:af: a9:39:de:7f:87:3f:37:8a:84:89:5a:95:43:e0:fa:6e:27:80: 58:ae:99:93:77:b5:7e:b3:07:87:55:5b:d0:25:b4:68:15:6e: 1a:33:de:06:dc:8c:a5:89:b7:46:52:da:03:9c:78:a9:90:56: 61:1e:df:4e:32:df:ad:51:68:df:01:7a:82:5b:2a:58:2d:58: 0b:a8:31:4c:d7:2b:97:07:cc:ac:6c:ac:73:04:e6:7c:85:c7: b4:0f:19:04:24:77:cb:49:b3:00:a1:4e:ef:c6:6b:e3:d8:a2: e7:d7:37:55:31:f2:76:f9:e9:8e:7a:ea:1c:e2:b0:26:bb:d1: d3:26:f7:8f:b0:ed:c6:fd:1e:78:75:5e:0d:f4:fd:c0:78:8b: 5a:2f:25:47:56:c6:1c:17:c1:93:79:7e:ff:2e:ca:a5:ae:8b: 66:56:55:38:44:f4:c3:3d:8d:c6:49:8d:3e:a4:54:2d:84:9f: 1e:27:bc:97:99:ae:6d:cf:8e:2a:e6:56:d3:d0:ee:2a:4b:77: de:f6:a1:4e:39:db:10:ad:c9:dc:e4:77:d6:06:80:a2:1a:1f: 08:f8:1e:70:00:6c:9a:b2:d9:87:68:a9:63:92:08:48:1c:58: 6c:cb:83:fe -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NjA0QUMxMTAvBgNVBAUTKERDQUU4NzFCN0M1Q0I3OUJDN0VDRjY3OUIzQjJEM0M5 NTZBN0Q5RTMwHhcNMjQwNDA0MDExNjQ1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjBkZmY3ZC03YjI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvtZXUzBbEQ3CI8Ex/NHzU/FCixOGd/sdSHH0vi5RKEajU4jX2Wi9YhH9zXJ dgFdiAz5z0p/1bGQRyZOJHW3xQ6Yh94F5BLQcVvkw2ViWNhiV2UVLm//2FQWiGTh BRme0HtDIlP7PmNoxGGXFzRRr0GuHVkrNdp4bXaL/7PPw7ZWOleyqrU3e4NygCBH uH3QssluNRXKgOkOHskuoNqRf2c3EPI3gUk/N5BmQAtIfvmC2TR6mw8QzWZG60Ls llIoqAt3IFPUey/kQaK6VfHIF1iZdmsKhr74qKJG2ZOLO31SWXcr2XehupzU6Xww xwpUqEQl0NfvhsiCJRkbrQLPaQIDAQABo4ICuzCCArcwHQYDVR0OBBYEFPUOOzmW ityICequ4d8YecPLW6WCMB8GA1UdIwQYMBaAFNyuhxt8XLebx+z2ebOy08lWp9nj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2MDRBQy80OTcyMDk5Njgx NDUxMUVCQjJERDVENEJDNEY5QUUwMi8zSzZIRzN4Y3Q1dkg3UFo1czdMVHlWYW4y ZU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNLNkhHM3hjdDV2SDdQWjVzN0xUeVZhbjJlTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NjA0QUMvNDk3MjA5OTY4MTQ1MTFFQkIyREQ1RDRCQzRGOUFFMDIvMDA4MUYzRDZG MjIxMTFFRThFRUMwNzBFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwRQYIKwYBBQUHAQcBAf8E NjA0MBgEAgABMBIDBAJnAvADBAJnSsgDBAJnbXAwGAQCAAIwEjAQAwYEJAJ4wBAD BgQkAnjAIDANBgkqhkiG9w0BAQsFAAOCAQEAjubCNN9Q95anxeyfpbe5dzivqTne f4c/N4qEiVqVQ+D6bieAWK6Zk3e1frMHh1Vb0CW0aBVuGjPeBtyMpYm3RlLaA5x4 qZBWYR7fTjLfrVFo3wF6glsqWC1YC6gxTNcrlwfMrGyscwTmfIXHtA8ZBCR3y0mz AKFO78Zr49ii59c3VTHydvnpjnrqHOKwJrvR0yb3j7Dtxv0eeHVeDfT9wHiLWi8l R1bGHBfBk3l+/y7Kpa6LZlZVOET0wz2NxkmNPqRULYSfHie8l5mubc+OKuZW09Du Kkt33vahTjnbEK3J3OR31gaAohofCPgecABsmrLZh2ipY5IISBxYbMuD/g== -----END CERTIFICATE-----Generated at Sat Jun 1 02:01:14 2024 by rpki-client on console-ams.rpki-client.org