$ rpki-client -vvf rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/448983A8892D11EEB4AA276EC4F9AE02.roa File: 448983A8892D11EEB4AA276EC4F9AE02.roa (raw, json) Hash identifier: xXj+TZCLhrIdzyPWF6AJ+EZHZBHKwdF6FraC4iYNXC4= Subject key identifier: C0:E1:CC:6A:8E:3B:01:90:D1:60:1E:57:EC:DD:4B:C8:06:16:EF:75 Certificate issuer: /CN=A9169591/serialNumber=9AD349F454853BB1892AFEF6048C187258057761 Certificate serial: 65 Authority key identifier: 9A:D3:49:F4:54:85:3B:B1:89:2A:FE:F6:04:8C:18:72:58:05:77:61 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mtNJ9FSFO7GJKv72BIwYclgFd2E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/448983A8892D11EEB4AA276EC4F9AE02.roa Signing time: Fri 31 May 2024 09:19:50 +0000 ROA not before: Fri 31 May 2024 09:19:50 +0000 ROA not after: Sun 31 Aug 2025 00:00:00 +0000 asID: 151325 IP address blocks: 103.254.91.0/24 maxlen: 24 2001:df2:6b40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/mtNJ9FSFO7GJKv72BIwYclgFd2E.crl rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/mtNJ9FSFO7GJKv72BIwYclgFd2E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mtNJ9FSFO7GJKv72BIwYclgFd2E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 24 Jun 2024 08:09:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 101 (0x65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9169591/serialNumber=9AD349F454853BB1892AFEF6048C187258057761 Validity Not Before: May 31 09:19:50 2024 GMT Not After : Aug 31 00:00:00 2025 GMT Subject: CN=66599636-b5b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:66:3a:e6:9f:54:10:9e:cd:21:ea:9b:77:d1: 06:86:74:8b:ae:66:8a:18:a0:92:7a:dd:d8:1f:23: 27:35:2c:de:52:42:ac:47:67:a1:bd:9d:0d:a3:61: bd:01:10:5a:34:95:b7:ff:58:40:cc:d9:41:d7:58: df:2b:cf:16:f8:57:8d:98:c1:4b:aa:98:71:81:86: 6c:84:db:84:cf:7c:54:9a:86:82:5d:43:0f:d7:ed: a5:4d:66:c3:38:98:78:94:dc:42:05:1d:a6:e4:07: f7:d7:b1:7e:a4:c9:1a:fd:8d:2d:c7:fa:5b:0a:19: 30:d4:ad:83:11:d8:15:97:d1:40:e6:cd:fd:0f:c3: f3:5e:41:cf:5e:0e:36:9d:58:f9:e8:c1:d9:af:09: 0c:6d:3f:b2:c1:7b:e8:85:1d:df:9d:8b:fe:59:68: 9b:d3:ea:1d:69:fc:5c:18:ef:fb:5d:07:1f:46:f3: 95:db:2d:88:0f:35:ec:c2:dc:32:28:5a:3b:ad:c0: fa:06:50:fd:2d:99:19:68:72:1f:e3:58:76:16:4b: c3:2b:12:9f:ca:4a:a1:ed:91:7d:b6:e9:1d:4c:64: 8b:87:24:47:c0:4a:66:64:f5:f5:95:03:ba:7d:3c: 56:c2:8c:22:1d:8f:40:7c:c6:8f:ba:72:58:32:ac: 3e:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:E1:CC:6A:8E:3B:01:90:D1:60:1E:57:EC:DD:4B:C8:06:16:EF:75 X509v3 Authority Key Identifier: keyid:9A:D3:49:F4:54:85:3B:B1:89:2A:FE:F6:04:8C:18:72:58:05:77:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/mtNJ9FSFO7GJKv72BIwYclgFd2E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mtNJ9FSFO7GJKv72BIwYclgFd2E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9169591/DED83568892C11EE9477816DC4F9AE02/448983A8892D11EEB4AA276EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.254.91.0/24 IPv6: 2001:df2:6b40::/48 Signature Algorithm: sha256WithRSAEncryption b3:2e:9c:8b:1a:9d:41:bd:f9:58:97:1e:ae:85:c3:2e:c0:b7: a5:0e:0e:6a:10:d0:65:9f:0c:3b:0f:f6:20:ab:8e:98:3c:17: ca:a0:d6:66:5c:94:21:68:98:f3:84:a4:45:5b:1b:b3:6e:ec: c9:4f:56:3e:78:e8:be:c0:02:5d:f3:fc:ec:0f:b6:71:b1:4d: 91:2c:de:41:07:f9:53:6a:9c:f3:78:34:ad:97:fb:bd:1a:40: a1:6e:fc:a0:5d:8e:ec:51:d3:c7:63:a7:02:2e:26:be:59:69: d0:32:ab:e6:89:8d:f1:64:f9:e1:83:92:ae:85:da:a6:0b:5e: 48:37:93:57:c2:a7:a0:4d:b9:3c:60:4c:40:c0:5b:4e:68:a2: 78:88:8a:96:72:f1:7d:a7:9b:9c:b8:72:01:2c:cb:90:ac:78: 4e:75:1f:a5:33:58:ef:65:3b:70:59:ce:0f:c1:b3:2b:4e:6e: e4:84:1c:e5:65:33:5c:62:44:bf:8e:b2:87:bc:dc:d4:3b:fe: 00:4a:f0:cf:c9:43:56:29:8d:34:49:30:e9:2b:05:1f:13:59: 73:0d:27:2b:0b:cd:c9:95:87:1f:16:d0:90:8c:d9:5c:fd:df: 70:e4:52:e0:aa:7f:ec:b8:c8:5b:d6:11:2a:3f:49:aa:16:7d: 5b:e0:96:db -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBZTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 OTU5MTExMC8GA1UEBRMoOUFEMzQ5RjQ1NDg1M0JCMTg5MkFGRUY2MDQ4QzE4NzI1 ODA1Nzc2MTAeFw0yNDA1MzEwOTE5NTBaFw0yNTA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NTk5NjM2LWI1YjIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDqZjrmn1QQns0h6pt30QaGdIuuZooYoJJ63dgfIyc1LN5SQqxHZ6G9nQ2jYb0B EFo0lbf/WEDM2UHXWN8rzxb4V42YwUuqmHGBhmyE24TPfFSahoJdQw/X7aVNZsM4 mHiU3EIFHabkB/fXsX6kyRr9jS3H+lsKGTDUrYMR2BWX0UDmzf0Pw/NeQc9eDjad WPnowdmvCQxtP7LBe+iFHd+di/5ZaJvT6h1p/FwY7/tdBx9G85XbLYgPNezC3DIo WjutwPoGUP0tmRloch/jWHYWS8MrEp/KSqHtkX226R1MZIuHJEfASmZk9fWVA7p9 PFbCjCIdj0B8xo+6clgyrD4tAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUwOHMao47 AZDRYB5X7N1LyAYW73UwHwYDVR0jBBgwFoAUmtNJ9FSFO7GJKv72BIwYclgFd2Ew DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY5NTkxL0RFRDgzNTY4ODky QzExRUU5NDc3ODE2REM0RjlBRTAyL210Tko5RlNGTzdHSkt2NzJCSXdZY2xnRmQy RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbXROSjlGU0ZPN0dKS3Y3MkJJd1ljbGdGZDJFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 OTU5MS9ERUQ4MzU2ODg5MkMxMUVFOTQ3NzgxNkRDNEY5QUUwMi80NDg5ODNBODg5 MkQxMUVFQjRBQTI3NkVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGf+WzAPBAIAAjAJAwcAIAEN8mtAMA0GCSqGSIb3DQEBCwUA A4IBAQCzLpyLGp1BvflYlx6uhcMuwLelDg5qENBlnww7D/Ygq46YPBfKoNZmXJQh aJjzhKRFWxuzbuzJT1Y+eOi+wAJd8/zsD7ZxsU2RLN5BB/lTapzzeDStl/u9GkCh bvygXY7sUdPHY6cCLia+WWnQMqvmiY3xZPnhg5KuhdqmC15IN5NXwqegTbk8YExA wFtOaKJ4iIqWcvF9p5ucuHIBLMuQrHhOdR+lM1jvZTtwWc4PwbMrTm7khBzlZTNc YkS/jrKHvNzUO/4ASvDPyUNWKY00STDpKwUfE1lzDScrC83JlYcfFtCQjNlc/d9w 5FLgqn/suMhb1hEqP0mqFn1b4Jbb -----END CERTIFICATE-----Generated at Mon Jun 17 09:40:50 2024 by rpki-client on console-fra.rpki-client.org