$ rpki-client -vvf rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/41789B66CC1611EC80603209C4F9AE02.roa File: 41789B66CC1611EC80603209C4F9AE02.roa (raw, json) Hash identifier: V60MtfasMOeAG/somCavZJbjo1tA1luGRueHTkfl71Q= Subject key identifier: 98:1F:78:1A:1C:62:C1:DE:70:4A:E1:4E:A2:AE:D4:43:91:36:B0:6D Certificate issuer: /CN=A91789F9/serialNumber=5BA8D05DC99A9310462C63C5D0269F5E885E489D Certificate serial: 01EF Authority key identifier: 5B:A8:D0:5D:C9:9A:93:10:46:2C:63:C5:D0:26:9F:5E:88:5E:48:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/41789B66CC1611EC80603209C4F9AE02.roa Signing time: Tue 03 Oct 2023 02:44:12 +0000 ROA not before: Tue 03 Oct 2023 02:44:12 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 58606 IP address blocks: 103.196.68.0/24 maxlen: 24 103.196.69.0/24 maxlen: 24 103.196.70.0/24 maxlen: 24 103.196.71.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.crl rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91789F9/serialNumber=5BA8D05DC99A9310462C63C5D0269F5E885E489D Validity Not Before: Oct 3 02:44:12 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651b7ffc-48b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a7:61:1e:13:15:f8:54:f8:e9:8d:b5:17:c8: 80:92:2b:03:cd:5c:15:de:87:79:80:d4:c9:e5:f2: 54:e2:4b:66:c2:a5:68:6a:72:d4:7b:7b:03:c6:48: ff:89:43:ad:da:f2:fe:1a:cc:c6:26:7a:5f:a7:97: 6e:bb:cd:fd:b9:72:6f:b2:52:18:39:d2:72:c4:90: 0e:7d:36:7c:72:2c:ff:8a:91:5b:41:93:33:02:e0: b1:ed:8e:94:d5:49:82:09:a4:dc:05:ad:8f:53:7d: ea:97:02:25:07:62:77:b4:fe:27:60:a3:d6:fa:58: bc:79:12:66:3f:d5:a9:06:7b:2e:a3:cc:dd:a6:7a: 2b:39:59:76:61:55:8e:40:8d:b1:02:eb:b6:12:73: 0f:90:09:4e:3a:13:1e:82:db:46:e8:34:1e:38:71: d3:73:d4:0b:ef:06:d1:5b:06:09:6e:7d:b6:3e:75: 17:dd:eb:2e:fc:c7:ec:66:4f:d4:8c:68:7c:81:05: 1c:b6:93:f0:36:8a:37:ed:94:b6:a3:47:ba:e2:ef: 6b:49:83:eb:5c:c9:e9:02:dd:0e:70:ef:29:eb:e3: ef:d8:6d:84:2b:35:48:6c:04:f3:66:43:3d:a6:f3: 2a:5a:0c:b3:6b:83:52:71:45:3a:b7:c5:2b:c3:42: 22:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:1F:78:1A:1C:62:C1:DE:70:4A:E1:4E:A2:AE:D4:43:91:36:B0:6D X509v3 Authority Key Identifier: keyid:5B:A8:D0:5D:C9:9A:93:10:46:2C:63:C5:D0:26:9F:5E:88:5E:48:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/W6jQXcmakxBGLGPF0CafXoheSJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6jQXcmakxBGLGPF0CafXoheSJ0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91789F9/FD806BA2CC1311EC827A2687C4F9AE02/41789B66CC1611EC80603209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.196.68.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:8c:b4:4a:f7:f8:a8:dd:f0:95:57:c1:80:6b:44:c1:4c:d6: 9d:76:97:9b:c5:e8:f5:fa:c5:5c:3c:4b:ff:4c:5f:d0:14:64: b6:07:da:dd:54:83:07:9f:a7:85:7e:1c:53:56:f1:69:e8:0d: 88:a0:aa:2f:72:70:8f:f4:3b:6e:ac:f4:f2:45:33:60:9a:48: bb:c4:cd:7b:ab:f7:03:c1:18:61:6f:76:ef:a9:c8:6b:5e:d1: 70:98:ee:7d:f5:60:d9:56:ae:57:02:38:40:a0:e9:32:27:69: c7:8d:8a:fb:77:59:89:c4:8b:4d:76:e8:df:89:18:54:ac:58: 4a:86:1f:b3:45:d4:dd:06:c7:5f:5f:05:cd:6b:1d:08:07:2f: 33:11:f1:be:fd:d0:b4:5d:e0:1e:af:89:fe:41:66:13:2d:1d: 04:18:51:ea:2e:6c:f2:ec:e6:4f:08:97:08:c7:85:a7:a6:c4: a9:8d:96:58:fd:5f:9b:ee:5a:46:bc:5e:55:99:99:27:50:c9: fd:43:4b:d7:27:10:5c:49:58:e6:1d:76:b7:7a:3b:48:be:4e: cd:d3:47:66:b0:51:b9:e0:4d:3c:3e:f7:22:b8:93:8a:b4:f3: e4:9a:06:6e:81:cf:ae:dc:57:97:25:45:3f:91:05:72:95:ef: 1f:a0:80:fc -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Nzg5RjkxMTAvBgNVBAUTKDVCQThEMDVEQzk5QTkzMTA0NjJDNjNDNUQwMjY5RjVF ODg1RTQ4OUQwHhcNMjMxMDAzMDI0NDEyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFiN2ZmYy00OGI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvadhHhMV+FT46Y21F8iAkisDzVwV3od5gNTJ5fJU4ktmwqVoanLUe3sDxkj/ iUOt2vL+GszGJnpfp5duu839uXJvslIYOdJyxJAOfTZ8ciz/ipFbQZMzAuCx7Y6U 1UmCCaTcBa2PU33qlwIlB2J3tP4nYKPW+li8eRJmP9WpBnsuo8zdpnorOVl2YVWO QI2xAuu2EnMPkAlOOhMegttG6DQeOHHTc9QL7wbRWwYJbn22PnUX3esu/MfsZk/U jGh8gQUctpPwNoo37ZS2o0e64u9rSYPrXMnpAt0OcO8p6+Pv2G2EKzVIbATzZkM9 pvMqWgyza4NScUU6t8Urw0IiowIDAQABo4IClTCCApEwHQYDVR0OBBYEFJgfeBoc YsHecErhTqKu1EORNrBtMB8GA1UdIwQYMBaAFFuo0F3JmpMQRixjxdAmn16IXkid MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3ODlGOS9GRDgwNkJBMkND MTMxMUVDODI3QTI2ODdDNEY5QUUwMi9XNmpRWGNtYWt4QkdMR1BGMENhZlhvaGVT SjAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c2alFYY21ha3hCR0xHUEYwQ2FmWG9oZVNKMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Nzg5RjkvRkQ4MDZCQTJDQzEzMTFFQzgyN0EyNjg3QzRGOUFFMDIvNDE3ODlCNjZD QzE2MTFFQzgwNjAzMjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnxEQwDQYJKoZIhvcNAQELBQADggEBAE2MtEr3+Kjd8JVX wYBrRMFM1p12l5vF6PX6xVw8S/9MX9AUZLYH2t1Ugwefp4V+HFNW8WnoDYigqi9y cI/0O26s9PJFM2CaSLvEzXur9wPBGGFvdu+pyGte0XCY7n31YNlWrlcCOECg6TIn aceNivt3WYnEi0126N+JGFSsWEqGH7NF1N0Gx19fBc1rHQgHLzMR8b790LRd4B6v if5BZhMtHQQYUeoubPLs5k8IlwjHhaemxKmNllj9X5vuWka8XlWZmSdQyf1DS9cn EFxJWOYddrd6O0i+Ts3TR2awUbngTTw+9yK4k4q08+SaBm6Bz67cV5clRT+RBXKV 7x+ggPw= -----END CERTIFICATE-----Generated at Sat Jun 1 07:08:19 2024 by rpki-client on console-ams.rpki-client.org