$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/13E4471298B711EE99FD1F09C4F9AE02.roa File: 13E4471298B711EE99FD1F09C4F9AE02.roa (raw, json) Hash identifier: EFe4wHrIVMtj8gmMScubMWxMxLMQyMD4rQ56V7MM9gM= Subject key identifier: 72:A5:70:D9:5A:B4:FE:71:68:D9:11:18:44:2F:6E:B4:24:86:E0:B0 Certificate issuer: /CN=A91A3526/serialNumber=05FD2D519D40CB208937BF8A8E463E6D842CC07D Certificate serial: 20 Authority key identifier: 05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/13E4471298B711EE99FD1F09C4F9AE02.roa Signing time: Mon 29 Jan 2024 07:29:07 +0000 ROA not before: Mon 29 Jan 2024 07:29:07 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 141047 IP address blocks: 103.160.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32 (0x20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3526/serialNumber=05FD2D519D40CB208937BF8A8E463E6D842CC07D Validity Not Before: Jan 29 07:29:07 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b753c3-0cbd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:e7:07:03:2f:e3:d3:d4:6c:2f:ad:c4:27:50: 3a:06:3a:97:fb:03:52:32:2b:32:ea:18:1f:94:32: 7c:cb:26:4d:af:fd:11:35:5d:ae:35:ee:c0:7c:4c: 4b:18:25:66:c6:57:db:2b:e8:ab:79:89:a7:f2:8f: 3b:0e:43:a0:12:04:2f:6a:4d:08:da:66:59:b4:72: 1f:c3:67:27:8e:08:13:89:4e:98:a1:da:8c:5b:b5: 51:08:4a:eb:84:ab:fa:53:57:64:cd:c0:cc:4f:f9: fd:37:c9:b9:75:37:76:d5:0d:b9:87:cc:3f:1c:35: 3a:81:61:25:ba:b0:4c:2a:ce:0f:bd:2d:68:3c:e3: b7:7d:24:6b:5b:18:7d:0c:27:65:f2:b9:48:59:e3: 44:04:1e:71:48:92:d1:43:2e:47:b7:52:4e:aa:55: 62:e3:a3:30:8e:2b:5b:11:d1:d4:ae:3c:51:99:91: b8:ec:ad:46:d5:55:f7:9b:f6:bb:0b:ed:9b:24:27: 55:d7:8e:15:82:a6:ff:0b:de:80:e8:6b:43:b3:3d: ee:d8:fe:d1:c8:ff:f7:69:45:b3:bd:d6:d1:4e:2f: 32:67:19:20:2f:d8:46:a3:52:bf:46:00:30:6c:2f: 1d:67:bd:b5:8e:c1:62:b9:98:29:da:3d:6e:61:35: b0:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:A5:70:D9:5A:B4:FE:71:68:D9:11:18:44:2F:6E:B4:24:86:E0:B0 X509v3 Authority Key Identifier: keyid:05:FD:2D:51:9D:40:CB:20:89:37:BF:8A:8E:46:3E:6D:84:2C:C0:7D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Bf0tUZ1AyyCJN7-KjkY-bYQswH0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3526/A13C55CE98B611EE8B490487C4F9AE02/13E4471298B711EE99FD1F09C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.83.0/24 Signature Algorithm: sha256WithRSAEncryption 84:7c:28:81:c6:b8:06:70:e6:14:24:f4:6e:c0:ed:a4:55:79: dc:bd:04:d3:c1:96:d5:e4:9b:eb:bf:56:71:41:47:fb:26:91: 7c:25:bc:4e:a8:4b:c5:3e:c1:d1:f6:19:53:4e:9c:31:a1:3a: 94:55:6b:20:62:b1:6e:6e:c4:33:53:59:5b:91:1c:6e:14:3f: d8:f5:53:2d:19:83:ef:71:de:2e:cf:cd:21:a0:b9:ef:2f:97: 52:c6:b3:2c:95:53:cb:66:dc:67:55:6c:e3:0d:2b:ed:f6:c5: 22:23:de:62:5f:05:5c:f2:47:0d:47:f2:58:29:49:83:ed:a7: 68:cb:d2:29:ab:2d:a1:10:ac:40:aa:f9:c9:93:9d:24:c6:13: 94:d6:fc:bd:b6:b2:c6:d2:60:6c:82:47:23:ce:c7:8e:02:a5: d8:2c:aa:ff:86:0a:3d:cb:56:6b:1d:6d:c2:67:39:53:4b:da: ab:f6:09:eb:bd:64:02:79:c3:60:7b:83:03:db:b2:af:47:3a: 89:5f:95:c8:bf:65:f6:0c:1a:4f:7e:0d:57:bf:d3:b9:14:97: 8b:be:cb:24:c8:b3:bc:59:aa:67:05:05:29:98:5e:9a:05:af: 8b:c8:9f:fc:89:a0:58:32:12:80:60:89:da:a4:23:46:b8:2b: d6:b9:ef:41 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBIDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MzUyNjExMC8GA1UEBRMoMDVGRDJENTE5RDQwQ0IyMDg5MzdCRjhBOEU0NjNFNkQ4 NDJDQzA3RDAeFw0yNDAxMjkwNzI5MDdaFw0yNTAzMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Yjc1M2MzLTBjYmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC/5wcDL+PT1GwvrcQnUDoGOpf7A1IyKzLqGB+UMnzLJk2v/RE1Xa417sB8TEsY JWbGV9sr6Kt5iafyjzsOQ6ASBC9qTQjaZlm0ch/DZyeOCBOJTpih2oxbtVEISuuE q/pTV2TNwMxP+f03ybl1N3bVDbmHzD8cNTqBYSW6sEwqzg+9LWg847d9JGtbGH0M J2XyuUhZ40QEHnFIktFDLke3Uk6qVWLjozCOK1sR0dSuPFGZkbjsrUbVVfeb9rsL 7ZskJ1XXjhWCpv8L3oDoa0OzPe7Y/tHI//dpRbO91tFOLzJnGSAv2EajUr9GADBs Lx1nvbWOwWK5mCnaPW5hNbD1AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUcqVw2Vq0 /nFo2REYRC9utCSG4LAwHwYDVR0jBBgwFoAUBf0tUZ1AyyCJN7+KjkY+bYQswH0w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzNTI2L0ExM0M1NUNFOThC NjExRUU4QjQ5MDQ4N0M0RjlBRTAyL0JmMHRVWjFBeXlDSk43LUtqa1ktYllRc3dI MC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQmYwdFVaMUF5eUNKTjctS2prWS1iWVFzd0gwLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MzUyNi9BMTNDNTVDRTk4QjYxMUVFOEI0OTA0ODdDNEY5QUUwMi8xM0U0NDcxMjk4 QjcxMUVFOTlGRDFGMDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGegUzANBgkqhkiG9w0BAQsFAAOCAQEAhHwogca4BnDmFCT0 bsDtpFV53L0E08GW1eSb679WcUFH+yaRfCW8TqhLxT7B0fYZU06cMaE6lFVrIGKx bm7EM1NZW5EcbhQ/2PVTLRmD73HeLs/NIaC57y+XUsazLJVTy2bcZ1Vs4w0r7fbF IiPeYl8FXPJHDUfyWClJg+2naMvSKastoRCsQKr5yZOdJMYTlNb8vbayxtJgbIJH I87HjgKl2Cyq/4YKPctWax1twmc5U0vaq/YJ671kAnnDYHuDA9uyr0c6iV+VyL9l 9gwaT34NV7/TuRSXi77LJMizvFmqZwUFKZhemgWvi8if/ImgWDISgGCJ2qQjRrgr 1rnvQQ== -----END CERTIFICATE-----Generated at Fri Jun 7 11:02:53 2024 by rpki-client on console-fra.rpki-client.org