$ rpki-client -vvf rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/03DAC9E4076211EFB14D3B12C4F9AE02.roa File: 03DAC9E4076211EFB14D3B12C4F9AE02.roa (raw, json) Hash identifier: OxXlFTh6o0hdm5zRnG9YrbxWsj3c5r5ToTCPNyKoHps= Subject key identifier: 56:1D:0A:02:93:9E:E4:3A:11:9E:AE:D0:FD:BF:5A:62:45:47:64:8B Certificate issuer: /CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Certificate serial: 09 Authority key identifier: B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/03DAC9E4076211EFB14D3B12C4F9AE02.roa Signing time: Wed 01 May 2024 02:25:02 +0000 ROA not before: Wed 01 May 2024 02:25:02 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 61414 IP address blocks: 103.23.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Jul 2024 07:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9 (0x9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A3F5D/serialNumber=B4081815C6BAED98A1CC950AC6FA10BC60058902 Validity Not Before: May 1 02:25:02 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6631a7fe-74c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:68:bb:3e:5a:10:6d:eb:9d:ee:6b:51:ac:ed: 2b:3a:ab:e2:bd:4d:8c:fe:4e:6b:df:c7:e7:fd:fe: 6e:4b:24:e7:fc:b0:81:86:90:f5:4b:d9:3f:c2:ee: df:3d:c9:79:7e:4e:42:a7:44:c2:d9:57:89:86:0b: 67:98:ce:ea:be:c3:d7:ff:c3:19:15:77:fa:19:44: c2:37:cf:c6:5c:2b:0b:71:a8:40:7f:fb:d7:35:64: 0a:ec:bb:2b:eb:46:26:8e:96:af:b4:f0:2f:2e:13: 90:77:97:48:2d:b9:07:78:41:1e:7b:b0:cf:f7:bb: 3f:be:ad:a5:31:eb:84:23:56:64:f3:bd:45:98:4a: f2:ed:a8:8c:9b:f1:49:3c:c9:09:b6:78:82:01:7d: 0c:fd:5e:3f:55:08:1b:d0:70:f5:05:4e:c5:60:f3: 43:70:15:bf:58:f0:6a:62:1b:1c:28:4d:74:56:2c: 24:82:85:68:f5:9e:59:0d:95:2e:05:84:c7:1c:56: 97:d7:a3:c7:de:8a:68:76:32:e3:12:1d:b7:89:48: d5:63:79:7f:87:b9:cd:b1:7f:85:8d:b5:bb:0d:7b: 97:12:57:79:01:bb:a7:85:45:b7:60:f5:c1:6c:ca: 95:f3:61:e0:75:ed:a3:4b:d0:07:29:0e:d9:cf:3b: e2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:1D:0A:02:93:9E:E4:3A:11:9E:AE:D0:FD:BF:5A:62:45:47:64:8B X509v3 Authority Key Identifier: keyid:B4:08:18:15:C6:BA:ED:98:A1:CC:95:0A:C6:FA:10:BC:60:05:89:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/tAgYFca67ZihzJUKxvoQvGAFiQI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tAgYFca67ZihzJUKxvoQvGAFiQI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A3F5D/10F94EF006AB11EF87BFA725C4F9AE02/03DAC9E4076211EFB14D3B12C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.172.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:96:d6:fa:5d:8f:16:70:cc:06:f3:92:e0:5f:c3:95:74:90: da:d9:5e:df:91:b4:c6:fb:f8:58:21:07:fe:04:b5:a4:39:34: 4c:66:5f:0f:b3:97:5b:7b:12:47:0f:14:38:db:38:9d:63:fd: 82:5d:32:c9:ea:d1:e3:b5:91:90:18:03:4c:1d:ff:e3:4d:bc: c0:d6:e1:59:8e:5c:77:e8:20:41:f4:bd:1d:bb:5e:75:60:ba: 10:e2:c6:8e:8b:94:8f:ef:0d:a7:a2:a3:7f:2d:01:c9:f8:97: c3:fc:9c:bf:0e:cf:f7:ad:9c:86:23:58:56:92:49:a8:86:20: 63:8f:6a:76:e2:a1:48:ab:69:87:34:8c:7e:e4:bf:cd:dd:fe: 47:95:dd:96:20:b1:f3:35:bd:f8:50:5b:a3:2f:56:0f:26:1e: 5c:52:38:15:ba:13:7a:6d:05:00:39:fa:a8:c0:ea:38:07:34: 5e:c9:3c:fc:c1:bd:5f:98:be:1e:dd:e1:f0:44:2c:fa:98:83: 87:4b:44:8b:db:3e:8f:8a:7a:15:ea:b1:1b:95:f0:26:de:18: 2d:ef:3d:05:b4:93:de:32:99:a9:61:3a:41:df:ce:8f:7d:52: 69:80:28:2c:b2:30:c6:3a:db:96:0d:a7:44:36:2b:1c:31:85: 3a:5b:53:9f -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBCTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB M0Y1RDExMC8GA1UEBRMoQjQwODE4MTVDNkJBRUQ5OEExQ0M5NTBBQzZGQTEwQkM2 MDA1ODkwMjAeFw0yNDA1MDEwMjI1MDJaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzFhN2ZlLTc0YzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDfaLs+WhBt653ua1Gs7Ss6q+K9TYz+Tmvfx+f9/m5LJOf8sIGGkPVL2T/C7t89 yXl+TkKnRMLZV4mGC2eYzuq+w9f/wxkVd/oZRMI3z8ZcKwtxqEB/+9c1ZArsuyvr RiaOlq+08C8uE5B3l0gtuQd4QR57sM/3uz++raUx64QjVmTzvUWYSvLtqIyb8Uk8 yQm2eIIBfQz9Xj9VCBvQcPUFTsVg80NwFb9Y8GpiGxwoTXRWLCSChWj1nlkNlS4F hMccVpfXo8feimh2MuMSHbeJSNVjeX+Huc2xf4WNtbsNe5cSV3kBu6eFRbdg9cFs ypXzYeB17aNL0AcpDtnPO+JTAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVh0KApOe 5DoRnq7Q/b9aYkVHZIswHwYDVR0jBBgwFoAUtAgYFca67ZihzJUKxvoQvGAFiQIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUEzRjVELzEwRjk0RUYwMDZB QjExRUY4N0JGQTcyNUM0RjlBRTAyL3RBZ1lGY2E2N1ppaHpKVUt4dm9RdkdBRmlR SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvdEFnWUZjYTY3WmloekpVS3h2b1F2R0FGaVFJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB M0Y1RC8xMEY5NEVGMDA2QUIxMUVGODdCRkE3MjVDNEY5QUUwMi8wM0RBQzlFNDA3 NjIxMUVGQjE0RDNCMTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcXrDANBgkqhkiG9w0BAQsFAAOCAQEAOpbW+l2PFnDMBvOS 4F/DlXSQ2tle35G0xvv4WCEH/gS1pDk0TGZfD7OXW3sSRw8UONs4nWP9gl0yyerR 47WRkBgDTB3/4028wNbhWY5cd+ggQfS9HbtedWC6EOLGjouUj+8Np6Kjfy0ByfiX w/ycvw7P962chiNYVpJJqIYgY49qduKhSKtphzSMfuS/zd3+R5XdliCx8zW9+FBb oy9WDyYeXFI4FboTem0FADn6qMDqOAc0Xsk8/MG9X5i+Ht3h8EQs+piDh0tEi9s+ j4p6FeqxG5XwJt4YLe89BbST3jKZqWE6Qd/Oj31SaYAoLLIwxjrblg2nRDYrHDGF OltTnw== -----END CERTIFICATE-----Generated at Fri Jul 5 08:44:36 2024 by rpki-client on console-fra.rpki-client.org