$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/A0D57302A33D11EBA479491CC4F9AE02.roa File: A0D57302A33D11EBA479491CC4F9AE02.roa (raw, json) Hash identifier: 29wrV3aOIMAFp0GF5fJZDO6ldPmXnBQp+J/+s7gWVoM= Subject key identifier: 5D:37:B2:30:FC:B6:85:AD:5E:7B:14:D7:85:EB:47:53:E3:01:07:58 Certificate issuer: /CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Certificate serial: 055B Authority key identifier: DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/A0D57302A33D11EBA479491CC4F9AE02.roa Signing time: Fri 31 May 2024 01:45:48 +0000 ROA not before: Fri 31 May 2024 01:45:48 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 142066 IP address blocks: 103.166.116.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:47:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1371 (0x55b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB74D/serialNumber=DBE9A100C4A9EBA4B2CD1A2671328DEF78FE76E1 Validity Not Before: May 31 01:45:48 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66592bcb-f955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:6f:66:54:f7:b5:f9:54:a3:a5:ac:10:ad:78: 9d:ee:ca:94:4d:e9:a2:e3:ac:c3:95:3a:c3:6a:fd: 12:60:89:5a:d0:53:ba:f0:b2:9b:19:e2:6d:01:3a: 1a:74:ba:79:e1:c8:cf:6a:88:5c:56:ca:86:b6:89: f9:84:b4:7d:b8:e2:11:d6:03:dc:71:08:fd:0d:dc: 95:aa:47:8c:e1:63:71:bd:73:f2:59:2c:47:d5:03: 2e:54:bc:2b:f2:14:7c:54:6e:45:05:52:d1:31:7e: 19:b0:a4:84:5b:ea:82:40:c4:a5:d7:0e:84:03:32: af:2c:5c:7a:d9:01:02:1b:b4:19:8d:5d:06:3d:0f: ec:9c:3c:59:a7:fd:3e:c9:73:06:c0:af:94:a9:9d: 71:7d:2a:0e:2a:89:34:5f:d3:05:a4:d5:5b:56:0d: 3b:43:e1:9e:f5:03:98:cd:4f:dd:3a:35:ea:2d:e0: a9:e8:c2:49:cc:d0:8b:68:c4:cd:26:d7:14:76:5a: 86:32:37:53:80:90:1b:5c:17:da:d0:c9:9d:c1:cf: 8b:0e:89:b2:f8:77:65:e5:a0:84:f7:c9:ef:ae:64: d4:fb:ab:43:45:3e:99:d6:c8:6e:99:42:1c:fa:24: ac:f4:f0:8e:03:ed:a4:74:2a:28:bf:47:d3:35:9c: ac:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:37:B2:30:FC:B6:85:AD:5E:7B:14:D7:85:EB:47:53:E3:01:07:58 X509v3 Authority Key Identifier: keyid:DB:E9:A1:00:C4:A9:EB:A4:B2:CD:1A:26:71:32:8D:EF:78:FE:76:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/2-mhAMSp66SyzRomcTKN73j-duE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2-mhAMSp66SyzRomcTKN73j-duE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB74D/1D713D08A33C11EBB12CED1AC4F9AE02/A0D57302A33D11EBA479491CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.166.116.0/23 Signature Algorithm: sha256WithRSAEncryption c7:21:b6:8f:b9:27:74:d4:46:47:76:d0:89:37:97:73:58:b1: ab:04:1f:72:d5:23:87:3f:2d:e7:c4:02:41:d3:aa:f7:6e:1f: f5:c4:50:c3:41:7a:a1:83:87:f0:1c:dd:a3:4b:1b:3f:04:55: 80:d9:66:e8:ee:bc:df:72:8c:29:de:54:20:02:c7:7a:cb:02: 34:14:40:57:c8:f3:b8:56:4f:36:f4:96:92:2f:1d:3f:c9:a4: 58:76:87:09:60:a0:a3:28:1f:5b:fe:aa:7c:26:31:de:90:29: 53:32:15:9c:6f:07:0e:fd:ee:f0:35:3e:81:07:db:4c:41:ab: 4f:74:1d:4f:28:97:c5:18:1a:ee:6c:ea:cc:10:e1:11:1b:02: 4a:0d:1a:a8:80:4f:a3:a2:f8:37:12:5b:58:bc:8f:d3:42:6a: a8:b6:f7:f8:c0:ec:db:fe:59:6d:ee:0e:68:8c:59:20:82:3a: 05:5c:07:7d:94:99:ec:f4:b9:2e:75:2a:4e:60:33:88:5d:4d: 8d:46:e0:c1:25:30:bf:15:5e:70:7a:d3:b8:0b:21:31:08:7e: 92:e6:d3:10:e8:31:d0:ad:04:44:67:ac:8d:7f:42:60:36:bd: 1e:26:eb:8a:eb:dd:78:df:6b:e6:a3:68:48:c4:7b:4d:a0:d1: bb:c4:0a:3f -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBVswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUI3NEQxMTAvBgNVBAUTKERCRTlBMTAwQzRBOUVCQTRCMkNEMUEyNjcxMzI4REVG NzhGRTc2RTEwHhcNMjQwNTMxMDE0NTQ4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5MmJjYi1mOTU1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArm9mVPe1+VSjpawQrXid7sqUTemi46zDlTrDav0SYIla0FO68LKbGeJtAToa dLp54cjPaohcVsqGton5hLR9uOIR1gPccQj9DdyVqkeM4WNxvXPyWSxH1QMuVLwr 8hR8VG5FBVLRMX4ZsKSEW+qCQMSl1w6EAzKvLFx62QECG7QZjV0GPQ/snDxZp/0+ yXMGwK+UqZ1xfSoOKok0X9MFpNVbVg07Q+Ge9QOYzU/dOjXqLeCp6MJJzNCLaMTN JtcUdlqGMjdTgJAbXBfa0Mmdwc+LDomy+Hdl5aCE98nvrmTU+6tDRT6Z1shumUIc +iSs9PCOA+2kdCoov0fTNZysqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFF03sjD8 toWtXnsU14XrR1PjAQdYMB8GA1UdIwQYMBaAFNvpoQDEqeukss0aJnEyje94/nbh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjc0RC8xRDcxM0QwOEEz M0MxMUVCQjEyQ0VEMUFDNEY5QUUwMi8yLW1oQU1TcDY2U3l6Um9tY1RLTjczai1k dUUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzItbWhBTVNwNjZTeXpSb21jVEtONzNqLWR1RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUI3NEQvMUQ3MTNEMDhBMzNDMTFFQkIxMkNFRDFBQzRGOUFFMDIvQTBENTczMDJB MzNEMTFFQkE0Nzk0OTFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpnQwDQYJKoZIhvcNAQELBQADggEBAMchto+5J3TURkd2 0Ik3l3NYsasEH3LVI4c/LefEAkHTqvduH/XEUMNBeqGDh/Ac3aNLGz8EVYDZZuju vN9yjCneVCACx3rLAjQUQFfI87hWTzb0lpIvHT/JpFh2hwlgoKMoH1v+qnwmMd6Q KVMyFZxvBw797vA1PoEH20xBq090HU8ol8UYGu5s6swQ4REbAkoNGqiAT6Oi+DcS W1i8j9NCaqi29/jA7Nv+WW3uDmiMWSCCOgVcB32Umez0uS51Kk5gM4hdTY1G4MEl ML8VXnB607gLITEIfpLm0xDoMdCtBERnrI1/QmA2vR4m64rr3Xjfa+ajaEjEe02g 0bvECj8= -----END CERTIFICATE-----Generated at Sat Jun 1 04:07:30 2024 by rpki-client on console-ams.rpki-client.org