$ rpki-client -vvf rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/5AF669B4FFC811E9B70CA176C4F9AE02.roa File: 5AF669B4FFC811E9B70CA176C4F9AE02.roa (raw, json) Hash identifier: heoR7cbCAdRuieyY3U1k5gd6HHX/KbWqrL6G/wYFWbM= Subject key identifier: 93:0A:6A:FD:90:F8:FA:D7:F7:61:79:69:B6:16:A3:38:2B:2B:6D:6B Certificate issuer: /CN=A91B4D1F/serialNumber=24F8CA0BE08E1C61EC8F7B7A8A9C5CC53DD14534 Certificate serial: 0B9E Authority key identifier: 24:F8:CA:0B:E0:8E:1C:61:EC:8F:7B:7A:8A:9C:5C:C5:3D:D1:45:34 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPjKC-COHGHsj3t6ipxcxT3RRTQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/5AF669B4FFC811E9B70CA176C4F9AE02.roa Signing time: Sun 12 May 2024 19:28:12 +0000 ROA not before: Sun 12 May 2024 19:28:12 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 136514 IP address blocks: 103.91.128.0/22 maxlen: 24 123.253.36.0/22 maxlen: 24 2401:6c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/JPjKC-COHGHsj3t6ipxcxT3RRTQ.crl rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/JPjKC-COHGHsj3t6ipxcxT3RRTQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPjKC-COHGHsj3t6ipxcxT3RRTQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:18:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2974 (0xb9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B4D1F/serialNumber=24F8CA0BE08E1C61EC8F7B7A8A9C5CC53DD14534 Validity Not Before: May 12 19:28:12 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6641184c-b09d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:45:52:a0:58:96:96:ee:22:2a:46:1f:76:5c: 5b:33:d0:92:2e:16:33:f7:41:18:24:0b:fe:0f:af: 0a:57:92:26:0c:bd:e7:2d:ff:2b:7b:af:f3:2a:e8: 20:5c:d8:76:84:e8:f0:c5:58:1c:80:d4:12:31:f7: ab:89:c5:91:ab:ca:96:92:60:51:d2:b5:aa:fc:fb: 9c:77:60:d5:9c:f0:b2:e3:11:f8:cb:c1:e1:52:f5: df:d3:df:d9:0d:1e:c7:ee:09:df:33:01:24:54:b7: 03:f1:c7:7b:b1:9d:0f:bb:c2:0f:bd:68:2f:e3:3f: 03:b8:eb:00:16:12:02:72:8d:a2:96:fe:38:b6:6e: d1:e6:bb:3a:81:c3:72:19:e9:74:75:67:05:10:f4: 90:0b:50:91:c7:bb:2c:7f:23:cd:56:e2:d9:e2:7d: b5:d6:8e:ea:37:99:79:5c:ea:6c:d6:27:0a:56:cf: 6a:ee:29:76:80:4f:60:3d:a5:92:5a:31:d4:ef:d0: 00:73:5e:73:d0:6c:3c:c0:55:50:49:f7:45:c8:e6: a9:dc:a6:96:6d:cd:df:76:ff:1c:5d:64:fd:6c:b6: e2:b1:02:40:2e:1a:6e:66:d1:d4:ba:72:7a:c5:48: 41:15:0f:fd:36:27:49:31:7a:48:4c:6a:51:9a:70: 3f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:0A:6A:FD:90:F8:FA:D7:F7:61:79:69:B6:16:A3:38:2B:2B:6D:6B X509v3 Authority Key Identifier: keyid:24:F8:CA:0B:E0:8E:1C:61:EC:8F:7B:7A:8A:9C:5C:C5:3D:D1:45:34 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/JPjKC-COHGHsj3t6ipxcxT3RRTQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JPjKC-COHGHsj3t6ipxcxT3RRTQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B4D1F/B3342916FFC511E9A96CD070C4F9AE02/5AF669B4FFC811E9B70CA176C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.128.0/22 123.253.36.0/22 IPv6: 2401:6c0::/32 Signature Algorithm: sha256WithRSAEncryption 9e:9d:fd:3b:f2:17:6d:1c:4d:96:cd:87:06:31:7d:53:fa:8a: 52:00:80:52:29:1f:f5:2e:43:24:d0:08:a6:5a:f2:ab:12:99: cd:e1:b9:ee:9e:8c:29:fa:dc:04:26:ba:30:03:d1:89:e3:8b: 69:c4:6b:2d:5c:1d:b0:58:b7:dc:ec:61:42:86:85:46:23:7e: 55:ee:17:d6:80:e7:d6:8c:d4:f7:6c:df:96:6d:c1:46:1b:9d: 33:fd:d4:a8:d7:e3:3c:01:b5:84:41:ac:a9:67:f5:5b:94:20: 02:6a:2b:95:84:50:83:5c:78:ca:3f:fd:b2:cc:7a:89:38:f6: e5:28:98:71:fd:d6:e8:5c:0c:19:55:de:b4:d8:83:9e:54:b8: dc:91:ab:a2:2d:10:ba:86:02:3a:c5:87:f7:f9:c5:03:1b:df: 4e:7f:45:57:99:06:53:d5:85:33:ae:ce:14:40:39:3c:22:7a: 80:0d:b3:f6:40:df:4b:dd:e0:98:25:b9:a8:b4:1c:a2:bf:b9: 35:9f:c9:6c:f3:8d:a2:f7:be:3c:74:ef:0c:cd:f4:7d:b9:af: 37:db:ab:ef:23:c8:42:56:fd:2b:d4:ab:c2:b1:32:d1:9c:c2: 8b:9d:cc:27:a3:9f:30:e4:50:02:99:5f:d8:86:e5:a8:f3:1b: ab:1b:f0:a0 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICC54wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjREMUYxMTAvBgNVBAUTKDI0RjhDQTBCRTA4RTFDNjFFQzhGN0I3QThBOUM1Q0M1 M0REMTQ1MzQwHhcNMjQwNTEyMTkyODEyWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxMTg0Yy1iMDlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzUVSoFiWlu4iKkYfdlxbM9CSLhYz90EYJAv+D68KV5ImDL3nLf8re6/zKugg XNh2hOjwxVgcgNQSMfericWRq8qWkmBR0rWq/Pucd2DVnPCy4xH4y8HhUvXf09/Z DR7H7gnfMwEkVLcD8cd7sZ0Pu8IPvWgv4z8DuOsAFhICco2ilv44tm7R5rs6gcNy Gel0dWcFEPSQC1CRx7ssfyPNVuLZ4n211o7qN5l5XOps1icKVs9q7il2gE9gPaWS WjHU79AAc15z0Gw8wFVQSfdFyOap3KaWbc3fdv8cXWT9bLbisQJALhpuZtHUunJ6 xUhBFQ/9NidJMXpITGpRmnA/EwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJMKav2Q +PrX92F5abYWozgrK21rMB8GA1UdIwQYMBaAFCT4ygvgjhxh7I97eoqcXMU90UU0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNEQxRi9CMzM0MjkxNkZG QzUxMUU5QTk2Q0QwNzBDNEY5QUUwMi9KUGpLQy1DT0hHSHNqM3Q2aXB4Y3hUM1JS VFEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pQaktDLUNPSEdIc2ozdDZpcHhjeFQzUlJUUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjREMUYvQjMzNDI5MTZGRkM1MTFFOUE5NkNEMDcwQzRGOUFFMDIvNUFGNjY5QjRG RkM4MTFFOUI3MENBMTc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnW4ADBAJ7/SQwDQQCAAIwBwMFACQBBsAwDQYJKoZIhvcN AQELBQADggEBAJ6d/TvyF20cTZbNhwYxfVP6ilIAgFIpH/UuQyTQCKZa8qsSmc3h ue6ejCn63AQmujAD0Ynji2nEay1cHbBYt9zsYUKGhUYjflXuF9aA59aM1Pds35Zt wUYbnTP91KjX4zwBtYRBrKln9VuUIAJqK5WEUINceMo//bLMeok49uUomHH91uhc DBlV3rTYg55UuNyRq6ItELqGAjrFh/f5xQMb305/RVeZBlPVhTOuzhRAOTwieoAN s/ZA30vd4Jgluai0HKK/uTWfyWzzjaL3vjx07wzN9H25rzfbq+8jyEJW/SvUq8Kx MtGcwoudzCejnzDkUAKZX9iG5ajzG6sb8KA= -----END CERTIFICATE-----Generated at Fri Nov 22 19:50:15 2024 by rpki-client on console-ams.rpki-client.org