$ rpki-client -vvf rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa File: 4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa (raw, json) Hash identifier: zZYRuZju/6K1b+K/WY45YKEObvh7R4AMvppkXjmVq70= Subject key identifier: C7:74:0C:E0:80:D7:34:CC:C3:6E:72:FC:29:69:34:97:E1:86:0E:CF Certificate issuer: /CN=A91B9008/serialNumber=6CBB6767F63A0CB9B7A74914B4A657417E4C578A Certificate serial: 31 Authority key identifier: 6C:BB:67:67:F6:3A:0C:B9:B7:A7:49:14:B4:A6:57:41:7E:4C:57:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa Signing time: Wed 03 Apr 2024 08:40:10 +0000 ROA not before: Wed 03 Apr 2024 08:40:10 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140089 IP address blocks: 103.148.90.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.crl rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49 (0x31) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B9008/serialNumber=6CBB6767F63A0CB9B7A74914B4A657417E4C578A Validity Not Before: Apr 3 08:40:10 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=660d15ea-2415 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:3d:64:d8:49:09:cc:11:d1:5c:bd:96:5f:4e: c2:7e:c4:73:b4:8d:50:4a:3a:1a:9a:27:a5:7d:b6: 37:7d:6c:0f:f2:f0:cd:eb:a7:11:97:fc:53:4b:f0: 95:3c:7a:6e:4d:4a:a9:b9:0e:5b:21:a8:ee:da:3c: 26:0a:7f:41:b8:96:6c:e6:5d:52:4d:0f:54:79:9f: 21:83:a3:eb:ea:4a:22:e9:e5:9b:a5:e0:c5:b9:e4: 89:64:19:8b:45:90:4c:08:36:8a:74:a1:d0:f8:1b: 7e:19:18:b3:67:b9:0b:65:18:0c:f0:b9:e7:14:f7: 9a:e6:da:0e:00:00:6c:3c:f8:d1:86:83:99:ce:e3: b6:90:e3:84:cb:19:4b:a7:91:65:ea:50:40:5e:ae: 1d:14:cf:bb:98:10:e8:1d:2a:b0:75:96:68:30:28: 8e:df:53:45:16:94:c4:ee:fe:18:c9:6e:ef:04:23: d4:f7:48:66:5c:aa:ca:29:d7:c1:b4:e9:c9:cc:59: a8:d3:e8:4d:d7:87:3c:c1:14:75:99:ae:69:aa:2c: fd:05:df:f0:fb:b9:d5:2e:06:d6:e0:c0:1c:3c:15: d0:31:0b:05:20:86:f9:f3:d0:a3:e1:e9:4a:f5:a2: 85:1c:2d:8c:b8:db:47:30:f5:8d:a1:4a:5f:f4:d9: 86:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:74:0C:E0:80:D7:34:CC:C3:6E:72:FC:29:69:34:97:E1:86:0E:CF X509v3 Authority Key Identifier: keyid:6C:BB:67:67:F6:3A:0C:B9:B7:A7:49:14:B4:A6:57:41:7E:4C:57:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bLtnZ_Y6DLm3p0kUtKZXQX5MV4o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B9008/0A8FBB1AB43211EEA264440CC4F9AE02/4CFDF03AB4DB11EE9FF6FB59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.90.0/24 Signature Algorithm: sha256WithRSAEncryption a9:01:67:8b:d1:2f:1d:c7:92:ce:67:7d:5f:a1:79:1c:ff:ea: 34:bd:df:ea:32:0b:7e:d3:fc:45:6f:85:1f:5e:65:bd:41:e3: 7e:4c:e9:c6:93:12:04:29:47:39:eb:11:5c:9b:46:8d:6f:12: 26:c9:25:c4:4f:15:19:f6:e2:0e:1d:67:e2:c9:a8:18:cb:c5: 78:a2:c4:25:8e:2b:bd:49:1b:10:15:0d:85:06:0a:f8:77:78: f6:57:d5:ab:df:29:34:f0:34:bc:b7:04:17:97:15:91:80:3d: ee:f5:e4:7a:a5:64:ae:38:46:38:20:7a:58:10:72:9c:82:bc: 29:6a:d8:c5:58:b0:a3:a8:df:b8:b2:49:3e:36:96:f0:96:52: e2:76:8d:eb:59:dc:5d:4c:c2:d6:c2:c1:c7:26:86:23:c3:ba: c4:32:cf:4e:57:80:5b:0a:a1:31:fc:7a:f7:46:e7:92:10:1e: b4:3c:a5:39:cd:20:dd:e9:c5:6a:7b:c3:61:d1:df:98:a4:75: 8d:70:4b:84:01:6f:a8:4f:a3:64:77:24:50:48:c3:8e:21:6e: 1d:34:d6:5c:5f:f4:d5:65:71:eb:c2:44:39:8e:db:ad:e6:df: cf:cb:cc:53:17:cc:8f:bd:68:74:46:09:e3:01:41:d8:f5:bd: da:8d:07:f2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBMTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFC OTAwODExMC8GA1UEBRMoNkNCQjY3NjdGNjNBMENCOUI3QTc0OTE0QjRBNjU3NDE3 RTRDNTc4QTAeFw0yNDA0MDMwODQwMTBaFw0yNTA1MjgwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGQxNWVhLTI0MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCkPWTYSQnMEdFcvZZfTsJ+xHO0jVBKOhqaJ6V9tjd9bA/y8M3rpxGX/FNL8JU8 em5NSqm5DlshqO7aPCYKf0G4lmzmXVJND1R5nyGDo+vqSiLp5Zul4MW55IlkGYtF kEwINop0odD4G34ZGLNnuQtlGAzwuecU95rm2g4AAGw8+NGGg5nO47aQ44TLGUun kWXqUEBerh0Uz7uYEOgdKrB1lmgwKI7fU0UWlMTu/hjJbu8EI9T3SGZcqsop18G0 6cnMWajT6E3XhzzBFHWZrmmqLP0F3/D7udUuBtbgwBw8FdAxCwUghvnz0KPh6Ur1 ooUcLYy420cw9Y2hSl/02YYDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUx3QM4IDX NMzDbnL8KWk0l+GGDs8wHwYDVR0jBBgwFoAUbLtnZ/Y6DLm3p0kUtKZXQX5MV4ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUI5MDA4LzBBOEZCQjFBQjQz MjExRUVBMjY0NDQwQ0M0RjlBRTAyL2JMdG5aX1k2RExtM3Awa1V0S1pYUVg1TVY0 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvYkx0blpfWTZETG0zcDBrVXRLWlhRWDVNVjRvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC OTAwOC8wQThGQkIxQUI0MzIxMUVFQTI2NDQ0MENDNEY5QUUwMi80Q0ZERjAzQUI0 REIxMUVFOUZGNkZCNTlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGeUWjANBgkqhkiG9w0BAQsFAAOCAQEAqQFni9EvHceSzmd9 X6F5HP/qNL3f6jILftP8RW+FH15lvUHjfkzpxpMSBClHOesRXJtGjW8SJsklxE8V GfbiDh1n4smoGMvFeKLEJY4rvUkbEBUNhQYK+Hd49lfVq98pNPA0vLcEF5cVkYA9 7vXkeqVkrjhGOCB6WBBynIK8KWrYxViwo6jfuLJJPjaW8JZS4naN61ncXUzC1sLB xyaGI8O6xDLPTleAWwqhMfx690bnkhAetDylOc0g3enFanvDYdHfmKR1jXBLhAFv qE+jZHckUEjDjiFuHTTWXF/01WVx68JEOY7brebfz8vMUxfMj71odEYJ4wFB2PW9 2o0H8g== -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:31 2024 by rpki-client on console-ams.rpki-client.org