$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/0FA97166C80411ECBA7BB174C4F9AE02.roa File: 0FA97166C80411ECBA7BB174C4F9AE02.roa (raw, json) Hash identifier: X7QV9th7OU4pZvDtskLH+MZ7u91V8WTcI8jIDE7wLuw= Subject key identifier: 26:86:F8:31:A9:00:49:B9:E0:5F:E4:B6:88:84:D8:45:02:EF:5E:70 Certificate issuer: /CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Certificate serial: 01A2 Authority key identifier: 2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/0FA97166C80411ECBA7BB174C4F9AE02.roa Signing time: Sat 01 Apr 2023 05:54:34 +0000 ROA not before: Sat 01 Apr 2023 05:54:34 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 36351 IP address blocks: 103.53.196.0/24 maxlen: 24 2402:2f80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 03:36:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 418 (0x1a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAA44/serialNumber=2CC33FBCB864084020894A72DD088505AF9BB66D Validity Not Before: Apr 1 05:54:34 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=6427c71a-ec8c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a8:1c:a7:96:e8:bf:c6:e3:b4:9c:e1:df:a2: b6:4e:67:d3:0d:47:0c:f2:1b:ef:04:2d:ae:aa:dc: db:57:fc:f9:b8:c8:86:dc:ee:05:b5:6d:6d:47:52: 73:e8:a3:f6:32:66:de:33:ec:03:b2:f8:d0:5e:90: ef:54:3c:02:09:09:06:a1:7a:9a:69:e2:49:b9:a0: c3:60:e9:4a:b7:66:f3:e4:f4:2a:77:b8:2e:3e:78: 2f:31:9e:2f:f8:e9:e6:92:f8:7f:9c:a1:7d:91:3f: 78:4c:34:67:b7:05:c5:79:13:73:1c:8f:1b:fb:77: 69:5c:59:e2:a0:e5:e1:52:14:0d:bc:25:a5:15:be: c2:15:8d:a8:dd:66:7f:83:c3:0b:60:f3:47:45:d9: af:a6:a9:bc:fb:70:20:9f:24:4a:82:d8:37:c7:92: f0:69:a4:49:51:32:1f:13:dd:8e:69:f7:8c:5f:89: 5e:40:55:7d:10:74:49:3a:53:63:4f:05:ff:0c:06: ef:fc:21:15:2b:ba:30:a0:0d:a1:3e:86:73:5b:98: c3:c7:58:9f:db:37:7e:f0:d8:99:ef:e1:b6:ec:8c: d5:bd:4a:e8:cf:41:dd:cd:8e:a1:9d:49:99:49:6d: a9:ef:81:fd:7c:d1:54:8f:42:db:18:d2:e5:bf:a6: a3:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:86:F8:31:A9:00:49:B9:E0:5F:E4:B6:88:84:D8:45:02:EF:5E:70 X509v3 Authority Key Identifier: keyid:2C:C3:3F:BC:B8:64:08:40:20:89:4A:72:DD:08:85:05:AF:9B:B6:6D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/LMM_vLhkCEAgiUpy3QiFBa-btm0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LMM_vLhkCEAgiUpy3QiFBa-btm0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAA44/9CC00A9CC7FF11EC9BDBFE4BC4F9AE02/0FA97166C80411ECBA7BB174C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.53.196.0/24 IPv6: 2402:2f80::/48 Signature Algorithm: sha256WithRSAEncryption 0b:25:e5:18:de:87:93:fa:61:6e:0b:10:6e:46:57:a3:76:80: 47:cb:1a:ee:82:1e:b2:8c:7c:25:c4:50:72:ef:5e:c4:46:06: 3f:a0:06:9c:a9:84:c0:98:d7:34:db:58:30:39:82:48:44:60: c6:0e:fc:92:34:ce:a6:ea:69:76:f7:9c:8c:9e:fb:cb:29:9d: 63:0f:54:3c:85:27:62:01:3a:fd:b1:1e:24:b5:da:b4:7d:0d: e3:55:aa:e3:45:76:d6:4a:e9:c5:02:fa:8a:60:28:5f:00:c5: 8c:05:41:23:f5:f8:46:32:ea:f7:84:49:92:17:63:16:15:ed: a0:36:23:c5:ea:ee:16:b4:66:e7:60:a3:57:ac:bf:98:c9:2f: cd:1f:79:e8:4c:e2:4b:10:ba:a9:23:10:b6:1c:92:47:0d:f7: be:4e:86:3a:9b:a0:68:99:9a:f0:c7:20:4f:a2:7a:c0:64:12: 3c:32:1e:e7:eb:46:b0:5d:7c:46:08:1d:00:33:24:cf:48:61: 00:5d:a5:e5:e9:8e:94:28:c5:8f:79:e2:ab:fa:42:c5:79:5a: 05:25:01:49:f5:b4:d6:54:0e:d2:76:3e:4e:3a:31:bf:70:22: 73:7d:da:55:0b:be:80:39:ac:80:ce:e7:6d:7d:04:58:69:6b: ec:27:24:a0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAaIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFBNDQxMTAvBgNVBAUTKDJDQzMzRkJDQjg2NDA4NDAyMDg5NEE3MkREMDg4NTA1 QUY5QkI2NkQwHhcNMjMwNDAxMDU1NDM0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDI3YzcxYS1lYzhjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsKgcp5bov8bjtJzh36K2TmfTDUcM8hvvBC2uqtzbV/z5uMiG3O4FtW1tR1Jz 6KP2MmbeM+wDsvjQXpDvVDwCCQkGoXqaaeJJuaDDYOlKt2bz5PQqd7guPngvMZ4v +Onmkvh/nKF9kT94TDRntwXFeRNzHI8b+3dpXFnioOXhUhQNvCWlFb7CFY2o3WZ/ g8MLYPNHRdmvpqm8+3AgnyRKgtg3x5LwaaRJUTIfE92OafeMX4leQFV9EHRJOlNj TwX/DAbv/CEVK7owoA2hPoZzW5jDx1if2zd+8NiZ7+G27IzVvUroz0HdzY6hnUmZ SW2p74H9fNFUj0LbGNLlv6ajnQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCaG+DGp AEm54F/ktoiE2EUC715wMB8GA1UdIwQYMBaAFCzDP7y4ZAhAIIlKct0IhQWvm7Zt MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUE0NC85Q0MwMEE5Q0M3 RkYxMUVDOUJEQkZFNEJDNEY5QUUwMi9MTU1fdkxoa0NFQWdpVXB5M1FpRkJhLWJ0 bTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xNTV92TGhrQ0VBZ2lVcHkzUWlGQmEtYnRtMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFBNDQvOUNDMDBBOUNDN0ZGMTFFQzlCREJGRTRCQzRGOUFFMDIvMEZBOTcxNjZD ODA0MTFFQ0JBN0JCMTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnNcQwDwQCAAIwCQMHACQCL4AAADANBgkqhkiG9w0BAQsF AAOCAQEACyXlGN6Hk/phbgsQbkZXo3aAR8sa7oIesox8JcRQcu9exEYGP6AGnKmE wJjXNNtYMDmCSERgxg78kjTOpuppdvecjJ77yymdYw9UPIUnYgE6/bEeJLXatH0N 41Wq40V21krpxQL6imAoXwDFjAVBI/X4RjLq94RJkhdjFhXtoDYjxeruFrRm52Cj V6y/mMkvzR956EziSxC6qSMQthySRw33vk6GOpugaJma8McgT6J6wGQSPDIe5+tG sF18RggdADMkz0hhAF2l5emOlCjFj3niq/pCxXlaBSUBSfW01lQO0nY+Tjoxv3Ai c33aVQu+gDmsgM7nbX0EWGlr7CckoA== -----END CERTIFICATE-----Generated at Sat Apr 27 10:20:21 2024 by rpki-client on console-ams.rpki-client.org