$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/32D39C06224511EE81776175C4F9AE02.roa File: 32D39C06224511EE81776175C4F9AE02.roa (raw, json) Hash identifier: 1b01HrQ984mzb/02NyzWUFZzcTsdrWy3Ymvx1U4TcOM= Subject key identifier: FF:2E:D8:25:DC:D1:CC:AD:99:86:AD:DC:84:9F:4A:02:54:3A:75:CE Certificate issuer: /CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Certificate serial: A5 Authority key identifier: 11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/32D39C06224511EE81776175C4F9AE02.roa Signing time: Wed 17 Apr 2024 07:09:31 +0000 ROA not before: Wed 17 Apr 2024 07:09:31 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149621 IP address blocks: 103.116.80.0/23 maxlen: 23 103.116.80.0/24 maxlen: 24 103.116.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 165 (0xa5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD844/serialNumber=1164DA60434DEE5EB14BB53D4B594E665DF26FF6 Validity Not Before: Apr 17 07:09:31 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661f75a9-97bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e8:2e:a3:f8:b7:01:db:b7:3c:27:f1:5f:9b: a4:10:19:fc:cb:d2:84:be:92:c0:0c:89:da:d3:29: d8:fa:cb:5b:b4:dc:8e:e9:bc:30:b5:7f:02:1f:88: ac:9c:ad:92:fc:aa:01:30:eb:2b:49:ff:13:2d:39: 96:65:31:66:2c:1d:23:92:da:88:7a:91:fe:d2:4a: ee:d1:7e:48:52:5f:84:e7:db:da:bb:7d:45:41:bb: 5d:b2:10:f9:ed:f0:ca:ef:da:63:e8:cb:93:fe:81: ac:28:d4:45:48:67:be:a6:da:fd:ce:b1:e3:36:82: 91:61:ec:c1:3e:95:27:53:80:71:9f:55:8b:09:41: 04:b9:07:9b:34:2e:f0:05:8c:25:39:3f:40:ca:13: 98:c1:32:cd:80:ac:23:90:a0:34:ae:93:e0:4f:62: 50:1d:8e:f7:26:cf:f0:5e:c4:62:03:80:cb:3c:3b: 92:52:63:8b:a0:b5:d5:22:9e:88:19:4b:cd:72:2b: f6:b0:27:1c:a5:5e:dc:06:ed:ab:de:a0:df:d3:80: 6d:0c:7f:74:8e:7e:07:cf:f8:75:ba:7d:79:b5:97: 3a:6a:ca:6d:92:1f:e6:4c:a1:1a:ca:12:bd:21:80: aa:0e:eb:3b:a1:a9:dd:f8:c8:31:14:76:4e:69:3e: 78:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2E:D8:25:DC:D1:CC:AD:99:86:AD:DC:84:9F:4A:02:54:3A:75:CE X509v3 Authority Key Identifier: keyid:11:64:DA:60:43:4D:EE:5E:B1:4B:B5:3D:4B:59:4E:66:5D:F2:6F:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/EWTaYENN7l6xS7U9S1lOZl3yb_Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EWTaYENN7l6xS7U9S1lOZl3yb_Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD844/78769474165211EE914B7B56C4F9AE02/32D39C06224511EE81776175C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.116.80.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:96:43:ae:fd:bc:70:61:dd:f4:12:b5:a9:8e:1d:e0:ee:ad: 09:8f:81:dd:74:d1:3d:f2:32:1f:c6:3e:f2:9e:8d:43:ab:93: 65:e2:d1:ba:dc:b8:99:7d:2b:8e:30:63:55:06:d1:2f:d3:ab: b9:2f:64:d9:ea:9d:c0:0f:c9:18:56:70:54:33:29:22:84:2c: 0a:44:31:ea:ba:9f:d8:c6:6d:d2:57:7e:c1:6e:a2:51:cf:50: 1f:84:b8:d7:f4:39:36:4e:de:5f:9e:f7:24:82:58:fb:b3:2a: 32:db:20:c2:b9:f0:da:b1:c3:fc:ed:f2:8d:a1:98:6c:1b:27: a4:7b:96:d9:30:6a:65:75:12:1e:d9:5d:6f:e0:f7:31:d4:c3: fb:e1:98:cf:f4:47:6d:b4:a9:37:7f:6a:cb:d7:dc:02:14:0f: af:23:ee:34:4b:dc:3b:9f:4d:b6:6d:07:40:bf:90:3d:98:1e: 51:e0:5d:02:b2:23:7a:6d:a8:3a:89:d9:05:2d:75:65:65:42: 92:6b:71:3e:e3:c9:29:a2:c0:2a:a7:e8:1c:27:f4:2f:e2:23: dd:c2:40:de:84:5f:96:9f:3e:0f:85:a5:14:b4:8a:79:84:06: 90:42:9a:7a:35:74:96:90:0a:c3:a7:03:13:fa:49:84:ff:c4: 6e:70:fa:09 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAKUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ4NDQxMTAvBgNVBAUTKDExNjREQTYwNDM0REVFNUVCMTRCQjUzRDRCNTk0RTY2 NURGMjZGRjYwHhcNMjQwNDE3MDcwOTMxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmNzVhOS05N2JjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uguo/i3Adu3PCfxX5ukEBn8y9KEvpLADIna0ynY+stbtNyO6bwwtX8CH4is nK2S/KoBMOsrSf8TLTmWZTFmLB0jktqIepH+0kru0X5IUl+E59vau31FQbtdshD5 7fDK79pj6MuT/oGsKNRFSGe+ptr9zrHjNoKRYezBPpUnU4Bxn1WLCUEEuQebNC7w BYwlOT9AyhOYwTLNgKwjkKA0rpPgT2JQHY73Js/wXsRiA4DLPDuSUmOLoLXVIp6I GUvNciv2sCccpV7cBu2r3qDf04BtDH90jn4Hz/h1un15tZc6asptkh/mTKEayhK9 IYCqDus7oand+MgxFHZOaT54QQIDAQABo4IClTCCApEwHQYDVR0OBBYEFP8u2CXc 0cytmYat3ISfSgJUOnXOMB8GA1UdIwQYMBaAFBFk2mBDTe5esUu1PUtZTmZd8m/2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDg0NC83ODc2OTQ3NDE2 NTIxMUVFOTE0QjdCNTZDNEY5QUUwMi9FV1RhWUVOTjdsNnhTN1U5UzFsT1psM3li X1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0VXVGFZRU5ON2w2eFM3VTlTMWxPWmwzeWJfWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQ4NDQvNzg3Njk0NzQxNjUyMTFFRTkxNEI3QjU2QzRGOUFFMDIvMzJEMzlDMDYy MjQ1MTFFRTgxNzc2MTc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFndFAwDQYJKoZIhvcNAQELBQADggEBAF+WQ679vHBh3fQS tamOHeDurQmPgd100T3yMh/GPvKejUOrk2Xi0brcuJl9K44wY1UG0S/Tq7kvZNnq ncAPyRhWcFQzKSKELApEMeq6n9jGbdJXfsFuolHPUB+EuNf0OTZO3l+e9ySCWPuz KjLbIMK58Nqxw/zt8o2hmGwbJ6R7ltkwamV1Eh7ZXW/g9zHUw/vhmM/0R220qTd/ asvX3AIUD68j7jRL3DufTbZtB0C/kD2YHlHgXQKyI3ptqDqJ2QUtdWVlQpJrcT7j ySmiwCqn6Bwn9C/iI93CQN6EX5afPg+FpRS0inmEBpBCmno1dJaQCsOnAxP6SYT/ xG5w+gk= -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:31 2024 by rpki-client on console-ams.rpki-client.org