$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/9B3244E038A411EDB5C86A28C4F9AE02.roa File: 9B3244E038A411EDB5C86A28C4F9AE02.roa (raw, json) Hash identifier: vOXi2NZeIVF+yQnURJl+z60/HT9gL5WRkT96yJYHYd8= Subject key identifier: 1C:60:E2:40:18:3C:9B:77:49:95:27:A8:84:8A:6D:A3:BC:F6:21:85 Certificate issuer: /CN=A91BF8F4/serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Certificate serial: 0123 Authority key identifier: 14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/9B3244E038A411EDB5C86A28C4F9AE02.roa Signing time: Mon 19 Feb 2024 04:26:08 +0000 ROA not before: Mon 19 Feb 2024 04:26:08 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 149630 IP address blocks: 103.183.38.0/23 maxlen: 23 103.183.38.0/24 maxlen: 24 103.183.39.0/24 maxlen: 24 2001:df0:83c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 291 (0x123) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8F4/serialNumber=14F9FF4A23A720B73BAFE603353F11EB97392719 Validity Not Before: Feb 19 04:26:08 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65d2d860-0ca4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:4b:2a:de:bf:66:37:5c:45:f3:43:af:e9:e5: 4e:fa:15:09:38:4a:53:9a:e7:2a:3c:cb:4c:65:5a: 65:8b:17:84:ed:1b:62:d9:cc:8b:a5:06:08:bf:22: 08:b7:a8:3d:a1:86:13:6b:1d:7e:f5:07:a5:4e:4a: 8d:7b:10:78:2d:4a:b7:ec:d4:8f:50:b0:8d:da:fd: d5:eb:1a:be:8b:d1:e5:f2:ca:8f:a4:fe:f1:9e:f6: f7:5c:9a:2f:75:c9:69:73:21:b8:3a:e3:49:5a:b1: 5f:9f:85:06:d6:a7:48:00:97:a3:20:b5:79:33:19: ee:4e:4d:fa:7e:a4:99:0b:16:a4:33:01:07:33:e3: 00:73:b2:10:3f:45:17:45:83:ea:f6:12:34:fe:89: 47:5c:2e:26:9b:69:02:7c:31:ce:6e:70:c3:d4:c0: 2d:f3:af:bb:e3:8a:86:5a:91:69:f1:dd:29:df:bd: fc:52:46:d6:c8:00:ce:e4:44:f3:ab:89:b2:8f:43: 08:35:bd:a6:a3:84:68:03:bc:2f:40:5f:66:00:8c: 3f:5b:67:90:e6:c7:6c:78:e6:6b:f3:5e:3a:ed:3a: 95:5a:35:b5:f6:1c:8f:21:80:61:9a:20:c5:8f:c5: b4:e2:26:82:20:b2:f8:c8:99:c9:ee:88:33:30:b9: 72:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:60:E2:40:18:3C:9B:77:49:95:27:A8:84:8A:6D:A3:BC:F6:21:85 X509v3 Authority Key Identifier: keyid:14:F9:FF:4A:23:A7:20:B7:3B:AF:E6:03:35:3F:11:EB:97:39:27:19 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/FPn_SiOnILc7r-YDNT8R65c5Jxk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FPn_SiOnILc7r-YDNT8R65c5Jxk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8F4/707765A838A111ED9F3C0C82C4F9AE02/9B3244E038A411EDB5C86A28C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.38.0/23 IPv6: 2001:df0:83c0::/48 Signature Algorithm: sha256WithRSAEncryption b0:0b:b3:43:8a:13:54:77:a1:f8:99:76:81:1b:e9:7d:b3:6e: 59:0a:3b:98:2f:a6:8a:fa:4c:5a:7d:7e:a9:f8:cb:d3:fb:41: 8e:eb:f9:f0:5e:f5:16:eb:a9:9d:65:41:92:1b:c8:06:02:34: 69:b1:8c:86:98:cd:f1:49:c1:ed:7e:ce:6d:64:99:ba:a2:16: eb:05:e7:19:50:16:99:9a:37:e8:fb:81:0c:5a:8c:3f:a4:12: 1a:4e:b0:a6:d7:b7:f2:aa:87:e0:ab:da:3e:89:4a:b3:68:76: 3a:ab:93:dc:15:0e:40:9c:8e:dc:31:90:77:8f:56:3e:4e:71: f4:b7:91:a9:88:54:9e:48:d0:e7:1c:c5:33:ec:d5:d2:39:bb: cc:58:e7:0f:9f:66:31:3d:91:a8:0d:27:dd:70:fb:e1:26:0d: 77:1f:ec:3d:1a:fa:58:cf:27:6f:c5:fa:43:78:2c:44:2d:d8: 5f:4b:cb:bf:a9:47:5d:ab:e3:98:77:31:ea:d0:2f:e2:72:db: 4e:c6:01:9f:24:67:06:2a:5c:a1:b5:43:2c:dd:09:99:a9:67: 3e:11:8f:42:38:2f:93:19:08:81:1e:ce:87:69:06:5b:e9:c7: 27:a9:4c:c6:5c:63:fa:c5:62:46:b1:3f:8f:d1:4a:0e:4d:76: 49:4e:3f:17 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICASMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RjQxMTAvBgNVBAUTKDE0RjlGRjRBMjNBNzIwQjczQkFGRTYwMzM1M0YxMUVC OTczOTI3MTkwHhcNMjQwMjE5MDQyNjA4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWQyZDg2MC0wY2E0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxEsq3r9mN1xF80Ov6eVO+hUJOEpTmucqPMtMZVplixeE7Rti2cyLpQYIvyII t6g9oYYTax1+9QelTkqNexB4LUq37NSPULCN2v3V6xq+i9Hl8sqPpP7xnvb3XJov dclpcyG4OuNJWrFfn4UG1qdIAJejILV5MxnuTk36fqSZCxakMwEHM+MAc7IQP0UX RYPq9hI0/olHXC4mm2kCfDHObnDD1MAt86+744qGWpFp8d0p3738UkbWyADO5ETz q4myj0MINb2mo4RoA7wvQF9mAIw/W2eQ5sdseOZr81467TqVWjW19hyPIYBhmiDF j8W04iaCILL4yJnJ7ogzMLlyMQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBxg4kAY PJt3SZUnqISKbaO89iGFMB8GA1UdIwQYMBaAFBT5/0ojpyC3O6/mAzU/EeuXOScZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhGNC83MDc3NjVBODM4 QTExMUVEOUYzQzBDODJDNEY5QUUwMi9GUG5fU2lPbklMYzdyLVlETlQ4UjY1YzVK eGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZQbl9TaU9uSUxjN3ItWUROVDhSNjVjNUp4ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY4RjQvNzA3NzY1QTgzOEExMTFFRDlGM0MwQzgyQzRGOUFFMDIvOUIzMjQ0RTAz OEE0MTFFREI1Qzg2QTI4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFntyYwDwQCAAIwCQMHACABDfCDwDANBgkqhkiG9w0BAQsF AAOCAQEAsAuzQ4oTVHeh+Jl2gRvpfbNuWQo7mC+mivpMWn1+qfjL0/tBjuv58F71 FuupnWVBkhvIBgI0abGMhpjN8UnB7X7ObWSZuqIW6wXnGVAWmZo36PuBDFqMP6QS Gk6wpte38qqH4KvaPolKs2h2OquT3BUOQJyO3DGQd49WPk5x9LeRqYhUnkjQ5xzF M+zV0jm7zFjnD59mMT2RqA0n3XD74SYNdx/sPRr6WM8nb8X6Q3gsRC3YX0vLv6lH XavjmHcx6tAv4nLbTsYBnyRnBipcobVDLN0JmalnPhGPQjgvkxkIgR7Oh2kGW+nH J6lMxlxj+sViRrE/j9FKDk12SU4/Fw== -----END CERTIFICATE-----Generated at Sat Jun 15 06:11:20 2024 by rpki-client on console-fra.rpki-client.org