$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/FD58613E7B7B11E99CCAAF73C4F9AE02.roa File: FD58613E7B7B11E99CCAAF73C4F9AE02.roa (raw, json) Hash identifier: 1zH3grg0ceGpDk/dZf7X9+Paneb19S8sTUxBY3dwpvE= Subject key identifier: E4:ED:D2:B7:15:47:36:2F:09:0D:FB:00:45:72:6D:45:8E:31:F9:05 Certificate issuer: /CN=A91BFCB1/serialNumber=7B112F9EBEC342DFCAC774EB5C2681125C65E0CF Certificate serial: 0E96 Authority key identifier: 7B:11:2F:9E:BE:C3:42:DF:CA:C7:74:EB:5C:26:81:12:5C:65:E0:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exEvnr7DQt_Kx3TrXCaBElxl4M8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/FD58613E7B7B11E99CCAAF73C4F9AE02.roa Signing time: Thu 28 Mar 2024 18:26:47 +0000 ROA not before: Thu 28 Mar 2024 18:26:47 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138943 IP address blocks: 103.137.132.0/22 maxlen: 24 2404:b140::/32 maxlen: 42 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/exEvnr7DQt_Kx3TrXCaBElxl4M8.crl rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/exEvnr7DQt_Kx3TrXCaBElxl4M8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exEvnr7DQt_Kx3TrXCaBElxl4M8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 18:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3734 (0xe96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFCB1/serialNumber=7B112F9EBEC342DFCAC774EB5C2681125C65E0CF Validity Not Before: Mar 28 18:26:47 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605b666-ce8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f8:60:0f:c8:20:ba:a4:4d:42:49:25:10:0d: 73:a9:58:a3:c1:66:c2:f6:5b:5f:56:da:3e:ba:b2: cb:05:d0:93:58:01:b9:aa:69:b8:85:c7:38:c7:67: f0:54:10:35:17:2e:7d:f9:ee:b9:ba:4d:7b:8a:97: 4b:b1:d1:52:10:f0:28:1f:60:8b:eb:bc:92:3d:32: cf:0e:af:1b:ff:a8:7f:80:34:ec:ff:6f:4d:8c:8e: 2f:01:23:7e:d5:d6:66:d0:df:59:73:63:24:99:fe: a6:17:be:98:98:18:cc:b4:80:0b:9d:aa:5a:41:eb: 5a:2a:a9:9c:25:b0:08:19:bb:43:66:f4:6f:25:5a: 45:9b:42:be:48:0e:29:09:47:37:2d:40:7d:84:81: 2e:15:ed:4a:b5:d6:ec:2a:3c:e4:37:82:18:04:46: c1:47:60:c0:f0:bb:69:52:7b:9e:bb:04:ce:c1:7e: 3e:1a:ca:25:b1:99:92:4d:f8:97:d1:8f:75:65:ed: 08:a6:10:10:f1:91:d7:ca:4b:0f:00:ae:72:42:90: 92:5d:56:9c:f6:a6:74:91:02:06:f7:fd:e7:0c:00: 20:f2:45:69:0e:5e:a3:6c:85:f2:9d:28:7c:73:68: 2a:96:a4:80:ca:1f:5a:d0:2c:e7:ea:1d:86:63:1f: 2a:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:ED:D2:B7:15:47:36:2F:09:0D:FB:00:45:72:6D:45:8E:31:F9:05 X509v3 Authority Key Identifier: keyid:7B:11:2F:9E:BE:C3:42:DF:CA:C7:74:EB:5C:26:81:12:5C:65:E0:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/exEvnr7DQt_Kx3TrXCaBElxl4M8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/exEvnr7DQt_Kx3TrXCaBElxl4M8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFCB1/6E872D5E656F11E9BBE8F724C4F9AE02/FD58613E7B7B11E99CCAAF73C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.132.0/22 IPv6: 2404:b140::/32 Signature Algorithm: sha256WithRSAEncryption 15:b8:bd:e5:6e:be:ae:2a:04:ed:e6:76:95:c8:ea:22:f1:a0: 65:7d:d6:d5:cb:bf:79:9b:1e:b8:e4:f0:f7:84:e8:f1:d0:f0: 19:55:0c:75:29:c3:73:40:1d:44:9e:ec:78:22:9a:5e:6a:01: 29:60:e8:77:49:f7:3b:9a:6b:00:cf:b9:d6:b9:83:41:aa:89: 02:0f:23:1e:63:ad:fb:96:ed:48:08:87:25:28:90:8a:60:2c: 50:24:45:1f:39:cf:d0:d0:d9:bf:3e:d3:29:8a:49:20:a5:a1: 35:d7:95:17:16:c6:9c:b6:47:74:14:a4:ce:9a:88:ae:0b:41: c8:09:a4:a2:9c:70:bb:72:12:a2:e5:5e:ce:99:01:5a:e1:d5: aa:1a:48:23:c9:de:06:01:b4:b6:58:ff:77:15:9a:ec:76:a8: 75:d0:66:bf:b3:97:6c:3d:8f:14:76:81:f7:b5:ab:a0:b9:da: 41:aa:68:f3:f1:38:27:d3:05:1d:a6:ee:08:3f:96:1b:c6:ee: 62:56:d3:2f:e0:cf:ba:4d:29:55:5f:b4:d5:fd:58:55:a4:ee: dc:bc:31:87:53:66:a0:3d:e8:8c:d8:ce:0e:90:9f:c0:07:ca: 1f:83:b5:d9:0b:c6:b3:22:d8:a4:b7:36:44:d6:49:82:10:66: 25:16:b2:f0 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICDpYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZDQjExMTAvBgNVBAUTKDdCMTEyRjlFQkVDMzQyREZDQUM3NzRFQjVDMjY4MTEy NUM2NUUwQ0YwHhcNMjQwMzI4MTgyNjQ3WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1YjY2Ni1jZThiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2PhgD8gguqRNQkklEA1zqVijwWbC9ltfVto+urLLBdCTWAG5qmm4hcc4x2fw VBA1Fy59+e65uk17ipdLsdFSEPAoH2CL67ySPTLPDq8b/6h/gDTs/29NjI4vASN+ 1dZm0N9Zc2Mkmf6mF76YmBjMtIALnapaQetaKqmcJbAIGbtDZvRvJVpFm0K+SA4p CUc3LUB9hIEuFe1KtdbsKjzkN4IYBEbBR2DA8LtpUnueuwTOwX4+GsolsZmSTfiX 0Y91Ze0IphAQ8ZHXyksPAK5yQpCSXVac9qZ0kQIG9/3nDAAg8kVpDl6jbIXynSh8 c2gqlqSAyh9a0Czn6h2GYx8qswIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOTt0rcV RzYvCQ37AEVybUWOMfkFMB8GA1UdIwQYMBaAFHsRL56+w0Lfysd061wmgRJcZeDP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkNCMS82RTg3MkQ1RTY1 NkYxMUU5QkJFOEY3MjRDNEY5QUUwMi9leEV2bnI3RFF0X0t4M1RyWENhQkVseGw0 TTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2V4RXZucjdEUXRfS3gzVHJYQ2FCRWx4bDRNOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZDQjEvNkU4NzJENUU2NTZGMTFFOUJCRThGNzI0QzRGOUFFMDIvRkQ1ODYxM0U3 QjdCMTFFOTlDQ0FBRjczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJniYQwDQQCAAIwBwMFACQEsUAwDQYJKoZIhvcNAQELBQAD ggEBABW4veVuvq4qBO3mdpXI6iLxoGV91tXLv3mbHrjk8PeE6PHQ8BlVDHUpw3NA HUSe7Hgiml5qASlg6HdJ9zuaawDPuda5g0GqiQIPIx5jrfuW7UgIhyUokIpgLFAk RR85z9DQ2b8+0ymKSSCloTXXlRcWxpy2R3QUpM6aiK4LQcgJpKKccLtyEqLlXs6Z AVrh1aoaSCPJ3gYBtLZY/3cVmux2qHXQZr+zl2w9jxR2gfe1q6C52kGqaPPxOCfT BR2m7gg/lhvG7mJW0y/gz7pNKVVftNX9WFWk7ty8MYdTZqA96IzYzg6Qn8AHyh+D tdkLxrMi2KS3NkTWSYIQZiUWsvA= -----END CERTIFICATE-----Generated at Thu Jun 6 21:11:32 2024 by rpki-client on console-ams.rpki-client.org