$ rpki-client -vvf rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/DA1A98C4DABE11EAB12A5209C4F9AE02.roa File: DA1A98C4DABE11EAB12A5209C4F9AE02.roa (raw, json) Hash identifier: lOFt9Ddz5HQ3WdVmfrLlyFdn9Z2DE/Ib30wpfd25yD8= Subject key identifier: 17:EB:42:22:B9:E9:78:58:9F:EC:25:6B:1F:4F:ED:04:54:C0:EB:B3 Certificate issuer: /CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Certificate serial: 06F1 Authority key identifier: 68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/DA1A98C4DABE11EAB12A5209C4F9AE02.roa Signing time: Wed 08 Nov 2023 22:09:56 +0000 ROA not before: Wed 08 Nov 2023 22:09:56 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 132435 IP address blocks: 103.21.44.0/22 maxlen: 22 103.21.44.0/24 maxlen: 24 103.21.45.0/24 maxlen: 24 103.21.46.0/24 maxlen: 24 103.21.47.0/24 maxlen: 24 2406:8b00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:47:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1777 (0x6f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C4750/serialNumber=68763E92A2C17853167576651103F81F59ACDC1A Validity Not Before: Nov 8 22:09:56 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=654c0734-73e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:9d:80:05:12:e5:81:cf:11:94:39:56:f5:9f: 81:18:8c:fc:87:80:de:d5:ce:ed:20:e1:15:cd:f8: 7a:d5:31:80:10:06:d3:b8:4b:85:a8:15:c8:68:4b: dd:58:af:51:5f:9b:17:a7:4f:46:47:db:fa:88:58: 86:89:8a:64:47:53:5a:8e:e7:bc:df:b6:e7:fa:40: 8a:6c:0c:b4:6e:a5:be:20:42:26:d0:1d:e1:c9:61: 9f:94:43:79:bf:e6:6f:8d:07:80:ec:7d:fa:d1:4c: c3:b1:59:a5:36:51:53:61:77:cb:1a:81:67:90:7e: 89:a2:80:4b:a6:9c:16:3d:c1:bf:70:b0:61:cc:cd: d2:61:26:ee:8e:a2:a1:67:32:25:72:75:5c:f5:a8: fb:cf:83:d7:0b:d5:05:00:7f:53:ac:c0:87:e4:8b: 76:cb:02:69:3a:17:84:b3:48:d0:c4:f8:ad:92:36: 51:64:d2:05:fb:7b:52:82:0e:ed:ed:4a:f9:ac:be: 02:ae:a7:ec:41:93:7a:24:03:49:d2:98:6a:d6:8c: d9:f5:c3:7a:4f:8f:79:14:42:dc:e1:ce:77:b6:76: 9d:b8:41:ba:85:d5:ea:93:82:44:ae:22:c1:de:c6: 43:43:fb:97:33:57:81:6e:da:1c:2a:7e:45:ae:ca: 84:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:EB:42:22:B9:E9:78:58:9F:EC:25:6B:1F:4F:ED:04:54:C0:EB:B3 X509v3 Authority Key Identifier: keyid:68:76:3E:92:A2:C1:78:53:16:75:76:65:11:03:F8:1F:59:AC:DC:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aHY-kqLBeFMWdXZlEQP4H1ms3Bo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C4750/90D5EC5ADABD11EA8FC62387C4F9AE02/DA1A98C4DABE11EAB12A5209C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.44.0/22 IPv6: 2406:8b00::/32 Signature Algorithm: sha256WithRSAEncryption 73:ac:66:64:11:db:c2:9f:b8:92:f2:50:20:35:c0:93:47:45: d6:23:71:d9:33:d1:4e:d3:7c:15:73:01:5f:10:7f:e2:1f:6b: a4:10:56:b4:e0:74:75:8e:88:3e:12:37:68:2d:b7:4a:84:99: 34:04:34:cb:8b:a1:54:89:36:97:f0:9e:aa:5f:52:ca:f0:00: 5f:d4:f2:7a:b6:8d:3a:12:3b:f4:ee:13:b8:d5:77:79:1f:2a: ff:9f:67:e7:68:6e:7b:f2:e1:65:59:72:f5:9f:3b:97:6c:90: 13:cd:3b:59:81:69:5b:3f:1f:9c:e1:63:62:79:87:ba:0b:0f: de:91:95:b6:24:a3:37:57:da:20:d6:1c:92:ce:e5:ca:c4:d8: bd:78:d3:fc:2a:bb:f3:45:bd:cb:b6:a6:ab:89:85:94:e1:c6: 77:12:7f:d6:f6:8f:17:84:2a:4c:76:dc:21:cf:9c:0f:e5:fc: f9:7a:06:7f:65:86:ca:ed:81:0f:5d:73:6c:af:c4:05:0a:22: 3b:61:03:8c:1d:9f:13:6d:fb:e8:0c:0d:dc:87:31:05:06:28: 15:0b:9f:a1:77:4e:04:8d:b5:7d:0e:55:ed:d9:e7:1c:f5:e8: 4a:3c:34:f2:7b:c6:9d:d5:a5:6e:b3:2c:f1:2f:ef:87:bd:ef: 9c:0a:5d:ab -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBvEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzQ3NTAxMTAvBgNVBAUTKDY4NzYzRTkyQTJDMTc4NTMxNjc1NzY2NTExMDNGODFG NTlBQ0RDMUEwHhcNMjMxMTA4MjIwOTU2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRjMDczNC03M2UwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4p2ABRLlgc8RlDlW9Z+BGIz8h4De1c7tIOEVzfh61TGAEAbTuEuFqBXIaEvd WK9RX5sXp09GR9v6iFiGiYpkR1Najue837bn+kCKbAy0bqW+IEIm0B3hyWGflEN5 v+ZvjQeA7H360UzDsVmlNlFTYXfLGoFnkH6JooBLppwWPcG/cLBhzM3SYSbujqKh ZzIlcnVc9aj7z4PXC9UFAH9TrMCH5It2ywJpOheEs0jQxPitkjZRZNIF+3tSgg7t 7Ur5rL4CrqfsQZN6JANJ0phq1ozZ9cN6T495FELc4c53tnaduEG6hdXqk4JEriLB 3sZDQ/uXM1eBbtocKn5FrsqE6QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFBfrQiK5 6XhYn+wlax9P7QRUwOuzMB8GA1UdIwQYMBaAFGh2PpKiwXhTFnV2ZRED+B9ZrNwa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDNDc1MC85MEQ1RUM1QURB QkQxMUVBOEZDNjIzODdDNEY5QUUwMi9hSFkta3FMQmVGTVdkWFpsRVFQNEgxbXMz Qm8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FIWS1rcUxCZUZNV2RYWmxFUVA0SDFtczNCby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzQ3NTAvOTBENUVDNUFEQUJEMTFFQThGQzYyMzg3QzRGOUFFMDIvREExQTk4QzRE QUJFMTFFQUIxMkE1MjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnFSwwDQQCAAIwBwMFACQGiwAwDQYJKoZIhvcNAQELBQAD ggEBAHOsZmQR28KfuJLyUCA1wJNHRdYjcdkz0U7TfBVzAV8Qf+Ifa6QQVrTgdHWO iD4SN2gtt0qEmTQENMuLoVSJNpfwnqpfUsrwAF/U8nq2jToSO/TuE7jVd3kfKv+f Z+dobnvy4WVZcvWfO5dskBPNO1mBaVs/H5zhY2J5h7oLD96RlbYkozdX2iDWHJLO 5crE2L140/wqu/NFvcu2pquJhZThxncSf9b2jxeEKkx23CHPnA/l/Pl6Bn9lhsrt gQ9dc2yvxAUKIjthA4wdnxNt++gMDdyHMQUGKBULn6F3TgSNtX0OVe3Z5xz16Eo8 NPJ7xp3VpW6zLPEv74e975wKXas= -----END CERTIFICATE-----Generated at Fri May 31 23:53:08 2024 by rpki-client on console-fra.rpki-client.org