$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/81F21152D1BD11EC9D8FBC52C4F9AE02.roa File: 81F21152D1BD11EC9D8FBC52C4F9AE02.roa (raw, json) Hash identifier: o/ca1C0ZW8e6WT51Xg0+GAtLq1PmKwd59KzBfJNW45Q= Subject key identifier: 2C:B1:8F:0B:57:54:27:DC:8E:09:FE:19:FC:19:C5:47:11:FC:C5:06 Certificate issuer: /CN=A91C9324/serialNumber=772841A26326314EA2E4383475DE31B6DCE7DBA5 Certificate serial: 022E Authority key identifier: 77:28:41:A2:63:26:31:4E:A2:E4:38:34:75:DE:31:B6:DC:E7:DB:A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyhBomMmMU6i5Dg0dd4xttzn26U.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/81F21152D1BD11EC9D8FBC52C4F9AE02.roa Signing time: Tue 05 Dec 2023 03:14:08 +0000 ROA not before: Tue 05 Dec 2023 03:14:08 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139739 IP address blocks: 103.144.117.0/24 maxlen: 24 2001:df1:c080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/dyhBomMmMU6i5Dg0dd4xttzn26U.crl rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/dyhBomMmMU6i5Dg0dd4xttzn26U.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyhBomMmMU6i5Dg0dd4xttzn26U.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 558 (0x22e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9324/serialNumber=772841A26326314EA2E4383475DE31B6DCE7DBA5 Validity Not Before: Dec 5 03:14:08 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656e9580-e4d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:b5:cc:58:e5:72:72:9c:3e:ed:7e:24:9c:3e: dd:fb:52:fc:27:37:b8:fc:f4:6d:00:dd:46:90:56: b7:c1:37:5d:d2:0a:24:7d:82:47:2f:70:42:ac:85: ac:16:4e:d0:ee:29:ec:aa:e8:ca:b7:e0:9d:c6:4d: b8:18:e3:4d:3e:74:96:ef:08:c3:db:0a:c5:bc:ef: 33:3b:29:09:38:5e:a5:2b:f9:ba:1a:03:f8:ff:da: 67:c3:2c:3f:68:0d:d3:f3:e6:92:06:88:a3:f6:ec: d6:40:97:4d:0e:ef:3a:52:91:b5:6c:25:9c:a9:69: 5c:02:82:f6:0c:e9:4e:d9:cb:1d:6e:74:bd:ed:17: e2:ff:f3:f3:28:a3:f7:8a:b6:43:17:bc:f7:5d:82: 1b:01:e5:50:8b:62:c1:c2:94:2a:7d:7a:09:4f:83: 7f:e5:9c:ad:9e:f5:96:22:b1:fb:60:f0:ca:2e:bd: d0:0d:d4:ca:0d:45:a4:96:b4:74:ed:ca:0b:99:d1: 06:22:5d:74:d0:02:18:ea:11:cd:46:af:e7:97:12: af:9b:6c:d3:19:2f:2f:63:a3:ed:41:9d:da:ef:53: ec:2a:e6:fd:1d:e5:47:9b:0f:f4:d4:d9:7e:98:13: 64:b8:54:73:98:c1:66:1f:08:07:38:32:fb:30:7f: 78:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B1:8F:0B:57:54:27:DC:8E:09:FE:19:FC:19:C5:47:11:FC:C5:06 X509v3 Authority Key Identifier: keyid:77:28:41:A2:63:26:31:4E:A2:E4:38:34:75:DE:31:B6:DC:E7:DB:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/dyhBomMmMU6i5Dg0dd4xttzn26U.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dyhBomMmMU6i5Dg0dd4xttzn26U.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9324/EF83E30ED00911EC92A16A3CC4F9AE02/81F21152D1BD11EC9D8FBC52C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.117.0/24 IPv6: 2001:df1:c080::/48 Signature Algorithm: sha256WithRSAEncryption 8e:27:1b:7b:ae:ba:6a:46:fd:56:29:81:30:33:36:3f:8a:5a: b5:63:22:99:68:1f:b5:81:cb:5f:89:87:10:5e:e6:77:94:45: 54:67:96:da:1d:0c:c7:d6:48:5b:4e:cc:ae:09:39:d8:83:f6: 43:f9:72:92:2f:af:10:95:9c:f4:60:bd:83:87:b1:d5:d5:12: 54:f3:2f:4f:c2:79:cf:f6:99:9c:50:2c:a4:0f:c1:54:e5:c8: 3a:79:a4:36:d6:33:83:8e:d6:33:93:fd:13:8b:ce:ad:2f:6c: ba:b7:a0:b2:b8:9c:c7:ab:48:6f:98:c1:57:68:26:49:fb:af: 1b:ac:1b:8c:70:4d:2c:01:af:95:b8:54:f8:3d:01:98:31:54: 00:0d:b9:76:bc:b0:a3:ad:23:c9:68:8b:70:f8:b8:f5:08:d5: a3:c6:4b:0e:4a:31:69:bd:f6:9f:30:2b:a3:d5:5a:54:f2:02: 68:f2:ca:9a:14:03:ea:d3:6f:29:94:68:79:eb:c6:9e:09:39: 88:c0:7f:e0:a2:b4:28:14:d5:b2:f2:cc:5d:2b:07:63:70:7d: 66:61:f0:04:a1:c5:bb:37:70:c0:f5:2d:ba:f9:70:54:fe:46: ba:7e:dd:43:82:79:71:ab:95:9d:10:64:95:0b:cf:df:10:69: 5b:09:fd:c3 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAi4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzkzMjQxMTAvBgNVBAUTKDc3Mjg0MUEyNjMyNjMxNEVBMkU0MzgzNDc1REUzMUI2 RENFN0RCQTUwHhcNMjMxMjA1MDMxNDA4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZlOTU4MC1lNGQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn7XMWOVycpw+7X4knD7d+1L8Jze4/PRtAN1GkFa3wTdd0gokfYJHL3BCrIWs Fk7Q7insqujKt+Cdxk24GONNPnSW7wjD2wrFvO8zOykJOF6lK/m6GgP4/9pnwyw/ aA3T8+aSBoij9uzWQJdNDu86UpG1bCWcqWlcAoL2DOlO2csdbnS97Rfi//PzKKP3 irZDF7z3XYIbAeVQi2LBwpQqfXoJT4N/5ZytnvWWIrH7YPDKLr3QDdTKDUWklrR0 7coLmdEGIl100AIY6hHNRq/nlxKvm2zTGS8vY6PtQZ3a71PsKub9HeVHmw/01Nl+ mBNkuFRzmMFmHwgHODL7MH94+QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFCyxjwtX VCfcjgn+GfwZxUcR/MUGMB8GA1UdIwQYMBaAFHcoQaJjJjFOouQ4NHXeMbbc59ul MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOTMyNC9FRjgzRTMwRUQw MDkxMUVDOTJBMTZBM0NDNEY5QUUwMi9keWhCb21NbU1VNmk1RGcwZGQ0eHR0em4y NlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2R5aEJvbU1tTVU2aTVEZzBkZDR4dHR6bjI2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzkzMjQvRUY4M0UzMEVEMDA5MTFFQzkyQTE2QTNDQzRGOUFFMDIvODFGMjExNTJE MUJEMTFFQzlEOEZCQzUyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnkHUwDwQCAAIwCQMHACABDfHAgDANBgkqhkiG9w0BAQsF AAOCAQEAjicbe666akb9VimBMDM2P4patWMimWgftYHLX4mHEF7md5RFVGeW2h0M x9ZIW07Mrgk52IP2Q/lyki+vEJWc9GC9g4ex1dUSVPMvT8J5z/aZnFAspA/BVOXI OnmkNtYzg47WM5P9E4vOrS9suregsricx6tIb5jBV2gmSfuvG6wbjHBNLAGvlbhU +D0BmDFUAA25drywo60jyWiLcPi49QjVo8ZLDkoxab32nzAro9VaVPICaPLKmhQD 6tNvKZRoeevGngk5iMB/4KK0KBTVsvLMXSsHY3B9ZmHwBKHFuzdwwPUtuvlwVP5G un7dQ4J5cauVnRBklQvP3xBpWwn9ww== -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:44 2024 by rpki-client on console-fra.rpki-client.org