$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/90F09734F1B311EDA789BB57C4F9AE02.roa File: 90F09734F1B311EDA789BB57C4F9AE02.roa (raw, json) Hash identifier: Io05Xb6ZXfWkbsW3AUpyVHZN7Vux4hW/DUhHHTSTn6g= Subject key identifier: 66:DC:43:5B:7B:C5:9E:83:EF:B2:DD:F4:5E:C5:89:44:0B:14:15:DA Certificate issuer: /CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Certificate serial: 04 Authority key identifier: 95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/90F09734F1B311EDA789BB57C4F9AE02.roa Signing time: Sun 14 May 2023 09:57:21 +0000 ROA not before: Sun 14 May 2023 09:57:21 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151215 IP address blocks: 103.161.8.0/23 maxlen: 24 2001:df2:67c0::/48 maxlen: 52 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:38:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4E15/serialNumber=95351A1927A8F10EBAD1CE3C6C4A5AC46515CA70 Validity Not Before: May 14 09:57:21 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6460b080-bb33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:46:14:53:14:d5:97:c5:e0:db:f7:37:8b:5c: cc:f3:bb:f9:16:7d:2c:55:03:c8:04:01:17:8d:73: 49:62:fb:4b:08:75:6b:0c:7e:84:24:70:30:dd:cb: 38:9a:2a:a4:04:df:e3:ef:c5:e8:f9:8e:84:ec:4d: 52:87:f6:3f:3c:b2:22:1d:64:b8:e0:ed:5d:da:45: 40:80:08:42:24:da:a0:5c:03:6f:28:e5:60:27:01: 74:f1:1c:b3:36:32:0e:61:f1:94:c9:63:8e:f9:e5: 6d:89:16:91:f8:e2:8c:24:eb:93:9f:56:0f:e1:0a: 31:60:91:6c:3b:22:80:0f:61:4e:c4:66:80:31:c2: f2:54:27:99:4b:68:57:c5:1e:96:e8:a6:5c:d7:ce: a2:b3:aa:11:11:f7:e0:72:51:aa:90:f1:76:90:ed: 96:e8:d9:10:8f:1e:86:95:e1:f7:e9:38:f8:fd:71: a9:bc:75:c1:49:9c:7c:71:7e:16:25:50:24:19:c6: 56:3d:fb:62:ec:3f:0e:39:d3:bf:98:94:3d:e5:e5: e8:07:ab:ab:e2:75:6b:7c:8b:a9:00:67:87:c2:58: d2:b5:60:3c:83:28:8d:bb:ef:0c:c5:96:f3:ef:8d: 0c:07:d9:47:0a:87:75:ca:69:52:4e:70:a2:5b:46: 3a:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:DC:43:5B:7B:C5:9E:83:EF:B2:DD:F4:5E:C5:89:44:0B:14:15:DA X509v3 Authority Key Identifier: keyid:95:35:1A:19:27:A8:F1:0E:BA:D1:CE:3C:6C:4A:5A:C4:65:15:CA:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/lTUaGSeo8Q660c48bEpaxGUVynA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lTUaGSeo8Q660c48bEpaxGUVynA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4E15/5DDB4440F1AC11EDA3D1B74FC4F9AE02/90F09734F1B311EDA789BB57C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.8.0/23 IPv6: 2001:df2:67c0::/48 Signature Algorithm: sha256WithRSAEncryption 27:19:f9:39:a2:d5:34:2c:0e:48:da:fd:52:1b:83:d6:ba:5f: 4d:23:b2:b7:11:9c:3e:b9:a4:02:71:47:c3:a9:ba:b5:7e:45: 03:05:ba:ab:8c:e9:03:f7:33:c7:bf:53:72:80:cc:34:71:63: af:74:2b:3b:bb:f2:92:e1:c0:fa:05:cc:ee:5a:ed:b1:da:12: f8:87:82:b9:64:2b:de:1f:71:bc:f9:b9:64:f3:cd:2d:63:3b: b4:0c:d1:4f:50:75:23:3e:8e:52:12:71:22:74:6d:b0:71:a4: f1:ad:e7:d5:29:32:49:2f:0c:19:55:32:c0:b7:08:8e:57:34: b0:37:7c:84:c2:69:3b:91:25:0f:f4:1c:15:e9:c6:67:98:a0: e8:0a:fe:db:db:3d:17:f2:91:d7:fa:57:e1:dc:a5:56:2f:56: c9:e4:3f:07:23:ad:15:41:d3:26:c0:57:18:dd:a4:bc:24:fd: e7:0a:98:98:3f:29:8a:3b:ab:cf:c5:7d:70:2b:60:86:cb:c3: 61:f6:15:90:c3:b9:10:ca:88:2d:25:7b:0f:9a:d3:5f:4f:ae: 30:c6:70:c9:01:06:e4:79:36:91:95:b9:a3:82:68:36:20:bd: 1d:dc:0b:20:50:31:d4:e0:08:22:08:c0:57:18:bb:e7:d0:58: df:c6:e9:4c -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NEUxNTExMC8GA1UEBRMoOTUzNTFBMTkyN0E4RjEwRUJBRDFDRTNDNkM0QTVBQzQ2 NTE1Q0E3MDAeFw0yMzA1MTQwOTU3MjFaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0NjBiMDgwLWJiMzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKRhRTFNWXxeDb9zeLXMzzu/kWfSxVA8gEAReNc0li+0sIdWsMfoQkcDDdyzia KqQE3+Pvxej5joTsTVKH9j88siIdZLjg7V3aRUCACEIk2qBcA28o5WAnAXTxHLM2 Mg5h8ZTJY4755W2JFpH44owk65OfVg/hCjFgkWw7IoAPYU7EZoAxwvJUJ5lLaFfF HpboplzXzqKzqhER9+ByUaqQ8XaQ7Zbo2RCPHoaV4ffpOPj9cam8dcFJnHxxfhYl UCQZxlY9+2LsPw4507+YlD3l5egHq6vidWt8i6kAZ4fCWNK1YDyDKI277wzFlvPv jQwH2UcKh3XKaVJOcKJbRjrVAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUZtxDW3vF noPvst30XsWJRAsUFdowHwYDVR0jBBgwFoAUlTUaGSeo8Q660c48bEpaxGUVynAw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ0RTE1LzVEREI0NDQwRjFB QzExRURBM0QxQjc0RkM0RjlBRTAyL2xUVWFHU2VvOFE2NjBjNDhiRXBheEdVVnlu QS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbFRVYUdTZW84UTY2MGM0OGJFcGF4R1VWeW5BLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NEUxNS81RERCNDQ0MEYxQUMxMUVEQTNEMUI3NEZDNEY5QUUwMi85MEYwOTczNEYx QjMxMUVEQTc4OUJCNTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWehCDAPBAIAAjAJAwcAIAEN8mfAMA0GCSqGSIb3DQEBCwUA A4IBAQAnGfk5otU0LA5I2v1SG4PWul9NI7K3EZw+uaQCcUfDqbq1fkUDBbqrjOkD 9zPHv1NygMw0cWOvdCs7u/KS4cD6BczuWu2x2hL4h4K5ZCveH3G8+blk880tYzu0 DNFPUHUjPo5SEnEidG2wcaTxrefVKTJJLwwZVTLAtwiOVzSwN3yEwmk7kSUP9BwV 6cZnmKDoCv7b2z0X8pHX+lfh3KVWL1bJ5D8HI60VQdMmwFcY3aS8JP3nCpiYPymK O6vPxX1wK2CGy8Nh9hWQw7kQyogtJXsPmtNfT64wxnDJAQbkeTaRlbmjgmg2IL0d 3AsgUDHU4AgiCMBXGLvn0FjfxulM -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:38 2024 by rpki-client on console-fra.rpki-client.org