$ rpki-client -vvf rpki.apnic.net/member_repository/A91D5749/C70EC3BA72CC11ED908F6F0FC4F9AE02/FA57A19A72CE11ED9E7FF20FC4F9AE02.roa File: FA57A19A72CE11ED9E7FF20FC4F9AE02.roa (raw, json) Hash identifier: RARLG6ddCiFkv6CIhSFQ0t3slXGfpP4FXyuNznubIiM= Subject key identifier: 4E:ED:46:9E:76:63:49:86:23:34:F5:A4:28:41:A4:E0:12:E1:98:55 Certificate issuer: /CN=A91D5749/serialNumber=795301C68F87F04A1F9F499BDF2D29F38457FBD3 Certificate serial: 8B Authority key identifier: 79:53:01:C6:8F:87:F0:4A:1F:9F:49:9B:DF:2D:29:F3:84:57:FB:D3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eVMBxo-H8Eofn0mb3y0p84RX-9M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D5749/C70EC3BA72CC11ED908F6F0FC4F9AE02/FA57A19A72CE11ED9E7FF20FC4F9AE02.roa Signing time: Thu 31 Aug 2023 04:34:16 +0000 ROA not before: Thu 31 Aug 2023 04:34:16 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 134213 IP address blocks: 103.191.106.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D5749/C70EC3BA72CC11ED908F6F0FC4F9AE02/eVMBxo-H8Eofn0mb3y0p84RX-9M.crl rsync://rpki.apnic.net/member_repository/A91D5749/C70EC3BA72CC11ED908F6F0FC4F9AE02/eVMBxo-H8Eofn0mb3y0p84RX-9M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eVMBxo-H8Eofn0mb3y0p84RX-9M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 06:02:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 139 (0x8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D5749/serialNumber=795301C68F87F04A1F9F499BDF2D29F38457FBD3 Validity Not Before: Aug 31 04:34:16 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64f01848-443c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:52:a1:7d:25:5b:ff:b1:d7:15:9c:7a:25:9b: 47:98:53:49:79:4a:fa:ac:fe:bc:c8:6a:9c:93:79: 14:17:9a:d1:09:aa:33:6d:75:ac:e2:ca:95:8e:23: 4b:da:3f:12:39:f3:74:b3:b2:22:bd:62:22:aa:25: ed:02:80:a5:03:0d:b2:9f:03:e5:c5:0a:b8:9e:ae: 78:8a:fd:26:35:d7:86:57:da:f9:24:04:9d:95:a6: 98:b7:fc:1b:51:71:f8:7a:00:a0:98:11:ac:9e:35: 35:e1:c5:fe:60:04:f8:39:0e:c4:50:c6:83:82:2e: 54:6a:57:1e:16:4d:e7:35:13:bb:df:a3:52:75:a8: d0:a1:35:74:30:94:fc:55:6b:02:68:76:f8:f8:3a: 15:19:08:74:d9:01:50:14:3d:f8:42:07:18:3f:0a: d2:b1:49:aa:85:a7:bf:d4:2c:06:f0:38:1c:34:b4: fd:bd:ce:73:71:af:12:45:03:82:52:ad:ef:0e:c7: 1f:29:25:1a:18:0c:51:0d:99:2a:df:4c:85:b8:a2: eb:3f:9e:35:59:c4:5f:81:87:17:00:5a:74:b6:93: 19:21:91:13:f4:ce:fd:14:d1:36:28:60:01:df:e5: 46:22:dc:20:12:ae:28:ce:55:aa:a5:97:54:aa:ee: ea:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:ED:46:9E:76:63:49:86:23:34:F5:A4:28:41:A4:E0:12:E1:98:55 X509v3 Authority Key Identifier: keyid:79:53:01:C6:8F:87:F0:4A:1F:9F:49:9B:DF:2D:29:F3:84:57:FB:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D5749/C70EC3BA72CC11ED908F6F0FC4F9AE02/eVMBxo-H8Eofn0mb3y0p84RX-9M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eVMBxo-H8Eofn0mb3y0p84RX-9M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D5749/C70EC3BA72CC11ED908F6F0FC4F9AE02/FA57A19A72CE11ED9E7FF20FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.191.106.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:c6:97:f3:e4:57:c1:65:a0:54:6a:59:85:d1:b6:c7:da:2b: 07:cf:da:3b:39:ad:c5:2d:b3:de:26:3d:8b:24:b5:1d:4c:67: 43:09:ee:85:22:02:b1:fe:49:d6:e1:d0:3d:5c:c3:e2:e4:c4: 48:f8:74:ca:92:f2:07:69:2b:4e:26:df:82:d4:da:94:a8:a1: 40:bf:54:31:e3:68:27:02:3a:4c:fb:20:94:79:22:22:39:19: 59:df:03:fb:8a:a5:38:a6:34:d4:43:28:68:53:3e:88:a7:2a: 40:88:2d:1a:e3:21:ce:64:e1:b7:fe:3c:90:81:b0:3b:84:22: 33:f6:13:04:ba:17:8c:db:8f:65:11:0b:cc:df:9c:1a:b0:af: a0:09:02:0f:d7:c1:06:a3:bd:f0:4e:5c:70:39:88:c6:d2:49: 63:a0:31:3b:5b:0f:a3:73:25:aa:a2:7c:75:c8:8c:ef:2a:99: b9:85:a5:f5:9e:8a:fc:13:14:66:2e:30:8a:b0:c8:bf:b7:b8: dc:1b:7b:5b:56:97:c4:d1:01:38:4e:69:ea:60:37:a7:8f:ec: 59:28:b0:b1:70:e1:2c:bf:2f:59:cb:80:0b:6a:7c:12:c2:39: 67:5a:06:f0:b8:11:c7:79:54:c1:60:0e:3f:99:38:fe:9b:4c: 13:72:95:49 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU3NDkxMTAvBgNVBAUTKDc5NTMwMUM2OEY4N0YwNEExRjlGNDk5QkRGMkQyOUYz ODQ1N0ZCRDMwHhcNMjMwODMxMDQzNDE2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGYwMTg0OC00NDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuVKhfSVb/7HXFZx6JZtHmFNJeUr6rP68yGqck3kUF5rRCaozbXWs4sqVjiNL 2j8SOfN0s7IivWIiqiXtAoClAw2ynwPlxQq4nq54iv0mNdeGV9r5JASdlaaYt/wb UXH4egCgmBGsnjU14cX+YAT4OQ7EUMaDgi5UalceFk3nNRO736NSdajQoTV0MJT8 VWsCaHb4+DoVGQh02QFQFD34QgcYPwrSsUmqhae/1CwG8DgcNLT9vc5zca8SRQOC Uq3vDscfKSUaGAxRDZkq30yFuKLrP541WcRfgYcXAFp0tpMZIZET9M79FNE2KGAB 3+VGItwgEq4ozlWqpZdUqu7qkQIDAQABo4IClTCCApEwHQYDVR0OBBYEFE7tRp52 Y0mGIzT1pChBpOAS4ZhVMB8GA1UdIwQYMBaAFHlTAcaPh/BKH59Jm98tKfOEV/vT MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTc0OS9DNzBFQzNCQTcy Q0MxMUVEOTA4RjZGMEZDNEY5QUUwMi9lVk1CeG8tSDhFb2ZuMG1iM3kwcDg0Ulgt OU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2VWTUJ4by1IOEVvZm4wbWIzeTBwODRSWC05TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU3NDkvQzcwRUMzQkE3MkNDMTFFRDkwOEY2RjBGQzRGOUFFMDIvRkE1N0ExOUE3 MkNFMTFFRDlFN0ZGMjBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnv2owDQYJKoZIhvcNAQELBQADggEBAD/Gl/PkV8FloFRq WYXRtsfaKwfP2js5rcUts94mPYsktR1MZ0MJ7oUiArH+Sdbh0D1cw+LkxEj4dMqS 8gdpK04m34LU2pSooUC/VDHjaCcCOkz7IJR5IiI5GVnfA/uKpTimNNRDKGhTPoin KkCILRrjIc5k4bf+PJCBsDuEIjP2EwS6F4zbj2URC8zfnBqwr6AJAg/XwQajvfBO XHA5iMbSSWOgMTtbD6NzJaqifHXIjO8qmbmFpfWeivwTFGYuMIqwyL+3uNwbe1tW l8TRAThOaepgN6eP7FkosLFw4Sy/L1nLgAtqfBLCOWdaBvC4Ecd5VMFgDj+ZOP6b TBNylUk= -----END CERTIFICATE-----Generated at Fri Jun 7 06:49:20 2024 by rpki-client on console-fra.rpki-client.org