$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa File: 3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa (raw, json) Hash identifier: PYkBM0N8dnLCKVgIScQqnIsMIgIRaDaumK5APLy/Cew= Subject key identifier: C0:0F:6D:71:82:14:39:D5:C6:DD:CF:F7:09:2A:94:2E:EC:9D:30:A5 Certificate issuer: /CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Certificate serial: 58 Authority key identifier: 93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa Signing time: Sat 03 Feb 2024 06:38:35 +0000 ROA not before: Sat 03 Feb 2024 06:38:35 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 18155 IP address blocks: 103.161.216.0/23 maxlen: 23 103.161.216.0/24 maxlen: 24 103.161.217.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 88 (0x58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE323/serialNumber=9304234E739049143A8591A3745A53E4B92AD8D8 Validity Not Before: Feb 3 06:38:35 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65bddf6b-42fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6a:0e:3d:ec:81:ca:7c:28:fd:af:7b:7e:5d: 1e:96:2a:27:6a:d5:f6:64:11:33:01:70:8d:90:63: 46:71:56:be:24:76:d7:dc:09:24:a4:c3:c1:ba:fd: b6:6a:8f:37:05:c2:26:82:cb:8b:a2:60:a5:03:93: f4:1a:41:45:85:68:33:54:61:c3:c3:8b:0c:27:30: 7a:3a:bf:13:28:71:aa:5c:72:28:a1:34:f7:a6:42: d1:e2:62:c2:de:bd:41:71:d4:77:bf:02:0d:6d:0c: 13:45:f0:0f:a2:cf:94:57:33:6b:cd:3e:f1:43:36: 8e:1c:b4:bb:a7:7b:cd:56:42:fd:b2:27:fc:3f:d2: c2:de:84:83:20:56:69:f9:d1:d9:3b:67:5b:c4:db: 07:40:50:90:60:74:da:e7:6f:c8:88:24:8d:ec:00: 28:e0:32:b2:a5:69:5e:9f:af:ee:f2:69:5e:03:6b: 96:53:ec:76:af:a5:1a:ff:86:0e:2e:bd:99:f9:40: ed:2d:6f:17:2c:e2:33:76:a3:04:e1:55:d7:08:c0: 4f:5c:7f:8c:3b:8d:ef:49:6a:8a:63:18:2b:f8:63: 69:0f:76:26:17:d7:e4:8f:9a:4d:d0:6b:88:cb:90: b6:a6:45:8c:58:08:97:26:51:31:26:21:a5:ad:a6: 68:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:0F:6D:71:82:14:39:D5:C6:DD:CF:F7:09:2A:94:2E:EC:9D:30:A5 X509v3 Authority Key Identifier: keyid:93:04:23:4E:73:90:49:14:3A:85:91:A3:74:5A:53:E4:B9:2A:D8:D8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kwQjTnOQSRQ6hZGjdFpT5Lkq2Ng.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE323/9E61E424525F11EE80BA0D74C4F9AE02/3AB9E692C0D211EEB7BBBE4FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.216.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:30:97:86:15:46:34:7c:bf:19:6f:85:6a:55:5d:2a:50:2a: 75:67:ec:a2:12:af:a2:d3:d0:78:c7:d8:a9:7c:94:24:5b:4c: df:82:9a:69:69:af:78:21:47:d2:83:33:36:d9:66:59:d2:16: 1f:d0:ed:c0:fc:28:6e:e7:b5:5a:81:9c:f7:46:fb:2c:eb:52: 80:1c:0a:15:bb:86:00:d6:45:41:1c:dc:24:c9:ad:1b:7c:7f: 90:4c:22:36:8d:fe:a3:8f:fb:4c:91:cc:24:93:08:cb:ed:8d: 55:51:8b:05:41:fc:07:db:4d:69:9c:a5:16:c1:ca:f5:1b:09: 5c:c1:a9:d2:6b:ad:3f:5c:af:ae:a3:f5:60:29:e7:eb:2a:18: 39:a4:ee:e9:a4:72:56:ce:4c:38:cd:65:55:a5:d9:be:a0:4a: 8b:4a:e3:6b:34:42:8d:82:38:ad:03:1a:03:4b:e8:d0:f1:7b: 05:5b:2f:6a:dc:83:c2:40:2e:d4:d9:e9:c0:50:fa:96:b3:54: 21:24:26:67:9b:65:d8:21:01:af:f0:72:3a:ec:92:66:97:8c: 71:0d:9c:ab:a8:bf:d9:b3:26:97:15:75:06:be:c8:00:08:dc: e2:bc:0c:63:0e:e3:33:cc:60:c8:fe:39:a1:e9:33:0e:b0:ed: ee:44:6b:5d -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBWDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE RTMyMzExMC8GA1UEBRMoOTMwNDIzNEU3MzkwNDkxNDNBODU5MUEzNzQ1QTUzRTRC OTJBRDhEODAeFw0yNDAyMDMwNjM4MzVaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YmRkZjZiLTQyZmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDGag497IHKfCj9r3t+XR6WKidq1fZkETMBcI2QY0ZxVr4kdtfcCSSkw8G6/bZq jzcFwiaCy4uiYKUDk/QaQUWFaDNUYcPDiwwnMHo6vxMocapcciihNPemQtHiYsLe vUFx1He/Ag1tDBNF8A+iz5RXM2vNPvFDNo4ctLune81WQv2yJ/w/0sLehIMgVmn5 0dk7Z1vE2wdAUJBgdNrnb8iIJI3sACjgMrKlaV6fr+7yaV4Da5ZT7HavpRr/hg4u vZn5QO0tbxcs4jN2owThVdcIwE9cf4w7je9JaopjGCv4Y2kPdiYX1+SPmk3Qa4jL kLamRYxYCJcmUTEmIaWtpmjDAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUwA9tcYIU OdXG3c/3CSqULuydMKUwHwYDVR0jBBgwFoAUkwQjTnOQSRQ6hZGjdFpT5Lkq2Ngw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MURFMzIzLzlFNjFFNDI0NTI1 RjExRUU4MEJBMEQ3NEM0RjlBRTAyL2t3UWpUbk9RU1JRNmhaR2pkRnBUNUxrcTJO Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIva3dRalRuT1FTUlE2aFpHamRGcFQ1TGtxMk5nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE RTMyMy85RTYxRTQyNDUyNUYxMUVFODBCQTBENzRDNEY5QUUwMi8zQUI5RTY5MkMw RDIxMUVFQjdCQkJFNEZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeh2DANBgkqhkiG9w0BAQsFAAOCAQEAWjCXhhVGNHy/GW+F alVdKlAqdWfsohKvotPQeMfYqXyUJFtM34KaaWmveCFH0oMzNtlmWdIWH9DtwPwo bue1WoGc90b7LOtSgBwKFbuGANZFQRzcJMmtG3x/kEwiNo3+o4/7TJHMJJMIy+2N VVGLBUH8B9tNaZylFsHK9RsJXMGp0mutP1yvrqP1YCnn6yoYOaTu6aRyVs5MOM1l VaXZvqBKi0rjazRCjYI4rQMaA0vo0PF7BVsvatyDwkAu1NnpwFD6lrNUISQmZ5tl 2CEBr/ByOuySZpeMcQ2cq6i/2bMmlxV1Br7IAAjc4rwMYw7jM8xgyP45oekzDrDt 7kRrXQ== -----END CERTIFICATE-----Generated at Fri Jun 7 08:57:15 2024 by rpki-client on console-fra.rpki-client.org