$ rpki-client -vvf rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/0716B2646C7111EC8C5E6967C4F9AE02.roa File: 0716B2646C7111EC8C5E6967C4F9AE02.roa (raw, json) Hash identifier: JlDX2tzJlcNE/I1lTDSMx1j1rQwlB5jz3lhUPSy9RC0= Subject key identifier: D4:92:7A:25:D1:EB:99:03:0F:08:3A:26:35:7C:40:AA:26:B7:AB:28 Certificate issuer: /CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Certificate serial: 0359 Authority key identifier: 3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/0716B2646C7111EC8C5E6967C4F9AE02.roa Signing time: Sat 25 May 2024 03:07:21 +0000 ROA not before: Sat 25 May 2024 03:07:21 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 58617 IP address blocks: 103.9.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 03:58:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 857 (0x359) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DE4AC/serialNumber=3EEB19688D33D621994E5B3D9E46ECAAA509F423 Validity Not Before: May 25 03:07:21 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=665155e9-7a0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:82:43:ca:43:c6:f3:c0:3a:04:a8:38:3b:ca: 53:ac:35:ee:40:37:a4:05:e7:35:ef:87:2f:7a:f4: 2e:29:4f:25:a5:da:1a:71:f2:7f:2a:77:22:2c:e9: 44:65:b0:54:40:05:8d:20:a7:69:85:f1:79:24:7f: fd:8a:e2:08:94:31:83:cd:f4:bb:e2:c6:76:b6:7c: cf:31:c5:00:08:36:bf:45:a0:ae:1a:92:33:f1:44: 12:03:b5:bf:8c:73:80:b9:9e:64:30:76:05:d1:68: 2b:c0:7c:6f:86:f6:7e:83:a6:f7:3f:9f:e3:69:32: d4:d4:d5:ea:1f:4b:53:6c:73:d8:2a:a7:a5:80:aa: 05:56:b9:4b:d9:d7:4e:55:8d:7e:d8:1f:2e:5f:59: f1:f3:82:1d:7a:dd:e6:80:92:2b:05:be:3b:c2:9b: 21:5c:6c:ee:be:6d:5e:c6:35:a2:6f:b3:33:2d:5f: 6a:26:c9:cc:cb:cc:6e:d7:60:21:5d:d0:fe:6c:46: 08:ff:03:60:ba:26:0f:4a:0b:d3:a4:9c:c9:38:ea: b0:f7:99:4e:fa:61:4d:a9:62:df:03:ce:41:c3:24: e7:f4:8b:c0:10:2f:53:2e:c7:b8:01:8d:e2:b5:96: 42:99:a1:02:1d:7d:47:e3:06:27:89:fe:2b:d7:df: 24:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:92:7A:25:D1:EB:99:03:0F:08:3A:26:35:7C:40:AA:26:B7:AB:28 X509v3 Authority Key Identifier: keyid:3E:EB:19:68:8D:33:D6:21:99:4E:5B:3D:9E:46:EC:AA:A5:09:F4:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/PusZaI0z1iGZTls9nkbsqqUJ9CM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PusZaI0z1iGZTls9nkbsqqUJ9CM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DE4AC/3441D2D06C6E11ECB233FB61C4F9AE02/0716B2646C7111EC8C5E6967C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.23.0/24 Signature Algorithm: sha256WithRSAEncryption 96:15:77:a4:ca:75:e7:a8:41:0a:3d:1f:7c:80:43:46:b5:96: 35:c4:9e:0d:a2:35:e2:47:e8:46:70:d4:c7:0c:ce:b5:26:8a: f2:26:f2:ac:f4:e5:9c:83:7d:c5:d1:05:42:f7:5f:fd:08:d9: 83:2e:57:1f:2b:1b:64:93:14:84:14:bb:a7:42:99:30:61:fa: ea:8a:c5:f7:06:4b:48:54:f0:b9:bb:0d:1c:a6:58:3f:50:83: 0a:0f:b1:62:48:8c:5d:df:ae:4e:bd:57:89:fe:c8:4d:9b:af: 68:f6:31:12:3a:ef:7c:e1:c9:9b:c6:f1:e7:46:8a:49:a6:fd: ba:76:a0:7b:56:18:05:5d:9e:60:0f:12:6c:e1:25:ec:eb:4d: a4:ff:25:5b:02:f9:85:65:9a:23:77:8e:e7:a5:02:33:de:58: 3f:89:4f:a0:00:c7:bf:13:41:20:ed:e8:32:8b:b2:8c:83:85: fb:a6:04:8b:1f:4c:48:f6:77:f4:8b:13:0e:62:ea:bb:cd:7c: fd:13:43:95:e0:fa:75:c7:0d:ab:d9:a7:1c:3d:dd:b6:83:b9: 9d:92:a9:73:d5:67:13:a1:5c:e3:7d:87:43:95:77:0a:0c:56: 03:b7:66:d3:fe:0a:12:f0:1c:69:b7:88:b6:12:43:0c:dc:06: b5:80:cc:d6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA1kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REU0QUMxMTAvBgNVBAUTKDNFRUIxOTY4OEQzM0Q2MjE5OTRFNUIzRDlFNDZFQ0FB QTUwOUY0MjMwHhcNMjQwNTI1MDMwNzIxWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjUxNTVlOS03YTBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApYJDykPG88A6BKg4O8pTrDXuQDekBec174cvevQuKU8lpdoacfJ/KnciLOlE ZbBUQAWNIKdphfF5JH/9iuIIlDGDzfS74sZ2tnzPMcUACDa/RaCuGpIz8UQSA7W/ jHOAuZ5kMHYF0WgrwHxvhvZ+g6b3P5/jaTLU1NXqH0tTbHPYKqelgKoFVrlL2ddO VY1+2B8uX1nx84Idet3mgJIrBb47wpshXGzuvm1exjWib7MzLV9qJsnMy8xu12Ah XdD+bEYI/wNguiYPSgvTpJzJOOqw95lO+mFNqWLfA85BwyTn9IvAEC9TLse4AY3i tZZCmaECHX1H4wYnif4r198kcwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNSSeiXR 65kDDwg6JjV8QKomt6soMB8GA1UdIwQYMBaAFD7rGWiNM9YhmU5bPZ5G7KqlCfQj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERTRBQy8zNDQxRDJEMDZD NkUxMUVDQjIzM0ZCNjFDNEY5QUUwMi9QdXNaYUkwejFpR1pUbHM5bmtic3FxVUo5 Q00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1B1c1phSTB6MWlHWlRsczlua2JzcXFVSjlDTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REU0QUMvMzQ0MUQyRDA2QzZFMTFFQ0IyMzNGQjYxQzRGOUFFMDIvMDcxNkIyNjQ2 QzcxMTFFQzhDNUU2OTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnCRcwDQYJKoZIhvcNAQELBQADggEBAJYVd6TKdeeoQQo9 H3yAQ0a1ljXEng2iNeJH6EZw1McMzrUmivIm8qz05ZyDfcXRBUL3X/0I2YMuVx8r G2STFIQUu6dCmTBh+uqKxfcGS0hU8Lm7DRymWD9QgwoPsWJIjF3frk69V4n+yE2b r2j2MRI673zhyZvG8edGikmm/bp2oHtWGAVdnmAPEmzhJezrTaT/JVsC+YVlmiN3 juelAjPeWD+JT6AAx78TQSDt6DKLsoyDhfumBIsfTEj2d/SLEw5i6rvNfP0TQ5Xg +nXHDavZpxw93baDuZ2SqXPVZxOhXON9h0OVdwoMVgO3ZtP+ChLwHGm3iLYSQwzc BrWAzNY= -----END CERTIFICATE-----Generated at Sat Jun 1 04:59:08 2024 by rpki-client on console-fra.rpki-client.org