$ rpki-client -vvf rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/12B9A5DECBC211EDB6F09516C4F9AE02.roa File: 12B9A5DECBC211EDB6F09516C4F9AE02.roa (raw, json) Hash identifier: pmN2o1KlR6jFa7dEFJRKKcKXmZNwlv1ahG+zaZBhy/8= Subject key identifier: 99:47:1C:D8:B4:CE:FC:5C:3B:E6:94:FC:40:E9:84:DA:02:FE:4F:7F Certificate issuer: /CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Certificate serial: AD Authority key identifier: E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/12B9A5DECBC211EDB6F09516C4F9AE02.roa Signing time: Thu 15 Feb 2024 05:37:35 +0000 ROA not before: Thu 15 Feb 2024 05:37:35 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 150691 IP address blocks: 103.57.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 173 (0xad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E0C2B/serialNumber=E5BB2D8B9E18697C0159ED8132E5F34B86B137B1 Validity Not Before: Feb 15 05:37:35 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65cda31f-450b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d2:a0:b3:74:d3:f3:91:a4:17:c6:c6:c4:d2: 6d:15:8a:d5:7e:63:0f:25:62:24:e7:a4:5d:79:ed: 71:f5:f0:46:69:90:0c:76:64:c8:1a:41:e4:d3:b5: ac:0e:d3:1d:2e:14:2b:ae:b7:69:80:57:60:ee:bd: e1:16:f4:63:4f:36:ad:b6:63:30:53:b7:02:a6:8a: f4:9e:7e:39:c3:69:03:18:2d:13:be:e5:c3:33:45: 21:a8:03:7f:ff:78:59:6a:44:d6:fe:45:6b:49:57: f7:83:a0:c6:e3:24:34:41:ff:8e:8e:c2:cf:e6:e8: b4:7b:d8:38:16:4e:a8:60:5b:a5:a0:1e:77:ed:2d: f7:57:c4:6e:5a:44:61:be:ac:06:b6:5c:f3:1e:cc: 3a:fe:f7:d9:9b:8a:d7:9c:fc:51:08:32:5a:9b:a4: 46:33:62:94:d9:4b:23:86:30:ac:4f:2a:bb:82:c5: a6:4d:b6:1f:fb:16:5c:b0:1f:f2:96:1b:60:c8:41: fb:76:2e:df:0d:51:8f:69:ca:c9:5c:1e:e6:e1:8d: fb:b7:9c:8a:ec:e2:eb:e6:1d:07:6c:e8:ec:4d:3c: f8:db:c9:4c:52:ff:43:16:64:fe:81:37:13:2e:27: 04:ce:75:8a:c6:c3:bf:f1:2e:2f:03:a6:00:8c:a9: 67:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:47:1C:D8:B4:CE:FC:5C:3B:E6:94:FC:40:E9:84:DA:02:FE:4F:7F X509v3 Authority Key Identifier: keyid:E5:BB:2D:8B:9E:18:69:7C:01:59:ED:81:32:E5:F3:4B:86:B1:37:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/5bsti54YaXwBWe2BMuXzS4axN7E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5bsti54YaXwBWe2BMuXzS4axN7E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E0C2B/D27E6ED0CB9611EDAC349B79C4F9AE02/12B9A5DECBC211EDB6F09516C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.98.0/24 Signature Algorithm: sha256WithRSAEncryption 90:39:c0:5b:9c:23:18:8b:f6:fd:f2:c2:fc:74:a8:bb:e1:ec: d7:e2:70:43:73:5d:98:30:d1:b1:b5:e0:1b:f7:70:54:ae:c8: 4e:b8:cc:b7:a5:b4:55:a0:a2:61:e1:1d:e0:12:52:62:ce:73: 4c:c4:58:e2:dd:89:19:f0:ac:9a:ad:9a:fb:2b:15:4f:e4:e6: ed:9f:57:28:8d:58:ad:01:3d:52:21:6e:21:5a:cf:a9:cc:89: e3:4f:3f:41:a9:a0:82:53:b5:4f:19:c1:7e:de:01:9d:47:34: c1:57:ed:0a:bb:af:42:80:8d:b9:9a:0e:12:97:ef:ec:33:7c: cd:8f:56:9e:a3:9f:19:73:17:3f:5a:25:7b:f1:f4:ad:57:bd: f2:fc:86:9d:ff:92:fd:11:93:56:31:fd:14:55:44:c6:87:e8: 4c:76:50:40:fa:ab:53:2e:5d:fa:be:55:6f:fe:1c:9e:97:88: d3:3d:be:0c:6e:30:5c:4f:49:00:37:f3:be:fd:a6:73:24:99: f9:0c:b6:d7:ef:dc:6e:5e:6b:67:7a:c0:dc:43:a7:fc:63:4d: 14:d9:55:25:f0:a2:4a:ef:91:62:31:37:38:29:fa:68:15:69: f0:9f:8d:0a:83:bc:d0:65:c5:4e:8c:af:99:62:8e:9c:a8:ab: 09:74:65:d9 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAK0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTBDMkIxMTAvBgNVBAUTKEU1QkIyRDhCOUUxODY5N0MwMTU5RUQ4MTMyRTVGMzRC ODZCMTM3QjEwHhcNMjQwMjE1MDUzNzM1WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNkYTMxZi00NTBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvtKgs3TT85GkF8bGxNJtFYrVfmMPJWIk56Rdee1x9fBGaZAMdmTIGkHk07Ws DtMdLhQrrrdpgFdg7r3hFvRjTzattmMwU7cCpor0nn45w2kDGC0TvuXDM0UhqAN/ /3hZakTW/kVrSVf3g6DG4yQ0Qf+OjsLP5ui0e9g4Fk6oYFuloB537S33V8RuWkRh vqwGtlzzHsw6/vfZm4rXnPxRCDJam6RGM2KU2UsjhjCsTyq7gsWmTbYf+xZcsB/y lhtgyEH7di7fDVGPacrJXB7m4Y37t5yK7OLr5h0HbOjsTTz428lMUv9DFmT+gTcT LicEznWKxsO/8S4vA6YAjKlnawIDAQABo4IClTCCApEwHQYDVR0OBBYEFJlHHNi0 zvxcO+aU/EDphNoC/k9/MB8GA1UdIwQYMBaAFOW7LYueGGl8AVntgTLl80uGsTex MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMEMyQi9EMjdFNkVEMENC OTYxMUVEQUMzNDlCNzlDNEY5QUUwMi81YnN0aTU0WWFYd0JXZTJCTXVYelM0YXhO N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVic3RpNTRZYVh3QldlMkJNdVh6UzRheE43RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTBDMkIvRDI3RTZFRDBDQjk2MTFFREFDMzQ5Qjc5QzRGOUFFMDIvMTJCOUE1REVD QkMyMTFFREI2RjA5NTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOWIwDQYJKoZIhvcNAQELBQADggEBAJA5wFucIxiL9v3y wvx0qLvh7NficENzXZgw0bG14Bv3cFSuyE64zLeltFWgomHhHeASUmLOc0zEWOLd iRnwrJqtmvsrFU/k5u2fVyiNWK0BPVIhbiFaz6nMieNPP0GpoIJTtU8ZwX7eAZ1H NMFX7Qq7r0KAjbmaDhKX7+wzfM2PVp6jnxlzFz9aJXvx9K1XvfL8hp3/kv0Rk1Yx /RRVRMaH6Ex2UED6q1MuXfq+VW/+HJ6XiNM9vgxuMFxPSQA38779pnMkmfkMttfv 3G5ea2d6wNxDp/xjTRTZVSXwokrvkWIxNzgp+mgVafCfjQqDvNBlxU6Mr5lijpyo qwl0Zdk= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:38 2024 by rpki-client on console-fra.rpki-client.org