$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/C2D66F8271A911EEAEEE351CC4F9AE02.roa File: C2D66F8271A911EEAEEE351CC4F9AE02.roa (raw, json) Hash identifier: P8RCG3anUB4OlTp6lr7fbucHFI/jOy6jB+56lSRIUq0= Subject key identifier: 80:1E:5B:24:65:3A:9E:17:F3:97:52:2A:65:56:48:75:27:07:E8:B0 Certificate issuer: /CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Certificate serial: 0A Authority key identifier: AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/C2D66F8271A911EEAEEE351CC4F9AE02.roa Signing time: Mon 23 Oct 2023 13:41:50 +0000 ROA not before: Mon 23 Oct 2023 13:41:50 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132060 IP address blocks: 103.67.76.0/24 maxlen: 24 103.67.77.0/24 maxlen: 24 2001:df3:ec0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:50:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10 (0xa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF66D/serialNumber=AA9A0DCB5131392D7196A84418A8A84645531F97 Validity Not Before: Oct 23 13:41:50 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6536781e-e0ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:e5:91:84:b8:b1:a8:2f:df:80:30:11:cf:f2: 95:31:42:6b:c7:f0:0d:c1:8e:32:3c:d3:c7:9a:49: e9:df:9b:58:fc:51:96:b2:87:5a:b1:55:40:7d:50: 83:f4:a7:fd:7e:48:0a:3e:0d:61:2f:12:64:b3:cf: 7d:e4:e0:92:6e:6d:95:e7:77:aa:bd:2a:a1:a1:09: 37:20:be:28:18:8a:ae:8e:e6:16:5d:a6:f5:7f:69: 63:9b:5d:5e:ea:06:29:f0:c4:38:6b:28:32:0c:f9: cd:5f:de:a9:8c:0f:91:08:ca:25:2f:25:21:df:01: bd:80:92:b1:4b:32:47:66:32:21:a6:13:05:2c:49: 84:fe:ac:f5:b1:db:e1:7c:b3:b5:ae:93:2a:08:8f: 8e:4b:77:9c:e8:e9:ea:6f:15:6a:02:68:1a:26:1e: 94:3c:23:f4:06:d4:5f:2f:de:58:91:2b:e5:aa:dd: 20:39:d3:0d:7f:10:cb:7b:57:06:ee:4e:14:85:94: 54:32:be:c4:ff:7e:48:d9:cd:0f:84:98:37:b9:99: c3:c6:cc:9f:7a:ad:34:1e:81:78:6d:64:9e:e8:18: c5:77:01:65:02:eb:03:81:70:a4:54:91:d5:d1:12: 21:93:75:6c:8d:46:75:fa:1a:e2:29:85:c7:cb:01: e2:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:1E:5B:24:65:3A:9E:17:F3:97:52:2A:65:56:48:75:27:07:E8:B0 X509v3 Authority Key Identifier: keyid:AA:9A:0D:CB:51:31:39:2D:71:96:A8:44:18:A8:A8:46:45:53:1F:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/qpoNy1ExOS1xlqhEGKioRkVTH5c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qpoNy1ExOS1xlqhEGKioRkVTH5c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF66D/511A892E71A811EEB437F181C4F9AE02/C2D66F8271A911EEAEEE351CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.67.76.0/23 IPv6: 2001:df3:ec0::/48 Signature Algorithm: sha256WithRSAEncryption 28:ea:57:4e:65:c7:a3:9b:99:a9:2a:dc:bd:42:05:b6:38:f7: 47:54:55:2f:9f:1f:26:46:04:3e:0f:d0:41:3c:37:fa:92:0b: e8:45:a2:5b:2e:dd:7e:ee:48:5b:7b:8c:7f:4f:be:7d:ca:99: 4c:b7:be:36:dc:0f:cd:70:df:7a:8b:d7:79:f9:03:94:cd:f8: 7f:d5:3c:ef:89:8e:a0:58:f9:3e:8e:0b:2c:70:cf:d7:9b:be: 9b:6d:8e:c2:16:d4:34:ce:2a:2d:10:ad:3a:8a:87:39:f8:da: 02:e5:8f:24:a0:a1:39:8c:0d:02:04:cb:e7:49:42:a0:ff:0b: 2a:2b:61:21:16:e3:fd:33:ee:0d:13:5f:28:e4:87:3d:d6:6a: b9:e5:71:05:a2:ea:a0:2b:ca:d4:d5:b1:dc:a9:07:24:78:d1: d1:b5:35:7b:f2:70:4e:0b:6d:3e:f2:0e:12:00:48:8e:65:62: 51:6e:e2:c6:bb:5f:78:06:95:5f:f8:e8:a0:a4:36:0e:f9:60: 11:dc:67:05:59:dd:01:aa:a5:f2:83:a1:6b:0f:e5:71:bf:cd: 79:50:9b:c7:a4:f2:1e:e9:e6:c2:c6:18:78:5c:bd:96:d5:d8: bb:eb:59:99:ba:07:5e:ad:bc:14:c1:01:4b:51:bf:82:5a:2b: c9:fb:2a:c9 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBCjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF RjY2RDExMC8GA1UEBRMoQUE5QTBEQ0I1MTMxMzkyRDcxOTZBODQ0MThBOEE4NDY0 NTUzMUY5NzAeFw0yMzEwMjMxMzQxNTBaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzY3ODFlLWUwYWMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCX5ZGEuLGoL9+AMBHP8pUxQmvH8A3BjjI808eaSenfm1j8UZayh1qxVUB9UIP0 p/1+SAo+DWEvEmSzz33k4JJubZXnd6q9KqGhCTcgvigYiq6O5hZdpvV/aWObXV7q BinwxDhrKDIM+c1f3qmMD5EIyiUvJSHfAb2AkrFLMkdmMiGmEwUsSYT+rPWx2+F8 s7WukyoIj45Ld5zo6epvFWoCaBomHpQ8I/QG1F8v3liRK+Wq3SA50w1/EMt7Vwbu ThSFlFQyvsT/fkjZzQ+EmDe5mcPGzJ96rTQegXhtZJ7oGMV3AWUC6wOBcKRUkdXR EiGTdWyNRnX6GuIphcfLAeIzAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUgB5bJGU6 nhfzl1IqZVZIdScH6LAwHwYDVR0jBBgwFoAUqpoNy1ExOS1xlqhEGKioRkVTH5cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUVGNjZELzUxMUE4OTJFNzFB ODExRUVCNDM3RjE4MUM0RjlBRTAyL3Fwb055MUV4T1MxeGxxaEVHS2lvUmtWVEg1 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvcXBvTnkxRXhPUzF4bHFoRUdLaW9Sa1ZUSDVjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF RjY2RC81MTFBODkyRTcxQTgxMUVFQjQzN0YxODFDNEY5QUUwMi9DMkQ2NkY4Mjcx QTkxMUVFQUVFRTM1MUNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWdDTDAPBAIAAjAJAwcAIAEN8w7AMA0GCSqGSIb3DQEBCwUA A4IBAQAo6ldOZcejm5mpKty9QgW2OPdHVFUvnx8mRgQ+D9BBPDf6kgvoRaJbLt1+ 7khbe4x/T759yplMt7423A/NcN96i9d5+QOUzfh/1TzviY6gWPk+jgsscM/Xm76b bY7CFtQ0ziotEK06ioc5+NoC5Y8koKE5jA0CBMvnSUKg/wsqK2EhFuP9M+4NE18o 5Ic91mq55XEFouqgK8rU1bHcqQckeNHRtTV78nBOC20+8g4SAEiOZWJRbuLGu194 BpVf+OigpDYO+WAR3GcFWd0BqqXyg6FrD+Vxv815UJvHpPIe6ebCxhh4XL2W1di7 61mZugderbwUwQFLUb+CWivJ+yrJ -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:33 2024 by rpki-client on console-fra.rpki-client.org