$ rpki-client -vvf rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/B5408BB266BB11EEB2022486C4F9AE02.roa File: B5408BB266BB11EEB2022486C4F9AE02.roa (raw, json) Hash identifier: bZsgoJd9cGpYXB7WjrWrxQ8lxtqhEkb+fTSOxr1ZyCg= Subject key identifier: FC:06:02:0D:87:9C:C0:03:F7:A2:D8:B8:CF:50:98:F0:86:85:5A:9C Certificate issuer: /CN=A91F39EC/serialNumber=E1B9A6EB0C8FAFF7F54C68C05624A28CFD3FADEC Certificate serial: 06 Authority key identifier: E1:B9:A6:EB:0C:8F:AF:F7:F5:4C:68:C0:56:24:A2:8C:FD:3F:AD:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bmm6wyPr_f1TGjAViSijP0_rew.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/B5408BB266BB11EEB2022486C4F9AE02.roa Signing time: Mon 09 Oct 2023 15:52:40 +0000 ROA not before: Mon 09 Oct 2023 15:52:40 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 151832 IP address blocks: 103.213.220.0/23 maxlen: 23 103.213.220.0/24 maxlen: 24 103.213.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/4bmm6wyPr_f1TGjAViSijP0_rew.crl rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/4bmm6wyPr_f1TGjAViSijP0_rew.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bmm6wyPr_f1TGjAViSijP0_rew.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:42:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F39EC/serialNumber=E1B9A6EB0C8FAFF7F54C68C05624A28CFD3FADEC Validity Not Before: Oct 9 15:52:40 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652421c8-86bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:af:2a:ab:71:d4:e6:d9:56:1d:02:4f:88:86: f0:44:fc:aa:6c:07:ff:a5:cb:27:61:95:37:da:dc: 18:ba:80:81:a8:6f:15:31:a7:98:16:3e:d7:49:12: ea:78:49:99:a2:04:b8:ec:7f:c4:a8:f6:dc:e4:af: 9d:08:71:1d:79:ba:dc:ad:ba:5d:70:0e:26:be:53: c3:2b:88:af:f9:fc:6d:76:ec:70:33:20:d2:8b:e1: eb:0a:8f:e6:b5:b2:32:bd:b4:e5:60:81:51:12:8a: f9:2c:e0:7b:bf:6b:8f:f0:d8:eb:95:89:48:71:ee: e8:10:86:7c:33:ee:8c:51:16:d3:02:53:0e:04:d8: 6c:3f:e5:f8:64:81:2b:9c:97:46:75:13:f5:eb:61: 07:5d:e8:4c:61:a5:21:59:4f:3f:79:97:81:09:16: 22:de:fd:3e:8d:d0:6e:2c:30:07:96:f8:25:6e:cb: 0d:d3:7d:85:2f:4c:47:92:88:66:17:12:4b:86:89: 9b:90:5e:a5:10:eb:f9:8a:27:22:ce:c7:df:52:d2: 99:6a:6a:58:37:29:87:8f:dd:67:ac:42:8f:86:b2: a6:25:59:ab:8d:12:cc:03:55:5c:15:f1:2e:a2:f1: fe:e6:b4:2a:02:46:51:2f:71:60:7b:66:3f:9c:b9: cd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:06:02:0D:87:9C:C0:03:F7:A2:D8:B8:CF:50:98:F0:86:85:5A:9C X509v3 Authority Key Identifier: keyid:E1:B9:A6:EB:0C:8F:AF:F7:F5:4C:68:C0:56:24:A2:8C:FD:3F:AD:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/4bmm6wyPr_f1TGjAViSijP0_rew.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/4bmm6wyPr_f1TGjAViSijP0_rew.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F39EC/1355E75266BB11EE8462EE84C4F9AE02/B5408BB266BB11EEB2022486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.220.0/23 Signature Algorithm: sha256WithRSAEncryption 64:4d:9f:aa:a4:7d:48:21:80:51:d9:9f:50:40:a7:f5:6e:eb: 1f:d9:76:56:48:b2:ff:23:de:7b:e1:1f:8a:9e:c3:06:4c:73: ab:33:08:44:e1:ea:de:db:94:12:f4:55:56:41:52:61:32:c8: 34:23:a3:1d:8b:dd:84:55:38:9c:4d:13:db:76:bd:3e:48:b9: 04:65:16:c2:09:14:3f:f1:ea:0f:e9:8c:44:61:ca:48:b6:36: 28:94:b3:e8:8a:f4:9d:05:20:45:bb:07:59:c2:90:0f:f6:e7: a8:00:e3:0a:de:53:be:06:d9:97:91:25:3e:25:fb:f9:ee:55: c1:65:98:48:5c:e2:e4:eb:5b:1f:91:42:9c:b5:00:84:9c:13: 32:4b:dc:a2:15:1f:b3:a9:5e:bf:91:c7:2f:a7:9d:3d:00:19: d4:e4:6a:80:8c:1b:e4:18:b0:56:8b:29:6a:cf:65:16:55:8f: ac:c7:0f:00:99:dd:e4:5c:65:e0:e0:88:92:dc:70:9a:aa:63: fc:68:f9:af:81:ec:a1:4f:e2:1e:ab:91:1a:3f:06:39:55:c6: 7a:45:7b:61:27:fd:a4:2f:f6:34:2d:2a:1f:ab:6c:7b:b8:24: 9d:93:bd:cd:7e:f6:87:3b:bc:78:fb:45:cb:d4:81:04:e3:02: 2e:96:98:13 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG MzlFQzExMC8GA1UEBRMoRTFCOUE2RUIwQzhGQUZGN0Y1NEM2OEMwNTYyNEEyOENG RDNGQURFQzAeFw0yMzEwMDkxNTUyNDBaFw0yNDEyMzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MjQyMWM4LTg2YmYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDFryqrcdTm2VYdAk+IhvBE/KpsB/+lyydhlTfa3Bi6gIGobxUxp5gWPtdJEup4 SZmiBLjsf8So9tzkr50IcR15utytul1wDia+U8MriK/5/G127HAzINKL4esKj+a1 sjK9tOVggVESivks4Hu/a4/w2OuViUhx7ugQhnwz7oxRFtMCUw4E2Gw/5fhkgSuc l0Z1E/XrYQdd6ExhpSFZTz95l4EJFiLe/T6N0G4sMAeW+CVuyw3TfYUvTEeSiGYX EkuGiZuQXqUQ6/mKJyLOx99S0plqalg3KYeP3WesQo+GsqYlWauNEswDVVwV8S6i 8f7mtCoCRlEvcWB7Zj+cuc1TAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/AYCDYec wAP3oti4z1CY8IaFWpwwHwYDVR0jBBgwFoAU4bmm6wyPr/f1TGjAViSijP0/reww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUYzOUVDLzEzNTVFNzUyNjZC QjExRUU4NDYyRUU4NEM0RjlBRTAyLzRibW02d3lQcl9mMVRHakFWaVNpalAwX3Jl dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNGJtbTZ3eVByX2YxVEdqQVZpU2lqUDBfcmV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG MzlFQy8xMzU1RTc1MjY2QkIxMUVFODQ2MkVFODRDNEY5QUUwMi9CNTQwOEJCMjY2 QkIxMUVFQjIwMjI0ODZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfV3DANBgkqhkiG9w0BAQsFAAOCAQEAZE2fqqR9SCGAUdmf UECn9W7rH9l2Vkiy/yPee+Efip7DBkxzqzMIROHq3tuUEvRVVkFSYTLINCOjHYvd hFU4nE0T23a9Pki5BGUWwgkUP/HqD+mMRGHKSLY2KJSz6Ir0nQUgRbsHWcKQD/bn qADjCt5TvgbZl5ElPiX7+e5VwWWYSFzi5OtbH5FCnLUAhJwTMkvcohUfs6lev5HH L6edPQAZ1ORqgIwb5BiwVospas9lFlWPrMcPAJnd5Fxl4OCIktxwmqpj/Gj5r4Hs oU/iHquRGj8GOVXGekV7YSf9pC/2NC0qH6tse7gknZO9zX72hzu8ePtFy9SBBOMC LpaYEw== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:33 2024 by rpki-client on console-fra.rpki-client.org