$ rpki-client -vvf rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/99C51F96DA6D11EC86CE4D59C4F9AE02.roa File: 99C51F96DA6D11EC86CE4D59C4F9AE02.roa (raw, json) Hash identifier: JVCzZkuG4CHRB6G2oinVMp3rcx6RD2PvDmsbTNaguh8= Subject key identifier: 43:BD:04:08:26:89:77:1C:3F:5F:56:B5:67:7C:09:7D:7F:35:C8:8B Certificate issuer: /CN=A91F53A5/serialNumber=E4BF7D5960B6B2F3C52141EF2B602AD114F40CA8 Certificate serial: 0246 Authority key identifier: E4:BF:7D:59:60:B6:B2:F3:C5:21:41:EF:2B:60:2A:D1:14:F4:0C:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5L99WWC2svPFIUHvK2Aq0RT0DKg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/99C51F96DA6D11EC86CE4D59C4F9AE02.roa Signing time: Fri 07 Jun 2024 05:01:58 +0000 ROA not before: Fri 07 Jun 2024 05:01:58 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149817 IP address blocks: 103.187.8.0/24 maxlen: 24 2001:df0:b3c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/5L99WWC2svPFIUHvK2Aq0RT0DKg.crl rsync://rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/5L99WWC2svPFIUHvK2Aq0RT0DKg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5L99WWC2svPFIUHvK2Aq0RT0DKg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 04:21:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 582 (0x246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F53A5/serialNumber=E4BF7D5960B6B2F3C52141EF2B602AD114F40CA8 Validity Not Before: Jun 7 05:01:58 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66629446-498f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:92:2a:fd:7a:d8:a8:9c:b6:75:8d:c8:32:93: f4:1a:30:da:18:96:47:bd:fa:b9:a3:bd:e2:5a:90: 03:ba:52:c8:52:d0:a8:62:49:0e:2b:7d:22:f7:c5: c5:20:80:a9:65:96:ff:b8:3c:07:3b:49:6d:2b:7f: 15:37:d2:63:de:4a:cf:df:70:da:03:3c:de:11:62: 24:fb:78:4d:4f:ed:14:8c:9c:df:8f:b1:84:b3:25: 38:8c:ca:8f:22:db:33:f7:91:eb:3a:e6:b4:03:af: af:12:85:e3:a8:ab:28:ef:73:13:44:85:4f:2e:99: f2:e4:dd:08:bb:bd:f6:a8:03:6c:38:fc:f7:8a:bc: 99:81:79:5e:51:04:89:26:27:78:dc:37:fd:9b:4a: eb:81:6c:6c:9b:be:a8:91:d6:ac:cb:ef:79:17:48: 2a:60:f6:0a:bd:d6:36:c8:d7:77:8b:af:36:b1:a2: e0:6e:12:b0:b2:c0:33:38:91:c7:ff:2a:6d:cf:4b: e6:ae:15:a3:55:73:5a:a0:bc:fd:ba:79:60:91:22: 89:4f:e3:e0:a7:7b:6c:fa:7a:ee:24:54:24:bf:23: 2f:b1:98:37:ee:8d:bf:4e:33:f0:55:5e:ec:86:a6: fe:6b:be:ce:d3:3b:18:75:ed:7a:77:e7:6a:bd:86: b9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:BD:04:08:26:89:77:1C:3F:5F:56:B5:67:7C:09:7D:7F:35:C8:8B X509v3 Authority Key Identifier: keyid:E4:BF:7D:59:60:B6:B2:F3:C5:21:41:EF:2B:60:2A:D1:14:F4:0C:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/5L99WWC2svPFIUHvK2Aq0RT0DKg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5L99WWC2svPFIUHvK2Aq0RT0DKg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F53A5/500CFE98DA6611EC80DFE736C4F9AE02/99C51F96DA6D11EC86CE4D59C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.8.0/24 IPv6: 2001:df0:b3c0::/48 Signature Algorithm: sha256WithRSAEncryption 1e:73:bf:fb:fb:41:b3:32:82:5b:3b:30:53:c7:0b:9a:70:4a: b2:f5:bf:b1:74:0b:d0:ac:4d:a3:bf:a2:cb:09:d3:2f:36:71: 93:2d:2a:2a:f5:f9:3e:03:2c:8d:6b:89:14:41:d8:96:16:b1: d7:f2:47:0a:46:5e:86:74:e5:c5:22:c1:2c:f6:5b:17:5f:d4: c9:ce:59:ae:1d:98:5e:08:97:80:b0:bd:ce:9f:cf:4e:9f:12: 74:23:4c:1a:28:00:6b:1a:54:ad:7a:2e:ad:f6:de:7b:4e:63: c1:45:05:24:40:f6:61:62:86:69:ad:90:68:21:6d:0a:0d:52: f5:05:4a:20:1d:e5:8f:91:f9:b9:bb:67:f9:54:86:a1:69:6b: ab:e6:d1:17:d6:9a:ee:08:36:16:7f:1d:ae:8d:0f:74:a7:d2: 40:f8:09:41:5f:e5:23:6b:3f:5d:5e:31:4f:a1:5e:81:c5:5e: f8:ea:1a:d7:21:aa:ea:c4:62:ba:67:b9:03:2f:9d:8f:09:24: fc:80:50:66:39:b7:33:70:44:1e:a3:b2:02:32:4a:8d:74:e4: 9c:dc:24:14:6c:6f:27:15:e7:3e:65:e9:1c:e2:0e:6a:ed:79: 02:1c:8b:4d:d1:79:fc:cf:90:08:0c:3d:6a:28:5e:f0:bb:f4: c9:f4:59:31 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAkYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjUzQTUxMTAvBgNVBAUTKEU0QkY3RDU5NjBCNkIyRjNDNTIxNDFFRjJCNjAyQUQx MTRGNDBDQTgwHhcNMjQwNjA3MDUwMTU4WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjYyOTQ0Ni00OThmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsJIq/XrYqJy2dY3IMpP0GjDaGJZHvfq5o73iWpADulLIUtCoYkkOK30i98XF IICpZZb/uDwHO0ltK38VN9Jj3krP33DaAzzeEWIk+3hNT+0UjJzfj7GEsyU4jMqP Itsz95HrOua0A6+vEoXjqKso73MTRIVPLpny5N0Iu732qANsOPz3iryZgXleUQSJ Jid43Df9m0rrgWxsm76okdasy+95F0gqYPYKvdY2yNd3i682saLgbhKwssAzOJHH /yptz0vmrhWjVXNaoLz9unlgkSKJT+Pgp3ts+nruJFQkvyMvsZg37o2/TjPwVV7s hqb+a77O0zsYde16d+dqvYa5+wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFEO9BAgm iXccP19WtWd8CX1/NciLMB8GA1UdIwQYMBaAFOS/fVlgtrLzxSFB7ytgKtEU9Ayo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNTNBNS81MDBDRkU5OERB NjYxMUVDODBERkU3MzZDNEY5QUUwMi81TDk5V1dDMnN2UEZJVUh2SzJBcTBSVDBE S2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVMOTlXV0Myc3ZQRklVSHZLMkFxMFJUMERLZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjUzQTUvNTAwQ0ZFOThEQTY2MTFFQzgwREZFNzM2QzRGOUFFMDIvOTlDNTFGOTZE QTZEMTFFQzg2Q0U0RDU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnuwgwDwQCAAIwCQMHACABDfCzwDANBgkqhkiG9w0BAQsF AAOCAQEAHnO/+/tBszKCWzswU8cLmnBKsvW/sXQL0KxNo7+iywnTLzZxky0qKvX5 PgMsjWuJFEHYlhax1/JHCkZehnTlxSLBLPZbF1/Uyc5Zrh2YXgiXgLC9zp/PTp8S dCNMGigAaxpUrXourfbee05jwUUFJED2YWKGaa2QaCFtCg1S9QVKIB3lj5H5ubtn +VSGoWlrq+bRF9aa7gg2Fn8dro0PdKfSQPgJQV/lI2s/XV4xT6FegcVe+Ooa1yGq 6sRiume5Ay+djwkk/IBQZjm3M3BEHqOyAjJKjXTknNwkFGxvJxXnPmXpHOIOau15 AhyLTdF5/M+QCAw9aihe8Lv0yfRZMQ== -----END CERTIFICATE-----Generated at Fri Jun 7 05:32:30 2024 by rpki-client on console-fra.rpki-client.org