$ rpki-client -vvf rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/FAC7FE320F0311E997412A4EC4F9AE02.roa File: FAC7FE320F0311E997412A4EC4F9AE02.roa (raw, json) Hash identifier: H+bVwVMApI3aWhLRhuXUPNJypEGXjtDXGqGsyJRJ7SA= Subject key identifier: 37:6C:9C:E5:2A:A6:DA:81:7E:71:00:B2:F8:0D:77:38:4E:A5:AA:00 Certificate issuer: /CN=A91F67BB/serialNumber=1BF5A8D94CE06CE301FC35D869F70D740D709752 Certificate serial: 1039 Authority key identifier: 1B:F5:A8:D9:4C:E0:6C:E3:01:FC:35:D8:69:F7:0D:74:0D:70:97:52 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_Wo2UzgbOMB_DXYafcNdA1wl1I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/FAC7FE320F0311E997412A4EC4F9AE02.roa Signing time: Tue 28 Nov 2023 18:05:42 +0000 ROA not before: Tue 28 Nov 2023 18:05:42 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 132132 IP address blocks: 103.6.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/G_Wo2UzgbOMB_DXYafcNdA1wl1I.crl rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/G_Wo2UzgbOMB_DXYafcNdA1wl1I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_Wo2UzgbOMB_DXYafcNdA1wl1I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 18:13:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4153 (0x1039) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F67BB/serialNumber=1BF5A8D94CE06CE301FC35D869F70D740D709752 Validity Not Before: Nov 28 18:05:42 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=65662bf6-3b8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a2:ec:84:05:f9:e2:13:a6:e1:9f:0b:34:e3: 64:b5:01:0d:ee:4b:bf:ce:f8:08:5e:bb:98:ce:6d: d5:3e:22:ef:69:61:8e:78:ae:dd:d7:5f:4b:57:a0: 40:be:49:c3:8b:45:d6:a3:fa:57:ff:37:85:c7:5a: 87:84:64:b9:c3:93:86:9d:e1:0b:01:91:dc:28:5e: 2e:db:82:18:46:55:e6:4e:7d:67:f4:56:ee:f5:c6: 8a:e3:0b:07:4c:82:a1:c1:3b:ad:a2:bd:8b:50:49: 29:ca:e8:a6:29:74:34:3f:4a:41:34:3b:6c:a3:b5: 87:16:68:76:94:c3:7e:49:51:84:4a:7a:3f:23:33: d3:cc:eb:f1:84:5e:b8:7b:ff:37:20:af:f4:15:a9: ef:7f:ef:72:a5:15:cc:b1:e5:8b:c2:3b:cb:38:1f: ef:00:ae:44:a6:fe:26:ec:5a:e0:6e:98:ea:a0:07: ff:55:00:dc:fb:00:e6:38:43:91:38:e4:01:1e:d3: 5e:00:55:39:90:d1:15:bc:47:b9:0c:97:b4:8d:e7: 83:8e:19:85:f9:b6:4f:e6:57:10:d6:cd:05:33:da: f2:5e:a6:ab:b8:e4:74:77:83:e5:ad:6f:ff:94:8a: ca:53:84:51:f8:a4:41:0e:e8:26:46:d3:6c:67:f5: 65:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6C:9C:E5:2A:A6:DA:81:7E:71:00:B2:F8:0D:77:38:4E:A5:AA:00 X509v3 Authority Key Identifier: keyid:1B:F5:A8:D9:4C:E0:6C:E3:01:FC:35:D8:69:F7:0D:74:0D:70:97:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/G_Wo2UzgbOMB_DXYafcNdA1wl1I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/G_Wo2UzgbOMB_DXYafcNdA1wl1I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F67BB/C9DB89EE0E3E11E9836F4014C4F9AE02/FAC7FE320F0311E997412A4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.148.0/24 Signature Algorithm: sha256WithRSAEncryption 34:f8:d5:e2:4c:8f:a4:dc:36:7c:31:04:7c:4f:17:1a:96:6c: 99:c4:52:c1:ca:ad:a6:f9:9a:ca:92:a8:4b:64:c3:d9:21:8b: fb:72:2c:40:b8:b7:e2:b4:45:1f:4e:f3:48:43:65:18:14:d5: 9f:03:44:25:79:3a:5c:cc:22:ac:37:46:72:2c:dc:c1:df:23: 46:69:dd:39:6e:c5:9c:d8:10:80:63:ab:0f:57:55:76:59:65: 11:0e:f7:b5:42:ff:f4:98:62:06:52:b3:10:03:12:fc:b0:f1: 10:60:34:c1:79:5f:b2:6a:41:bf:66:06:9d:04:db:2f:38:6e: 04:3d:5f:57:c8:e8:e6:02:6f:89:62:b9:ce:43:16:a6:38:47: d8:fb:c7:3a:46:79:cf:0a:a5:ec:65:10:fd:2b:21:2c:6a:a7: d6:77:95:60:f8:a0:9f:f1:22:0a:aa:ed:7e:91:ea:d9:82:e6: 50:b3:fa:93:db:c8:58:21:10:c9:90:8d:77:e4:09:b6:53:15: ee:77:d1:1c:c7:78:04:d5:e2:b0:93:ed:80:7d:1e:9d:cf:c1: d5:cd:5e:ed:93:ca:03:1f:ad:ff:a7:ba:4e:57:10:a6:25:5b: 26:b3:59:7b:57:bf:79:19:39:8e:3a:c6:8f:7c:cd:ec:3a:1a: 60:11:1d:84 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEDkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjY3QkIxMTAvBgNVBAUTKDFCRjVBOEQ5NENFMDZDRTMwMUZDMzVEODY5RjcwRDc0 MEQ3MDk3NTIwHhcNMjMxMTI4MTgwNTQyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2MmJmNi0zYjhkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqKLshAX54hOm4Z8LNONktQEN7ku/zvgIXruYzm3VPiLvaWGOeK7d119LV6BA vknDi0XWo/pX/zeFx1qHhGS5w5OGneELAZHcKF4u24IYRlXmTn1n9Fbu9caK4wsH TIKhwTutor2LUEkpyuimKXQ0P0pBNDtso7WHFmh2lMN+SVGESno/IzPTzOvxhF64 e/83IK/0Fanvf+9ypRXMseWLwjvLOB/vAK5Epv4m7FrgbpjqoAf/VQDc+wDmOEOR OOQBHtNeAFU5kNEVvEe5DJe0jeeDjhmF+bZP5lcQ1s0FM9ryXqaruOR0d4PlrW// lIrKU4RR+KRBDugmRtNsZ/VlgwIDAQABo4IClTCCApEwHQYDVR0OBBYEFDdsnOUq ptqBfnEAsvgNdzhOpaoAMB8GA1UdIwQYMBaAFBv1qNlM4GzjAfw12Gn3DXQNcJdS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNjdCQi9DOURCODlFRTBF M0UxMUU5ODM2RjQwMTRDNEY5QUUwMi9HX1dvMlV6Z2JPTUJfRFhZYWZjTmRBMXds MUkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dfV28yVXpnYk9NQl9EWFlhZmNOZEExd2wxSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjY3QkIvQzlEQjg5RUUwRTNFMTFFOTgzNkY0MDE0QzRGOUFFMDIvRkFDN0ZFMzIw RjAzMTFFOTk3NDEyQTRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnBpQwDQYJKoZIhvcNAQELBQADggEBADT41eJMj6TcNnwx BHxPFxqWbJnEUsHKrab5msqSqEtkw9khi/tyLEC4t+K0RR9O80hDZRgU1Z8DRCV5 OlzMIqw3RnIs3MHfI0Zp3TluxZzYEIBjqw9XVXZZZREO97VC//SYYgZSsxADEvyw 8RBgNMF5X7JqQb9mBp0E2y84bgQ9X1fI6OYCb4liuc5DFqY4R9j7xzpGec8Kpexl EP0rISxqp9Z3lWD4oJ/xIgqq7X6R6tmC5lCz+pPbyFghEMmQjXfkCbZTFe530RzH eATV4rCT7YB9Hp3PwdXNXu2TygMfrf+nuk5XEKYlWyazWXtXv3kZOY46xo98zew6 GmARHYQ= -----END CERTIFICATE-----Generated at Thu Jun 6 21:11:40 2024 by rpki-client on console-ams.rpki-client.org