$ rpki-client -vvf rpki.apnic.net/member_repository/A91F9BB7/8737F76EBE8711ED8E0AAB78C4F9AE02/A1EB38DEF23D11EDAF983380C4F9AE02.roa File: A1EB38DEF23D11EDAF983380C4F9AE02.roa (raw, json) Hash identifier: qbMXYGmGBXCQU/LDnYPVYWq6qwCJyfwTqXecOU2YUsI= Subject key identifier: 06:E4:41:BE:53:E5:1E:0F:02:8A:67:5F:BC:A0:60:EF:F2:2E:B1:74 Certificate issuer: /CN=A91F9BB7/serialNumber=996636A1D45FD35A165C150BC5F623934BBBB679 Certificate serial: D5 Authority key identifier: 99:66:36:A1:D4:5F:D3:5A:16:5C:15:0B:C5:F6:23:93:4B:BB:B6:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWY2odRf01oWXBULxfYjk0u7tnk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F9BB7/8737F76EBE8711ED8E0AAB78C4F9AE02/A1EB38DEF23D11EDAF983380C4F9AE02.roa Signing time: Fri 19 Apr 2024 06:08:38 +0000 ROA not before: Fri 19 Apr 2024 06:08:38 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 150799 IP address blocks: 103.107.240.0/24 maxlen: 24 103.107.241.0/24 maxlen: 24 2400:e7a0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F9BB7/8737F76EBE8711ED8E0AAB78C4F9AE02/mWY2odRf01oWXBULxfYjk0u7tnk.crl rsync://rpki.apnic.net/member_repository/A91F9BB7/8737F76EBE8711ED8E0AAB78C4F9AE02/mWY2odRf01oWXBULxfYjk0u7tnk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWY2odRf01oWXBULxfYjk0u7tnk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:11:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 213 (0xd5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F9BB7/serialNumber=996636A1D45FD35A165C150BC5F623934BBBB679 Validity Not Before: Apr 19 06:08:38 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66220a66-30d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:77:56:10:40:4f:75:94:b4:a9:c7:82:c9:e8: 3d:34:c9:f6:95:9a:9d:8b:02:59:d2:c0:aa:cc:9f: c3:28:f7:af:ec:44:de:a6:cf:5f:3a:ae:38:a7:b8: f7:bf:ef:13:db:41:80:d0:e7:a1:fd:fb:05:e4:6b: eb:6c:59:60:87:54:38:c8:11:2a:a5:8e:44:72:87: 04:9e:02:a9:1b:13:66:c0:34:c8:26:12:35:b5:41: d7:4a:7b:f2:af:93:89:90:95:3b:5f:63:66:c6:17: d1:8a:b1:a1:57:ea:9f:b3:4d:65:46:6a:ed:fa:cd: 9d:9b:e2:46:72:50:b3:5e:dd:bc:f5:52:12:81:ac: 92:8d:ba:fc:31:70:21:66:5b:a7:35:d9:e4:00:33: 1b:1c:ea:eb:20:11:85:48:f7:d0:0b:7e:01:55:d2: 61:e2:4a:8a:49:48:b1:60:fc:cf:ec:09:8e:f5:f8: e4:3c:fb:ec:b7:f1:f1:8c:44:e8:88:5b:be:da:68: 15:c5:4b:bf:30:19:c7:e6:f2:3b:2f:b8:6c:02:f8: 37:4c:b6:7b:67:cf:a0:c1:b1:bf:af:59:0e:53:7e: 2f:84:76:d2:df:50:83:f9:24:70:42:c0:34:00:2b: 0b:33:f1:78:8e:ba:57:7d:37:a4:cc:33:79:a6:ae: 74:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:E4:41:BE:53:E5:1E:0F:02:8A:67:5F:BC:A0:60:EF:F2:2E:B1:74 X509v3 Authority Key Identifier: keyid:99:66:36:A1:D4:5F:D3:5A:16:5C:15:0B:C5:F6:23:93:4B:BB:B6:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F9BB7/8737F76EBE8711ED8E0AAB78C4F9AE02/mWY2odRf01oWXBULxfYjk0u7tnk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWY2odRf01oWXBULxfYjk0u7tnk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F9BB7/8737F76EBE8711ED8E0AAB78C4F9AE02/A1EB38DEF23D11EDAF983380C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.107.240.0/23 IPv6: 2400:e7a0::/32 Signature Algorithm: sha256WithRSAEncryption 2b:6c:d0:a3:96:43:69:6f:b0:54:3f:83:f0:5c:90:b2:b7:6d: 5c:f7:58:8a:44:34:d0:cd:26:c2:0f:30:01:9e:0d:a9:6b:7d: 83:f5:48:db:c9:ea:ed:89:61:f9:9a:c1:66:5b:aa:c7:46:29: 31:00:88:10:47:66:fe:fa:72:98:72:55:81:59:cc:b8:ae:47: bf:a6:ec:77:68:44:af:8d:99:82:97:5a:a3:6d:5e:9a:33:65: cb:a6:4e:cd:c8:57:bd:4b:f3:76:75:ab:3f:41:82:2e:ad:82: 9c:75:ab:ed:cb:3c:92:64:e5:5c:5f:6c:93:fe:ce:04:c3:97: 34:f9:c4:50:a6:56:34:05:90:00:f4:a7:84:a0:9a:2a:86:06: 9c:61:b2:6a:22:c7:7d:c1:48:a8:54:28:cb:e7:a8:27:b9:09: 51:bf:2d:07:5c:64:1f:31:cf:69:1a:45:53:97:57:82:e6:21: 6b:51:07:8f:cb:06:bc:c5:62:02:15:46:a4:30:28:1b:84:46: fe:5b:95:52:b5:cf:5d:36:43:20:4b:f6:23:9e:59:b5:67:73: ae:b0:06:4d:91:07:0c:92:11:d6:92:6d:60:d3:be:3a:80:36: 49:94:8e:f8:30:31:ab:31:91:09:54:9e:5e:07:63:6c:dd:e4: 35:0f:ea:69 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICANUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjlCQjcxMTAvBgNVBAUTKDk5NjYzNkExRDQ1RkQzNUExNjVDMTUwQkM1RjYyMzkz NEJCQkI2NzkwHhcNMjQwNDE5MDYwODM4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjIyMGE2Ni0zMGQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA23dWEEBPdZS0qceCyeg9NMn2lZqdiwJZ0sCqzJ/DKPev7ETeps9fOq44p7j3 v+8T20GA0Oeh/fsF5GvrbFlgh1Q4yBEqpY5EcocEngKpGxNmwDTIJhI1tUHXSnvy r5OJkJU7X2NmxhfRirGhV+qfs01lRmrt+s2dm+JGclCzXt289VISgaySjbr8MXAh ZlunNdnkADMbHOrrIBGFSPfQC34BVdJh4kqKSUixYPzP7AmO9fjkPPvst/HxjETo iFu+2mgVxUu/MBnH5vI7L7hsAvg3TLZ7Z8+gwbG/r1kOU34vhHbS31CD+SRwQsA0 ACsLM/F4jrpXfTekzDN5pq50rQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAbkQb5T 5R4PAopnX7ygYO/yLrF0MB8GA1UdIwQYMBaAFJlmNqHUX9NaFlwVC8X2I5NLu7Z5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGOUJCNy84NzM3Rjc2RUJF ODcxMUVEOEUwQUFCNzhDNEY5QUUwMi9tV1kyb2RSZjAxb1dYQlVMeGZZamswdTd0 bmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21XWTJvZFJmMDFvV1hCVUx4ZllqazB1N3Ruay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjlCQjcvODczN0Y3NkVCRTg3MTFFRDhFMEFBQjc4QzRGOUFFMDIvQTFFQjM4REVG MjNEMTFFREFGOTgzMzgwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFna/AwDQQCAAIwBwMFACQA56AwDQYJKoZIhvcNAQELBQAD ggEBACts0KOWQ2lvsFQ/g/BckLK3bVz3WIpENNDNJsIPMAGeDalrfYP1SNvJ6u2J YfmawWZbqsdGKTEAiBBHZv76cphyVYFZzLiuR7+m7HdoRK+NmYKXWqNtXpozZcum Ts3IV71L83Z1qz9Bgi6tgpx1q+3LPJJk5VxfbJP+zgTDlzT5xFCmVjQFkAD0p4Sg miqGBpxhsmoix33BSKhUKMvnqCe5CVG/LQdcZB8xz2kaRVOXV4LmIWtRB4/LBrzF YgIVRqQwKBuERv5blVK1z102QyBL9iOeWbVnc66wBk2RBwySEdaSbWDTvjqANkmU jvgwMasxkQlUnl4HY2zd5DUP6mk= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:39 2024 by rpki-client on console-fra.rpki-client.org