$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/35A46D4E1A5611EE93742844C4F9AE02.roa File: 35A46D4E1A5611EE93742844C4F9AE02.roa (raw, json) Hash identifier: bVFigoZ3x0JTyZjZCupe2tjJv5QUTmpZ1H+nraFSE8s= Subject key identifier: C4:20:91:46:16:57:B2:27:F4:8E:D9:64:49:98:33:77:9E:4E:AF:11 Certificate issuer: /CN=A91FB095/serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Certificate serial: 92 Authority key identifier: B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/35A46D4E1A5611EE93742844C4F9AE02.roa Signing time: Wed 13 Mar 2024 06:08:59 +0000 ROA not before: Wed 13 Mar 2024 06:08:59 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 142647 IP address blocks: 103.66.148.0/24 maxlen: 24 103.66.149.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 146 (0x92) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB095/serialNumber=B291102154472183CF50D2AE6FA30E1BDE342BF4 Validity Not Before: Mar 13 06:08:59 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65f142fb-e3d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c2:8a:2e:8c:fb:6e:7f:b8:22:8e:88:bf:fd: 2f:ed:19:de:25:4d:b6:f9:bd:17:aa:fe:06:ff:bf: 9a:ab:89:fb:f7:45:42:39:f8:85:9c:76:5d:ba:2f: 78:66:cd:21:36:6f:ae:aa:6e:f1:2a:78:6c:27:8b: 02:3c:8b:e5:46:60:72:f2:71:5e:84:a8:1e:d1:5b: 15:31:88:4b:f5:17:f0:20:01:94:f4:3b:14:ad:f8: 28:63:18:62:46:9f:16:29:df:7f:73:16:13:04:e0: 51:b7:ee:90:48:db:87:4a:62:55:59:67:16:b2:1a: 6d:84:fa:6b:c2:a4:f9:ef:8d:1a:e9:b3:b6:ea:77: cb:61:37:52:6f:64:fc:57:68:f5:92:5c:b6:f8:8f: d8:74:64:f2:f7:4b:03:8a:8a:f5:98:53:1e:e3:7b: 6b:1c:73:12:b9:1c:62:50:29:d4:54:65:2f:0d:9b: 7b:fd:5a:f0:67:06:c4:40:a7:c4:70:2a:b9:68:0a: 5d:a6:c5:26:c8:2e:54:f8:75:2c:e8:7a:59:d9:83: 70:a6:24:1b:b9:7f:47:52:13:d9:d3:a4:df:4c:44: 02:8b:a4:70:c2:a0:cc:85:07:51:cb:54:72:9e:3e: b0:ec:92:74:fb:c9:43:48:14:98:d7:64:a2:86:fa: 23:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:20:91:46:16:57:B2:27:F4:8E:D9:64:49:98:33:77:9E:4E:AF:11 X509v3 Authority Key Identifier: keyid:B2:91:10:21:54:47:21:83:CF:50:D2:AE:6F:A3:0E:1B:DE:34:2B:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/spEQIVRHIYPPUNKub6MOG940K_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/spEQIVRHIYPPUNKub6MOG940K_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB095/AABEB56A1A5311EEA4608814C4F9AE02/35A46D4E1A5611EE93742844C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.148.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:c1:e2:9c:84:b8:21:3c:48:5b:97:dc:e6:e0:4a:2e:9b:88: be:21:67:09:21:12:fa:96:06:da:fc:ea:7e:b7:6b:2f:46:99: 5c:87:97:da:5b:c6:ac:e6:94:79:67:84:2b:1e:27:60:72:e4: 1b:77:f0:56:63:36:8f:43:3f:96:ad:2f:48:14:5e:b1:52:32: f9:15:f1:63:9d:a3:7e:88:0f:a5:92:b1:6b:73:d1:da:ab:21: 0f:90:af:c2:93:3d:d5:f1:51:7d:3e:2f:fe:fd:3a:75:8d:17: 37:83:27:2a:c2:6b:a0:a3:c0:7b:9a:09:0f:41:64:81:8c:32: ab:c9:f0:65:69:2a:1b:cf:98:a9:55:20:f0:58:6a:33:b0:21: ef:bd:46:42:20:f9:27:09:35:eb:09:32:96:67:dd:bf:6a:aa: 5f:90:72:ec:2c:db:22:46:97:1e:52:fe:ed:29:30:57:db:bd: 0a:af:63:16:ce:59:57:80:16:8b:29:29:ea:b9:43:e3:0a:c2: ed:5d:65:f2:c1:83:b2:fd:4c:19:5c:54:02:f6:ad:7c:2a:59: d8:c3:ea:07:22:2c:c8:1b:f3:1a:18:18:89:68:b8:0e:c0:29: 52:b7:c6:d2:a4:69:0b:47:79:2b:d5:e9:4d:d2:58:82:5a:8c: 90:c0:fb:5c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwOTUxMTAvBgNVBAUTKEIyOTExMDIxNTQ0NzIxODNDRjUwRDJBRTZGQTMwRTFC REUzNDJCRjQwHhcNMjQwMzEzMDYwODU5WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWYxNDJmYi1lM2QwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt8KKLoz7bn+4Io6Iv/0v7RneJU22+b0Xqv4G/7+aq4n790VCOfiFnHZdui94 Zs0hNm+uqm7xKnhsJ4sCPIvlRmBy8nFehKge0VsVMYhL9RfwIAGU9DsUrfgoYxhi Rp8WKd9/cxYTBOBRt+6QSNuHSmJVWWcWshpthPprwqT5740a6bO26nfLYTdSb2T8 V2j1kly2+I/YdGTy90sDior1mFMe43trHHMSuRxiUCnUVGUvDZt7/VrwZwbEQKfE cCq5aApdpsUmyC5U+HUs6HpZ2YNwpiQbuX9HUhPZ06TfTEQCi6RwwqDMhQdRy1Ry nj6w7JJ0+8lDSBSY12SihvojfQIDAQABo4IClTCCApEwHQYDVR0OBBYEFMQgkUYW V7In9I7ZZEmYM3eeTq8RMB8GA1UdIwQYMBaAFLKRECFURyGDz1DSrm+jDhveNCv0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjA5NS9BQUJFQjU2QTFB NTMxMUVFQTQ2MDg4MTRDNEY5QUUwMi9zcEVRSVZSSElZUFBVTkt1YjZNT0c5NDBL X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NwRVFJVlJISVlQUFVOS3ViNk1PRzk0MEtfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkIwOTUvQUFCRUI1NkExQTUzMTFFRUE0NjA4ODE0QzRGOUFFMDIvMzVBNDZENEUx QTU2MTFFRTkzNzQyODQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnQpQwDQYJKoZIhvcNAQELBQADggEBABrB4pyEuCE8SFuX 3ObgSi6biL4hZwkhEvqWBtr86n63ay9GmVyHl9pbxqzmlHlnhCseJ2By5Bt38FZj No9DP5atL0gUXrFSMvkV8WOdo36ID6WSsWtz0dqrIQ+Qr8KTPdXxUX0+L/79OnWN FzeDJyrCa6CjwHuaCQ9BZIGMMqvJ8GVpKhvPmKlVIPBYajOwIe+9RkIg+ScJNesJ MpZn3b9qql+Qcuws2yJGlx5S/u0pMFfbvQqvYxbOWVeAFospKeq5Q+MKwu1dZfLB g7L9TBlcVAL2rXwqWdjD6gciLMgb8xoYGIlouA7AKVK3xtKkaQtHeSvV6U3SWIJa jJDA+1w= -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:37 2024 by rpki-client on console-ams.rpki-client.org