$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/545EDE9C140911EF8520A25BC4F9AE02.roa File: 545EDE9C140911EF8520A25BC4F9AE02.roa (raw, json) Hash identifier: f/RigGqDQyE5cV9YFdD69wWLUqqtBXkgZ1bqVEllexY= Subject key identifier: B8:2C:D4:AF:75:18:52:8E:80:9A:E5:92:8D:D1:86:08:17:2B:D4:D5 Certificate issuer: /CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Certificate serial: E9 Authority key identifier: 37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/545EDE9C140911EF8520A25BC4F9AE02.roa Signing time: Fri 17 May 2024 05:11:32 +0000 ROA not before: Fri 17 May 2024 05:11:32 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 135517 IP address blocks: 103.101.98.0/23 maxlen: 23 103.101.98.0/24 maxlen: 24 103.101.99.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 20 Jun 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 233 (0xe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDA40/serialNumber=37B62A77251C52A04B33B82D2ED0204C927A429A Validity Not Before: May 17 05:11:32 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6646e704-27b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:1f:19:be:1c:22:8e:cd:86:1e:6e:5c:4d:76: 34:a0:83:5c:56:0b:51:05:8a:ac:d7:fc:87:ae:02: 21:b1:59:75:d9:6f:38:9f:7f:48:ea:38:6c:f4:b8: 6f:75:20:41:99:7e:70:e5:41:9e:75:11:5a:ed:64: 64:db:7a:1e:0c:90:c4:54:4b:38:2d:d3:76:1e:db: e7:52:42:6a:d0:39:26:7c:4c:9c:f4:2b:e8:8e:9b: 39:69:fc:5f:17:f2:1c:96:f0:83:ec:d7:c5:23:f4: 5e:12:5c:3f:11:7c:ae:47:2d:64:40:cc:7f:a7:73: fa:02:9c:57:cf:bc:39:86:da:3a:f9:06:ef:0b:50: 53:aa:44:97:17:0e:a1:b5:2e:93:87:64:60:d3:4b: 4f:46:b7:9b:ed:6e:de:4c:6f:0e:6f:a5:ca:ea:b1: c3:56:c2:f2:cf:d9:2d:3c:34:d9:37:e3:fc:18:b7: 24:53:e4:0a:75:bb:41:03:03:1b:da:69:e1:db:6a: 3f:82:51:74:b9:ba:37:fd:9c:77:0e:c0:9a:5d:ed: 1b:30:a0:e6:6b:4f:10:79:4b:ff:5d:44:bd:e4:c2: 84:a7:a3:03:6d:7b:72:f9:ce:1c:f9:3c:57:86:10: 94:71:57:3e:57:23:78:32:74:ac:e4:3b:9c:22:a0: f0:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:2C:D4:AF:75:18:52:8E:80:9A:E5:92:8D:D1:86:08:17:2B:D4:D5 X509v3 Authority Key Identifier: keyid:37:B6:2A:77:25:1C:52:A0:4B:33:B8:2D:2E:D0:20:4C:92:7A:42:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/N7YqdyUcUqBLM7gtLtAgTJJ6Qpo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDA40/96F0D70CBBDA11ED8878EF47C4F9AE02/545EDE9C140911EF8520A25BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.101.98.0/23 Signature Algorithm: sha256WithRSAEncryption 86:a4:4d:0a:fa:78:34:62:df:e6:97:9a:7c:bf:ec:6d:db:ac: 23:ec:45:4c:5c:a2:4a:af:8a:98:80:6d:b4:f3:b2:6f:5f:67: 68:ce:ae:07:40:fe:96:2d:2d:b7:c8:96:40:f7:2a:bf:62:35: fe:9a:fa:e3:32:72:e5:9f:b7:64:d9:b4:45:6c:35:37:cf:7b: 1f:c4:84:4a:42:9e:24:27:46:80:f3:f5:fd:0b:75:57:70:fe: 7a:d0:12:48:64:8c:e8:d1:96:83:47:94:b8:a4:81:76:47:85: b0:70:4b:43:fd:a1:25:6f:72:35:31:f8:38:85:70:e2:b1:0b: e9:7e:0c:65:16:3e:41:8a:23:b1:67:a5:5f:c4:c2:58:3f:e1: 8c:b9:ff:b9:c2:86:2b:8a:0d:8c:d0:f0:5c:56:21:1f:39:e5: b1:8b:22:71:a0:c1:8b:19:c3:4b:75:d0:a8:72:2e:d2:79:48: e9:a4:6d:e2:3d:23:ce:94:83:1b:64:4b:1e:a1:54:02:05:8b: 4c:88:d8:0f:da:8c:93:15:57:58:58:55:33:f6:e9:a3:43:5f: 0a:f7:1e:99:8f:df:cb:54:07:36:31:1f:04:71:3c:69:5f:b9: 4c:a8:a8:2c:2f:92:87:0c:af:dc:51:26:21:68:5f:53:a2:11: 6b:f4:bf:38 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAOkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRBNDAxMTAvBgNVBAUTKDM3QjYyQTc3MjUxQzUyQTA0QjMzQjgyRDJFRDAyMDRD OTI3QTQyOUEwHhcNMjQwNTE3MDUxMTMyWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQ2ZTcwNC0yN2IyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyh8Zvhwijs2GHm5cTXY0oINcVgtRBYqs1/yHrgIhsVl12W84n39I6jhs9Lhv dSBBmX5w5UGedRFa7WRk23oeDJDEVEs4LdN2HtvnUkJq0DkmfEyc9Cvojps5afxf F/IclvCD7NfFI/ReElw/EXyuRy1kQMx/p3P6ApxXz7w5hto6+QbvC1BTqkSXFw6h tS6Th2Rg00tPRreb7W7eTG8Ob6XK6rHDVsLyz9ktPDTZN+P8GLckU+QKdbtBAwMb 2mnh22o/glF0ubo3/Zx3DsCaXe0bMKDma08QeUv/XUS95MKEp6MDbXty+c4c+TxX hhCUcVc+VyN4MnSs5DucIqDw3QIDAQABo4IClTCCApEwHQYDVR0OBBYEFLgs1K91 GFKOgJrlko3RhggXK9TVMB8GA1UdIwQYMBaAFDe2KnclHFKgSzO4LS7QIEySekKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGREE0MC85NkYwRDcwQ0JC REExMUVEODg3OEVGNDdDNEY5QUUwMi9ON1lxZHlVY1VxQkxNN2d0THRBZ1RKSjZR cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL043WXFkeVVjVXFCTE03Z3RMdEFnVEpKNlFwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRBNDAvOTZGMEQ3MENCQkRBMTFFRDg4NzhFRjQ3QzRGOUFFMDIvNTQ1RURFOUMx NDA5MTFFRjg1MjBBMjVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnZWIwDQYJKoZIhvcNAQELBQADggEBAIakTQr6eDRi3+aX mny/7G3brCPsRUxcokqvipiAbbTzsm9fZ2jOrgdA/pYtLbfIlkD3Kr9iNf6a+uMy cuWft2TZtEVsNTfPex/EhEpCniQnRoDz9f0LdVdw/nrQEkhkjOjRloNHlLikgXZH hbBwS0P9oSVvcjUx+DiFcOKxC+l+DGUWPkGKI7FnpV/Ewlg/4Yy5/7nChiuKDYzQ 8FxWIR855bGLInGgwYsZw0t10KhyLtJ5SOmkbeI9I86UgxtkSx6hVAIFi0yI2A/a jJMVV1hYVTP26aNDXwr3HpmP38tUBzYxHwRxPGlfuUyoqCwvkocMr9xRJiFoX1Oi EWv0vzg= -----END CERTIFICATE-----Generated at Thu Jun 13 06:58:59 2024 by rpki-client on console-fra.rpki-client.org