$ rpki-client -vvf rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/91BCF5D08E0811EE91C7BD62C4F9AE02.roa File: 91BCF5D08E0811EE91C7BD62C4F9AE02.roa (raw, json) Hash identifier: NUwS5dYsHWOgsvHLsaWVzkOfeZ5Qgl9e7GqBuWLbj7Q= Subject key identifier: 6A:3F:D1:3F:04:71:92:AC:E9:C7:62:3D:E7:00:CC:34:3B:62:B8:9B Certificate issuer: /CN=A911D40B/serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Certificate serial: 06 Authority key identifier: D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/91BCF5D08E0811EE91C7BD62C4F9AE02.roa Signing time: Fri 01 Dec 2023 07:57:22 +0000 ROA not before: Fri 01 Dec 2023 07:57:22 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 150382 IP address blocks: 103.24.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911D40B/serialNumber=D9FA4206DF0E9947CD501DFD525B2E46696FD442 Validity Not Before: Dec 1 07:57:22 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656991e2-bcb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2a:ed:47:ae:e4:dc:b4:47:b7:82:5d:f9:87: f1:d1:7b:9a:25:80:bf:97:f4:f3:88:5d:f0:b0:3d: ce:bb:58:78:c8:d3:78:5f:ba:f6:9e:b4:e0:17:44: e6:e0:f7:c4:54:06:a3:29:26:3f:d4:51:a7:79:f4: 00:3f:74:7c:bc:7f:0e:56:d9:33:80:9a:80:27:a8: c1:0a:f7:44:02:6c:13:cf:14:f6:42:c5:75:58:b1: 2e:8d:fa:b2:4f:15:39:99:f0:c5:06:a9:7e:b1:24: b8:ec:19:65:30:ee:83:16:9b:45:fc:ba:e4:65:bf: 8c:5e:70:a8:e7:b8:d0:08:aa:c4:01:96:27:95:7e: 55:3c:84:d6:34:f0:a8:33:ef:df:e9:ac:da:c0:62: fd:dc:b1:28:b0:ac:4c:33:52:df:ea:f9:ee:95:2c: 15:13:02:36:2a:db:60:b3:f1:4a:6b:e0:90:7c:71: 20:d6:0f:6c:51:f2:a5:a4:7d:bd:c1:e0:53:79:a6: 83:7a:ed:a1:96:d2:90:20:77:af:a2:4e:2b:fd:c8: 33:12:0d:12:48:5b:ad:d5:c6:59:86:75:e6:0c:31: a7:9c:a3:34:63:5c:92:a3:86:72:c4:2b:da:0b:10: 7d:99:8b:40:99:fe:f0:33:2f:d0:b2:37:d8:f8:67: 5d:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:3F:D1:3F:04:71:92:AC:E9:C7:62:3D:E7:00:CC:34:3B:62:B8:9B X509v3 Authority Key Identifier: keyid:D9:FA:42:06:DF:0E:99:47:CD:50:1D:FD:52:5B:2E:46:69:6F:D4:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/2fpCBt8OmUfNUB39UlsuRmlv1EI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2fpCBt8OmUfNUB39UlsuRmlv1EI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911D40B/4626BB1A8E0811EE9C9DE461C4F9AE02/91BCF5D08E0811EE91C7BD62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.24.70.0/23 Signature Algorithm: sha256WithRSAEncryption 5a:4e:0c:fa:be:1b:bd:12:7c:6d:de:43:7f:84:a2:6a:2f:44: cb:f0:90:bc:35:33:04:4c:70:f2:ae:29:69:fa:f6:66:c4:82: 04:2e:b5:7f:ff:d2:f8:a2:70:b8:f1:f5:a4:6b:da:96:43:a4: ec:1f:6e:1e:6c:b5:27:9b:0b:6b:0b:87:0d:b8:b2:6d:36:0d: 99:20:8c:e6:ee:75:53:bc:01:ac:1c:a7:41:55:76:1e:d4:9f: b9:67:cd:25:bd:a7:96:8d:95:98:ab:da:c2:64:8b:85:bd:30: c7:1f:46:7e:27:04:da:2b:d9:ad:6d:f0:46:f2:74:94:7b:93: 25:5a:e4:50:56:de:0b:91:f1:9b:48:7f:ca:af:85:62:6d:04: f4:89:31:ec:c2:cb:35:57:80:23:82:a6:38:cb:b2:31:9a:5f: b5:9f:f8:19:f4:1c:98:cb:c3:0e:30:47:d4:92:55:ef:5d:90: 99:d8:a4:6c:58:85:d0:ed:17:b7:6b:f5:8f:12:76:56:f3:8c: 41:d4:8d:1b:f0:ce:fa:ac:4c:6d:5f:04:cb:a6:a3:d8:83:98: 92:c5:cc:ff:93:4a:8e:0c:11:22:5f:bd:d3:af:16:cb:34:3b: 3e:41:5a:81:e7:cf:50:81:8e:77:dd:f5:27:60:a6:8a:09:46: 9f:25:e1:e2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEx RDQwQjExMC8GA1UEBRMoRDlGQTQyMDZERjBFOTk0N0NENTAxREZENTI1QjJFNDY2 OTZGRDQ0MjAeFw0yMzEyMDEwNzU3MjJaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1Njk5MWUyLWJjYjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCnKu1HruTctEe3gl35h/HRe5olgL+X9POIXfCwPc67WHjI03hfuvaetOAXRObg 98RUBqMpJj/UUad59AA/dHy8fw5W2TOAmoAnqMEK90QCbBPPFPZCxXVYsS6N+rJP FTmZ8MUGqX6xJLjsGWUw7oMWm0X8uuRlv4xecKjnuNAIqsQBlieVflU8hNY08Kgz 79/prNrAYv3csSiwrEwzUt/q+e6VLBUTAjYq22Cz8Upr4JB8cSDWD2xR8qWkfb3B 4FN5poN67aGW0pAgd6+iTiv9yDMSDRJIW63VxlmGdeYMMaecozRjXJKjhnLEK9oL EH2Zi0CZ/vAzL9CyN9j4Z12zAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUaj/RPwRx kqzpx2I95wDMNDtiuJswHwYDVR0jBBgwFoAU2fpCBt8OmUfNUB39UlsuRmlv1EIw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTFENDBCLzQ2MjZCQjFBOEUw ODExRUU5QzlERTQ2MUM0RjlBRTAyLzJmcENCdDhPbVVmTlVCMzlVbHN1Um1sdjFF SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvMmZwQ0J0OE9tVWZOVUIzOVVsc3VSbWx2MUVJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx RDQwQi80NjI2QkIxQThFMDgxMUVFOUM5REU0NjFDNEY5QUUwMi85MUJDRjVEMDhF MDgxMUVFOTFDN0JENjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWcYRjANBgkqhkiG9w0BAQsFAAOCAQEAWk4M+r4bvRJ8bd5D f4Siai9Ey/CQvDUzBExw8q4pafr2ZsSCBC61f//S+KJwuPH1pGvalkOk7B9uHmy1 J5sLawuHDbiybTYNmSCM5u51U7wBrBynQVV2HtSfuWfNJb2nlo2VmKvawmSLhb0w xx9GficE2ivZrW3wRvJ0lHuTJVrkUFbeC5Hxm0h/yq+FYm0E9Ikx7MLLNVeAI4Km OMuyMZpftZ/4GfQcmMvDDjBH1JJV712QmdikbFiF0O0Xt2v1jxJ2VvOMQdSNG/DO +qxMbV8Ey6aj2IOYksXM/5NKjgwRIl+9068WyzQ7PkFagefPUIGOd931J2CmiglG nyXh4g== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org