$ rpki-client -vvf rpki.apnic.net/member_repository/A91251AD/8FDDF5E8991D11EC80939A54C4F9AE02/2106E428992111EC99E0095AC4F9AE02.roa File: 2106E428992111EC99E0095AC4F9AE02.roa (raw, json) Hash identifier: PcKJkGwaK4o171v3EBWrcFnHzSRmJYq7ZGQ7KxepW58= Subject key identifier: 1A:96:22:E0:71:3A:66:F8:F5:A3:7F:60:7D:FF:FE:84:B4:42:56:22 Certificate issuer: /CN=A91251AD/serialNumber=1565772B7B4EBE85049D2AF9B32ACC8780311A5D Certificate serial: 02BF Authority key identifier: 15:65:77:2B:7B:4E:BE:85:04:9D:2A:F9:B3:2A:CC:87:80:31:1A:5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FWV3K3tOvoUEnSr5syrMh4AxGl0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91251AD/8FDDF5E8991D11EC80939A54C4F9AE02/2106E428992111EC99E0095AC4F9AE02.roa Signing time: Tue 05 Mar 2024 03:24:49 +0000 ROA not before: Tue 05 Mar 2024 03:24:49 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 140227 IP address blocks: 103.148.218.0/24 maxlen: 24 103.148.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91251AD/8FDDF5E8991D11EC80939A54C4F9AE02/FWV3K3tOvoUEnSr5syrMh4AxGl0.crl rsync://rpki.apnic.net/member_repository/A91251AD/8FDDF5E8991D11EC80939A54C4F9AE02/FWV3K3tOvoUEnSr5syrMh4AxGl0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FWV3K3tOvoUEnSr5syrMh4AxGl0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 703 (0x2bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91251AD/serialNumber=1565772B7B4EBE85049D2AF9B32ACC8780311A5D Validity Not Before: Mar 5 03:24:49 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=65e69081-8d23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:da:c0:9e:72:da:85:79:84:11:d3:55:cd:9b: e3:69:a7:79:bb:ea:57:4f:a0:99:db:71:ec:6c:cd: 24:23:94:23:8d:b1:cb:72:b2:5c:a5:0f:c3:51:30: d0:46:36:77:f8:55:e6:f5:8f:4d:20:a7:d1:48:18: 9a:5b:55:50:b1:ad:6d:da:1d:dc:ff:87:83:3f:fb: af:4d:26:0f:32:f9:e0:ff:b8:ab:b4:84:31:b7:3a: 61:65:ae:2b:b2:f0:fa:43:66:21:a0:85:09:5d:26: 7e:ee:b1:f4:ec:21:95:e3:dd:7e:69:c9:78:b6:c6: 12:29:5a:7a:75:bf:9d:33:68:4a:5c:a0:36:a4:6a: 32:ec:4b:90:47:b6:c6:54:02:62:70:a7:71:9d:6a: 19:d9:ee:64:16:31:3e:eb:d8:5e:8d:51:22:e6:f0: 90:0d:0c:e5:99:c3:d9:ac:4b:61:7d:90:81:14:8c: 12:69:b3:b8:15:c1:1a:d7:46:2a:d9:e3:07:0d:ac: 65:44:d6:e2:ff:4b:77:82:79:fb:70:b6:f3:55:58: 1e:ab:e4:7e:d8:b0:eb:b9:e6:6f:32:0a:aa:9f:9c: 4a:ca:ca:c3:dc:12:12:e6:25:22:e8:a2:de:2d:45: 4e:35:ea:77:2e:69:c4:4a:85:c1:e7:00:26:f9:49: 0a:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:96:22:E0:71:3A:66:F8:F5:A3:7F:60:7D:FF:FE:84:B4:42:56:22 X509v3 Authority Key Identifier: keyid:15:65:77:2B:7B:4E:BE:85:04:9D:2A:F9:B3:2A:CC:87:80:31:1A:5D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91251AD/8FDDF5E8991D11EC80939A54C4F9AE02/FWV3K3tOvoUEnSr5syrMh4AxGl0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FWV3K3tOvoUEnSr5syrMh4AxGl0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91251AD/8FDDF5E8991D11EC80939A54C4F9AE02/2106E428992111EC99E0095AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.148.218.0/23 Signature Algorithm: sha256WithRSAEncryption 1d:ae:b5:1c:e8:a6:3b:cd:4a:81:6a:14:36:66:a9:97:cb:42: 37:81:a2:6c:7f:62:5e:51:09:06:69:25:93:8c:dc:10:f5:42: d4:fd:f0:d5:ad:9d:75:46:dd:e3:a5:4c:e0:bb:7b:2e:ea:d5: 8d:bc:62:4f:b1:4e:e9:9b:ed:98:69:72:eb:a3:ab:9e:da:22: 21:2e:ed:5d:30:66:59:e4:f2:ab:5b:1c:19:a8:06:ee:c4:fe: 3b:a9:9b:bb:6c:ab:64:16:2c:2d:5a:b7:4f:86:37:2d:a3:62: dc:55:cb:56:5a:01:a1:ed:c5:61:b7:23:c1:c7:cb:78:1e:2e: dc:3d:75:8d:0d:3a:4a:0b:bd:f7:5e:62:8b:a0:da:28:8f:b9: 28:4f:74:ca:fd:03:4f:2f:3f:9a:f0:81:74:02:1b:2f:21:a0: a9:56:dc:c0:c3:17:53:5e:64:ea:a7:1f:4b:d1:b5:7b:33:e9: ee:9c:1b:80:45:82:32:ad:52:5c:42:85:15:e2:a8:1e:1d:93: c8:4c:c6:a5:95:cb:25:6c:fc:61:54:bd:b7:2d:86:d9:c3:35: 46:e2:06:a6:ee:44:c2:08:bb:56:cc:e6:af:a6:54:e4:2e:18: 14:f8:ab:65:e3:36:78:b7:6b:8c:1f:8b:1b:44:94:47:39:24: 96:45:f0:20 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAr8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjUxQUQxMTAvBgNVBAUTKDE1NjU3NzJCN0I0RUJFODUwNDlEMkFGOUIzMkFDQzg3 ODAzMTFBNUQwHhcNMjQwMzA1MDMyNDQ5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2OTA4MS04ZDIzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5drAnnLahXmEEdNVzZvjaad5u+pXT6CZ23HsbM0kI5QjjbHLcrJcpQ/DUTDQ RjZ3+FXm9Y9NIKfRSBiaW1VQsa1t2h3c/4eDP/uvTSYPMvng/7irtIQxtzphZa4r svD6Q2YhoIUJXSZ+7rH07CGV491+acl4tsYSKVp6db+dM2hKXKA2pGoy7EuQR7bG VAJicKdxnWoZ2e5kFjE+69hejVEi5vCQDQzlmcPZrEthfZCBFIwSabO4FcEa10Yq 2eMHDaxlRNbi/0t3gnn7cLbzVVgeq+R+2LDrueZvMgqqn5xKysrD3BIS5iUi6KLe LUVONep3LmnESoXB5wAm+UkKVQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBqWIuBx Omb49aN/YH3//oS0QlYiMB8GA1UdIwQYMBaAFBVldyt7Tr6FBJ0q+bMqzIeAMRpd MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNTFBRC84RkRERjVFODk5 MUQxMUVDODA5MzlBNTRDNEY5QUUwMi9GV1YzSzN0T3ZvVUVuU3I1c3lyTWg0QXhH bDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZXVjNLM3RPdm9VRW5TcjVzeXJNaDRBeEdsMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjUxQUQvOEZEREY1RTg5OTFEMTFFQzgwOTM5QTU0QzRGOUFFMDIvMjEwNkU0Mjg5 OTIxMTFFQzk5RTAwOTVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlNowDQYJKoZIhvcNAQELBQADggEBAB2utRzopjvNSoFq FDZmqZfLQjeBomx/Yl5RCQZpJZOM3BD1QtT98NWtnXVG3eOlTOC7ey7q1Y28Yk+x Tumb7Zhpcuujq57aIiEu7V0wZlnk8qtbHBmoBu7E/jupm7tsq2QWLC1at0+GNy2j YtxVy1ZaAaHtxWG3I8HHy3geLtw9dY0NOkoLvfdeYoug2iiPuShPdMr9A08vP5rw gXQCGy8hoKlW3MDDF1NeZOqnH0vRtXsz6e6cG4BFgjKtUlxChRXiqB4dk8hMxqWV yyVs/GFUvbcthtnDNUbiBqbuRMIIu1bM5q+mVOQuGBT4q2XjNni3a4wfixtElEc5 JJZF8CA= -----END CERTIFICATE-----Generated at Sat May 11 04:41:49 2024 by rpki-client on console-ams.rpki-client.org