$ rpki-client -vvf rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/A5393FF2E70911E8B4D19B84C4F9AE02.roa File: A5393FF2E70911E8B4D19B84C4F9AE02.roa (raw, json) Hash identifier: ++HKMKnO2wwG3IjoXlVb7Z/y+OSqAGLthTpFlPfUd3M= Subject key identifier: CF:C3:20:2A:C2:2D:A3:53:12:E5:43:BC:AC:18:D8:C9:A8:2B:05:78 Certificate issuer: /CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Certificate serial: 1179 Authority key identifier: 21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/A5393FF2E70911E8B4D19B84C4F9AE02.roa Signing time: Fri 08 Sep 2023 17:44:39 +0000 ROA not before: Fri 08 Sep 2023 17:44:39 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 55901 IP address blocks: 103.123.136.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4473 (0x1179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91272F9/serialNumber=21CBFE29A994D8F9E03E4C4D44E6CF5B648B78EC Validity Not Before: Sep 8 17:44:39 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64fb5d86-34f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:ce:62:32:4a:73:c6:56:f8:83:6c:85:40:0d: 4d:06:07:50:f5:38:db:8c:f9:bf:13:57:a2:8f:f7: a3:88:fa:83:fc:8c:5a:5c:f2:26:62:ea:bc:f3:11: 9c:92:e2:00:31:f5:9d:7b:85:f3:fe:4d:79:8a:f1: 85:01:6e:ee:d7:3c:2b:7d:ad:58:b7:d1:e2:7a:94: f9:bf:6d:70:dc:37:5a:b9:08:d9:dd:4e:37:e2:94: e5:78:87:72:15:17:a8:23:c0:9f:a4:e7:2e:fe:f7: 0e:32:af:d0:fb:72:6d:46:da:c2:b7:5e:34:1c:71: f2:20:c6:e1:82:ee:e4:06:74:ff:9f:27:2d:54:83: 2c:99:53:e3:c5:a3:9a:70:b6:76:7f:fa:28:45:3e: db:ba:49:4e:47:9e:d2:9c:3f:57:1d:d2:f8:6a:7e: 02:f9:6c:47:5c:0f:04:4a:16:6e:02:0d:4a:95:14: 22:f3:95:28:f9:e0:cd:79:77:5c:28:4a:fc:25:f9: a5:0e:f9:6a:1b:7a:bb:42:1f:3b:74:8f:82:32:2a: ce:aa:6c:a9:87:6c:e6:a8:bc:60:a0:aa:76:d4:cc: d2:6a:dd:c0:00:6a:7c:29:78:85:f1:ad:8b:d6:e7: 79:08:de:08:9c:f6:de:b7:e9:b1:16:c8:cd:db:fb: 67:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:C3:20:2A:C2:2D:A3:53:12:E5:43:BC:AC:18:D8:C9:A8:2B:05:78 X509v3 Authority Key Identifier: keyid:21:CB:FE:29:A9:94:D8:F9:E0:3E:4C:4D:44:E6:CF:5B:64:8B:78:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/Icv-KamU2PngPkxNRObPW2SLeOw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Icv-KamU2PngPkxNRObPW2SLeOw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91272F9/D2ED49C2C26D11E8BABE1165C4F9AE02/A5393FF2E70911E8B4D19B84C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.123.136.0/22 Signature Algorithm: sha256WithRSAEncryption 58:9c:4a:30:50:61:35:61:f5:3e:3d:dc:ce:a7:af:fb:4a:ac: 87:b0:0f:89:69:7f:2e:b0:7a:6f:dc:72:4e:fa:4f:d2:e1:7c: a1:78:85:4f:91:a2:0f:51:c3:ca:b3:ac:88:58:cb:a1:77:be: 65:ad:1c:11:90:d3:8d:54:21:0a:0a:90:e2:6e:11:4d:b8:52: ac:0e:20:e2:46:89:52:82:1c:dc:81:56:f6:15:ce:5e:f8:4d: 67:74:5a:3a:61:e4:35:7b:41:87:e8:88:13:43:cd:33:12:dc: f1:e3:64:89:ec:b8:18:86:3a:10:d3:d8:bc:1b:d8:e4:5b:75: 6f:9b:80:94:7c:1a:f6:1c:f0:4d:66:87:cf:b5:9d:56:12:da: 70:f3:bb:93:55:c5:9e:b4:eb:4c:7d:22:c2:fe:c7:5d:99:f0: fe:ad:f0:7a:b9:a5:43:27:02:ef:a4:80:4d:83:3b:75:89:2d: c5:0d:d4:30:d9:26:9f:01:80:8b:57:b6:87:b7:83:2c:f6:f4: c9:37:97:cf:26:04:ad:b5:4e:25:d2:92:9c:49:6b:42:64:e2: fc:54:66:23:46:b3:7d:44:49:b5:b5:f0:a7:4b:d0:43:13:1c: 76:19:ca:2c:fa:83:ba:bd:70:fb:b1:cd:cf:cd:aa:7c:a7:79: 4d:70:36:a2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICEXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjcyRjkxMTAvBgNVBAUTKDIxQ0JGRTI5QTk5NEQ4RjlFMDNFNEM0RDQ0RTZDRjVC NjQ4Qjc4RUMwHhcNMjMwOTA4MTc0NDM5WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZiNWQ4Ni0zNGY0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA9M5iMkpzxlb4g2yFQA1NBgdQ9TjbjPm/E1eij/ejiPqD/IxaXPImYuq88xGc kuIAMfWde4Xz/k15ivGFAW7u1zwrfa1Yt9HiepT5v21w3DdauQjZ3U434pTleIdy FReoI8CfpOcu/vcOMq/Q+3JtRtrCt140HHHyIMbhgu7kBnT/nyctVIMsmVPjxaOa cLZ2f/ooRT7buklOR57SnD9XHdL4an4C+WxHXA8EShZuAg1KlRQi85Uo+eDNeXdc KEr8JfmlDvlqG3q7Qh87dI+CMirOqmyph2zmqLxgoKp21MzSat3AAGp8KXiF8a2L 1ud5CN4InPbet+mxFsjN2/tnewIDAQABo4IClTCCApEwHQYDVR0OBBYEFM/DICrC LaNTEuVDvKwY2MmoKwV4MB8GA1UdIwQYMBaAFCHL/implNj54D5MTUTmz1tki3js MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyNzJGOS9EMkVENDlDMkMy NkQxMUU4QkFCRTExNjVDNEY5QUUwMi9JY3YtS2FtVTJQbmdQa3hOUk9iUFcyU0xl T3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ljdi1LYW1VMlBuZ1BreE5ST2JQVzJTTGVPdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjcyRjkvRDJFRDQ5QzJDMjZEMTFFOEJBQkUxMTY1QzRGOUFFMDIvQTUzOTNGRjJF NzA5MTFFOEI0RDE5Qjg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJne4gwDQYJKoZIhvcNAQELBQADggEBAFicSjBQYTVh9T49 3M6nr/tKrIewD4lpfy6wem/cck76T9LhfKF4hU+Rog9Rw8qzrIhYy6F3vmWtHBGQ 041UIQoKkOJuEU24UqwOIOJGiVKCHNyBVvYVzl74TWd0Wjph5DV7QYfoiBNDzTMS 3PHjZInsuBiGOhDT2Lwb2ORbdW+bgJR8GvYc8E1mh8+1nVYS2nDzu5NVxZ6060x9 IsL+x12Z8P6t8Hq5pUMnAu+kgE2DO3WJLcUN1DDZJp8BgItXtoe3gyz29Mk3l88m BK21TiXSkpxJa0Jk4vxUZiNGs31ESbW18KdL0EMTHHYZyiz6g7q9cPuxzc/Nqnyn eU1wNqI= -----END CERTIFICATE-----Generated at Thu May 16 18:26:02 2024 by rpki-client on console-fra.rpki-client.org