$ rpki-client -vvf rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DAB1752C4BCD11EE8F976B7EC4F9AE02.roa File: DAB1752C4BCD11EE8F976B7EC4F9AE02.roa (raw, json) Hash identifier: R+8Dt7rUV/RZ6Vr0V8jwZjRebN9rGi5xxhIV1WmHjEo= Subject key identifier: D9:83:B6:4E:C9:66:80:16:C6:4F:05:EE:83:22:EC:D8:F5:54:55:C5 Certificate issuer: /CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Certificate serial: 0711 Authority key identifier: 14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DAB1752C4BCD11EE8F976B7EC4F9AE02.roa Signing time: Tue 05 Sep 2023 09:23:20 +0000 ROA not before: Tue 05 Sep 2023 09:23:20 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 140038 IP address blocks: 103.143.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 20 Sep 2023 08:09:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1809 (0x711) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91409DC/serialNumber=14A6CABC302EC1E3DCE74DE98BF558A042BEAC56 Validity Not Before: Sep 5 09:23:20 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64f6f388-e35f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e3:f3:1b:44:49:7a:69:29:87:63:52:a0:68: 4a:23:6d:3c:8f:49:f8:52:45:03:ac:b5:f7:d5:0f: 08:a6:62:2e:d7:63:82:cd:42:a1:e6:fe:3f:cc:59: 82:2b:5e:41:e3:87:4d:c7:ea:61:b1:56:7f:58:d2: 50:77:c2:7d:ee:07:8a:e4:4f:71:ae:89:9b:22:32: 73:50:b2:d4:a2:de:a5:3c:9d:cc:de:ce:b6:66:45: 74:db:db:dc:25:c3:a0:10:55:9d:0a:80:fc:f8:74: a7:49:89:92:6f:11:d9:ad:43:4f:c4:c0:a8:a6:3e: 15:54:65:66:8e:24:84:84:94:f3:23:fc:1f:6b:6b: af:56:65:1f:03:b5:90:48:75:39:2b:19:37:ce:96: 7b:18:22:be:7b:c3:00:68:65:3d:11:ae:50:ae:40: 00:a2:90:8f:5a:7c:53:82:72:38:2b:df:fa:ff:bc: 43:c1:04:7f:9b:3c:63:27:5f:10:29:c2:55:20:ce: 38:df:68:9b:7b:86:2e:bc:e7:21:bb:f1:76:d5:a4: f4:56:56:5b:70:21:ac:9e:59:30:34:12:1b:e1:a5: 52:28:53:93:6e:54:42:e5:d7:19:d7:cb:c8:e2:f9: 0d:70:d6:c5:a5:73:21:7a:fc:3a:8a:5c:b0:e0:4c: 4e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:83:B6:4E:C9:66:80:16:C6:4F:05:EE:83:22:EC:D8:F5:54:55:C5 X509v3 Authority Key Identifier: keyid:14:A6:CA:BC:30:2E:C1:E3:DC:E7:4D:E9:8B:F5:58:A0:42:BE:AC:56 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/FKbKvDAuwePc503pi_VYoEK-rFY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FKbKvDAuwePc503pi_VYoEK-rFY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91409DC/A5BBFAA6093511EAAB10C91FC4F9AE02/DAB1752C4BCD11EE8F976B7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.143.148.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:3a:6a:cc:75:f6:de:a5:c2:5e:00:79:f1:26:5c:99:f6:ea: c0:be:66:6a:a2:72:76:47:3c:9e:63:5f:a3:df:99:5f:4d:21: 31:e8:6e:13:41:9a:de:d5:5f:6f:11:6e:13:06:68:ab:14:22: 48:82:93:20:22:67:30:80:c7:5d:8c:3c:b8:e7:31:15:06:d6: 53:4e:46:0e:c4:2c:77:94:d1:a9:a8:b6:3c:81:8f:1a:8b:67: 84:26:d6:49:94:80:7a:1b:0f:72:d0:15:98:fa:54:15:da:b9: 1e:39:87:cf:68:4c:68:4b:05:9b:46:7a:a8:76:64:ad:57:bb: 8e:b1:2d:82:91:79:e6:eb:92:27:b3:c7:f6:19:11:92:b8:3f: 27:df:f7:dc:b3:e5:9b:88:2b:a9:dc:bc:93:a2:22:3a:12:a2: ce:9b:c8:1c:3c:78:7d:65:54:58:4b:84:ec:fd:61:aa:5f:64: 85:9f:8c:ca:1f:0f:ca:31:ae:b6:5f:01:62:bb:6b:2f:eb:a5: fd:88:f9:a2:29:11:f4:b5:d2:10:b4:cf:4e:30:96:54:73:67: 44:80:fa:2e:64:06:f1:25:ec:d2:17:b6:b6:de:90:9c:41:f1: 5d:e3:73:2d:80:75:72:bb:db:75:2d:c7:ff:51:af:9c:6a:74: ca:e6:35:2b -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBxEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA5REMxMTAvBgNVBAUTKDE0QTZDQUJDMzAyRUMxRTNEQ0U3NERFOThCRjU1OEEw NDJCRUFDNTYwHhcNMjMwOTA1MDkyMzIwWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGY2ZjM4OC1lMzVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvuPzG0RJemkph2NSoGhKI208j0n4UkUDrLX31Q8IpmIu12OCzUKh5v4/zFmC K15B44dNx+phsVZ/WNJQd8J97geK5E9xrombIjJzULLUot6lPJ3M3s62ZkV029vc JcOgEFWdCoD8+HSnSYmSbxHZrUNPxMCopj4VVGVmjiSEhJTzI/wfa2uvVmUfA7WQ SHU5Kxk3zpZ7GCK+e8MAaGU9Ea5QrkAAopCPWnxTgnI4K9/6/7xDwQR/mzxjJ18Q KcJVIM4432ibe4YuvOchu/F21aT0VlZbcCGsnlkwNBIb4aVSKFOTblRC5dcZ18vI 4vkNcNbFpXMhevw6ilyw4ExOmwIDAQABo4IClTCCApEwHQYDVR0OBBYEFNmDtk7J ZoAWxk8F7oMi7Nj1VFXFMB8GA1UdIwQYMBaAFBSmyrwwLsHj3OdN6Yv1WKBCvqxW MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDlEQy9BNUJCRkFBNjA5 MzUxMUVBQUIxMEM5MUZDNEY5QUUwMi9GS2JLdkRBdXdlUGM1MDNwaV9WWW9FSy1y RlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZLYkt2REF1d2VQYzUwM3BpX1ZZb0VLLXJGWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA5REMvQTVCQkZBQTYwOTM1MTFFQUFCMTBDOTFGQzRGOUFFMDIvREFCMTc1MkM0 QkNEMTFFRThGOTc2QjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnj5QwDQYJKoZIhvcNAQELBQADggEBAE46asx19t6lwl4A efEmXJn26sC+ZmqicnZHPJ5jX6PfmV9NITHobhNBmt7VX28RbhMGaKsUIkiCkyAi ZzCAx12MPLjnMRUG1lNORg7ELHeU0amotjyBjxqLZ4Qm1kmUgHobD3LQFZj6VBXa uR45h89oTGhLBZtGeqh2ZK1Xu46xLYKReebrkiezx/YZEZK4Pyff99yz5ZuIK6nc vJOiIjoSos6byBw8eH1lVFhLhOz9YapfZIWfjMofD8oxrrZfAWK7ay/rpf2I+aIp EfS10hC0z04wllRzZ0SA+i5kBvEl7NIXtrbekJxB8V3jcy2AdXK723Utx/9Rr5xq dMrmNSs= -----END CERTIFICATE-----Generated at Wed Sep 13 13:01:27 2023 by rpki-client on console-ams.rpki-client.org