$ rpki-client -vvf rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/AB6C302EB5F311EDA0148B2DC4F9AE02.roa File: AB6C302EB5F311EDA0148B2DC4F9AE02.roa (raw, json) Hash identifier: z3Q5zF+FEDFVuismEaJBSvy+GlUJIQ0tTvpv/F4Fp0w= Subject key identifier: F7:70:2C:32:DA:79:05:B0:F3:1C:D8:D5:42:6B:8F:23:10:B4:02:5F Certificate issuer: /CN=A91433B3/serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE Certificate serial: AE Authority key identifier: 56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/AB6C302EB5F311EDA0148B2DC4F9AE02.roa Signing time: Mon 29 Jan 2024 05:37:33 +0000 ROA not before: Mon 29 Jan 2024 05:37:33 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134597 IP address blocks: 103.55.242.0/24 maxlen: 24 103.55.243.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:50:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 174 (0xae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91433B3/serialNumber=56BB6F3137D8DD9EB97E383BC7F461D90F85DDFE Validity Not Before: Jan 29 05:37:33 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b7399c-dd81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:8d:e1:43:9a:f2:64:40:70:f9:3f:94:26:6d: 0a:1d:ef:9a:46:e4:71:0c:a0:4e:a5:58:66:46:37: 5e:d4:74:11:3f:e4:4e:cc:98:75:b0:c9:ea:ea:37: f8:d7:0a:e9:e3:b4:a7:52:66:82:bf:77:86:81:12: cf:b0:86:2d:48:80:fa:59:05:f4:45:86:ba:35:47: be:5b:02:01:ac:f0:f8:48:a3:be:ba:d8:6b:54:e9: 63:c5:bd:33:fb:d5:07:d2:d9:3f:75:00:77:71:ab: f7:43:18:20:a2:39:15:53:a9:b7:a8:07:cb:a8:18: 1a:1b:e9:b9:d2:2f:51:d4:ea:cf:97:45:a0:de:a4: 21:21:af:43:6c:1e:75:42:3f:24:92:d8:42:ef:81: 5f:4f:f3:56:be:5b:40:ad:25:08:7e:03:ba:a5:c0: ac:74:ff:81:f2:a3:53:1c:fe:6c:6a:93:96:71:7c: dc:2b:50:75:38:9b:81:47:9f:7e:e4:84:05:18:6b: 01:50:c6:8c:d4:9e:eb:2b:19:24:cb:35:88:1b:86: 89:14:c3:eb:54:ad:10:e1:58:01:1b:d3:c6:b4:e4: 5c:1c:f9:bf:7c:58:fc:5e:b5:b7:bc:48:f9:a4:54: 57:01:72:f2:97:1a:a7:8b:52:2d:9d:de:6b:48:83: 15:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:70:2C:32:DA:79:05:B0:F3:1C:D8:D5:42:6B:8F:23:10:B4:02:5F X509v3 Authority Key Identifier: keyid:56:BB:6F:31:37:D8:DD:9E:B9:7E:38:3B:C7:F4:61:D9:0F:85:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VrtvMTfY3Z65fjg7x_Rh2Q-F3f4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91433B3/BDFE18CCB5F011EDA7D0EF7CC4F9AE02/AB6C302EB5F311EDA0148B2DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.55.242.0/23 Signature Algorithm: sha256WithRSAEncryption b3:59:a1:bd:7d:a9:91:b9:fd:32:e5:ac:14:ce:d0:f3:0b:f2: e5:4b:3d:26:42:f4:26:5f:27:80:87:b7:3a:76:06:80:63:80: 75:21:c7:df:94:56:a0:cb:8a:f2:15:e5:fe:19:44:68:7e:33: 79:86:93:1b:5c:f2:69:b4:91:6b:ab:70:44:38:61:3c:0e:83: b6:10:5b:fd:12:3f:94:a5:25:e5:e6:e5:8f:96:6f:d4:bf:e5: 6e:16:0e:85:32:a0:b1:8c:ab:d1:46:bd:56:99:d2:31:6a:44: 94:84:de:10:85:65:68:43:b6:6c:01:ce:60:4b:6a:f2:2d:16: be:0b:3e:4f:fe:a4:c4:97:1b:0c:da:b1:d1:66:6c:b6:a6:e8: 65:8a:59:38:52:e5:f4:8a:0c:57:e1:d8:2d:22:b4:91:49:b3: 55:ac:c1:6a:4d:b3:f1:90:0c:36:94:8f:cd:bb:92:15:23:4f: e9:e1:f0:46:d3:64:ad:28:f0:fe:7d:a6:15:69:84:9d:34:1e: 1a:0c:0a:c5:4f:b3:5f:fe:5a:de:5e:59:4a:59:71:67:32:46: 97:70:06:73:66:74:d3:55:c6:a9:e0:99:a4:a9:01:3d:f6:97: 67:db:f1:d1:3e:3a:51:4d:4f:b4:01:0a:56:2a:28:50:d5:0c: cf:dd:09:05 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAK4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDMzQjMxMTAvBgNVBAUTKDU2QkI2RjMxMzdEOEREOUVCOTdFMzgzQkM3RjQ2MUQ5 MEY4NURERkUwHhcNMjQwMTI5MDUzNzMzWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI3Mzk5Yy1kZDgxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw43hQ5ryZEBw+T+UJm0KHe+aRuRxDKBOpVhmRjde1HQRP+ROzJh1sMnq6jf4 1wrp47SnUmaCv3eGgRLPsIYtSID6WQX0RYa6NUe+WwIBrPD4SKO+uthrVOljxb0z +9UH0tk/dQB3cav3QxggojkVU6m3qAfLqBgaG+m50i9R1OrPl0Wg3qQhIa9DbB51 Qj8kkthC74FfT/NWvltArSUIfgO6pcCsdP+B8qNTHP5sapOWcXzcK1B1OJuBR59+ 5IQFGGsBUMaM1J7rKxkkyzWIG4aJFMPrVK0Q4VgBG9PGtORcHPm/fFj8XrW3vEj5 pFRXAXLylxqni1Itnd5rSIMV4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFPdwLDLa eQWw8xzY1UJrjyMQtAJfMB8GA1UdIwQYMBaAFFa7bzE32N2euX44O8f0YdkPhd3+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MzNCMy9CREZFMThDQ0I1 RjAxMUVEQTdEMEVGN0NDNEY5QUUwMi9WcnR2TVRmWTNaNjVmamc3eF9SaDJRLUYz ZjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZydHZNVGZZM1o2NWZqZzd4X1JoMlEtRjNmNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDMzQjMvQkRGRTE4Q0NCNUYwMTFFREE3RDBFRjdDQzRGOUFFMDIvQUI2QzMwMkVC NUYzMTFFREEwMTQ4QjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnN/IwDQYJKoZIhvcNAQELBQADggEBALNZob19qZG5/TLl rBTO0PML8uVLPSZC9CZfJ4CHtzp2BoBjgHUhx9+UVqDLivIV5f4ZRGh+M3mGkxtc 8mm0kWurcEQ4YTwOg7YQW/0SP5SlJeXm5Y+Wb9S/5W4WDoUyoLGMq9FGvVaZ0jFq RJSE3hCFZWhDtmwBzmBLavItFr4LPk/+pMSXGwzasdFmbLam6GWKWThS5fSKDFfh 2C0itJFJs1WswWpNs/GQDDaUj827khUjT+nh8EbTZK0o8P59phVphJ00HhoMCsVP s1/+Wt5eWUpZcWcyRpdwBnNmdNNVxqngmaSpAT32l2fb8dE+OlFNT7QBClYqKFDV DM/dCQU= -----END CERTIFICATE-----Generated at Mon May 27 06:55:48 2024 by rpki-client on console-fra.rpki-client.org