$ rpki-client -vvf rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/1ED18488A91511ED9E2AC948C4F9AE02.roa File: 1ED18488A91511ED9E2AC948C4F9AE02.roa (raw, json) Hash identifier: e1klgolsSajatFbf1LJ30moBI1ympGhIPAvqXY1BcVg= Subject key identifier: 2B:B2:9D:2F:D6:15:76:75:E1:31:43:69:DA:60:E1:E1:2F:25:5E:4A Certificate issuer: /CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5 Certificate serial: 0466 Authority key identifier: 64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/1ED18488A91511ED9E2AC948C4F9AE02.roa Signing time: Tue 01 Aug 2023 01:01:56 +0000 ROA not before: Tue 01 Aug 2023 01:01:56 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55020 IP address blocks: 103.66.56.0/22 maxlen: 24 103.228.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1126 (0x466) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91476F2/serialNumber=64B686B05DCBE8BEA92807532DE29A77905156F5 Validity Not Before: Aug 1 01:01:56 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c85984-e819 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e3:89:00:9b:1c:d5:e9:f2:48:86:d6:95:dc: aa:35:7d:1f:67:24:55:d3:35:9d:1a:47:a6:41:c4: 71:ea:7b:e5:6d:04:05:17:43:7e:e9:3c:5c:8a:1d: a7:20:ef:0f:68:07:4b:7a:22:0f:c4:86:9a:4f:e9: ae:31:63:ba:e9:cd:3b:4a:d4:f2:36:9b:12:4e:42: b6:e7:b0:ee:f9:f5:29:88:ea:c0:07:d9:67:88:c4: 8b:6e:95:37:76:71:3e:a4:71:ba:a3:be:55:f6:98: bc:f4:66:7a:03:02:f3:0c:b9:50:32:39:ac:67:ea: e4:be:f3:d3:41:35:41:73:c5:c0:3b:87:96:13:7b: 69:49:82:ee:93:9e:83:96:9d:bd:db:1d:d7:49:52: af:44:00:48:0a:2f:4b:f5:e9:73:68:70:39:eb:55: 13:11:2d:00:bd:ac:81:c9:ea:14:2b:0b:c4:ef:cc: a2:67:f3:a1:08:f5:40:77:b5:7c:0a:49:e1:7b:af: 7a:4f:2d:2b:1e:2f:1a:4e:66:45:55:a5:bc:72:f7: 4e:c8:3b:0f:51:c7:7b:81:43:5f:d0:13:1d:15:c8: 54:f6:97:17:81:90:57:c5:10:70:1c:c1:e9:9c:dc: aa:91:f5:72:d9:cd:06:c9:2c:d7:96:7f:84:fa:3f: 92:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:B2:9D:2F:D6:15:76:75:E1:31:43:69:DA:60:E1:E1:2F:25:5E:4A X509v3 Authority Key Identifier: keyid:64:B6:86:B0:5D:CB:E8:BE:A9:28:07:53:2D:E2:9A:77:90:51:56:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/ZLaGsF3L6L6pKAdTLeKad5BRVvU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZLaGsF3L6L6pKAdTLeKad5BRVvU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91476F2/2BE43DA0CB2C11EBBC35C440C4F9AE02/1ED18488A91511ED9E2AC948C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.66.56.0/22 103.228.168.0/22 Signature Algorithm: sha256WithRSAEncryption a4:d2:e4:24:33:09:50:8c:63:44:81:7a:1b:f0:5f:4b:1f:06: 96:b9:f0:ba:14:37:08:c2:2a:e1:64:fe:99:6d:03:01:c3:7f: 1a:c7:00:a0:bb:49:78:95:1a:e4:f3:0b:e0:63:cf:fd:b3:2d: dc:0a:56:ac:c9:8a:ce:2f:8a:79:82:d6:ae:8b:57:4e:e7:38: 66:c4:c8:50:6d:89:af:be:24:0c:d8:93:e6:ed:59:aa:42:87: 67:bf:d9:62:df:ad:27:68:5f:0e:41:3e:26:51:d0:24:b4:b7: c2:ed:a4:ca:ca:71:7c:d4:5c:17:33:a5:a9:9d:6d:87:d6:ce: 48:64:4a:c1:62:8f:27:bc:3f:ea:c7:27:83:be:98:a3:79:00: 23:51:17:c0:3e:21:44:59:ff:49:f4:d0:27:8d:c8:dc:45:23: 4e:6d:46:2d:ee:cf:5f:cc:c1:43:dc:3c:45:db:c7:d3:60:c6: d9:a8:78:82:51:98:0d:c2:0b:3b:85:e6:0b:9f:9e:c1:9e:ed: 94:f1:5d:ca:1c:a1:30:bc:42:07:13:15:4f:5c:dc:5f:3e:b3: f9:d3:f9:2a:d4:c9:dc:97:cc:9d:04:71:a0:fd:9a:05:45:87: de:bf:be:12:c0:f8:77:73:38:8f:5a:27:55:9a:1a:6e:d8:8e: 32:16:3f:35 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBGYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc2RjIxMTAvBgNVBAUTKDY0QjY4NkIwNURDQkU4QkVBOTI4MDc1MzJERTI5QTc3 OTA1MTU2RjUwHhcNMjMwODAxMDEwMTU2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4NTk4NC1lODE5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyOOJAJsc1enySIbWldyqNX0fZyRV0zWdGkemQcRx6nvlbQQFF0N+6Txcih2n IO8PaAdLeiIPxIaaT+muMWO66c07StTyNpsSTkK257Du+fUpiOrAB9lniMSLbpU3 dnE+pHG6o75V9pi89GZ6AwLzDLlQMjmsZ+rkvvPTQTVBc8XAO4eWE3tpSYLuk56D lp292x3XSVKvRABICi9L9elzaHA561UTES0AvayByeoUKwvE78yiZ/OhCPVAd7V8 Cknhe696Ty0rHi8aTmZFVaW8cvdOyDsPUcd7gUNf0BMdFchU9pcXgZBXxRBwHMHp nNyqkfVy2c0GySzXln+E+j+SfQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCuynS/W FXZ14TFDadpg4eEvJV5KMB8GA1UdIwQYMBaAFGS2hrBdy+i+qSgHUy3imneQUVb1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzZGMi8yQkU0M0RBMENC MkMxMUVCQkMzNUM0NDBDNEY5QUUwMi9aTGFHc0YzTDZMNnBLQWRUTGVLYWQ1QlJW dlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pMYUdzRjNMNkw2cEtBZFRMZUthZDVCUlZ2VS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc2RjIvMkJFNDNEQTBDQjJDMTFFQkJDMzVDNDQwQzRGOUFFMDIvMUVEMTg0ODhB OTE1MTFFRDlFMkFDOTQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnQjgDBAJn5KgwDQYJKoZIhvcNAQELBQADggEBAKTS5CQz CVCMY0SBehvwX0sfBpa58LoUNwjCKuFk/pltAwHDfxrHAKC7SXiVGuTzC+Bjz/2z LdwKVqzJis4vinmC1q6LV07nOGbEyFBtia++JAzYk+btWapCh2e/2WLfrSdoXw5B PiZR0CS0t8LtpMrKcXzUXBczpamdbYfWzkhkSsFijye8P+rHJ4O+mKN5ACNRF8A+ IURZ/0n00CeNyNxFI05tRi3uz1/MwUPcPEXbx9NgxtmoeIJRmA3CCzuF5gufnsGe 7ZTxXcocoTC8QgcTFU9c3F8+s/nT+SrUydyXzJ0EcaD9mgVFh96/vhLA+HdzOI9a J1WaGm7YjjIWPzU= -----END CERTIFICATE-----Generated at Sun May 5 02:33:35 2024 by rpki-client on console-fra.rpki-client.org