$ rpki-client -vvf rpki.apnic.net/member_repository/A91499BB/AB1CAC86609711E8B74A861AC4F9AE02/5F150B08D48611E9A4473984C4F9AE02.roa File: 5F150B08D48611E9A4473984C4F9AE02.roa (raw, json) Hash identifier: FiQ5YnQgvSMSKdqA64rqw0FJp5kzrM5Sn7Rx8CrW00w= Subject key identifier: 39:16:7B:E1:4C:03:FB:17:0D:C2:08:36:D1:39:03:DF:D2:F0:AF:D5 Certificate issuer: /CN=A91499BB/serialNumber=F0EB3D11F0ECAE6873695D5ACFB7B4ADC55F3458 Certificate serial: 12D9 Authority key identifier: F0:EB:3D:11:F0:EC:AE:68:73:69:5D:5A:CF:B7:B4:AD:C5:5F:34:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Os9EfDsrmhzaV1az7e0rcVfNFg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91499BB/AB1CAC86609711E8B74A861AC4F9AE02/5F150B08D48611E9A4473984C4F9AE02.roa Signing time: Wed 14 Dec 2022 18:14:25 +0000 ROA not before: Wed 14 Dec 2022 18:14:25 +0000 ROA not after: Fri 01 Mar 2024 00:00:00 +0000 asID: 38203 IP address blocks: 103.81.172.0/22 maxlen: 22 103.81.172.0/24 maxlen: 24 103.81.173.0/24 maxlen: 24 103.81.174.0/24 maxlen: 24 103.81.175.0/24 maxlen: 24 203.194.116.0/22 maxlen: 22 203.194.116.0/24 maxlen: 24 203.194.117.0/24 maxlen: 24 203.194.118.0/24 maxlen: 24 203.194.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91499BB/AB1CAC86609711E8B74A861AC4F9AE02/8Os9EfDsrmhzaV1az7e0rcVfNFg.crl rsync://rpki.apnic.net/member_repository/A91499BB/AB1CAC86609711E8B74A861AC4F9AE02/8Os9EfDsrmhzaV1az7e0rcVfNFg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Os9EfDsrmhzaV1az7e0rcVfNFg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Mar 2023 17:53:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4825 (0x12d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91499BB/serialNumber=F0EB3D11F0ECAE6873695D5ACFB7B4ADC55F3458 Validity Not Before: Dec 14 18:14:25 2022 GMT Not After : Mar 1 00:00:00 2024 GMT Subject: CN=639a1281-b222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:ea:00:da:34:e5:08:31:74:5b:1b:10:5f:a0: be:95:3e:eb:c1:ed:43:58:0f:4b:c9:64:70:49:10: 18:95:a3:fa:ab:62:d7:c8:3d:7f:5a:d1:71:d0:ce: bb:b6:7e:6d:98:91:a7:66:5b:57:f0:00:74:da:99: 19:f3:e1:fc:f5:0e:18:92:81:8a:01:e3:80:8b:b0: 72:e6:9e:1f:db:05:50:00:1e:59:18:58:42:99:a2: e9:3e:9e:df:24:bc:39:8b:92:61:50:c5:1d:4a:e6: ec:90:07:f4:15:b0:33:8f:29:d1:43:5f:e4:bb:ef: 78:d1:06:f0:4a:b7:05:f6:c8:80:5e:3e:43:66:89: 87:e4:53:a5:d7:df:2b:1c:a6:53:c4:8c:e3:f5:a7: ef:10:23:d0:05:b7:95:40:fd:14:f2:b2:71:26:60: 40:a2:21:82:10:e5:db:94:43:e2:6c:d1:e1:0d:93: a6:8a:b4:e7:1f:63:a9:c2:5b:2b:8e:86:64:44:04: 60:b8:58:53:a4:1e:af:e1:ee:11:c1:55:5b:d5:da: b4:08:c2:d3:0b:1f:87:b6:34:a9:62:6a:b4:bf:12: a3:23:f0:57:12:e4:71:d4:bc:17:b7:20:09:af:6e: 95:62:71:cf:be:80:81:23:e7:c9:96:d9:3b:50:37: ab:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:16:7B:E1:4C:03:FB:17:0D:C2:08:36:D1:39:03:DF:D2:F0:AF:D5 X509v3 Authority Key Identifier: keyid:F0:EB:3D:11:F0:EC:AE:68:73:69:5D:5A:CF:B7:B4:AD:C5:5F:34:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91499BB/AB1CAC86609711E8B74A861AC4F9AE02/8Os9EfDsrmhzaV1az7e0rcVfNFg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8Os9EfDsrmhzaV1az7e0rcVfNFg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91499BB/AB1CAC86609711E8B74A861AC4F9AE02/5F150B08D48611E9A4473984C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.81.172.0/22 203.194.116.0/22 Signature Algorithm: sha256WithRSAEncryption 77:aa:eb:44:d8:21:a4:82:dc:e1:89:52:e1:f2:4e:07:d0:9e: 5b:19:fa:73:3c:cd:c4:dc:a9:ae:4a:a7:f8:a6:e7:aa:9a:66: 7d:3d:64:e8:08:b1:e6:03:0b:74:53:e2:05:6d:45:67:87:33: 69:2c:04:4c:73:37:45:be:a7:0b:78:4b:88:46:7a:2e:19:62: 1e:af:fd:69:61:f7:b7:5c:ad:de:a4:17:04:19:79:1b:92:bf: 84:7d:15:42:98:28:48:17:2f:fa:62:b5:37:87:6f:b1:a2:98: 02:54:94:cf:fe:b7:16:9e:69:57:b7:8c:19:e3:3f:d8:35:30: 9d:71:e1:6e:ce:87:b2:9c:fc:d2:a1:db:a7:7e:95:68:c4:ba: 1f:b0:d6:79:36:19:0f:83:86:db:b9:d4:22:64:c7:48:ac:12: bf:08:6c:54:f5:73:e4:2d:96:2a:dc:75:a3:c9:97:92:0f:9d: 07:c2:02:c4:8c:0e:41:c2:2b:44:56:40:03:25:ef:41:72:2c: 85:69:02:ce:b1:71:c6:28:0f:3e:43:46:12:6e:bd:9b:38:a2: 05:15:33:0e:fa:fa:2f:08:78:5c:09:da:8f:59:ec:76:3f:db: 06:de:83:c7:72:01:44:62:a4:e2:86:96:c3:73:35:81:03:8a: cf:f0:78:ae -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEtkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDk5QkIxMTAvBgNVBAUTKEYwRUIzRDExRjBFQ0FFNjg3MzY5NUQ1QUNGQjdCNEFE QzU1RjM0NTgwHhcNMjIxMjE0MTgxNDI1WhcNMjQwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02MzlhMTI4MS1iMjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxeoA2jTlCDF0WxsQX6C+lT7rwe1DWA9LyWRwSRAYlaP6q2LXyD1/WtFx0M67 tn5tmJGnZltX8AB02pkZ8+H89Q4YkoGKAeOAi7By5p4f2wVQAB5ZGFhCmaLpPp7f JLw5i5JhUMUdSubskAf0FbAzjynRQ1/ku+940QbwSrcF9siAXj5DZomH5FOl198r HKZTxIzj9afvECPQBbeVQP0U8rJxJmBAoiGCEOXblEPibNHhDZOmirTnH2Opwlsr joZkRARguFhTpB6v4e4RwVVb1dq0CMLTCx+HtjSpYmq0vxKjI/BXEuRx1LwXtyAJ r26VYnHPvoCBI+fJltk7UDerTQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFDkWe+FM A/sXDcIINtE5A9/S8K/VMB8GA1UdIwQYMBaAFPDrPRHw7K5oc2ldWs+3tK3FXzRY MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0OTlCQi9BQjFDQUM4NjYw OTcxMUU4Qjc0QTg2MUFDNEY5QUUwMi84T3M5RWZEc3JtaHphVjFhejdlMHJjVmZO RmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhPczlFZkRzcm1oemFWMWF6N2UwcmNWZk5GZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDk5QkIvQUIxQ0FDODY2MDk3MTFFOEI3NEE4NjFBQzRGOUFFMDIvNUYxNTBCMDhE NDg2MTFFOUE0NDczOTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnUawDBALLwnQwDQYJKoZIhvcNAQELBQADggEBAHeq60TY IaSC3OGJUuHyTgfQnlsZ+nM8zcTcqa5Kp/im56qaZn09ZOgIseYDC3RT4gVtRWeH M2ksBExzN0W+pwt4S4hGei4ZYh6v/Wlh97dcrd6kFwQZeRuSv4R9FUKYKEgXL/pi tTeHb7GimAJUlM/+txaeaVe3jBnjP9g1MJ1x4W7Oh7Kc/NKh26d+lWjEuh+w1nk2 GQ+Dhtu51CJkx0isEr8IbFT1c+QtlircdaPJl5IPnQfCAsSMDkHCK0RWQAMl70Fy LIVpAs6xccYoDz5DRhJuvZs4ogUVMw76+i8IeFwJ2o9Z7HY/2wbeg8dyAURipOKG lsNzNYEDis/weK4= -----END CERTIFICATE-----Generated at Wed Mar 15 11:53:24 2023 by rpki-client on console-fra.rpki-client.org