$ rpki-client -vvf rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/91B81F1EC2BA11EA8A079767C4F9AE02.roa File: 91B81F1EC2BA11EA8A079767C4F9AE02.roa (raw, json) Hash identifier: rmgF2tJz+YdpA0UV5edmyhu8u4sI+7KKG8VAb704898= Subject key identifier: 9F:98:91:2C:C5:9A:50:9A:F7:67:81:65:C2:4B:B2:5F:8C:F7:5E:0B Certificate issuer: /CN=A914EED0/serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C Certificate serial: 0795 Authority key identifier: CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/91B81F1EC2BA11EA8A079767C4F9AE02.roa Signing time: Tue 06 Feb 2024 22:00:11 +0000 ROA not before: Tue 06 Feb 2024 22:00:11 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136234 IP address blocks: 103.84.132.0/24 maxlen: 24 103.172.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1941 (0x795) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914EED0/serialNumber=CBE131A083A4563C7C439DB079B64B6AD1101A7C Validity Not Before: Feb 6 22:00:11 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c2abeb-13ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:2f:58:4d:4a:a5:81:bc:d4:dc:37:8f:fb:c1: e9:fe:0b:2f:ca:40:01:09:6e:5b:1a:a8:4b:e0:0c: 63:dc:f9:9d:db:40:ab:08:b6:f8:b4:2d:7e:76:a0: 35:07:37:dd:2e:5c:69:64:b4:aa:0e:2a:93:22:04: 77:db:09:ac:de:4d:f7:3a:84:46:c2:cf:a0:1d:27: cf:a5:d9:29:c2:d4:2b:e2:61:d4:28:36:89:ad:a9: df:74:4a:3b:d0:dc:b6:00:49:3e:09:34:30:31:68: 18:57:c3:26:74:ca:26:bf:70:de:70:ce:b9:fb:70: 44:38:00:77:7f:d8:1a:9f:aa:23:8e:b8:57:ca:45: c8:a5:1a:43:bc:f3:56:8e:ca:0f:6e:ea:8c:c4:3c: 5f:e0:c9:41:0b:61:b2:5e:de:76:74:31:fc:0d:cf: 5c:b0:dd:de:90:df:b6:bd:77:cc:c0:7b:19:83:38: 07:16:44:70:dc:af:e4:12:05:6f:1a:74:9d:27:4c: d7:da:19:dd:bb:49:55:26:63:af:67:e6:c2:58:6a: 89:44:ca:04:79:18:87:c5:09:be:36:47:20:89:03: 5d:ae:36:8e:d4:f3:b0:6e:d0:33:85:88:cc:e2:f5: db:f9:e8:6b:27:79:a0:c3:4e:df:f7:ec:52:6e:1b: 77:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:98:91:2C:C5:9A:50:9A:F7:67:81:65:C2:4B:B2:5F:8C:F7:5E:0B X509v3 Authority Key Identifier: keyid:CB:E1:31:A0:83:A4:56:3C:7C:43:9D:B0:79:B6:4B:6A:D1:10:1A:7C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/y-ExoIOkVjx8Q52webZLatEQGnw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/y-ExoIOkVjx8Q52webZLatEQGnw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914EED0/6EEB1150C2B311EAB4832750C4F9AE02/91B81F1EC2BA11EA8A079767C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.84.132.0/24 103.172.31.0/24 Signature Algorithm: sha256WithRSAEncryption 60:fd:88:c1:e1:eb:07:11:45:b8:08:be:ad:e1:6a:16:1f:39: b2:bd:bd:8f:a4:da:21:d9:39:6d:ef:4a:1b:63:fa:93:34:13: 08:75:19:38:71:bf:e1:20:93:01:55:a5:dc:c9:cd:df:a5:73: 49:f6:ad:07:6b:49:f2:02:a2:a0:36:0f:79:21:49:f3:b6:08: b4:dd:10:bb:ca:06:58:79:88:2e:a1:29:cd:29:c2:2c:c5:c3: 8f:f9:d1:b0:44:45:e4:35:cb:d3:bc:43:41:d4:f2:f1:93:ea: 8a:6d:97:af:13:2c:8f:9a:ce:7f:9c:99:9f:36:5e:64:f9:c8: 2f:df:5f:89:1c:80:8e:75:ed:19:89:fb:85:c4:16:fb:28:05: 0b:05:22:b3:ab:cf:20:e6:cd:dc:e1:9f:51:ff:7a:f7:34:f6: 50:36:c4:61:a6:5b:c8:48:5c:65:d0:98:4b:19:ae:0d:4a:06: e3:ca:cd:ac:38:6b:a9:2b:03:b4:c4:08:26:a6:9b:d5:16:3b: 5e:61:29:b0:c7:55:21:fd:59:df:78:b0:20:7e:ec:ab:7f:44: 1e:9a:09:e6:30:f3:41:fb:54:17:19:6f:5f:7a:33:b5:c2:e3: 5f:73:c7:29:05:7a:18:19:3a:fb:5c:8e:5b:ba:3a:43:de:9d: db:52:6f:e7 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB5UwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEVFRDAxMTAvBgNVBAUTKENCRTEzMUEwODNBNDU2M0M3QzQzOURCMDc5QjY0QjZB RDExMDFBN0MwHhcNMjQwMjA2MjIwMDExWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyYWJlYi0xM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzy9YTUqlgbzU3DeP+8Hp/gsvykABCW5bGqhL4Axj3Pmd20CrCLb4tC1+dqA1 BzfdLlxpZLSqDiqTIgR32wms3k33OoRGws+gHSfPpdkpwtQr4mHUKDaJranfdEo7 0Ny2AEk+CTQwMWgYV8MmdMomv3DecM65+3BEOAB3f9gan6ojjrhXykXIpRpDvPNW jsoPbuqMxDxf4MlBC2GyXt52dDH8Dc9csN3ekN+2vXfMwHsZgzgHFkRw3K/kEgVv GnSdJ0zX2hndu0lVJmOvZ+bCWGqJRMoEeRiHxQm+NkcgiQNdrjaO1POwbtAzhYjM 4vXb+ehrJ3mgw07f9+xSbht3FwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJ+YkSzF mlCa92eBZcJLsl+M914LMB8GA1UdIwQYMBaAFMvhMaCDpFY8fEOdsHm2S2rREBp8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RUVEMC82RUVCMTE1MEMy QjMxMUVBQjQ4MzI3NTBDNEY5QUUwMi95LUV4b0lPa1ZqeDhRNTJ3ZWJaTGF0RVFH bncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ktRXhvSU9rVmp4OFE1MndlYlpMYXRFUUdudy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEVFRDAvNkVFQjExNTBDMkIzMTFFQUI0ODMyNzUwQzRGOUFFMDIvOTFCODFGMUVD MkJBMTFFQThBMDc5NzY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnVIQDBABnrB8wDQYJKoZIhvcNAQELBQADggEBAGD9iMHh 6wcRRbgIvq3hahYfObK9vY+k2iHZOW3vShtj+pM0Ewh1GThxv+EgkwFVpdzJzd+l c0n2rQdrSfICoqA2D3khSfO2CLTdELvKBlh5iC6hKc0pwizFw4/50bBEReQ1y9O8 Q0HU8vGT6optl68TLI+azn+cmZ82XmT5yC/fX4kcgI517RmJ+4XEFvsoBQsFIrOr zyDmzdzhn1H/evc09lA2xGGmW8hIXGXQmEsZrg1KBuPKzaw4a6krA7TECCamm9UW O15hKbDHVSH9Wd94sCB+7Kt/RB6aCeYw80H7VBcZb196M7XC419zxykFehgZOvtc jlu6OkPendtSb+c= -----END CERTIFICATE-----Generated at Sun May 26 23:05:28 2024 by rpki-client on console-ams.rpki-client.org