$ rpki-client -vvf rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/97D3AF84DCC611EDB75B695EC4F9AE02.roa File: 97D3AF84DCC611EDB75B695EC4F9AE02.roa (raw, json) Hash identifier: EL5OloZJb5XX3wW0IPlf/JxtkXGi8CDCTx5OK4yuKHE= Subject key identifier: E2:CF:22:DD:AA:9E:E5:45:AA:FD:EE:E4:EB:4C:B7:01:A7:A4:18:44 Certificate issuer: /CN=A91557F5/serialNumber=B06F82965AFEE3ABDA1B3A1F2D6017E007278CE5 Certificate serial: 05F9 Authority key identifier: B0:6F:82:96:5A:FE:E3:AB:DA:1B:3A:1F:2D:60:17:E0:07:27:8C:E5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sG-Cllr-46vaGzofLWAX4AcnjOU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/97D3AF84DCC611EDB75B695EC4F9AE02.roa Signing time: Fri 05 Apr 2024 00:32:50 +0000 ROA not before: Fri 05 Apr 2024 00:32:50 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 141680 IP address blocks: 103.161.248.0/23 maxlen: 24 2001:df5:d880::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/sG-Cllr-46vaGzofLWAX4AcnjOU.crl rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/sG-Cllr-46vaGzofLWAX4AcnjOU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sG-Cllr-46vaGzofLWAX4AcnjOU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:03:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1529 (0x5f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91557F5/serialNumber=B06F82965AFEE3ABDA1B3A1F2D6017E007278CE5 Validity Not Before: Apr 5 00:32:50 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=660f46b2-cf22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:70:3b:4b:2b:73:c7:90:87:3e:4f:f6:d4:df: 66:3b:fd:fb:53:1e:00:ea:b3:0f:f0:71:1b:f1:a7: ee:8d:20:6a:e7:5c:b5:93:15:04:9f:4d:1c:aa:ad: 9c:d1:ca:8d:25:9c:1d:05:c8:6a:e1:19:81:55:1d: c5:46:22:2c:a1:8c:51:77:03:cf:2d:41:7b:bc:01: fe:9a:d8:aa:4f:fe:ee:ad:d3:6f:d7:13:a8:74:f8: 07:f2:ea:77:e2:54:56:85:c4:90:1e:4a:98:5a:71: ed:0e:b8:f8:d1:ad:f8:1c:36:f2:b0:5a:6c:76:4e: 63:dd:c7:bc:fc:9a:81:fb:4d:51:ce:2e:63:f9:dd: 33:a2:83:4c:77:6b:c7:ce:57:d5:f0:fe:6e:e2:01: 46:7c:1f:0a:93:8c:e7:b3:78:4f:81:75:53:84:e7: 11:34:f4:56:c6:28:2a:d4:36:0a:47:bd:d0:c2:93: 36:5d:07:7f:09:ce:6a:07:09:fd:ee:48:95:1e:c5: a7:9d:2f:06:f1:66:d5:22:58:4c:4f:e7:3a:f7:93: 50:bf:69:f6:99:66:13:56:e9:ed:d6:f9:48:cc:1b: d1:fe:24:01:01:c4:e7:ff:76:8d:30:31:e5:4f:b3: 19:e5:d1:01:2d:c3:b3:a1:5b:6a:63:7d:83:23:19: 79:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:CF:22:DD:AA:9E:E5:45:AA:FD:EE:E4:EB:4C:B7:01:A7:A4:18:44 X509v3 Authority Key Identifier: keyid:B0:6F:82:96:5A:FE:E3:AB:DA:1B:3A:1F:2D:60:17:E0:07:27:8C:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/sG-Cllr-46vaGzofLWAX4AcnjOU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sG-Cllr-46vaGzofLWAX4AcnjOU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91557F5/EC405E165C6F11EBAC3A8856C4F9AE02/97D3AF84DCC611EDB75B695EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.248.0/23 IPv6: 2001:df5:d880::/47 Signature Algorithm: sha256WithRSAEncryption 7f:95:16:6c:7c:3d:52:c2:4b:82:69:81:07:07:c8:11:ab:aa: c5:cf:34:83:d6:3c:ab:f3:47:ac:49:b1:3d:d4:66:ff:2b:34: a8:f0:35:e5:27:3a:aa:90:21:f6:68:a4:c2:a6:02:96:a6:46: 66:a3:80:43:3b:55:1b:bb:dc:a2:49:1e:d7:0a:fb:a6:35:fc: c1:f1:a8:6e:4b:e4:bb:a9:2d:ac:50:6f:06:98:0b:3f:13:bc: 59:21:52:38:8c:3f:14:0c:af:67:ea:dd:44:4a:15:86:3d:12: 3c:b2:25:6d:8e:08:ca:ab:27:f6:05:bb:43:8d:ab:0c:13:d9: 6c:e3:16:30:01:55:d5:5a:3e:d0:17:39:82:32:42:20:3d:44: 63:63:b3:3d:7f:3f:f9:e3:62:d0:e1:57:ab:e5:3b:a1:c6:b9: ac:cf:5c:f3:24:02:7c:2d:df:68:90:7f:ff:91:d7:23:4f:39: 4f:0f:de:b5:e6:25:20:ac:76:1d:20:89:12:71:5d:07:68:2d: b8:03:3f:66:13:e5:76:ed:21:98:35:2b:b6:24:30:fd:a9:8b: 58:db:49:ba:f0:d2:98:ed:54:0a:03:2b:71:83:cf:40:5b:32: 4d:bb:41:3f:f6:ca:78:fe:25:95:91:7a:39:85:05:9d:81:e1: 38:f5:4b:4d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBfkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTU3RjUxMTAvBgNVBAUTKEIwNkY4Mjk2NUFGRUUzQUJEQTFCM0ExRjJENjAxN0Uw MDcyNzhDRTUwHhcNMjQwNDA1MDAzMjUwWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBmNDZiMi1jZjIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvXA7Sytzx5CHPk/21N9mO/37Ux4A6rMP8HEb8afujSBq51y1kxUEn00cqq2c 0cqNJZwdBchq4RmBVR3FRiIsoYxRdwPPLUF7vAH+mtiqT/7urdNv1xOodPgH8up3 4lRWhcSQHkqYWnHtDrj40a34HDbysFpsdk5j3ce8/JqB+01Rzi5j+d0zooNMd2vH zlfV8P5u4gFGfB8Kk4zns3hPgXVThOcRNPRWxigq1DYKR73QwpM2XQd/Cc5qBwn9 7kiVHsWnnS8G8WbVIlhMT+c695NQv2n2mWYTVunt1vlIzBvR/iQBAcTn/3aNMDHl T7MZ5dEBLcOzoVtqY32DIxl5FwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFOLPIt2q nuVFqv3u5OtMtwGnpBhEMB8GA1UdIwQYMBaAFLBvgpZa/uOr2hs6Hy1gF+AHJ4zl MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1NTdGNS9FQzQwNUUxNjVD NkYxMUVCQUMzQTg4NTZDNEY5QUUwMi9zRy1DbGxyLTQ2dmFHem9mTFdBWDRBY25q T1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NHLUNsbHItNDZ2YUd6b2ZMV0FYNEFjbmpPVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTU3RjUvRUM0MDVFMTY1QzZGMTFFQkFDM0E4ODU2QzRGOUFFMDIvOTdEM0FGODRE Q0M2MTFFREI3NUI2OTVFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnofgwDwQCAAIwCQMHASABDfXYgDANBgkqhkiG9w0BAQsF AAOCAQEAf5UWbHw9UsJLgmmBBwfIEauqxc80g9Y8q/NHrEmxPdRm/ys0qPA15Sc6 qpAh9mikwqYClqZGZqOAQztVG7vcokke1wr7pjX8wfGobkvku6ktrFBvBpgLPxO8 WSFSOIw/FAyvZ+rdREoVhj0SPLIlbY4Iyqsn9gW7Q42rDBPZbOMWMAFV1Vo+0Bc5 gjJCID1EY2OzPX8/+eNi0OFXq+U7oca5rM9c8yQCfC3faJB//5HXI085Tw/eteYl IKx2HSCJEnFdB2gtuAM/ZhPldu0hmDUrtiQw/amLWNtJuvDSmO1UCgMrcYPPQFsy TbtBP/bKeP4llZF6OYUFnYHhOPVLTQ== -----END CERTIFICATE-----Generated at Fri May 17 01:06:59 2024 by rpki-client on console-fra.rpki-client.org