$ rpki-client -vvf rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/94A1F97A369711EA866E381CC4F9AE02.roa File: 94A1F97A369711EA866E381CC4F9AE02.roa (raw, json) Hash identifier: VW98jNO4dH4/21q6/2uer54gWI4ZklqT1nPB4rk3Ngk= Subject key identifier: B0:D0:B2:AF:23:26:4E:DF:DB:99:33:FC:A7:D5:98:F3:13:AE:BF:31 Certificate issuer: /CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Certificate serial: 166E Authority key identifier: 45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/94A1F97A369711EA866E381CC4F9AE02.roa Signing time: Tue 06 Jun 2023 17:56:21 +0000 ROA not before: Tue 06 Jun 2023 17:56:21 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 131310 IP address blocks: 103.21.252.0/22 maxlen: 24 103.246.88.0/22 maxlen: 24 2404:6300::/32 maxlen: 126 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:06:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5742 (0x166e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91589E7/serialNumber=45805B5580D515197D1A615AD66C8B9D4854F5EA Validity Not Before: Jun 6 17:56:21 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647f7345-1f76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:56:5c:18:15:6d:9e:50:dd:43:9c:c2:91:85: 8c:38:e5:58:5b:52:f0:7a:58:42:0a:ae:8d:08:a9: 29:b2:5c:86:1d:24:a9:31:99:a6:c5:46:f8:9b:a1: 23:9c:c5:80:50:b5:64:90:de:b4:ed:31:34:0f:20: 20:37:a7:02:99:bf:9d:9c:63:b8:db:23:e3:36:b7: 75:1a:6d:7c:a0:b4:ea:73:a5:1c:ce:8a:b5:b0:2c: 47:d7:61:3f:f7:7a:db:c8:d7:3d:f3:0f:df:5b:80: 20:87:7b:21:8b:78:be:02:4e:3e:fe:4e:f5:4e:7f: bd:48:2a:f8:b1:ac:bd:32:fc:5b:29:38:13:e6:42: b8:ca:3a:3d:67:b5:83:04:75:56:06:bd:4e:9e:be: 7c:27:28:2a:e3:e2:37:e2:32:81:81:97:82:64:6f: 52:b1:f2:36:b8:2a:c3:30:55:23:aa:08:73:eb:88: 56:b2:46:d2:b8:5a:45:e3:79:60:7c:93:b7:ca:9e: 11:d5:19:73:e5:bb:0c:b2:cc:31:80:1a:f1:b1:51: b1:b7:00:18:f6:35:b0:74:27:2d:c3:c9:6c:39:15: 0f:a4:50:33:13:3a:29:cb:12:96:21:17:40:ee:dd: bb:fe:33:76:06:cd:1a:4a:99:0c:d4:77:00:0a:c1: 66:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:D0:B2:AF:23:26:4E:DF:DB:99:33:FC:A7:D5:98:F3:13:AE:BF:31 X509v3 Authority Key Identifier: keyid:45:80:5B:55:80:D5:15:19:7D:1A:61:5A:D6:6C:8B:9D:48:54:F5:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/RYBbVYDVFRl9GmFa1myLnUhU9eo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RYBbVYDVFRl9GmFa1myLnUhU9eo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91589E7/F8FF1522BDFB11E7B873FE27C4F9AE02/94A1F97A369711EA866E381CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.252.0/22 103.246.88.0/22 IPv6: 2404:6300::/32 Signature Algorithm: sha256WithRSAEncryption 47:3e:b2:32:2e:b2:59:60:32:e3:ba:a7:9e:25:22:9c:d0:32: 6c:29:7f:fb:83:88:f3:51:1c:3f:45:d7:e6:38:93:1a:10:48: 3f:89:02:1a:39:2f:12:39:e9:73:cd:08:a3:64:f2:68:bc:51: 63:de:db:52:bb:6d:21:6d:11:91:53:4e:8e:73:5b:9f:ab:22: 32:af:04:c5:91:9e:8e:98:cf:41:d8:6b:1a:25:2c:0f:09:f9: 90:92:7a:7b:1d:66:b7:6b:be:22:0c:8d:7e:f5:e0:03:cc:c7: ad:73:17:3f:33:66:0a:89:54:a0:4f:39:31:24:4e:76:63:bf: 9f:0b:79:cb:8f:34:9c:ee:66:08:85:a6:2d:07:db:06:5c:1b: 61:97:4d:7e:e3:a0:b9:3f:98:85:80:40:a3:33:74:c3:d1:ab: 98:bd:b2:35:81:c7:b8:b9:fc:f5:a3:97:69:76:68:e5:28:d9: d9:fe:c8:e7:1a:75:f8:cd:23:6e:00:3f:51:79:56:36:c0:79: cb:bf:02:cd:73:4b:0b:a1:c4:b7:85:dc:db:1a:3a:e4:c0:32: 77:18:83:5d:48:ff:96:ca:d2:e4:d0:8f:4a:dd:84:3c:78:01: 54:96:f0:59:3e:a0:57:f3:eb:48:20:4c:0a:c4:7e:fa:59:79: 8f:e8:43:b5 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICFm4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTg5RTcxMTAvBgNVBAUTKDQ1ODA1QjU1ODBENTE1MTk3RDFBNjE1QUQ2NkM4QjlE NDg1NEY1RUEwHhcNMjMwNjA2MTc1NjIxWhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdmNzM0NS0xZjc2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxVZcGBVtnlDdQ5zCkYWMOOVYW1LwelhCCq6NCKkpslyGHSSpMZmmxUb4m6Ej nMWAULVkkN607TE0DyAgN6cCmb+dnGO42yPjNrd1Gm18oLTqc6Uczoq1sCxH12E/ 93rbyNc98w/fW4Agh3shi3i+Ak4+/k71Tn+9SCr4say9MvxbKTgT5kK4yjo9Z7WD BHVWBr1Onr58Jygq4+I34jKBgZeCZG9SsfI2uCrDMFUjqghz64hWskbSuFpF43lg fJO3yp4R1Rlz5bsMsswxgBrxsVGxtwAY9jWwdCctw8lsORUPpFAzEzopyxKWIRdA 7t27/jN2Bs0aSpkM1HcACsFmjwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLDQsq8j Jk7f25kz/KfVmPMTrr8xMB8GA1UdIwQYMBaAFEWAW1WA1RUZfRphWtZsi51IVPXq MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODlFNy9GOEZGMTUyMkJE RkIxMUU3Qjg3M0ZFMjdDNEY5QUUwMi9SWUJiVllEVkZSbDlHbUZhMW15TG5VaFU5 ZW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JZQmJWWURWRlJsOUdtRmExbXlMblVoVTllby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTg5RTcvRjhGRjE1MjJCREZCMTFFN0I4NzNGRTI3QzRGOUFFMDIvOTRBMUY5N0Ez Njk3MTFFQTg2NkUzODFDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnFfwDBAJn9lgwDQQCAAIwBwMFACQEYwAwDQYJKoZIhvcN AQELBQADggEBAEc+sjIusllgMuO6p54lIpzQMmwpf/uDiPNRHD9F1+Y4kxoQSD+J Aho5LxI56XPNCKNk8mi8UWPe21K7bSFtEZFTTo5zW5+rIjKvBMWRno6Yz0HYaxol LA8J+ZCSensdZrdrviIMjX714APMx61zFz8zZgqJVKBPOTEkTnZjv58LecuPNJzu ZgiFpi0H2wZcG2GXTX7joLk/mIWAQKMzdMPRq5i9sjWBx7i5/PWjl2l2aOUo2dn+ yOcadfjNI24AP1F5VjbAecu/As1zSwuhxLeF3NsaOuTAMncYg11I/5bK0uTQj0rd hDx4AVSW8Fk+oFfz60ggTArEfvpZeY/oQ7U= -----END CERTIFICATE-----Generated at Sun May 26 18:02:31 2024 by rpki-client on console-fra.rpki-client.org