$ rpki-client -vvf rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/4C93B0C80F8E11EEA5B58045C4F9AE02.roa File: 4C93B0C80F8E11EEA5B58045C4F9AE02.roa (raw, json) Hash identifier: AbcAhXpEUwqrte3TdSnAkobY7buex53zSvuax181UZg= Subject key identifier: AD:84:4C:07:F4:B1:4C:54:40:03:A1:26:A2:DC:58:77:FD:22:6D:76 Certificate issuer: /CN=A91706CE/serialNumber=CAA41532B7F72AA2C3E2AD6DF40B8D4D1EB03597 Certificate serial: 21 Authority key identifier: CA:A4:15:32:B7:F7:2A:A2:C3:E2:AD:6D:F4:0B:8D:4D:1E:B0:35:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/4C93B0C80F8E11EEA5B58045C4F9AE02.roa Signing time: Sat 19 Aug 2023 05:25:41 +0000 ROA not before: Sat 19 Aug 2023 05:25:41 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 141153 IP address blocks: 103.155.90.0/23 maxlen: 23 103.155.90.0/24 maxlen: 24 103.155.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.crl rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:22:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91706CE/serialNumber=CAA41532B7F72AA2C3E2AD6DF40B8D4D1EB03597 Validity Not Before: Aug 19 05:25:41 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64e05254-43ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b6:25:40:68:7b:e9:e9:26:85:7e:9c:0a:1f: 92:3a:a2:6d:2b:76:96:ac:c9:39:84:d4:7f:9b:88: 65:15:57:84:67:30:b2:ee:7a:d3:b5:a8:26:bc:6b: ad:e8:f0:b8:70:62:1f:05:13:38:37:8b:28:88:80: 10:2d:10:c0:e8:f1:70:63:69:c4:08:37:e5:b0:b4: 75:c0:a7:50:7a:7e:ca:48:f4:b4:b2:a5:9f:17:5c: b9:d8:ce:85:cc:59:03:dc:05:d9:d9:93:21:38:2a: 4c:1e:b0:98:e8:ad:3b:5f:3f:e3:93:5b:6b:4b:5c: 55:97:1e:15:87:18:33:8d:f3:90:44:15:b2:cf:4d: d2:a3:74:f6:c0:e7:b0:87:64:7d:fe:50:35:08:16: b2:a1:70:fd:82:01:35:b2:e8:23:2e:b1:48:78:fa: fe:cf:68:ed:f8:4c:6f:cc:88:a2:56:a6:ee:2e:68: 69:31:3c:08:8d:4c:06:f6:bd:48:9a:c7:5f:56:99: 5e:42:4e:94:03:f9:9d:6c:66:64:6e:21:72:e0:5a: 44:2a:18:39:03:da:a8:39:a1:c0:14:ba:91:98:b8: b6:27:8b:25:8a:09:80:cc:34:37:07:8b:54:b4:df: 5e:0c:57:74:7c:a2:da:4c:2f:92:9a:e6:be:37:27: 4f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:84:4C:07:F4:B1:4C:54:40:03:A1:26:A2:DC:58:77:FD:22:6D:76 X509v3 Authority Key Identifier: keyid:CA:A4:15:32:B7:F7:2A:A2:C3:E2:AD:6D:F4:0B:8D:4D:1E:B0:35:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/yqQVMrf3KqLD4q1t9AuNTR6wNZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yqQVMrf3KqLD4q1t9AuNTR6wNZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91706CE/E90BD6680F8611EEA56EBB22C4F9AE02/4C93B0C80F8E11EEA5B58045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.90.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:3c:f8:9d:37:e9:b1:2f:7d:0c:8c:1f:cd:3b:27:17:39:af: 2e:43:c0:44:e2:e3:9e:a9:c6:de:68:f8:b5:c3:68:66:3c:cc: 63:e9:d2:1e:32:80:54:46:67:f5:ec:58:82:0d:e6:a6:a4:12: 51:56:a9:63:60:b8:f4:f5:57:83:0a:b0:b5:f2:8d:09:3f:18: 53:7f:24:09:54:0c:79:80:91:49:e4:b4:ca:a3:ea:d3:a1:80: fa:24:02:12:bb:02:1f:3f:14:4d:f9:ae:53:6a:a6:47:3e:af: 5f:5e:80:3b:9d:bd:ce:6e:ac:be:c7:c5:ef:8a:6c:7f:c8:97: 7d:91:af:5d:8e:cd:4e:5e:d4:73:95:0a:06:bb:0d:80:92:a7: 82:05:ac:67:2f:4f:be:0b:21:33:16:33:08:8b:7e:9c:1a:2b: 20:83:bc:bf:b3:8e:71:e8:03:9a:6e:a7:a7:6e:a5:78:17:06: 42:6a:62:88:bc:ed:29:ec:67:49:8c:eb:56:d9:02:0c:83:ca: 14:8f:10:3e:43:45:ac:4f:eb:0d:d6:14:e6:e3:59:5d:65:7b: 44:42:31:ed:20:53:7e:74:57:4c:4d:47:d5:a8:b8:5e:5c:b2: 8c:a4:de:cc:ed:b9:19:15:58:3a:92:48:23:11:f8:bf:88:e9: 36:b9:5b:c2 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 MDZDRTExMC8GA1UEBRMoQ0FBNDE1MzJCN0Y3MkFBMkMzRTJBRDZERjQwQjhENEQx RUIwMzU5NzAeFw0yMzA4MTkwNTI1NDFaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZTA1MjU0LTQzZWYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPtiVAaHvp6SaFfpwKH5I6om0rdpasyTmE1H+biGUVV4RnMLLuetO1qCa8a63o 8LhwYh8FEzg3iyiIgBAtEMDo8XBjacQIN+WwtHXAp1B6fspI9LSypZ8XXLnYzoXM WQPcBdnZkyE4KkwesJjorTtfP+OTW2tLXFWXHhWHGDON85BEFbLPTdKjdPbA57CH ZH3+UDUIFrKhcP2CATWy6CMusUh4+v7PaO34TG/MiKJWpu4uaGkxPAiNTAb2vUia x19WmV5CTpQD+Z1sZmRuIXLgWkQqGDkD2qg5ocAUupGYuLYniyWKCYDMNDcHi1S0 314MV3R8otpML5Ka5r43J08VAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUrYRMB/Sx TFRAA6EmotxYd/0ibXYwHwYDVR0jBBgwFoAUyqQVMrf3KqLD4q1t9AuNTR6wNZcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTcwNkNFL0U5MEJENjY4MEY4 NjExRUVBNTZFQkIyMkM0RjlBRTAyL3lxUVZNcmYzS3FMRDRxMXQ5QXVOVFI2d05a Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveXFRVk1yZjNLcUxENHExdDlBdU5UUjZ3TlpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 MDZDRS9FOTBCRDY2ODBGODYxMUVFQTU2RUJCMjJDNEY5QUUwMi80QzkzQjBDODBG OEUxMUVFQTVCNTgwNDVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWebWjANBgkqhkiG9w0BAQsFAAOCAQEAOjz4nTfpsS99DIwf zTsnFzmvLkPAROLjnqnG3mj4tcNoZjzMY+nSHjKAVEZn9exYgg3mpqQSUVapY2C4 9PVXgwqwtfKNCT8YU38kCVQMeYCRSeS0yqPq06GA+iQCErsCHz8UTfmuU2qmRz6v X16AO529zm6svsfF74psf8iXfZGvXY7NTl7Uc5UKBrsNgJKnggWsZy9PvgshMxYz CIt+nBorIIO8v7OOcegDmm6np26leBcGQmpiiLztKexnSYzrVtkCDIPKFI8QPkNF rE/rDdYU5uNZXWV7REIx7SBTfnRXTE1H1ai4XlyyjKTezO25GRVYOpJIIxH4v4jp Nrlbwg== -----END CERTIFICATE-----Generated at Fri May 31 10:01:46 2024 by rpki-client on console-ams.rpki-client.org