$ rpki-client -vvf rpki.apnic.net/member_repository/A91887ED/79073C4C6B9911EBBF06AE69C4F9AE02/5B596EA26B9B11EBA6B7E387C4F9AE02.roa File: 5B596EA26B9B11EBA6B7E387C4F9AE02.roa (raw, json) Hash identifier: lD6q0sRf2yTNxzGHBdawOBClgrppu6NH/3PWIE+9RCk= Subject key identifier: 9E:F6:E4:81:72:00:E4:80:AF:27:3A:40:79:78:EA:84:35:30:A0:52 Certificate issuer: /CN=A91887ED/serialNumber=97C64CEB665C7ECC5E77E1DB8FB6A358C4B59E12 Certificate serial: 0592 Authority key identifier: 97:C6:4C:EB:66:5C:7E:CC:5E:77:E1:DB:8F:B6:A3:58:C4:B5:9E:12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l8ZM62Zcfsxed-Hbj7ajWMS1nhI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91887ED/79073C4C6B9911EBBF06AE69C4F9AE02/5B596EA26B9B11EBA6B7E387C4F9AE02.roa Signing time: Fri 22 Dec 2023 23:51:28 +0000 ROA not before: Fri 22 Dec 2023 23:51:28 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 134462 IP address blocks: 103.160.122.0/23 maxlen: 23 103.160.122.0/24 maxlen: 24 103.160.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91887ED/79073C4C6B9911EBBF06AE69C4F9AE02/l8ZM62Zcfsxed-Hbj7ajWMS1nhI.crl rsync://rpki.apnic.net/member_repository/A91887ED/79073C4C6B9911EBBF06AE69C4F9AE02/l8ZM62Zcfsxed-Hbj7ajWMS1nhI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l8ZM62Zcfsxed-Hbj7ajWMS1nhI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1426 (0x592) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91887ED/serialNumber=97C64CEB665C7ECC5E77E1DB8FB6A358C4B59E12 Validity Not Before: Dec 22 23:51:28 2023 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65862100-4f40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:99:57:55:b7:d2:48:40:a1:50:12:24:ac:c1: 9d:2d:a8:4c:25:c3:3f:c4:a4:c7:43:2b:d3:88:b3: 72:e0:95:fa:8b:a0:64:26:33:1a:6d:d4:48:cc:e7: 2b:1b:94:52:58:7b:70:df:7a:d6:fb:10:5b:d8:a3: 1d:1e:3d:ad:98:de:72:3a:4f:93:30:cc:fd:9e:76: 64:a1:57:6a:63:78:33:03:06:4a:5d:1c:64:dd:03: 9c:18:7b:60:83:9e:61:3c:bb:50:85:74:72:e4:26: 3a:65:64:fc:a7:95:57:22:8e:fd:f9:f0:75:f8:b2: b8:03:89:ed:e5:c0:e4:79:f3:16:ce:84:fe:27:eb: 4e:52:a6:a2:e6:c1:ef:86:8c:64:44:b2:5b:f3:8e: bf:fc:64:a3:bb:49:02:1c:fe:b6:d9:22:be:6a:c6: 84:3a:f2:c9:a6:32:1b:32:3a:13:95:6d:47:a7:44: 7d:7e:53:92:d9:8d:0d:62:19:b3:d3:fd:b2:b9:8a: 13:85:76:dc:61:72:04:09:67:32:ec:00:ca:7d:e7: 5f:f1:2c:b2:69:f4:d8:53:30:07:bc:cb:8a:23:bb: e7:c4:64:af:5f:78:79:46:95:75:de:c7:e7:f3:ed: ad:66:b2:d7:4b:3e:d6:a7:e5:af:12:e4:39:76:62: 0f:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:F6:E4:81:72:00:E4:80:AF:27:3A:40:79:78:EA:84:35:30:A0:52 X509v3 Authority Key Identifier: keyid:97:C6:4C:EB:66:5C:7E:CC:5E:77:E1:DB:8F:B6:A3:58:C4:B5:9E:12 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91887ED/79073C4C6B9911EBBF06AE69C4F9AE02/l8ZM62Zcfsxed-Hbj7ajWMS1nhI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/l8ZM62Zcfsxed-Hbj7ajWMS1nhI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91887ED/79073C4C6B9911EBBF06AE69C4F9AE02/5B596EA26B9B11EBA6B7E387C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.160.122.0/23 Signature Algorithm: sha256WithRSAEncryption 54:f1:58:89:e9:e7:f0:3d:d8:f6:1f:d8:df:17:b1:a8:b2:1b: 15:59:19:0b:0b:4d:7a:54:33:2e:20:60:13:ac:64:eb:be:b7: 94:d8:af:ae:4d:2d:64:7d:d5:b5:a6:9f:5b:c1:3d:31:51:99: 50:08:9d:ae:2a:87:a2:16:e0:1a:a5:3a:b9:97:7c:ab:d3:ab: c1:37:ed:a6:ff:34:4a:f1:bd:95:d6:65:37:ce:44:48:ad:cf: e5:16:32:05:64:12:13:f8:08:ca:b3:1a:0e:3e:db:73:af:a6: 2a:32:69:f2:59:f0:2b:37:de:44:20:37:9f:97:e7:35:fc:7b: 90:0a:c7:df:c1:a6:3a:9e:36:48:cf:18:97:9b:52:40:d2:87: c0:6d:df:1e:2f:db:dc:41:b4:7a:12:84:05:71:5f:b4:90:ad: 02:38:f1:77:d6:fd:4e:b5:f6:af:e6:27:88:57:76:55:e1:c3: 6b:37:e9:b7:62:58:fc:44:cb:47:7d:3f:c5:99:d7:57:a3:bb: d7:d1:74:60:bd:7e:07:0d:8b:f5:b0:6a:94:80:6a:e9:6b:64: df:e4:b6:37:3d:da:57:ca:e6:68:7b:4d:06:1f:57:61:0c:ba: ea:60:72:a0:9e:76:c2:d8:03:01:a6:d7:27:3e:70:07:c7:e3: a9:84:79:17 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBZIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg3RUQxMTAvBgNVBAUTKDk3QzY0Q0VCNjY1QzdFQ0M1RTc3RTFEQjhGQjZBMzU4 QzRCNTlFMTIwHhcNMjMxMjIyMjM1MTI4WhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTg2MjEwMC00ZjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2plXVbfSSEChUBIkrMGdLahMJcM/xKTHQyvTiLNy4JX6i6BkJjMabdRIzOcr G5RSWHtw33rW+xBb2KMdHj2tmN5yOk+TMMz9nnZkoVdqY3gzAwZKXRxk3QOcGHtg g55hPLtQhXRy5CY6ZWT8p5VXIo79+fB1+LK4A4nt5cDkefMWzoT+J+tOUqai5sHv hoxkRLJb846//GSju0kCHP622SK+asaEOvLJpjIbMjoTlW1Hp0R9flOS2Y0NYhmz 0/2yuYoThXbcYXIECWcy7ADKfedf8SyyafTYUzAHvMuKI7vnxGSvX3h5RpV13sfn 8+2tZrLXSz7Wp+WvEuQ5dmIPSQIDAQABo4IClTCCApEwHQYDVR0OBBYEFJ725IFy AOSAryc6QHl46oQ1MKBSMB8GA1UdIwQYMBaAFJfGTOtmXH7MXnfh24+2o1jEtZ4S MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODdFRC83OTA3M0M0QzZC OTkxMUVCQkYwNkFFNjlDNEY5QUUwMi9sOFpNNjJaY2ZzeGVkLUhiajdhaldNUzFu aEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2w4Wk02MlpjZnN4ZWQtSGJqN2FqV01TMW5oSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg3RUQvNzkwNzNDNEM2Qjk5MTFFQkJGMDZBRTY5QzRGOUFFMDIvNUI1OTZFQTI2 QjlCMTFFQkE2QjdFMzg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoHowDQYJKoZIhvcNAQELBQADggEBAFTxWInp5/A92PYf 2N8XsaiyGxVZGQsLTXpUMy4gYBOsZOu+t5TYr65NLWR91bWmn1vBPTFRmVAIna4q h6IW4BqlOrmXfKvTq8E37ab/NErxvZXWZTfOREitz+UWMgVkEhP4CMqzGg4+23Ov pioyafJZ8Cs33kQgN5+X5zX8e5AKx9/BpjqeNkjPGJebUkDSh8Bt3x4v29xBtHoS hAVxX7SQrQI48XfW/U619q/mJ4hXdlXhw2s36bdiWPxEy0d9P8WZ11eju9fRdGC9 fgcNi/WwapSAaulrZN/ktjc92lfK5mh7TQYfV2EMuupgcqCedsLYAwGm1yc+cAfH 46mEeRc= -----END CERTIFICATE-----Generated at Sun May 19 00:59:42 2024 by rpki-client on console-fra.rpki-client.org