$ rpki-client -vvf rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa File: 9604F4A6899911EBA32C6224C4F9AE02.roa (raw, json) Hash identifier: Yr03PVq8IWmvSQd8YplMKtRPvK8aE0RE5eBXhq1JqoE= Subject key identifier: BA:68:F0:EF:14:DD:FB:2D:D2:43:16:B6:21:D0:B3:61:C4:F4:0C:C6 Certificate issuer: /CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Certificate serial: 35E3 Authority key identifier: 9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa Signing time: Thu 04 Apr 2024 15:21:06 +0000 ROA not before: Thu 04 Apr 2024 15:21:06 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 141342 IP address blocks: 59.103.140.0/22 maxlen: 24 119.157.84.0/22 maxlen: 24 119.157.88.0/22 maxlen: 24 182.189.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 14:50:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13795 (0x35e3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A0832/serialNumber=9ED9055107C70F85BB91A8DA0270B5CA760AEB54 Validity Not Before: Apr 4 15:21:06 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=660ec561-73b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e3:22:d4:08:56:bc:ca:31:23:87:4c:13:b3: fb:c1:aa:b0:b0:7e:98:1f:14:ef:79:07:fc:e9:4e: b8:3b:f5:6b:90:c7:5c:00:64:64:fa:2f:bc:99:c8: 5b:83:72:5f:31:69:9d:3e:ef:68:08:22:2c:cf:4b: 49:9a:0b:6b:0e:a5:d8:17:fb:c8:ff:90:c7:ad:14: 7c:6e:85:57:e4:23:4c:c1:ed:9e:d5:2d:0c:3c:8b: 37:40:7b:97:ca:52:d6:c2:9c:74:8e:07:f4:72:f2: d4:ba:b5:0a:d9:4d:20:c4:35:58:45:3b:66:09:58: 69:c0:53:a8:9d:4f:f3:c7:e0:52:a5:0a:d2:86:d8: 2b:b9:91:16:f6:bc:33:68:53:3a:a0:be:ab:dd:50: 2f:48:cb:ac:bf:78:49:35:43:9a:1c:93:66:32:51: 5f:a5:bb:94:61:1f:69:06:8a:83:9b:32:69:b9:10: f9:60:97:7f:c5:26:b3:8c:3b:36:34:a9:0a:1b:8b: d9:6d:d5:cf:87:8c:63:b4:ed:ba:10:b4:1d:bc:60: fa:35:32:3e:68:49:c0:f5:f3:4d:ca:b8:6b:a8:40: 81:9a:48:0a:79:a6:e4:26:aa:92:70:d1:1c:9f:c8: e8:ad:7f:dc:7f:b5:50:1a:09:aa:75:3d:3a:af:2b: e7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:68:F0:EF:14:DD:FB:2D:D2:43:16:B6:21:D0:B3:61:C4:F4:0C:C6 X509v3 Authority Key Identifier: keyid:9E:D9:05:51:07:C7:0F:85:BB:91:A8:DA:02:70:B5:CA:76:0A:EB:54 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/ntkFUQfHD4W7kajaAnC1ynYK61Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ntkFUQfHD4W7kajaAnC1ynYK61Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A0832/9DAF780E1D9411E29901F3F808B02CD2/9604F4A6899911EBA32C6224C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 59.103.140.0/22 119.157.84.0-119.157.91.255 182.189.112.0/20 Signature Algorithm: sha256WithRSAEncryption 2f:02:77:29:dc:51:94:68:59:fb:3b:e6:e7:c8:c5:6e:52:6b: 62:09:3f:8e:cb:24:05:5f:77:13:47:38:58:0a:2b:b4:74:c7: 86:27:b7:68:4e:d4:89:c2:f5:af:ca:50:94:03:5b:32:c7:11: 70:8f:15:9c:ef:ec:2d:fc:db:6e:93:45:c2:60:35:2b:ed:2f: 8d:70:9f:79:ab:88:c2:d3:43:65:15:e5:5a:12:33:9d:3b:a7: 79:c0:60:25:2f:8b:26:18:89:3a:15:95:38:75:f3:2a:b6:41: 14:46:cc:ca:53:21:25:f3:f8:bb:21:14:14:fd:cf:88:36:34: 0a:1b:9c:32:15:2b:0c:44:8f:82:c9:3d:74:74:25:cb:4c:6c: 10:be:b5:d4:14:e9:1f:f5:7a:2e:44:aa:e0:30:f6:3c:8f:5c: 6e:08:d1:d4:21:3e:1d:ff:a5:f6:03:f9:e1:65:71:a3:5f:b9: f3:cb:bc:0f:cb:2a:db:b0:46:82:d4:33:22:ba:bf:41:b1:ba: 29:83:68:79:a8:4c:c4:42:60:0b:64:a1:26:82:dc:c9:9b:9d: 78:ca:ee:3f:63:86:82:ba:59:74:b0:cc:c7:dd:ed:8c:9e:f5: a0:91:71:3d:af:16:15:cc:b1:b1:64:d0:31:2d:85:1a:33:a6: a2:e6:7c:4c -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICNeMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTA4MzIxMTAvBgNVBAUTKDlFRDkwNTUxMDdDNzBGODVCQjkxQThEQTAyNzBCNUNB NzYwQUVCNTQwHhcNMjQwNDA0MTUyMTA2WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlYzU2MS03M2I2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApeMi1AhWvMoxI4dME7P7waqwsH6YHxTveQf86U64O/VrkMdcAGRk+i+8mchb g3JfMWmdPu9oCCIsz0tJmgtrDqXYF/vI/5DHrRR8boVX5CNMwe2e1S0MPIs3QHuX ylLWwpx0jgf0cvLUurUK2U0gxDVYRTtmCVhpwFOonU/zx+BSpQrShtgruZEW9rwz aFM6oL6r3VAvSMusv3hJNUOaHJNmMlFfpbuUYR9pBoqDmzJpuRD5YJd/xSazjDs2 NKkKG4vZbdXPh4xjtO26ELQdvGD6NTI+aEnA9fNNyrhrqECBmkgKeabkJqqScNEc n8jorX/cf7VQGgmqdT06ryvnVQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFLpo8O8U 3fst0kMWtiHQs2HE9AzGMB8GA1UdIwQYMBaAFJ7ZBVEHxw+Fu5Go2gJwtcp2CutU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMDgzMi85REFGNzgwRTFE OTQxMUUyOTkwMUYzRjgwOEIwMkNEMi9udGtGVVFmSEQ0VzdrYWphQW5DMXluWUs2 MVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL250a0ZVUWZIRDRXN2thamFBbkMxeW5ZSzYxUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTA4MzIvOURBRjc4MEUxRDk0MTFFMjk5MDFGM0Y4MDhCMDJDRDIvOTYwNEY0QTY4 OTk5MTFFQkEzMkM2MjI0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgABMBoDBAI7Z4wwDAMEAnedVAMEAnedWAMEBLa9cDANBgkqhkiG9w0B AQsFAAOCAQEALwJ3KdxRlGhZ+zvm58jFblJrYgk/jsskBV93E0c4WAortHTHhie3 aE7UicL1r8pQlANbMscRcI8VnO/sLfzbbpNFwmA1K+0vjXCfeauIwtNDZRXlWhIz nTunecBgJS+LJhiJOhWVOHXzKrZBFEbMylMhJfP4uyEUFP3PiDY0ChucMhUrDESP gsk9dHQly0xsEL611BTpH/V6LkSq4DD2PI9cbgjR1CE+Hf+l9gP54WVxo1+588u8 D8sq27BGgtQzIrq/QbG6KYNoeahMxEJgC2ShJoLcyZudeMruP2OGgrpZdLDMx93t jJ71oJFxPa8WFcyxsWTQMS2FGjOmouZ8TA== -----END CERTIFICATE-----Generated at Sat May 4 15:55:02 2024 by rpki-client on console-ams.rpki-client.org