$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/C64C7958422411EA9CA5F423C4F9AE02.roa File: C64C7958422411EA9CA5F423C4F9AE02.roa (raw, json) Hash identifier: 3fSEvKM13CebYGAsrgkzFIerRrbjNtx416zFYNRYGP0= Subject key identifier: 41:89:4A:4C:4D:0B:06:84:1D:C4:D3:C6:51:87:A9:8F:9F:D1:30:71 Certificate issuer: /CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Certificate serial: 33CE Authority key identifier: 97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/C64C7958422411EA9CA5F423C4F9AE02.roa Signing time: Wed 10 Apr 2024 15:20:59 +0000 ROA not before: Wed 10 Apr 2024 15:20:59 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 18159 IP address blocks: 103.26.16.0/23 maxlen: 23 103.233.20.0/22 maxlen: 24 110.92.16.0/22 maxlen: 24 112.213.40.0/21 maxlen: 24 202.9.116.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 14:45:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13262 (0x33ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1C06/serialNumber=9737713004819B6B66FC56E6EC86BE4DC2E28E17 Validity Not Before: Apr 10 15:20:59 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6616ae5b-c349 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:74:a5:51:0e:b0:0f:24:51:91:de:1d:ec:94: 99:43:0a:1d:a8:0c:9f:0a:35:59:3a:d9:ad:d0:74: bb:63:90:03:c6:55:b2:50:f0:5e:24:4b:cd:8e:98: 3f:c9:03:9d:80:ce:80:fe:d9:99:3a:e4:d6:eb:24: 43:69:d4:0f:66:2d:23:a2:dd:73:ad:17:5e:00:0b: db:c9:dc:58:df:b5:82:e1:c5:d4:05:f9:99:d0:51: 65:97:3f:66:d2:51:57:1e:9b:4f:91:6f:53:a4:f9: c5:74:e4:fc:2a:f5:85:e8:41:54:fe:d9:32:01:07: 92:63:f5:86:84:2f:70:68:7a:a6:9d:1d:4a:cb:d8: a3:2e:65:0a:a8:60:e9:7b:3c:d1:4d:70:39:37:8f: bd:ce:1b:06:f5:21:d0:ca:d4:9a:8b:a6:9e:44:95: 24:36:27:40:d3:b3:ba:ba:92:4b:85:5b:1e:05:5d: b7:14:8c:01:3f:11:5a:f5:13:b2:4f:05:d5:74:20: fd:56:a1:37:a8:ec:de:13:6f:d8:a0:e2:0c:9a:6b: 05:76:df:4e:62:9c:dd:28:38:45:69:5c:b8:13:73: 4a:e2:53:5f:b7:59:13:47:6f:d4:b4:ab:11:c0:12: 85:6a:92:25:21:8c:cf:8b:57:7c:cb:ef:19:ca:bc: f0:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:89:4A:4C:4D:0B:06:84:1D:C4:D3:C6:51:87:A9:8F:9F:D1:30:71 X509v3 Authority Key Identifier: keyid:97:37:71:30:04:81:9B:6B:66:FC:56:E6:EC:86:BE:4D:C2:E2:8E:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lzdxMASBm2tm_Fbm7Ia-TcLijhc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1C06/6DEAE21C1D9D11E28B1FA78C08B02CD2/C64C7958422411EA9CA5F423C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.26.16.0/23 103.233.20.0/22 110.92.16.0/22 112.213.40.0/21 202.9.116.0/22 Signature Algorithm: sha256WithRSAEncryption 39:63:4a:5e:83:aa:53:71:05:23:15:58:b0:08:ae:1a:23:13: 8a:a0:a7:34:bb:27:1d:00:db:ad:e8:38:73:81:fb:bb:67:85: 38:63:48:42:28:ba:af:50:28:ae:98:ac:9c:0f:64:6f:b0:56: fd:f5:c4:c2:39:81:4c:89:b8:79:fc:39:4a:0a:23:c4:dd:5a: 75:01:41:0e:fd:ea:d2:d7:59:30:bd:6b:4d:30:42:bd:d0:44: 8c:2c:9f:cb:75:48:5a:89:ff:f5:ce:22:99:7f:81:ad:22:c0: 21:d1:7f:69:98:d1:aa:f5:37:c5:91:a4:cd:a9:2f:1b:c7:22: d3:e6:27:cc:c9:a5:4a:ed:78:55:b3:ae:e0:6a:27:0f:65:52: aa:7c:2d:fd:44:c4:73:63:03:ad:16:0d:dd:31:1a:ac:6e:b5: 91:4f:8a:f0:31:69:23:61:1c:42:3f:35:e6:28:33:76:a2:ed: f3:81:05:c5:ca:23:3b:ea:7c:af:e2:7d:f9:05:07:fc:93:7c: 4e:12:db:fb:54:d4:9b:42:16:dc:74:e8:67:d7:4e:ee:6b:44: cb:91:a7:65:0c:43:60:da:c3:03:7e:fb:90:97:e2:48:45:f0: a3:4b:0e:85:8b:58:b3:3e:4e:4a:c3:06:ab:c0:2c:e8:c1:4f: 71:76:9a:5b -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgICM84wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTFDMDYxMTAvBgNVBAUTKDk3Mzc3MTMwMDQ4MTlCNkI2NkZDNTZFNkVDODZCRTRE QzJFMjhFMTcwHhcNMjQwNDEwMTUyMDU5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE2YWU1Yi1jMzQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoXSlUQ6wDyRRkd4d7JSZQwodqAyfCjVZOtmt0HS7Y5ADxlWyUPBeJEvNjpg/ yQOdgM6A/tmZOuTW6yRDadQPZi0jot1zrRdeAAvbydxY37WC4cXUBfmZ0FFllz9m 0lFXHptPkW9TpPnFdOT8KvWF6EFU/tkyAQeSY/WGhC9waHqmnR1Ky9ijLmUKqGDp ezzRTXA5N4+9zhsG9SHQytSai6aeRJUkNidA07O6upJLhVseBV23FIwBPxFa9ROy TwXVdCD9VqE3qOzeE2/YoOIMmmsFdt9OYpzdKDhFaVy4E3NK4lNft1kTR2/UtKsR wBKFapIlIYzPi1d8y+8ZyrzwnQIDAQABo4ICrTCCAqkwHQYDVR0OBBYEFEGJSkxN CwaEHcTTxlGHqY+f0TBxMB8GA1UdIwQYMBaAFJc3cTAEgZtrZvxW5uyGvk3C4o4X MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMUMwNi82REVBRTIxQzFE OUQxMUUyOEIxRkE3OEMwOEIwMkNEMi9semR4TUFTQm0ydG1fRmJtN0lhLVRjTGlq aGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2x6ZHhNQVNCbTJ0bV9GYm03SWEtVGNMaWpoYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTFDMDYvNkRFQUUyMUMxRDlEMTFFMjhCMUZBNzhDMDhCMDJDRDIvQzY0Qzc5NTg0 MjI0MTFFQTlDQTVGNDIzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNwYIKwYBBQUHAQcBAf8E KDAmMCQEAgABMB4DBAFnGhADBAJn6RQDBAJuXBADBANw1SgDBALKCXQwDQYJKoZI hvcNAQELBQADggEBADljSl6DqlNxBSMVWLAIrhojE4qgpzS7Jx0A263oOHOB+7tn hThjSEIouq9QKK6YrJwPZG+wVv31xMI5gUyJuHn8OUoKI8TdWnUBQQ796tLXWTC9 a00wQr3QRIwsn8t1SFqJ//XOIpl/ga0iwCHRf2mY0ar1N8WRpM2pLxvHItPmJ8zJ pUrteFWzruBqJw9lUqp8Lf1ExHNjA60WDd0xGqxutZFPivAxaSNhHEI/NeYoM3ai 7fOBBcXKIzvqfK/iffkFB/yTfE4S2/tU1JtCFtx06GfXTu5rRMuRp2UMQ2DawwN+ +5CX4khF8KNLDoWLWLM+TkrDBqvALOjBT3F2mls= -----END CERTIFICATE-----Generated at Tue May 14 16:25:23 2024 by rpki-client on console-ams.rpki-client.org