$ rpki-client -vvf rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/9DD35B9AF1D011E88D564045C4F9AE02.roa File: 9DD35B9AF1D011E88D564045C4F9AE02.roa (raw, json) Hash identifier: 8yyMRwJluABAdvZeraBi9+FIrbLUtTZTZFIETA0VhHc= Subject key identifier: 87:55:DD:77:2C:02:48:E1:7B:39:71:57:22:A7:4A:22:87:27:C5:3D Certificate issuer: /CN=A91A279C/serialNumber=0BA34E6430B10E6A7F2D29964425D1F714AF865C Certificate serial: 1927 Authority key identifier: 0B:A3:4E:64:30:B1:0E:6A:7F:2D:29:96:44:25:D1:F7:14:AF:86:5C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6NOZDCxDmp_LSmWRCXR9xSvhlw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/9DD35B9AF1D011E88D564045C4F9AE02.roa Signing time: Tue 02 May 2023 17:34:01 +0000 ROA not before: Tue 02 May 2023 17:34:01 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 20473 IP address blocks: 103.87.91.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/C6NOZDCxDmp_LSmWRCXR9xSvhlw.crl rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/C6NOZDCxDmp_LSmWRCXR9xSvhlw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6NOZDCxDmp_LSmWRCXR9xSvhlw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 May 2023 17:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6439 (0x1927) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A279C/serialNumber=0BA34E6430B10E6A7F2D29964425D1F714AF865C Validity Not Before: May 2 17:34:01 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=64514989-831a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:af:a6:47:40:1d:74:96:3f:76:9e:b4:7f:07: 3d:0e:e5:5d:13:0e:8a:26:d6:3d:d1:20:3e:3a:bb: d9:2f:db:0d:a4:b6:89:34:63:3c:78:ff:6b:ec:22: eb:18:bf:e1:fe:43:f3:7e:bb:6c:ce:b4:86:f1:86: 90:74:47:9b:5a:42:70:41:f5:b0:8a:ec:6f:98:56: 0f:76:0b:09:1d:0b:6c:68:98:41:a7:7e:65:ae:7c: 1e:34:4a:5c:6d:e4:f2:0b:72:fb:7b:63:12:31:db: aa:92:51:7e:4d:8b:9f:ef:a0:6f:95:d6:f3:31:b4: b5:db:39:3d:1c:bc:fe:8b:42:b2:15:dd:cc:ca:ed: d2:6a:ca:a1:e9:6f:ea:ce:c4:ac:97:c0:06:5c:b0: 99:1a:f8:7b:61:7f:3e:be:f0:86:e0:04:54:10:04: 4e:9e:b6:7b:55:18:c6:0c:30:79:e8:a9:f5:85:78: 1f:81:ef:84:a5:2f:2c:92:30:2d:08:65:a4:42:71: 3a:11:4c:77:05:10:1b:88:ad:47:48:90:be:46:f7: 75:bc:fa:95:1f:4e:a6:95:a4:81:88:50:6f:08:72: 53:9b:61:c5:97:de:62:d4:b2:84:7f:e9:dc:b9:c6: eb:f3:2d:8b:4c:cf:f9:f1:f9:99:dd:d9:05:2e:11: e8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:55:DD:77:2C:02:48:E1:7B:39:71:57:22:A7:4A:22:87:27:C5:3D X509v3 Authority Key Identifier: keyid:0B:A3:4E:64:30:B1:0E:6A:7F:2D:29:96:44:25:D1:F7:14:AF:86:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/C6NOZDCxDmp_LSmWRCXR9xSvhlw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/C6NOZDCxDmp_LSmWRCXR9xSvhlw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A279C/1CEB7718335111E7BF4B9586C4F9AE02/9DD35B9AF1D011E88D564045C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.87.91.0/24 Signature Algorithm: sha256WithRSAEncryption d5:ef:b1:fb:a7:aa:79:79:09:22:0a:57:d2:50:8e:a4:02:a5: a7:ef:e4:ef:b6:07:db:54:fb:7f:0a:23:4d:11:ef:a3:c3:ad: 87:aa:0c:33:03:e9:e8:11:c3:e2:07:da:e0:34:2f:dd:5e:f2: 71:37:15:79:6b:cb:b7:f4:57:a7:75:0e:a4:d6:f3:21:f8:7e: d6:74:81:c7:03:a4:bf:32:24:b9:52:f4:a5:87:e8:68:b5:93: 5b:4a:3b:b3:b7:a0:cd:09:9e:8d:4b:19:56:2a:5c:b3:cd:ee: 51:55:e0:46:32:15:dd:5b:c4:87:7e:b8:44:74:27:71:76:21: 70:7a:0b:72:ff:9d:61:10:2f:b5:21:63:04:3c:bf:3b:f0:70: fc:f4:9b:ce:9a:b3:c0:58:13:90:29:35:bd:4f:6b:e2:59:dc: de:75:d7:31:e0:75:bc:b5:4f:69:7a:80:dc:a1:d9:c7:4b:7f: f2:59:c2:39:b7:9c:79:31:23:be:b2:0d:b8:ee:ab:47:0f:62: 92:a6:1c:54:60:41:6b:76:54:30:95:0d:f6:cf:ec:66:a7:0c: 2b:70:f4:53:39:c3:57:c6:5f:dd:a7:61:53:24:7a:b2:40:44: 70:36:47:07:32:c9:7a:b4:67:7a:e2:27:4e:35:0d:81:0a:7b: 9a:63:be:f7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICGScwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTI3OUMxMTAvBgNVBAUTKDBCQTM0RTY0MzBCMTBFNkE3RjJEMjk5NjQ0MjVEMUY3 MTRBRjg2NUMwHhcNMjMwNTAyMTczNDAxWhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxNDk4OS04MzFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuq+mR0AddJY/dp60fwc9DuVdEw6KJtY90SA+OrvZL9sNpLaJNGM8eP9r7CLr GL/h/kPzfrtszrSG8YaQdEebWkJwQfWwiuxvmFYPdgsJHQtsaJhBp35lrnweNEpc beTyC3L7e2MSMduqklF+TYuf76BvldbzMbS12zk9HLz+i0KyFd3Myu3Sasqh6W/q zsSsl8AGXLCZGvh7YX8+vvCG4ARUEAROnrZ7VRjGDDB56Kn1hXgfge+EpS8skjAt CGWkQnE6EUx3BRAbiK1HSJC+Rvd1vPqVH06mlaSBiFBvCHJTm2HFl95i1LKEf+nc ucbr8y2LTM/58fmZ3dkFLhHo6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFIdV3Xcs AkjhezlxVyKnSiKHJ8U9MB8GA1UdIwQYMBaAFAujTmQwsQ5qfy0plkQl0fcUr4Zc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMjc5Qy8xQ0VCNzcxODMz NTExMUU3QkY0Qjk1ODZDNEY5QUUwMi9DNk5PWkRDeERtcF9MU21XUkNYUjl4U3Zo bHcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0M2Tk9aREN4RG1wX0xTbVdSQ1hSOXhTdmhsdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTI3OUMvMUNFQjc3MTgzMzUxMTFFN0JGNEI5NTg2QzRGOUFFMDIvOUREMzVCOUFG MUQwMTFFODhENTY0MDQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnV1swDQYJKoZIhvcNAQELBQADggEBANXvsfunqnl5CSIK V9JQjqQCpafv5O+2B9tU+38KI00R76PDrYeqDDMD6egRw+IH2uA0L91e8nE3FXlr y7f0V6d1DqTW8yH4ftZ0gccDpL8yJLlS9KWH6Gi1k1tKO7O3oM0Jno1LGVYqXLPN 7lFV4EYyFd1bxId+uER0J3F2IXB6C3L/nWEQL7UhYwQ8vzvwcPz0m86as8BYE5Ap Nb1Pa+JZ3N511zHgdby1T2l6gNyh2cdLf/JZwjm3nHkxI76yDbjuq0cPYpKmHFRg QWt2VDCVDfbP7GanDCtw9FM5w1fGX92nYVMkerJARHA2RwcyyXq0Z3riJ041DYEK e5pjvvc= -----END CERTIFICATE-----Generated at Tue May 2 18:09:24 2023 by rpki-client on console-fra.rpki-client.org