$ rpki-client -vvf rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa File: F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa (raw, json) Hash identifier: fk9bO30yZhfQjn+0VF9i0JM9DergUcdFFDpFTyp3X+4= Subject key identifier: 77:AA:D2:E1:D0:3F:1C:A7:C0:C6:D8:67:EB:01:E0:64:C2:D7:9D:EE Certificate issuer: /CN=A91A36A7/serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Certificate serial: 050F Authority key identifier: A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa Signing time: Wed 17 Apr 2024 01:33:43 +0000 ROA not before: Wed 17 Apr 2024 01:33:43 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141767 IP address blocks: 103.163.182.0/23 maxlen: 23 103.163.182.0/24 maxlen: 24 103.163.183.0/24 maxlen: 24 2001:df6:2380::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 00:51:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1295 (0x50f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A36A7/serialNumber=A3652D9E54E96468B23047937317FA4ECD7B3648 Validity Not Before: Apr 17 01:33:43 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=661f26f7-15df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:ea:f1:21:c4:f9:c8:b1:08:51:6e:f8:f5:55: 7e:38:a1:5a:fb:8c:0f:8d:a6:f2:e4:a5:2f:cd:93: f9:7d:b6:08:af:65:59:b7:0a:1b:6e:8f:0b:d3:7f: 21:63:92:6a:ca:1c:e7:91:2a:d3:d5:e3:a1:26:4f: ea:7a:d5:98:1c:27:30:44:bc:d9:92:0e:0f:e8:c3: 8b:aa:0e:49:e5:af:d1:b5:8c:c1:03:dc:b4:7e:fc: 1e:c1:2b:71:7b:a9:93:64:06:92:60:3c:1d:2c:95: 19:77:d2:db:a7:e3:14:b0:e8:a1:c5:d3:b3:ee:23: 38:cc:a4:72:41:30:e6:81:f7:fd:73:38:16:8e:eb: b0:bd:8c:b4:53:ef:20:53:2d:e1:7f:9b:c1:7f:f7: d6:1c:4a:05:2e:56:c1:9c:e1:5e:49:7b:dd:54:f0: 84:6d:2e:b7:b1:47:b2:a5:16:07:b5:ae:15:7d:fc: 5f:f2:4e:c9:f4:ef:07:fe:7d:7e:99:3a:c2:76:a7: f6:21:80:50:00:b1:07:42:34:20:3d:0b:c7:3b:60: bb:3f:01:46:0c:e4:93:55:7f:5d:4b:9f:c3:5a:40: 9b:f4:d9:72:61:2f:f9:da:d6:d2:65:cc:9e:c5:1b: 38:92:31:a0:8d:5e:8b:4d:67:6a:ec:28:01:b2:9a: e0:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:AA:D2:E1:D0:3F:1C:A7:C0:C6:D8:67:EB:01:E0:64:C2:D7:9D:EE X509v3 Authority Key Identifier: keyid:A3:65:2D:9E:54:E9:64:68:B2:30:47:93:73:17:FA:4E:CD:7B:36:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o2UtnlTpZGiyMEeTcxf6Ts17Nkg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A36A7/8AA65AFCB94911EBBBB3255AC4F9AE02/F0CA090EB94A11EBAF5BDD5AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.163.182.0/23 IPv6: 2001:df6:2380::/48 Signature Algorithm: sha256WithRSAEncryption 9d:55:3a:76:b3:2e:2f:10:55:d2:bd:c8:8e:0c:8b:0c:d2:fe: b4:9e:4e:68:f0:50:24:eb:f1:07:47:06:2f:73:37:5f:80:4b: c1:de:53:39:e7:89:15:15:bb:a6:2b:5d:2d:e0:07:19:b4:c2: 2f:cc:a2:d6:d5:77:61:36:a3:27:15:4c:55:2d:56:a9:37:4e: 36:e1:2b:49:cc:34:7e:d2:8d:4f:50:4d:74:8a:66:51:69:96: 1d:ad:6d:99:1c:49:23:52:82:7a:0d:78:1d:09:00:98:e3:b6: 3b:4d:ea:6c:07:a4:66:6b:da:e6:12:c6:05:44:17:ee:54:43: 31:4a:bb:89:ce:c4:d8:a8:b2:74:dd:20:00:4b:1d:e1:03:b4: fb:c8:1b:d1:0e:89:75:3a:10:2d:7c:ab:69:24:13:96:be:98: ea:35:89:30:6c:73:4c:69:84:06:b0:c2:90:b3:53:1a:b4:08: 96:a2:2b:1e:46:5e:5e:67:3d:21:98:5b:37:1d:f6:17:5b:d4: 43:6e:58:fb:d7:90:b9:ee:f4:67:9d:e5:d8:4f:9c:ff:ca:8c: 3e:e2:99:b1:e1:bb:5d:95:5e:f1:90:81:9c:32:db:ad:b2:f8: 25:3b:21:2c:a0:73:5d:0d:30:e7:72:2a:03:a9:97:e6:8c:da: a2:29:87:80 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBQ8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTM2QTcxMTAvBgNVBAUTKEEzNjUyRDlFNTRFOTY0NjhCMjMwNDc5MzczMTdGQTRF Q0Q3QjM2NDgwHhcNMjQwNDE3MDEzMzQzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmMjZmNy0xNWRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAterxIcT5yLEIUW749VV+OKFa+4wPjaby5KUvzZP5fbYIr2VZtwobbo8L038h Y5JqyhznkSrT1eOhJk/qetWYHCcwRLzZkg4P6MOLqg5J5a/RtYzBA9y0fvwewStx e6mTZAaSYDwdLJUZd9Lbp+MUsOihxdOz7iM4zKRyQTDmgff9czgWjuuwvYy0U+8g Uy3hf5vBf/fWHEoFLlbBnOFeSXvdVPCEbS63sUeypRYHta4Vffxf8k7J9O8H/n1+ mTrCdqf2IYBQALEHQjQgPQvHO2C7PwFGDOSTVX9dS5/DWkCb9NlyYS/52tbSZcye xRs4kjGgjV6LTWdq7CgBsprglQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFHeq0uHQ PxynwMbYZ+sB4GTC153uMB8GA1UdIwQYMBaAFKNlLZ5U6WRosjBHk3MX+k7NezZI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMzZBNy84QUE2NUFGQ0I5 NDkxMUVCQkJCMzI1NUFDNEY5QUUwMi9vMlV0bmxUcFpHaXlNRWVUY3hmNlRzMTdO a2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL28yVXRubFRwWkdpeU1FZVRjeGY2VHMxN05rZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTM2QTcvOEFBNjVBRkNCOTQ5MTFFQkJCQjMyNTVBQzRGOUFFMDIvRjBDQTA5MEVC OTRBMTFFQkFGNUJERDVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFno7YwDwQCAAIwCQMHACABDfYjgDANBgkqhkiG9w0BAQsF AAOCAQEAnVU6drMuLxBV0r3IjgyLDNL+tJ5OaPBQJOvxB0cGL3M3X4BLwd5TOeeJ FRW7pitdLeAHGbTCL8yi1tV3YTajJxVMVS1WqTdONuErScw0ftKNT1BNdIpmUWmW Ha1tmRxJI1KCeg14HQkAmOO2O03qbAekZmva5hLGBUQX7lRDMUq7ic7E2KiydN0g AEsd4QO0+8gb0Q6JdToQLXyraSQTlr6Y6jWJMGxzTGmEBrDCkLNTGrQIlqIrHkZe Xmc9IZhbNx32F1vUQ25Y+9eQue70Z53l2E+c/8qMPuKZseG7XZVe8ZCBnDLbrbL4 JTshLKBzXQ0w53IqA6mX5ozaoimHgA== -----END CERTIFICATE-----Generated at Fri May 17 01:47:18 2024 by rpki-client on console-fra.rpki-client.org