$ rpki-client -vvf rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/D75BE71A410511E7970A2A5FC4F9AE02.roa File: D75BE71A410511E7970A2A5FC4F9AE02.roa (raw, json) Hash identifier: bo/SZs4FQGVCgHbfJ/qOcN+amQtsXWeV9LBgPktlbik= Subject key identifier: 2D:E6:8B:0B:7E:2B:CB:D6:CE:B3:AE:FF:CB:D9:E6:42:9C:AE:1D:70 Certificate issuer: /CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Certificate serial: 1999 Authority key identifier: 60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/D75BE71A410511E7970A2A5FC4F9AE02.roa Signing time: Tue 30 Apr 2024 17:24:41 +0000 ROA not before: Tue 30 Apr 2024 17:24:41 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 9541 IP address blocks: 103.213.112.0/22 maxlen: 22 103.213.112.0/23 maxlen: 23 103.213.112.0/24 maxlen: 24 103.213.113.0/24 maxlen: 24 103.213.114.0/23 maxlen: 23 103.213.114.0/24 maxlen: 24 103.213.115.0/24 maxlen: 24 192.140.148.0/22 maxlen: 22 192.140.148.0/23 maxlen: 23 192.140.148.0/24 maxlen: 24 192.140.149.0/24 maxlen: 24 192.140.150.0/23 maxlen: 23 192.140.150.0/24 maxlen: 24 192.140.151.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 16:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6553 (0x1999) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A4264/serialNumber=60DD65EC7F72EB6C7DA8B93706E2D3BA0F065BFC Validity Not Before: Apr 30 17:24:41 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66312959-2c80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:01:14:a1:d1:b4:0d:f0:ca:43:f6:8d:ca:c8: d1:66:56:b7:24:2e:07:da:63:64:af:80:19:f8:0a: 7a:63:fb:14:9d:5e:21:52:54:84:b4:02:7f:e3:ba: 5c:12:50:e2:c6:17:69:0a:d5:72:d2:a9:eb:e8:3e: df:08:84:c1:75:12:f7:48:2c:66:c3:7c:96:23:8a: cd:c6:75:1a:0c:59:14:69:fd:99:0f:43:5e:4e:45: 62:59:6c:0b:26:13:62:1f:94:83:07:a0:ee:26:48: f5:57:64:76:65:c8:c1:94:c9:7e:24:e0:f9:8b:5f: e8:81:b0:93:67:2d:01:a4:bb:3d:ca:64:f9:e4:23: 77:a4:7c:b7:a2:d4:9f:46:73:0f:62:75:aa:f4:e5: 53:33:14:1d:33:69:97:41:14:e0:30:cb:78:bb:d6: 74:c9:63:b3:30:62:c0:b3:a7:71:75:a7:6e:9a:39: 34:e8:7c:54:e7:5f:12:59:16:69:62:f5:fa:3a:3d: 52:5c:f1:c8:e5:94:4a:f9:21:5b:6b:43:26:a9:98: 19:f2:5c:d9:89:62:c8:f9:f1:6b:a0:8e:a7:fd:8d: 6e:34:05:cc:5f:e0:ba:e6:db:19:fa:c6:ed:4c:33: 63:73:e1:6f:56:7f:c8:af:98:47:94:59:54:67:9d: de:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:E6:8B:0B:7E:2B:CB:D6:CE:B3:AE:FF:CB:D9:E6:42:9C:AE:1D:70 X509v3 Authority Key Identifier: keyid:60:DD:65:EC:7F:72:EB:6C:7D:A8:B9:37:06:E2:D3:BA:0F:06:5B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/YN1l7H9y62x9qLk3BuLTug8GW_w.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YN1l7H9y62x9qLk3BuLTug8GW_w.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A4264/C58D6FFA410411E79EC0385DC4F9AE02/D75BE71A410511E7970A2A5FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.112.0/22 192.140.148.0/22 Signature Algorithm: sha256WithRSAEncryption 33:66:4d:0c:ba:6a:45:0c:13:96:2b:88:ea:6b:59:fa:cb:a5: f1:f2:4d:70:22:5d:40:54:e9:b7:df:57:29:d4:a8:ad:f5:78: da:50:05:c2:1d:6e:7d:44:4a:1f:ae:14:b5:0e:18:a4:79:3d: 58:88:7c:44:69:e5:19:17:7e:a4:91:6c:03:ac:12:4f:2b:0b: 95:f9:fa:eb:e7:f5:c5:3c:c4:3f:cc:7a:da:ac:4b:49:43:62: 09:7b:91:19:6a:b9:a7:35:09:3f:6b:48:6b:c7:c2:e2:d5:17: f2:15:d7:10:9f:87:69:e3:fe:47:22:c3:a7:d4:22:94:51:86: 31:38:b6:5e:7d:ea:2c:39:50:b0:e8:00:0b:13:2a:d1:18:95: 46:62:c7:30:10:b9:5f:a0:8e:b3:90:74:b3:8f:e5:e7:5a:bb: 6a:bf:ef:7c:91:26:f5:cc:87:14:d8:fa:25:16:72:5e:89:3a: 59:dd:5f:55:8d:5f:28:14:31:c2:a4:9e:01:89:39:75:6b:f1: 90:f0:49:4f:f3:dc:c6:df:0d:f5:15:6f:1f:fc:44:c6:b3:db: 5e:3e:32:af:7e:f5:4c:ff:54:ab:ee:66:7a:08:2f:2e:34:c7: af:fd:b8:ce:99:b8:52:4f:34:33:f4:f7:e9:90:80:68:c1:bd: fa:75:b3:2e -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGZkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTQyNjQxMTAvBgNVBAUTKDYwREQ2NUVDN0Y3MkVCNkM3REE4QjkzNzA2RTJEM0JB MEYwNjVCRkMwHhcNMjQwNDMwMTcyNDQxWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjMxMjk1OS0yYzgwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyQEUodG0DfDKQ/aNysjRZla3JC4H2mNkr4AZ+Ap6Y/sUnV4hUlSEtAJ/47pc ElDixhdpCtVy0qnr6D7fCITBdRL3SCxmw3yWI4rNxnUaDFkUaf2ZD0NeTkViWWwL JhNiH5SDB6DuJkj1V2R2ZcjBlMl+JOD5i1/ogbCTZy0BpLs9ymT55CN3pHy3otSf RnMPYnWq9OVTMxQdM2mXQRTgMMt4u9Z0yWOzMGLAs6dxdadumjk06HxU518SWRZp YvX6Oj1SXPHI5ZRK+SFba0MmqZgZ8lzZiWLI+fFroI6n/Y1uNAXMX+C65tsZ+sbt TDNjc+FvVn/Ir5hHlFlUZ53eQQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFC3miwt+ K8vWzrOu/8vZ5kKcrh1wMB8GA1UdIwQYMBaAFGDdZex/cutsfai5Nwbi07oPBlv8 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNDI2NC9DNThENkZGQTQx MDQxMUU3OUVDMDM4NURDNEY5QUUwMi9ZTjFsN0g5eTYyeDlxTGszQnVMVHVnOEdX X3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1lOMWw3SDl5NjJ4OXFMazNCdUxUdWc4R1dfdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTQyNjQvQzU4RDZGRkE0MTA0MTFFNzlFQzAzODVEQzRGOUFFMDIvRDc1QkU3MUE0 MTA1MTFFNzk3MEEyQTVGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJn1XADBALAjJQwDQYJKoZIhvcNAQELBQADggEBADNmTQy6 akUME5YriOprWfrLpfHyTXAiXUBU6bffVynUqK31eNpQBcIdbn1ESh+uFLUOGKR5 PViIfERp5RkXfqSRbAOsEk8rC5X5+uvn9cU8xD/MetqsS0lDYgl7kRlquac1CT9r SGvHwuLVF/IV1xCfh2nj/kciw6fUIpRRhjE4tl596iw5ULDoAAsTKtEYlUZixzAQ uV+gjrOQdLOP5edau2q/73yRJvXMhxTY+iUWcl6JOlndX1WNXygUMcKkngGJOXVr 8ZDwSU/z3MbfDfUVbx/8RMaz214+Mq9+9Uz/VKvuZnoILy40x6/9uM6ZuFJPNDP0 9+mQgGjBvfp1sy4= -----END CERTIFICATE-----Generated at Tue May 28 19:33:31 2024 by rpki-client on console-ams.rpki-client.org