$ rpki-client -vvf rpki.apnic.net/member_repository/A91A42A4/6684163A063811EEAE238B74C4F9AE02/73E56336069E11EE9D687712C4F9AE02.roa File: 73E56336069E11EE9D687712C4F9AE02.roa (raw, json) Hash identifier: /fIHJha571gb3JKov1qGg+Y5N5BTZWAtQH2WD7i89go= Subject key identifier: 0F:51:5B:A6:92:30:40:CD:78:46:1A:65:78:CC:D2:52:53:26:1D:26 Certificate issuer: /CN=A91A42A4/serialNumber=2225E3FA2C6FE2EFB67665E53CE9FE0CDF9C9BA7 Certificate serial: 03 Authority key identifier: 22:25:E3:FA:2C:6F:E2:EF:B6:76:65:E5:3C:E9:FE:0C:DF:9C:9B:A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiXj-ixv4u-2dmXlPOn-DN-cm6c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A42A4/6684163A063811EEAE238B74C4F9AE02/73E56336069E11EE9D687712C4F9AE02.roa Signing time: Fri 09 Jun 2023 08:20:11 +0000 ROA not before: Fri 09 Jun 2023 08:20:11 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 151369 IP address blocks: 103.213.225.0/24 maxlen: 30 2001:df2:8b40::/48 maxlen: 56 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A42A4/6684163A063811EEAE238B74C4F9AE02/IiXj-ixv4u-2dmXlPOn-DN-cm6c.crl rsync://rpki.apnic.net/member_repository/A91A42A4/6684163A063811EEAE238B74C4F9AE02/IiXj-ixv4u-2dmXlPOn-DN-cm6c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiXj-ixv4u-2dmXlPOn-DN-cm6c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:49:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A42A4/serialNumber=2225E3FA2C6FE2EFB67665E53CE9FE0CDF9C9BA7 Validity Not Before: Jun 9 08:20:11 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=6482e0bb-cca9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ba:85:e5:c3:6d:9d:30:e4:a0:50:34:a9:b7: 99:7e:18:42:76:c3:c9:50:8f:f8:ee:20:4d:24:34: 8a:5c:0f:0c:07:18:8a:c9:1e:62:7a:ac:ef:d3:a2: 7c:1b:7f:c8:35:f4:af:5b:2f:d1:04:a2:ab:8b:6e: f5:ad:b0:60:b5:9e:a5:60:67:5a:b6:b4:5f:58:0a: f0:86:f4:63:b3:33:07:d1:96:35:b5:be:c3:c7:ea: 50:6c:66:4e:86:8a:2e:6e:49:db:e4:b0:5e:69:a9: d4:6b:62:94:96:f4:23:5d:41:ed:15:0c:a5:58:a9: e1:c0:33:c3:79:93:39:d7:de:2e:ae:4c:88:c3:ac: 6c:c0:c3:82:23:fe:09:96:7d:bf:24:2e:4d:f4:1b: 1f:8d:5c:e9:bb:5f:ff:c9:68:ed:9c:cc:f8:bf:d8: 0c:7b:7e:2d:7a:75:e9:e2:d3:4b:d0:84:e7:53:ef: 44:58:03:fb:f8:ef:3b:d6:0e:89:cd:f5:6b:f9:83: d5:11:c9:a2:1a:8f:be:16:39:3f:73:95:bb:13:b5: 51:1f:d6:06:ab:af:25:82:a1:1c:7f:69:d1:0e:33: 0f:67:41:39:8c:9a:ff:23:d8:fe:25:18:38:0d:a4: 5d:6a:63:76:da:62:4d:da:78:9c:30:f3:09:1d:68: 08:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:51:5B:A6:92:30:40:CD:78:46:1A:65:78:CC:D2:52:53:26:1D:26 X509v3 Authority Key Identifier: keyid:22:25:E3:FA:2C:6F:E2:EF:B6:76:65:E5:3C:E9:FE:0C:DF:9C:9B:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A42A4/6684163A063811EEAE238B74C4F9AE02/IiXj-ixv4u-2dmXlPOn-DN-cm6c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IiXj-ixv4u-2dmXlPOn-DN-cm6c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A42A4/6684163A063811EEAE238B74C4F9AE02/73E56336069E11EE9D687712C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.213.225.0/24 IPv6: 2001:df2:8b40::/48 Signature Algorithm: sha256WithRSAEncryption 13:95:d6:70:cf:80:e2:cb:a7:c3:27:29:b1:76:47:8f:76:13: a6:32:a8:05:a1:03:61:aa:8e:5c:f6:6a:68:32:e6:29:c4:9c: e7:86:2c:df:72:da:17:90:2c:ac:ba:41:52:fd:df:14:48:3d: 3f:c4:b0:41:69:ec:d5:77:26:e2:fd:41:6e:cb:52:0b:5d:62: 46:ce:c5:d4:f5:fe:3c:2f:01:ab:32:9c:e2:2d:08:40:6a:73: 78:9e:2c:37:c6:ab:a2:45:4b:cd:31:43:da:fc:3e:76:6b:e5: 25:40:0c:83:39:35:ef:4a:a3:21:df:bf:4e:12:bf:91:a4:b5: 94:c9:52:b7:e3:be:0a:d0:64:15:a4:0f:c2:58:31:c0:df:69: c9:b1:42:18:51:cb:2a:50:86:46:a0:98:52:45:0b:80:44:ca: 5d:04:ac:6e:72:fe:28:6d:29:b4:09:3a:5c:34:38:59:99:5a: 73:c8:44:c1:bc:ae:13:2f:6a:4a:d6:21:2f:c5:d3:6c:47:96: 0f:67:85:7c:89:3f:74:da:93:c7:01:73:d4:c4:e0:db:53:6b: 83:f0:72:68:4c:89:0f:1c:c2:b7:40:e8:84:37:49:15:f2:13: f4:c9:d9:bc:c8:70:3b:4a:2c:b4:89:9f:97:a2:9f:2d:31:88: 91:30:cf:41 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NDJBNDExMC8GA1UEBRMoMjIyNUUzRkEyQzZGRTJFRkI2NzY2NUU1M0NFOUZFMENE RjlDOUJBNzAeFw0yMzA2MDkwODIwMTFaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ODJlMGJiLWNjYTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDMuoXlw22dMOSgUDSpt5l+GEJ2w8lQj/juIE0kNIpcDwwHGIrJHmJ6rO/Tonwb f8g19K9bL9EEoquLbvWtsGC1nqVgZ1q2tF9YCvCG9GOzMwfRljW1vsPH6lBsZk6G ii5uSdvksF5pqdRrYpSW9CNdQe0VDKVYqeHAM8N5kznX3i6uTIjDrGzAw4Ij/gmW fb8kLk30Gx+NXOm7X//JaO2czPi/2Ax7fi16deni00vQhOdT70RYA/v47zvWDonN 9Wv5g9URyaIaj74WOT9zlbsTtVEf1garryWCoRx/adEOMw9nQTmMmv8j2P4lGDgN pF1qY3baYk3aeJww8wkdaAiNAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUD1FbppIw QM14RhpleMzSUlMmHSYwHwYDVR0jBBgwFoAUIiXj+ixv4u+2dmXlPOn+DN+cm6cw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE0MkE0LzY2ODQxNjNBMDYz ODExRUVBRTIzOEI3NEM0RjlBRTAyL0lpWGotaXh2NHUtMmRtWGxQT24tRE4tY202 Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSWlYai1peHY0dS0yZG1YbFBPbi1ETi1jbTZjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NDJBNC82Njg0MTYzQTA2MzgxMUVFQUUyMzhCNzRDNEY5QUUwMi83M0U1NjMzNjA2 OUUxMUVFOUQ2ODc3MTJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGfV4TAPBAIAAjAJAwcAIAEN8otAMA0GCSqGSIb3DQEBCwUA A4IBAQATldZwz4Diy6fDJymxdkePdhOmMqgFoQNhqo5c9mpoMuYpxJznhizfctoX kCysukFS/d8USD0/xLBBaezVdybi/UFuy1ILXWJGzsXU9f48LwGrMpziLQhAanN4 niw3xquiRUvNMUPa/D52a+UlQAyDOTXvSqMh379OEr+RpLWUyVK3474K0GQVpA/C WDHA32nJsUIYUcsqUIZGoJhSRQuARMpdBKxucv4obSm0CTpcNDhZmVpzyETBvK4T L2pK1iEvxdNsR5YPZ4V8iT902pPHAXPUxODbU2uD8HJoTIkPHMK3QOiEN0kV8hP0 ydm8yHA7Siy0iZ+Xop8tMYiRMM9B -----END CERTIFICATE-----Generated at Sat Jun 1 11:47:29 2024 by rpki-client on console-ams.rpki-client.org