$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/CD5B717E8AB811EDA3D4ED68C4F9AE02.roa File: CD5B717E8AB811EDA3D4ED68C4F9AE02.roa (raw, json) Hash identifier: cc4xEkzmPplrvuvQVB8ipaoQWHBomyeNauJ9KbdVDzY= Subject key identifier: D4:64:38:5F:9E:69:C8:74:48:F9:F1:7C:31:2B:6A:A4:2C:46:10:17 Certificate issuer: /CN=A91A5308/serialNumber=7B59055212849105AD6F39E5881D842E707439AF Certificate serial: 0BE9 Authority key identifier: 7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/CD5B717E8AB811EDA3D4ED68C4F9AE02.roa Signing time: Sun 24 Mar 2024 19:27:35 +0000 ROA not before: Sun 24 Mar 2024 19:27:35 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138638 IP address blocks: 103.135.88.0/22 maxlen: 24 2404:7840::/32 maxlen: 32 2404:7840::/48 maxlen: 48 2404:7840:1::/48 maxlen: 48 2404:7840:2::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 19:05:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3049 (0xbe9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5308/serialNumber=7B59055212849105AD6F39E5881D842E707439AF Validity Not Before: Mar 24 19:27:35 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=66007ea6-8f58 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:77:8f:3b:a7:30:ee:98:95:b3:c2:a1:8b:bd: 61:64:2c:40:45:b4:ad:6a:59:83:4c:61:08:81:63: 0c:1d:62:7b:03:b6:d4:fe:6f:0c:5c:5c:28:cc:bc: c1:b0:fb:27:35:1e:0c:e0:89:b6:8c:a8:20:da:34: f5:43:d8:a0:8e:d7:3a:ac:e5:81:a1:ab:87:2a:65: 48:10:f9:41:d5:0b:cc:9c:7c:48:67:5a:a6:99:98: 93:2e:45:4f:47:6a:d0:96:88:ea:34:3c:19:b3:a3: ba:2b:94:16:2a:b9:3c:35:68:1d:31:73:9c:ad:7f: 6f:21:ec:1d:4d:56:25:ca:79:d3:cc:bd:b1:43:3a: 9e:73:97:c9:31:aa:63:f3:4a:38:31:c1:b7:7c:36: c9:8e:17:d5:af:1b:50:8e:5d:5c:46:5b:59:39:e2: a1:ea:27:74:ae:e0:b5:75:ed:4a:a8:12:47:17:c0: fa:c8:25:21:b3:d9:24:fe:eb:b0:fc:05:46:96:a1: f0:2f:eb:22:a1:40:30:3e:33:bb:f5:3d:2c:43:9b: 2d:86:fd:39:45:1e:4c:1a:9e:9d:66:84:94:2c:c3: 49:94:90:81:3a:e7:ef:ff:db:33:cd:ce:dc:a7:ef: b4:15:16:2d:a4:28:f1:79:d8:ff:af:b1:01:a0:7e: 22:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:64:38:5F:9E:69:C8:74:48:F9:F1:7C:31:2B:6A:A4:2C:46:10:17 X509v3 Authority Key Identifier: keyid:7B:59:05:52:12:84:91:05:AD:6F:39:E5:88:1D:84:2E:70:74:39:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/e1kFUhKEkQWtbznliB2ELnB0Oa8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e1kFUhKEkQWtbznliB2ELnB0Oa8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5308/A81914E2F4D511E9B917F349C4F9AE02/CD5B717E8AB811EDA3D4ED68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.88.0/22 IPv6: 2404:7840::/32 Signature Algorithm: sha256WithRSAEncryption 0a:cd:ed:7b:17:16:97:14:c2:7c:95:87:15:b8:3f:23:7c:66: d7:3c:52:c1:3f:fd:c5:67:eb:5d:30:4f:24:56:64:1a:7b:27: 00:08:f6:6d:a5:26:6d:93:f7:90:d6:1d:c0:56:a9:a0:1c:ae: e3:05:48:93:81:30:7c:9f:9f:92:8e:82:66:f9:b0:d6:be:17: c4:59:f3:66:2e:0c:45:bc:ba:dc:3f:62:1b:a1:dd:ac:e9:fc: 61:df:56:e4:b9:8e:cd:79:52:09:98:ad:2e:68:7f:a6:67:81: 0e:7a:4d:18:92:9a:1c:a4:f1:ed:2c:27:c8:71:87:fd:75:f0: 0b:55:69:c0:3f:a6:29:b9:20:85:be:36:56:b0:21:b5:e5:ad: 55:62:8e:7b:4d:2f:18:ae:12:df:55:b7:06:f4:04:65:c2:fe: 44:21:3f:e0:5c:c3:a9:b0:29:46:38:c0:e9:51:2e:50:a1:5a: 5e:ec:32:28:3f:15:f5:e0:fd:b9:85:50:1d:60:90:54:10:38: 8e:04:36:6c:6d:21:e0:55:8d:79:79:f1:cf:1c:4b:5a:24:8e: 39:2b:1f:cc:2f:13:6f:6d:bb:33:b1:6b:82:bc:b7:a6:78:a9: 3b:d7:84:04:82:72:36:65:cc:c2:aa:c0:ca:d1:c3:23:f9:da: 34:42:1a:75 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICC+kwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTUzMDgxMTAvBgNVBAUTKDdCNTkwNTUyMTI4NDkxMDVBRDZGMzlFNTg4MUQ4NDJF NzA3NDM5QUYwHhcNMjQwMzI0MTkyNzM1WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjAwN2VhNi04ZjU4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA13ePO6cw7piVs8Khi71hZCxARbStalmDTGEIgWMMHWJ7A7bU/m8MXFwozLzB sPsnNR4M4Im2jKgg2jT1Q9igjtc6rOWBoauHKmVIEPlB1QvMnHxIZ1qmmZiTLkVP R2rQlojqNDwZs6O6K5QWKrk8NWgdMXOcrX9vIewdTVYlynnTzL2xQzqec5fJMapj 80o4McG3fDbJjhfVrxtQjl1cRltZOeKh6id0ruC1de1KqBJHF8D6yCUhs9kk/uuw /AVGlqHwL+sioUAwPjO79T0sQ5sthv05RR5MGp6dZoSULMNJlJCBOufv/9szzc7c p++0FRYtpCjxedj/r7EBoH4ixwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNRkOF+e ach0SPnxfDEraqQsRhAXMB8GA1UdIwQYMBaAFHtZBVIShJEFrW855YgdhC5wdDmv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTMwOC9BODE5MTRFMkY0 RDUxMUU5QjkxN0YzNDlDNEY5QUUwMi9lMWtGVWhLRWtRV3Riem5saUIyRUxuQjBP YTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Uxa0ZVaEtFa1FXdGJ6bmxpQjJFTG5CME9hOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTUzMDgvQTgxOTE0RTJGNEQ1MTFFOUI5MTdGMzQ5QzRGOUFFMDIvQ0Q1QjcxN0U4 QUI4MTFFREEzRDRFRDY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnh1gwDQQCAAIwBwMFACQEeEAwDQYJKoZIhvcNAQELBQAD ggEBAArN7XsXFpcUwnyVhxW4PyN8Ztc8UsE//cVn610wTyRWZBp7JwAI9m2lJm2T 95DWHcBWqaAcruMFSJOBMHyfn5KOgmb5sNa+F8RZ82YuDEW8utw/Yhuh3azp/GHf VuS5js15UgmYrS5of6ZngQ56TRiSmhyk8e0sJ8hxh/118AtVacA/pim5IIW+Nlaw IbXlrVVijntNLxiuEt9Vtwb0BGXC/kQhP+Bcw6mwKUY4wOlRLlChWl7sMig/FfXg /bmFUB1gkFQQOI4ENmxtIeBVjXl58c8cS1okjjkrH8wvE29tuzOxa4K8t6Z4qTvX hASCcjZlzMKqwMrRwyP52jRCGnU= -----END CERTIFICATE-----Generated at Fri May 24 19:53:04 2024 by rpki-client on console-fra.rpki-client.org