$ rpki-client -vvf rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3E0BA21CEBB211EEA93D9B14C4F9AE02.roa File: 3E0BA21CEBB211EEA93D9B14C4F9AE02.roa (raw, json) Hash identifier: 607whJuTJGYwP+EYvn1YISuD9WkRx7rEu3EVnFHKNOo= Subject key identifier: 08:B9:8C:1E:AE:E6:2A:DA:93:91:12:C0:E0:10:C8:0C:79:9D:CB:1E Certificate issuer: /CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Certificate serial: 06 Authority key identifier: 40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3E0BA21CEBB211EEA93D9B14C4F9AE02.roa Signing time: Tue 26 Mar 2024 21:09:04 +0000 ROA not before: Tue 26 Mar 2024 21:09:04 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 16509 IP address blocks: 167.103.90.0/24 maxlen: 24 167.103.91.0/24 maxlen: 24 167.103.92.0/24 maxlen: 24 167.103.93.0/24 maxlen: 24 167.103.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:44:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A7169/serialNumber=4042C2490D7DAFEC3320316ED5AA74E0BECAA9A9 Validity Not Before: Mar 26 21:09:04 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=66033970-142d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:05:89:b3:11:f8:9c:69:82:52:c8:61:8f:b0: 69:56:72:6f:e0:bc:b7:97:0b:2e:9f:67:b5:46:16: 0c:be:c2:4a:85:de:26:21:46:a9:b2:1e:61:71:b9: 58:b6:f4:51:56:db:66:92:36:22:d2:da:89:f3:7a: 13:12:6e:86:31:0a:64:2c:ea:17:22:49:aa:8f:12: 71:7b:93:a5:7f:f3:47:1f:a7:c2:88:0d:f5:4b:03: f9:fd:2b:44:c8:58:e1:a0:c1:3e:bb:60:96:51:2e: 70:8d:a5:e8:81:79:5f:8d:54:96:b3:a3:ac:92:aa: 23:bd:65:c6:9f:c2:58:a9:0f:b4:f0:1c:a0:b4:4b: 72:3f:42:e3:d6:c4:d7:52:0f:46:f4:4e:64:bc:83: 9b:d0:9c:00:a6:a6:c8:63:6b:71:1e:1f:fe:7d:4e: ed:ac:5b:25:d5:08:c0:78:dc:a5:06:11:00:27:13: f5:8d:26:ac:04:60:e2:4b:ed:ba:bc:36:8e:38:80: 17:8a:b2:91:61:8f:73:14:e8:c6:d4:27:01:3a:a1: eb:bd:b3:ed:35:a4:c4:a0:8e:85:b1:15:9a:05:1e: a7:58:5f:7d:63:c5:0d:2b:7b:7e:7b:f5:75:8e:77: 5e:c2:2c:81:6f:95:0e:22:ca:e8:6b:86:19:0d:d0: 0d:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B9:8C:1E:AE:E6:2A:DA:93:91:12:C0:E0:10:C8:0C:79:9D:CB:1E X509v3 Authority Key Identifier: keyid:40:42:C2:49:0D:7D:AF:EC:33:20:31:6E:D5:AA:74:E0:BE:CA:A9:A9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/QELCSQ19r-wzIDFu1ap04L7Kqak.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QELCSQ19r-wzIDFu1ap04L7Kqak.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A7169/6233DD3EEBAE11EE8A0ED964C4F9AE02/3E0BA21CEBB211EEA93D9B14C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 167.103.90.0-167.103.94.255 Signature Algorithm: sha256WithRSAEncryption 4c:53:d6:50:cc:5e:76:60:00:17:a4:ce:03:f5:a4:e1:54:40: 17:17:6d:b9:a1:d5:3d:f1:42:02:6a:63:3a:90:3b:a2:47:cc: 44:cc:7a:45:b3:79:cd:34:4d:75:2a:da:1e:f9:ae:40:cd:ec: 9c:9d:1a:02:f3:bc:41:ca:05:61:73:7e:2b:80:98:8e:a9:b3: 8d:16:33:63:00:fe:b9:19:27:c9:a1:e4:30:d0:84:48:54:56: 18:b8:46:80:c0:11:03:d7:fe:04:7c:35:3a:29:7f:e9:f9:a6: b2:88:50:dd:55:77:2d:d1:a6:2d:08:c0:51:09:20:ab:cd:3a: ab:a1:37:55:b7:38:cd:e5:e9:29:02:a2:ef:22:a9:20:80:71: 01:e0:95:ce:f9:d5:0a:05:fe:9e:7c:4a:20:7d:97:c0:91:4d: f3:4e:16:c2:6d:2b:08:ae:92:d2:c6:f6:b9:f6:7d:ab:c0:fe: 8c:5a:bf:36:ad:05:f6:73:6b:18:79:4b:be:69:b7:19:b9:d5: 76:bf:b4:4d:b1:de:b2:2e:72:f0:f3:08:01:08:47:8c:ff:3b: 89:2f:fc:6f:6e:b4:32:61:12:56:41:94:c4:52:e1:e9:94:0c: 78:c0:54:64:c1:e7:ae:e8:a0:80:5a:1e:14:db:cd:e7:5e:3d: 47:dc:eb:9f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NzE2OTExMC8GA1UEBRMoNDA0MkMyNDkwRDdEQUZFQzMzMjAzMTZFRDVBQTc0RTBC RUNBQTlBOTAeFw0yNDAzMjYyMTA5MDRaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MDMzOTcwLTE0MmQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCmBYmzEficaYJSyGGPsGlWcm/gvLeXCy6fZ7VGFgy+wkqF3iYhRqmyHmFxuVi2 9FFW22aSNiLS2onzehMSboYxCmQs6hciSaqPEnF7k6V/80cfp8KIDfVLA/n9K0TI WOGgwT67YJZRLnCNpeiBeV+NVJazo6ySqiO9ZcafwlipD7TwHKC0S3I/QuPWxNdS D0b0TmS8g5vQnACmpshja3EeH/59Tu2sWyXVCMB43KUGEQAnE/WNJqwEYOJL7bq8 No44gBeKspFhj3MU6MbUJwE6oeu9s+01pMSgjoWxFZoFHqdYX31jxQ0re3579XWO d17CLIFvlQ4iyuhrhhkN0A1jAgMBAAGjggKdMIICmTAdBgNVHQ4EFgQUCLmMHq7m KtqTkRLA4BDIDHmdyx4wHwYDVR0jBBgwFoAUQELCSQ19r+wzIDFu1ap04L7Kqakw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE3MTY5LzYyMzNERDNFRUJB RTExRUU4QTBFRDk2NEM0RjlBRTAyL1FFTENTUTE5ci13eklERnUxYXAwNEw3S3Fh ay5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvUUVMQ1NRMTlyLXd6SURGdTFhcDA0TDdLcWFrLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NzE2OS82MjMzREQzRUVCQUUxMUVFOEEwRUQ5NjRDNEY5QUUwMi8zRTBCQTIxQ0VC QjIxMUVFQTkzRDlCMTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAnBggrBgEFBQcBBwEB/wQY MBYwFAQCAAEwDjAMAwQBp2daAwQAp2deMA0GCSqGSIb3DQEBCwUAA4IBAQBMU9ZQ zF52YAAXpM4D9aThVEAXF225odU98UICamM6kDuiR8xEzHpFs3nNNE11Ktoe+a5A zeycnRoC87xBygVhc34rgJiOqbONFjNjAP65GSfJoeQw0IRIVFYYuEaAwBED1/4E fDU6KX/p+aayiFDdVXct0aYtCMBRCSCrzTqroTdVtzjN5ekpAqLvIqkggHEB4JXO +dUKBf6efEogfZfAkU3zThbCbSsIrpLSxva59n2rwP6MWr82rQX2c2sYeUu+abcZ udV2v7RNsd6yLnLw8wgBCEeM/zuJL/xvbrQyYRJWQZTEUuHplAx4wFRkweeu6KCA Wh4U283nXj1H3Ouf -----END CERTIFICATE-----Generated at Wed May 1 10:10:57 2024 by rpki-client on console-ams.rpki-client.org