$ rpki-client -vvf rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa File: AF91ADB42CE211EC8664D47EC4F9AE02.roa (raw, json) Hash identifier: 3hsiNGyZ//5dFZ1J4qdCgMKv/lYnE/V4grAtV+HFkcQ= Subject key identifier: F2:FF:EC:98:BD:7F:08:9F:F4:A3:D2:A9:EB:83:11:7C:9C:CB:70:B3 Certificate issuer: /CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Certificate serial: 0268 Authority key identifier: AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa Signing time: Tue 16 Aug 2022 03:21:55 +0000 ROA not before: Tue 16 Aug 2022 03:21:55 +0000 ROA not after: Tue 31 Oct 2023 00:00:00 +0000 asID: 16509 IP address blocks: 103.70.49.0/24 maxlen: 24 182.54.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Mar 2023 03:24:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 616 (0x268) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A85A8/serialNumber=AE0A0F98A0903E015E5FC54CB8CE081D424DB4D2 Validity Not Before: Aug 16 03:21:55 2022 GMT Not After : Oct 31 00:00:00 2023 GMT Subject: CN=62fb0d52-ecab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6d:61:02:ea:f5:1d:74:d0:82:9c:5b:2d:09: c9:c1:0a:1b:51:16:07:9a:3c:c5:cf:9b:81:73:27: ef:b6:db:13:80:be:df:c4:0a:ab:07:99:31:32:fd: aa:34:60:0e:57:73:c6:54:0d:06:17:2f:76:31:b7: d7:47:c3:03:2f:f0:d2:05:38:87:84:23:0b:af:d4: e1:ef:21:92:24:b3:44:9d:70:6d:e3:96:55:7c:5d: 4e:05:6a:94:a5:bf:10:39:4f:db:22:1e:73:b6:4c: 06:d5:f4:e7:ca:d9:cd:7a:a6:c9:f9:63:f4:e7:58: 4c:89:96:c4:3d:58:d5:1d:43:9e:68:d7:1a:3f:1e: a1:fd:bc:ca:b7:d0:84:4d:59:26:f3:dd:91:0e:16: 28:e5:8c:a3:f4:9a:72:ec:b7:9b:b7:3e:ce:d1:53: c3:e7:fe:d2:34:7d:72:2c:53:fb:bb:db:f7:33:83: a0:0b:73:4f:7b:f2:65:44:0d:25:c4:38:ca:ab:50: 42:f2:80:18:3d:bd:f2:c0:a3:e6:cb:c7:3b:89:eb: e1:21:de:48:1e:56:2d:a3:2c:c6:0a:7c:78:b5:21: e2:2c:0b:06:47:9e:6f:cc:33:6b:bc:90:0b:be:70: 13:c6:4f:65:58:4a:64:dd:4b:cf:3c:32:32:df:a5: 0c:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:FF:EC:98:BD:7F:08:9F:F4:A3:D2:A9:EB:83:11:7C:9C:CB:70:B3 X509v3 Authority Key Identifier: keyid:AE:0A:0F:98:A0:90:3E:01:5E:5F:C5:4C:B8:CE:08:1D:42:4D:B4:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/rgoPmKCQPgFeX8VMuM4IHUJNtNI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rgoPmKCQPgFeX8VMuM4IHUJNtNI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A85A8/A53081462CDE11ECAA6FE678C4F9AE02/AF91ADB42CE211EC8664D47EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.49.0/24 182.54.135.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:d5:1f:49:89:b9:54:0c:c7:d0:ba:05:78:aa:24:df:8e:d8: 36:29:ad:9c:3f:90:25:e0:1a:05:cd:6d:a1:e8:78:dc:3c:ca: 00:b1:fb:2c:df:e5:00:65:f0:df:6a:49:8d:01:93:49:14:8e: fd:02:4c:71:77:ca:b0:f4:a7:39:69:6a:d9:8f:d6:aa:1b:6b: 66:d3:e8:38:a5:86:06:ea:0d:8f:0e:a8:2e:2d:6a:a4:71:d1: 77:9f:47:05:50:83:1f:4f:dd:c0:01:5d:d6:86:f0:03:20:74: b4:2d:95:9e:54:9b:0d:63:b3:3d:3f:5e:05:64:77:99:07:27: 99:76:ad:c5:75:22:a8:b2:6f:27:60:3c:41:e8:e4:54:7a:38: ae:fa:cf:23:c8:cc:ff:57:73:dd:7b:57:ca:f5:7d:cf:24:6f: fd:b9:49:d3:cc:b2:32:89:40:4a:13:a6:68:c6:19:e2:37:ff: eb:9f:41:77:8f:1b:2a:0b:e0:14:01:9a:23:2f:cf:1c:a3:e8: 36:f9:c1:80:5e:7e:24:a9:0b:6e:54:b7:66:f5:f7:57:c9:2b: 2d:88:03:4e:69:0f:9a:f5:ca:7f:b5:fe:59:b1:11:02:43:be: a0:ff:8a:30:74:df:85:02:c3:62:48:24:5d:35:93:bc:5f:c0: f7:53:e8:24 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAmgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg1QTgxMTAvBgNVBAUTKEFFMEEwRjk4QTA5MDNFMDE1RTVGQzU0Q0I4Q0UwODFE NDI0REI0RDIwHhcNMjIwODE2MDMyMTU1WhcNMjMxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02MmZiMGQ1Mi1lY2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw21hAur1HXTQgpxbLQnJwQobURYHmjzFz5uBcyfvttsTgL7fxAqrB5kxMv2q NGAOV3PGVA0GFy92MbfXR8MDL/DSBTiHhCMLr9Th7yGSJLNEnXBt45ZVfF1OBWqU pb8QOU/bIh5ztkwG1fTnytnNeqbJ+WP051hMiZbEPVjVHUOeaNcaPx6h/bzKt9CE TVkm892RDhYo5Yyj9Jpy7Lebtz7O0VPD5/7SNH1yLFP7u9v3M4OgC3NPe/JlRA0l xDjKq1BC8oAYPb3ywKPmy8c7ievhId5IHlYtoyzGCnx4tSHiLAsGR55vzDNrvJAL vnATxk9lWEpk3UvPPDIy36UMLQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPL/7Ji9 fwif9KPSqeuDEXycy3CzMB8GA1UdIwQYMBaAFK4KD5igkD4BXl/FTLjOCB1CTbTS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODVBOC9BNTMwODE0NjJD REUxMUVDQUE2RkU2NzhDNEY5QUUwMi9yZ29QbUtDUVBnRmVYOFZNdU00SUhVSk50 TkkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Jnb1BtS0NRUGdGZVg4Vk11TTRJSFVKTnROSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg1QTgvQTUzMDgxNDYyQ0RFMTFFQ0FBNkZFNjc4QzRGOUFFMDIvQUY5MUFEQjQy Q0UyMTFFQzg2NjRENDdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnRjEDBAC2NocwDQYJKoZIhvcNAQELBQADggEBAB/VH0mJ uVQMx9C6BXiqJN+O2DYprZw/kCXgGgXNbaHoeNw8ygCx+yzf5QBl8N9qSY0Bk0kU jv0CTHF3yrD0pzlpatmP1qoba2bT6DilhgbqDY8OqC4taqRx0XefRwVQgx9P3cAB XdaG8AMgdLQtlZ5Umw1jsz0/XgVkd5kHJ5l2rcV1IqiybydgPEHo5FR6OK76zyPI zP9Xc917V8r1fc8kb/25SdPMsjKJQEoTpmjGGeI3/+ufQXePGyoL4BQBmiMvzxyj 6Db5wYBefiSpC25Ut2b191fJKy2IA05pD5r1yn+1/lmxEQJDvqD/ijB034UCw2JI JF01k7xfwPdT6CQ= -----END CERTIFICATE-----Generated at Wed Mar 15 11:45:18 2023 by rpki-client on console-ams.rpki-client.org