$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/996294F0F6F811ECB7D4B564C4F9AE02.roa File: 996294F0F6F811ECB7D4B564C4F9AE02.roa (raw, json) Hash identifier: vzr5FLi/+HqX3i2PY9Ml2cOPQTizJVDGVELIBhdYlQU= Subject key identifier: E9:06:B9:E9:09:4C:A6:DD:B3:A1:7C:FC:C6:8E:46:9E:AE:6F:03:CD Certificate issuer: /CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Certificate serial: 0B43 Authority key identifier: 8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/996294F0F6F811ECB7D4B564C4F9AE02.roa Signing time: Fri 08 Mar 2024 19:57:58 +0000 ROA not before: Fri 08 Mar 2024 19:57:58 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136027 IP address blocks: 103.80.70.0/23 maxlen: 23 103.80.70.0/24 maxlen: 24 103.80.71.0/24 maxlen: 24 103.107.123.0/24 maxlen: 24 103.121.175.0/24 maxlen: 24 2001:df6:de00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2883 (0xb43) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97F0/serialNumber=8C66F9C0E668AC9081DF710D6042DF47490B0AB9 Validity Not Before: Mar 8 19:57:58 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65eb6dc6-38e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:65:b4:35:6d:6d:1b:71:d5:ef:ab:4e:82:2b: 8f:fc:31:49:4a:fd:c4:37:05:0e:8a:13:7f:8f:40: 05:fb:3f:92:f1:bb:cf:1e:91:c4:25:1b:16:de:46: 4c:49:c5:5b:b4:95:a0:9a:2e:82:f0:c5:e3:27:31: d1:ba:78:70:dc:9f:bd:b1:3a:38:73:2f:19:06:60: 58:a8:8e:9b:74:79:76:16:ea:60:d1:5e:fd:2b:cc: 1b:d5:48:f4:2a:c5:05:79:6d:56:1c:f4:42:d3:06: 4c:e2:2b:97:84:29:c7:e7:9d:87:2c:f4:6e:10:d9: de:1e:c0:5a:5f:bb:9b:e7:76:ac:16:26:61:b2:35: 72:8d:ef:75:bb:2c:ac:56:2e:af:ea:a6:05:ce:1e: 69:77:6d:9b:19:b3:de:5e:b8:81:a2:f8:7b:d9:18: 21:9b:3b:d1:63:9a:28:76:63:4d:11:75:8b:96:a0: b8:26:99:9d:c1:83:64:e4:db:19:79:63:b7:d7:b5: 0d:4c:a5:fd:f7:ef:da:85:7f:dc:f0:ff:5b:65:5f: 2e:03:e4:76:23:e3:d4:ae:5f:5b:d5:b0:47:ca:b3: 03:f8:c7:e1:cf:7d:3d:e4:52:fe:65:0a:e2:08:cd: 18:f4:db:e0:a6:da:a0:98:79:f4:b3:db:95:3d:40: 4f:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:06:B9:E9:09:4C:A6:DD:B3:A1:7C:FC:C6:8E:46:9E:AE:6F:03:CD X509v3 Authority Key Identifier: keyid:8C:66:F9:C0:E6:68:AC:90:81:DF:71:0D:60:42:DF:47:49:0B:0A:B9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/jGb5wOZorJCB33ENYELfR0kLCrk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jGb5wOZorJCB33ENYELfR0kLCrk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97F0/A66319F012D911EAA16A4B61C4F9AE02/996294F0F6F811ECB7D4B564C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.70.0/23 103.107.123.0/24 103.121.175.0/24 IPv6: 2001:df6:de00::/48 Signature Algorithm: sha256WithRSAEncryption 53:21:79:17:15:25:a6:71:bb:c6:7b:e5:aa:9a:eb:74:8b:b7: 0d:53:93:c4:f8:fb:c9:36:21:57:b1:70:64:c2:e8:6a:91:b5: d4:d9:28:69:28:a1:cb:3f:07:65:5d:ec:72:a1:61:67:66:dc: 89:01:0e:e0:bb:06:05:7b:0d:8d:e1:8e:05:80:ee:00:77:5f: b5:b5:67:e0:51:d0:99:47:b6:59:89:6b:b3:08:6a:4b:7d:69: fa:b6:8a:f1:1f:6c:bd:ff:74:8f:9a:22:29:54:9c:d4:56:a2: a6:e2:33:9e:5d:73:ed:20:42:17:83:fe:c7:64:36:ba:8c:d0: b5:81:27:01:26:1c:91:b5:8c:96:c3:63:46:cd:7e:eb:87:d2: d8:e3:85:1b:f5:81:53:ba:a0:84:83:9c:68:8e:22:03:67:7f: df:5c:b6:9f:c2:98:bf:21:29:03:68:5f:90:f8:82:8e:5c:96: 66:da:62:d6:0d:4f:76:d9:f3:a2:4d:f3:de:48:a1:3b:2e:c5: ca:a7:15:93:af:9e:0b:9c:dc:ba:78:4d:0d:88:3b:d6:fd:8a: 72:5b:61:75:54:78:72:61:1a:0e:94:3f:9b:52:fc:3b:bd:44: b4:7a:70:3e:d2:4e:90:1b:9b:d4:29:42:06:53:d0:a2:c4:0c: 71:31:1c:f7 -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICC0MwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RjAxMTAvBgNVBAUTKDhDNjZGOUMwRTY2OEFDOTA4MURGNzEwRDYwNDJERjQ3 NDkwQjBBQjkwHhcNMjQwMzA4MTk1NzU4WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWViNmRjNi0zOGUxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz2W0NW1tG3HV76tOgiuP/DFJSv3ENwUOihN/j0AF+z+S8bvPHpHEJRsW3kZM ScVbtJWgmi6C8MXjJzHRunhw3J+9sTo4cy8ZBmBYqI6bdHl2Fupg0V79K8wb1Uj0 KsUFeW1WHPRC0wZM4iuXhCnH552HLPRuENneHsBaX7ub53asFiZhsjVyje91uyys Vi6v6qYFzh5pd22bGbPeXriBovh72RghmzvRY5oodmNNEXWLlqC4JpmdwYNk5NsZ eWO317UNTKX99+/ahX/c8P9bZV8uA+R2I+PUrl9b1bBHyrMD+Mfhz3095FL+ZQri CM0Y9NvgptqgmHn0s9uVPUBPqQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFOkGuekJ TKbds6F8/MaORp6ubwPNMB8GA1UdIwQYMBaAFIxm+cDmaKyQgd9xDWBC30dJCwq5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdGMC9BNjYzMTlGMDEy RDkxMUVBQTE2QTRCNjFDNEY5QUUwMi9qR2I1d09ab3JKQ0IzM0VOWUVMZlIwa0xD cmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pHYjV3T1pvckpDQjMzRU5ZRUxmUjBrTENyay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTk3RjAvQTY2MzE5RjAxMkQ5MTFFQUExNkE0QjYxQzRGOUFFMDIvOTk2Mjk0RjBG NkY4MTFFQ0I3RDRCNTY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBAFnUEYDBABna3sDBABnea8wDwQCAAIwCQMHACABDfbeADAN BgkqhkiG9w0BAQsFAAOCAQEAUyF5FxUlpnG7xnvlqprrdIu3DVOTxPj7yTYhV7Fw ZMLoapG11NkoaSihyz8HZV3scqFhZ2bciQEO4LsGBXsNjeGOBYDuAHdftbVn4FHQ mUe2WYlrswhqS31p+raK8R9svf90j5oiKVSc1FaipuIznl1z7SBCF4P+x2Q2uozQ tYEnASYckbWMlsNjRs1+64fS2OOFG/WBU7qghIOcaI4iA2d/31y2n8KYvyEpA2hf kPiCjlyWZtpi1g1Pdtnzok3z3kihOy7FyqcVk6+eC5zcunhNDYg71v2KclthdVR4 cmEaDpQ/m1L8O71EtHpwPtJOkBub1ClCBlPQosQMcTEc9w== -----END CERTIFICATE-----Generated at Fri May 10 21:16:13 2024 by rpki-client on console-fra.rpki-client.org