$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/AF0AC0A63D0A11EB9F59D648C4F9AE02.roa File: AF0AC0A63D0A11EB9F59D648C4F9AE02.roa (raw, json) Hash identifier: Slsgm/XyPWXddQe9wtHNCn3rxqpUrjHbTUoCYiCwnB4= Subject key identifier: 17:3A:5E:BD:9B:60:4E:D1:CE:61:9A:98:CE:EC:92:FC:83:28:40:58 Certificate issuer: /CN=A91A9B22/serialNumber=461C728E2D563F0E092459BAA6BCE4B9D6C18BB8 Certificate serial: 06A5 Authority key identifier: 46:1C:72:8E:2D:56:3F:0E:09:24:59:BA:A6:BC:E4:B9:D6:C1:8B:B8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhxyji1WPw4JJFm6przkudbBi7g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/AF0AC0A63D0A11EB9F59D648C4F9AE02.roa Signing time: Wed 22 Nov 2023 22:30:17 +0000 ROA not before: Wed 22 Nov 2023 22:30:17 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141202 IP address blocks: 103.156.106.0/23 maxlen: 27 2406:8540::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/Rhxyji1WPw4JJFm6przkudbBi7g.crl rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/Rhxyji1WPw4JJFm6przkudbBi7g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhxyji1WPw4JJFm6przkudbBi7g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 23:31:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1701 (0x6a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B22/serialNumber=461C728E2D563F0E092459BAA6BCE4B9D6C18BB8 Validity Not Before: Nov 22 22:30:17 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=655e80f9-52ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a8:7a:91:55:9d:1d:2f:25:23:a5:7d:1d:7b: e1:0c:20:93:71:d3:a2:44:17:45:e3:e7:af:9d:c7: ed:64:2e:37:ff:5b:e8:18:5e:a6:48:1d:48:fa:9b: 3e:76:fa:cb:5c:b5:87:de:e0:48:28:15:e2:54:e5: 47:bd:62:73:7a:50:25:c9:87:7a:e1:6c:72:17:cf: 18:2d:20:d8:1f:06:6c:3f:d9:f5:73:f6:2a:78:76: b8:d4:9c:16:5d:e2:35:aa:44:2b:25:c7:09:b1:8b: da:0d:31:07:59:94:33:dd:92:8e:e9:4b:0c:0b:be: c0:d1:c2:85:a8:1e:9f:84:c1:cd:2a:57:b8:f1:44: 17:d0:84:5a:05:0a:c2:4f:d1:b0:3c:36:25:8b:45: 5c:83:b2:af:ff:fa:e7:a6:d5:43:16:03:99:82:a7: c8:ae:43:e9:9c:27:53:12:a0:9f:25:7e:32:0e:43: e5:f8:56:ee:6b:69:19:b6:ba:22:40:18:85:0a:17: 2d:03:1c:a6:02:4c:a0:7f:74:6b:de:d4:34:1a:d5: 7f:81:c9:f6:5b:9c:9c:b7:58:99:42:43:ae:8a:56: a6:2d:c9:c0:ae:58:3f:53:e9:52:0b:36:2a:24:75: 47:86:37:1d:7c:e1:0b:f4:67:64:b6:7e:98:5c:4f: f5:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:3A:5E:BD:9B:60:4E:D1:CE:61:9A:98:CE:EC:92:FC:83:28:40:58 X509v3 Authority Key Identifier: keyid:46:1C:72:8E:2D:56:3F:0E:09:24:59:BA:A6:BC:E4:B9:D6:C1:8B:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/Rhxyji1WPw4JJFm6przkudbBi7g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Rhxyji1WPw4JJFm6przkudbBi7g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B22/D75F985CFC8611EABE8F622DC4F9AE02/AF0AC0A63D0A11EB9F59D648C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.106.0/23 IPv6: 2406:8540::/40 Signature Algorithm: sha256WithRSAEncryption 07:2e:54:15:a6:f9:99:61:2c:2e:da:6a:43:82:1c:34:cc:3c: b7:5b:70:80:fb:58:35:a1:ba:c4:ae:7a:20:59:01:42:48:7e: 64:35:24:d6:44:87:15:d1:ee:69:1b:ed:78:e1:78:be:1a:30: 1d:32:7e:e0:eb:95:b0:84:42:c8:08:88:cc:17:10:e9:02:49: 7e:1e:4c:f0:29:f0:ff:ce:5a:81:fa:30:65:9c:04:4e:44:b3: 4a:27:8d:e9:af:86:bc:ef:54:bc:ce:5e:3b:05:e3:72:9b:1a: b3:ce:cc:08:0d:fa:12:10:df:dd:5e:f0:47:19:28:60:3e:9a: 02:f9:b2:73:c4:23:ba:e9:e2:ea:21:0e:c1:d0:bf:32:59:7d: 8b:0e:7a:dd:8d:3a:0e:f4:f0:40:61:1d:b8:1e:f2:2f:25:62: 2e:98:56:88:dc:3d:ca:58:56:2f:ff:0c:a6:2e:fd:45:dc:e6: 9c:ad:7b:1e:ab:5b:c7:ae:d7:c3:04:4e:04:0c:e7:a7:2c:98: 8a:62:78:23:b5:83:a8:4b:40:5c:9c:61:dd:3a:54:93:ac:df: 41:bd:3f:3e:9b:39:0b:b2:89:c0:52:ef:6e:eb:d5:1a:0e:79: 06:45:7a:95:10:28:32:67:cd:68:74:4a:83:31:f7:d4:c7:76: 5f:d2:33:06 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgICBqUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMjIxMTAvBgNVBAUTKDQ2MUM3MjhFMkQ1NjNGMEUwOTI0NTlCQUE2QkNFNEI5 RDZDMThCQjgwHhcNMjMxMTIyMjIzMDE3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVlODBmOS01MmVhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyqh6kVWdHS8lI6V9HXvhDCCTcdOiRBdF4+evncftZC43/1voGF6mSB1I+ps+ dvrLXLWH3uBIKBXiVOVHvWJzelAlyYd64WxyF88YLSDYHwZsP9n1c/YqeHa41JwW XeI1qkQrJccJsYvaDTEHWZQz3ZKO6UsMC77A0cKFqB6fhMHNKle48UQX0IRaBQrC T9GwPDYli0Vcg7Kv//rnptVDFgOZgqfIrkPpnCdTEqCfJX4yDkPl+Fbua2kZtroi QBiFChctAxymAkygf3Rr3tQ0GtV/gcn2W5yct1iZQkOuilamLcnArlg/U+lSCzYq JHVHhjcdfOEL9Gdktn6YXE/1SwIDAQABo4ICpTCCAqEwHQYDVR0OBBYEFBc6Xr2b YE7RzmGamM7skvyDKEBYMB8GA1UdIwQYMBaAFEYcco4tVj8OCSRZuqa85LnWwYu4 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIyMi9ENzVGOTg1Q0ZD ODYxMUVBQkU4RjYyMkRDNEY5QUUwMi9SaHh5amkxV1B3NEpKRm02cHJ6a3VkYkJp N2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1JoeHlqaTFXUHc0SkpGbTZwcnprdWRiQmk3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCMjIvRDc1Rjk4NUNGQzg2MTFFQUJFOEY2MjJEQzRGOUFFMDIvQUYwQUMwQTYz RDBBMTFFQjlGNTlENjQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLwYIKwYBBQUHAQcBAf8E IDAeMAwEAgABMAYDBAFnnGowDgQCAAIwCAMGACQGhUAAMA0GCSqGSIb3DQEBCwUA A4IBAQAHLlQVpvmZYSwu2mpDghw0zDy3W3CA+1g1obrErnogWQFCSH5kNSTWRIcV 0e5pG+144Xi+GjAdMn7g65WwhELICIjMFxDpAkl+HkzwKfD/zlqB+jBlnARORLNK J43pr4a871S8zl47BeNymxqzzswIDfoSEN/dXvBHGShgPpoC+bJzxCO66eLqIQ7B 0L8yWX2LDnrdjToO9PBAYR24HvIvJWIumFaI3D3KWFYv/wymLv1F3OacrXseq1vH rtfDBE4EDOenLJiKYngjtYOoS0BcnGHdOlSTrN9BvT8+mzkLsonAUu9u69UaDnkG RXqVECgyZ81odEqDMffUx3Zf0jMG -----END CERTIFICATE-----Generated at Sat Jun 1 00:32:59 2024 by rpki-client on console-fra.rpki-client.org