$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB34A/8A30F7348A8611ED9116D73FC4F9AE02/9C43FA268A8A11ED9DF2425AC4F9AE02.roa File: 9C43FA268A8A11ED9DF2425AC4F9AE02.roa (raw, json) Hash identifier: CKaLCTd4F4dZmPq0DjBqP23YnYGXlc9buqXVc1NvzyY= Subject key identifier: CF:21:06:89:92:C1:27:E8:B8:F2:7D:A6:C6:9B:00:3E:31:E2:83:FB Certificate issuer: /CN=A91AB34A/serialNumber=5885CA6E0CC7B5E5320FA72473EE739633F5EC26 Certificate serial: 99 Authority key identifier: 58:85:CA:6E:0C:C7:B5:E5:32:0F:A7:24:73:EE:73:96:33:F5:EC:26 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WIXKbgzHteUyD6ckc-5zljP17CY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB34A/8A30F7348A8611ED9116D73FC4F9AE02/9C43FA268A8A11ED9DF2425AC4F9AE02.roa Signing time: Mon 23 Oct 2023 04:36:28 +0000 ROA not before: Mon 23 Oct 2023 04:36:28 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 150418 IP address blocks: 103.37.186.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB34A/8A30F7348A8611ED9116D73FC4F9AE02/WIXKbgzHteUyD6ckc-5zljP17CY.crl rsync://rpki.apnic.net/member_repository/A91AB34A/8A30F7348A8611ED9116D73FC4F9AE02/WIXKbgzHteUyD6ckc-5zljP17CY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WIXKbgzHteUyD6ckc-5zljP17CY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 30 May 2024 04:40:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 153 (0x99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB34A/serialNumber=5885CA6E0CC7B5E5320FA72473EE739633F5EC26 Validity Not Before: Oct 23 04:36:28 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6535f84c-467a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:bc:35:d3:c4:60:58:20:1e:13:6d:7d:56:4b: 70:e9:5f:0d:58:42:61:a1:e4:b2:e0:de:57:30:30: 82:ea:e9:61:18:52:40:27:c3:bc:e9:24:02:44:a4: 94:51:d1:78:85:68:53:25:2c:81:09:fc:ce:2e:3a: 03:94:8e:06:26:c1:2b:13:d8:ed:91:c1:61:59:cb: 41:41:95:10:07:3f:bc:f1:f6:e9:62:00:19:22:11: 37:a9:37:37:c6:75:af:f8:48:5c:07:c1:44:59:d0: 69:de:2d:2c:1c:3a:fb:dc:4b:ad:40:a0:b3:d3:f0: a5:f4:41:f1:db:cb:c3:78:61:9a:72:16:98:0b:31: 4a:15:05:49:72:1e:6f:7f:47:d5:35:39:d7:e0:c6: c8:56:a9:70:b9:97:80:68:e0:7d:d1:ba:93:de:39: 59:1d:41:98:36:08:76:ee:b4:a1:d2:ee:c8:2c:b0: a8:a0:2b:62:7f:be:0b:16:df:73:4c:d7:78:b3:08: f6:f6:0c:f4:d9:f2:f3:2b:64:b8:7d:f1:73:a4:69: 67:2b:10:9e:87:8b:4e:04:d4:ce:5b:8f:60:d2:55: cc:39:e4:f9:0e:af:da:03:b9:fe:6d:eb:88:6e:18: 8e:7b:58:08:93:a5:a2:f2:0e:12:2f:cb:7d:b5:16: b2:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:21:06:89:92:C1:27:E8:B8:F2:7D:A6:C6:9B:00:3E:31:E2:83:FB X509v3 Authority Key Identifier: keyid:58:85:CA:6E:0C:C7:B5:E5:32:0F:A7:24:73:EE:73:96:33:F5:EC:26 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB34A/8A30F7348A8611ED9116D73FC4F9AE02/WIXKbgzHteUyD6ckc-5zljP17CY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WIXKbgzHteUyD6ckc-5zljP17CY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB34A/8A30F7348A8611ED9116D73FC4F9AE02/9C43FA268A8A11ED9DF2425AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.186.0/23 Signature Algorithm: sha256WithRSAEncryption a7:c6:17:26:7d:eb:ca:95:ac:23:ea:b5:cf:1d:17:00:84:55: 35:46:22:77:80:95:14:d7:4d:9c:f2:26:4d:7d:5c:46:f4:f0: 16:ec:3c:79:7d:d7:83:b5:a2:52:18:36:2e:66:7d:ec:93:a5: df:9f:26:73:7f:cc:bd:a2:0b:78:2f:d4:30:9b:12:db:b4:be: 87:ae:18:cb:c8:32:42:91:6e:a5:18:42:8b:a1:64:2f:18:34: e8:fb:36:7c:1a:d8:16:51:ae:13:10:cc:40:16:bf:a6:52:75: 6d:4b:01:7e:f7:80:a7:a8:e3:db:09:1b:04:98:fb:ce:92:b0: 4a:7f:e4:b5:55:b1:57:e4:42:5d:2d:a9:38:cf:85:4e:7f:85: 65:17:3a:cb:4f:c2:18:ec:05:b0:f9:cd:c2:bb:e3:b6:ba:28: 46:79:ff:5d:77:c3:aa:9a:68:54:d6:bb:25:37:0a:14:10:82: 87:40:f8:7b:f4:3b:44:c3:b7:c3:17:dc:df:0b:65:c6:a3:f1: fb:88:7f:f3:82:bd:0a:78:2b:0f:2b:54:6a:7a:33:39:4c:8b: 8d:d1:d5:3b:50:01:94:43:11:97:55:f6:95:c3:12:57:28:a4: 05:7e:f6:70:5f:6b:3b:0c:7a:af:71:f9:11:b9:81:35:15:38: 28:52:c3:e0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAJkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzNEExMTAvBgNVBAUTKDU4ODVDQTZFMENDN0I1RTUzMjBGQTcyNDczRUU3Mzk2 MzNGNUVDMjYwHhcNMjMxMDIzMDQzNjI4WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM1Zjg0Yy00NjdhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rw108RgWCAeE219Vktw6V8NWEJhoeSy4N5XMDCC6ulhGFJAJ8O86SQCRKSU UdF4hWhTJSyBCfzOLjoDlI4GJsErE9jtkcFhWctBQZUQBz+88fbpYgAZIhE3qTc3 xnWv+EhcB8FEWdBp3i0sHDr73EutQKCz0/Cl9EHx28vDeGGachaYCzFKFQVJch5v f0fVNTnX4MbIVqlwuZeAaOB90bqT3jlZHUGYNgh27rSh0u7ILLCooCtif74LFt9z TNd4swj29gz02fLzK2S4ffFzpGlnKxCeh4tOBNTOW49g0lXMOeT5Dq/aA7n+beuI bhiOe1gIk6Wi8g4SL8t9tRayGQIDAQABo4IClTCCApEwHQYDVR0OBBYEFM8hBomS wSfouPJ9psabAD4x4oP7MB8GA1UdIwQYMBaAFFiFym4Mx7XlMg+nJHPuc5Yz9ewm MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjM0QS84QTMwRjczNDhB ODYxMUVEOTExNkQ3M0ZDNEY5QUUwMi9XSVhLYmd6SHRlVXlENmNrYy01emxqUDE3 Q1kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dJWEtiZ3pIdGVVeUQ2Y2tjLTV6bGpQMTdDWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIzNEEvOEEzMEY3MzQ4QTg2MTFFRDkxMTZENzNGQzRGOUFFMDIvOUM0M0ZBMjY4 QThBMTFFRDlERjI0MjVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnJbowDQYJKoZIhvcNAQELBQADggEBAKfGFyZ968qVrCPq tc8dFwCEVTVGIneAlRTXTZzyJk19XEb08BbsPHl914O1olIYNi5mfeyTpd+fJnN/ zL2iC3gv1DCbEtu0voeuGMvIMkKRbqUYQouhZC8YNOj7Nnwa2BZRrhMQzEAWv6ZS dW1LAX73gKeo49sJGwSY+86SsEp/5LVVsVfkQl0tqTjPhU5/hWUXOstPwhjsBbD5 zcK747a6KEZ5/113w6qaaFTWuyU3ChQQgodA+Hv0O0TDt8MX3N8LZcaj8fuIf/OC vQp4Kw8rVGp6MzlMi43R1TtQAZRDEZdV9pXDElcopAV+9nBfazsMeq9x+RG5gTUV OChSw+A= -----END CERTIFICATE-----Generated at Thu May 23 06:18:14 2024 by rpki-client on console-fra.rpki-client.org