$ rpki-client -vvf rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/685E441A69BC11EA97D4FE67C4F9AE02.roa File: 685E441A69BC11EA97D4FE67C4F9AE02.roa (raw, json) Hash identifier: bkMEDJ6Mw6DdvcBG25uO4MnQlHqZJlYhha7omdMvr74= Subject key identifier: AF:49:1C:DF:27:34:84:0F:0B:09:FF:E2:70:18:3F:F6:DD:17:52:DE Certificate issuer: /CN=A91AB3E4/serialNumber=EAA792F968863C3FFB9EBD1671A06C145A1B2164 Certificate serial: 08CD Authority key identifier: EA:A7:92:F9:68:86:3C:3F:FB:9E:BD:16:71:A0:6C:14:5A:1B:21:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qeS-WiGPD_7nr0WcaBsFFobIWQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/685E441A69BC11EA97D4FE67C4F9AE02.roa Signing time: Fri 02 Jun 2023 22:03:48 +0000 ROA not before: Fri 02 Jun 2023 22:03:48 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58895 IP address blocks: 103.93.216.0/22 maxlen: 22 103.93.216.0/24 maxlen: 24 103.93.217.0/24 maxlen: 24 103.93.218.0/24 maxlen: 24 103.93.219.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/6qeS-WiGPD_7nr0WcaBsFFobIWQ.crl rsync://rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/6qeS-WiGPD_7nr0WcaBsFFobIWQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qeS-WiGPD_7nr0WcaBsFFobIWQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 09 Jun 2023 21:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2253 (0x8cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AB3E4/serialNumber=EAA792F968863C3FFB9EBD1671A06C145A1B2164 Validity Not Before: Jun 2 22:03:48 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a6744-1a78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:08:b6:00:91:7a:34:79:94:2b:88:c3:64:e8: d4:4c:be:c5:60:b6:44:6e:0f:af:fc:6d:5d:8a:72: b2:2f:fe:d1:dc:cf:44:be:96:de:0f:48:22:45:69: ea:59:8f:30:fe:8b:f4:be:ba:d2:41:4f:9a:06:0d: d6:e8:51:f8:e8:3f:97:b1:ca:b3:42:e2:4a:81:75: 87:49:d4:b7:fb:b2:33:27:5e:59:8c:be:21:53:6c: f6:79:56:42:e2:3f:f4:bb:73:e9:db:91:cd:ab:83: 76:be:96:d0:b0:90:22:e3:c2:14:57:60:30:74:da: 64:a9:21:2b:b9:75:1c:24:fc:16:de:bd:a7:83:bb: 34:4e:68:a4:94:1b:78:94:8e:c2:b8:d1:ae:b8:18: e7:81:86:d7:d5:af:ec:9c:52:96:28:8d:81:b9:c5: 3b:6d:3c:be:27:db:0d:6e:3a:9c:77:8f:5c:82:e4: 79:ba:03:bf:9c:0f:9c:d4:68:6f:8e:6e:a5:eb:7f: 96:ef:95:d4:4e:43:56:d8:f7:e3:f6:e0:cb:a0:c4: b5:42:97:bb:55:a7:f7:2e:39:59:41:ee:aa:15:67: de:ab:70:0c:ee:e8:6f:35:c7:02:03:ee:45:29:7e: 61:0f:e7:be:12:27:69:92:00:11:9f:f8:ef:44:37: 4b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:49:1C:DF:27:34:84:0F:0B:09:FF:E2:70:18:3F:F6:DD:17:52:DE X509v3 Authority Key Identifier: keyid:EA:A7:92:F9:68:86:3C:3F:FB:9E:BD:16:71:A0:6C:14:5A:1B:21:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/6qeS-WiGPD_7nr0WcaBsFFobIWQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6qeS-WiGPD_7nr0WcaBsFFobIWQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AB3E4/F69881DE69BA11EAA65DF764C4F9AE02/685E441A69BC11EA97D4FE67C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.216.0/22 Signature Algorithm: sha256WithRSAEncryption 23:f0:8c:46:d4:f0:26:69:96:67:3e:5b:7f:55:06:ef:81:1b: 63:ed:3f:68:4e:46:f6:c3:57:c3:c4:c7:cc:1d:3e:b9:7b:f4: 23:ec:85:1d:ba:7f:c3:21:06:72:b0:32:45:40:1b:fb:00:6b: f1:99:d8:7f:08:e1:82:7e:90:cb:24:9a:0c:ef:bb:fc:4e:43: 2d:d5:0a:5c:8a:a2:58:18:a2:9d:d7:73:5d:55:87:68:e9:75: 8c:fb:84:d4:8c:91:91:97:28:7a:62:bd:3f:91:0c:20:be:b3: 1e:53:b4:21:22:80:a7:75:58:12:91:62:db:3c:d0:c4:b6:b9: 92:c9:85:44:bf:2d:ae:bb:23:52:c0:68:18:d2:6e:41:ee:f3: 49:d8:fd:03:d4:ce:79:3f:6d:35:6a:53:52:55:60:01:8f:af: 9c:06:96:77:3d:fe:1b:64:0e:30:d6:88:6b:9a:95:2e:b1:8b: aa:ae:1c:01:3d:40:68:f6:7e:05:fa:16:57:74:cc:cb:bc:d4: ed:63:c5:ea:9a:fc:6a:a2:29:93:f8:43:01:c2:26:20:2d:6f: ad:57:a7:77:38:06:9a:2e:7c:04:c0:39:2d:c8:32:28:06:cf: 87:51:b4:83:8f:db:72:66:7c:24:26:37:4e:1d:13:c9:e3:6f: a4:97:cd:54 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCM0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUIzRTQxMTAvBgNVBAUTKEVBQTc5MkY5Njg4NjNDM0ZGQjlFQkQxNjcxQTA2QzE0 NUExQjIxNjQwHhcNMjMwNjAyMjIwMzQ4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhNjc0NC0xYTc4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAygi2AJF6NHmUK4jDZOjUTL7FYLZEbg+v/G1dinKyL/7R3M9EvpbeD0giRWnq WY8w/ov0vrrSQU+aBg3W6FH46D+XscqzQuJKgXWHSdS3+7IzJ15ZjL4hU2z2eVZC 4j/0u3Pp25HNq4N2vpbQsJAi48IUV2AwdNpkqSEruXUcJPwW3r2ng7s0TmiklBt4 lI7CuNGuuBjngYbX1a/snFKWKI2BucU7bTy+J9sNbjqcd49cguR5ugO/nA+c1Ghv jm6l63+W75XUTkNW2Pfj9uDLoMS1Qpe7Vaf3LjlZQe6qFWfeq3AM7uhvNccCA+5F KX5hD+e+EidpkgARn/jvRDdL8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFK9JHN8n NIQPCwn/4nAYP/bdF1LeMB8GA1UdIwQYMBaAFOqnkvlohjw/+569FnGgbBRaGyFk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQjNFNC9GNjk4ODFERTY5 QkExMUVBQTY1REY3NjRDNEY5QUUwMi82cWVTLVdpR1BEXzducjBXY2FCc0ZGb2JJ V1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZxZVMtV2lHUERfN25yMFdjYUJzRkZvYklXUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUIzRTQvRjY5ODgxREU2OUJBMTFFQUE2NURGNzY0QzRGOUFFMDIvNjg1RTQ0MUE2 OUJDMTFFQTk3RDRGRTY3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnXdgwDQYJKoZIhvcNAQELBQADggEBACPwjEbU8CZplmc+ W39VBu+BG2PtP2hORvbDV8PEx8wdPrl79CPshR26f8MhBnKwMkVAG/sAa/GZ2H8I 4YJ+kMskmgzvu/xOQy3VClyKolgYop3Xc11Vh2jpdYz7hNSMkZGXKHpivT+RDCC+ sx5TtCEigKd1WBKRYts80MS2uZLJhUS/La67I1LAaBjSbkHu80nY/QPUznk/bTVq U1JVYAGPr5wGlnc9/htkDjDWiGualS6xi6quHAE9QGj2fgX6Fld0zMu81O1jxeqa /GqiKZP4QwHCJiAtb61Xp3c4BpoufATAOS3IMigGz4dRtIOP23JmfCQmN04dE8nj b6SXzVQ= -----END CERTIFICATE-----Generated at Fri Jun 2 22:38:18 2023 by rpki-client on console-ams.rpki-client.org