$ rpki-client -vvf rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/35831FCE937011EA8A795583C4F9AE02.roa File: 35831FCE937011EA8A795583C4F9AE02.roa (raw, json) Hash identifier: quwFz9je4iFlkCJSU3B1mU1SM1se6oAq60Dc17Nx0YY= Subject key identifier: 25:80:24:41:13:A4:F2:59:45:8D:40:3F:38:C5:AF:96:17:ED:82:02 Certificate issuer: /CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Certificate serial: 087E Authority key identifier: 53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/35831FCE937011EA8A795583C4F9AE02.roa Signing time: Tue 30 Jan 2024 21:39:22 +0000 ROA not before: Tue 30 Jan 2024 21:39:22 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 32242 IP address blocks: 103.6.4.0/24 maxlen: 24 103.6.5.0/24 maxlen: 24 103.6.6.0/24 maxlen: 24 103.6.7.0/24 maxlen: 24 113.20.20.0/24 maxlen: 24 113.20.21.0/24 maxlen: 24 113.20.22.0/24 maxlen: 24 113.20.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2174 (0x87e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91ACFEB/serialNumber=5385E13A1B5845FB44CEEB6BED8DEB4E89AF3829 Validity Not Before: Jan 30 21:39:22 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=65b96c89-9da2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c4:7e:ad:6e:6e:a2:1f:a8:5f:8f:2b:54:7c: 6b:3e:2e:ce:35:6c:9f:8e:be:9d:84:ef:c8:c2:b0: 9e:8f:d9:4c:cf:14:76:34:7b:0f:c5:7d:cb:eb:7a: 6b:c5:ad:2c:10:2c:10:c7:cd:54:04:ea:39:a9:49: 87:b7:1c:42:3a:80:bf:66:9c:4d:2d:ea:10:fa:26: 19:f4:c7:da:a5:a8:21:46:3b:80:3f:d9:22:2d:3d: da:af:7e:25:d4:76:99:8a:66:4d:41:b1:51:f4:f8: 4e:4d:1c:ef:e1:ab:dc:da:f1:5a:e2:79:a2:96:d7: 93:1b:de:ab:af:f6:6b:78:45:6a:64:fa:ec:05:43: d6:bb:9d:0d:1f:c4:f0:67:26:23:55:3c:68:7a:69: 0a:c0:48:7d:fe:b8:5c:7d:a8:0a:58:fb:70:67:5d: 28:98:ff:4f:5c:bd:92:87:53:d5:8d:2c:d0:6c:50: 62:94:ca:41:86:06:6d:a1:20:97:53:35:2c:a0:51: 58:d6:1c:43:de:d4:03:82:b4:72:8d:4a:03:61:09: 80:9b:f6:36:8e:cd:cd:f1:a1:4c:e6:8e:07:d9:f3: de:1e:f3:05:38:c3:30:73:56:78:42:46:7a:43:bf: 11:b2:7a:dc:81:08:f2:50:9b:04:90:d4:ac:06:45: 6c:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:80:24:41:13:A4:F2:59:45:8D:40:3F:38:C5:AF:96:17:ED:82:02 X509v3 Authority Key Identifier: keyid:53:85:E1:3A:1B:58:45:FB:44:CE:EB:6B:ED:8D:EB:4E:89:AF:38:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/U4XhOhtYRftEzutr7Y3rTomvOCk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U4XhOhtYRftEzutr7Y3rTomvOCk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91ACFEB/CB2C33E6936E11EAA5E56B7EC4F9AE02/35831FCE937011EA8A795583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.6.4.0/22 113.20.20.0/22 Signature Algorithm: sha256WithRSAEncryption 00:97:16:2b:40:2c:c7:e1:7c:88:53:7f:6a:cd:bd:e6:e9:9c: df:18:a0:ed:0a:2c:d6:e7:be:ed:78:f0:d2:16:22:b7:05:5c: cb:b2:e8:7b:64:30:df:37:46:a3:4b:db:d9:7c:29:29:c4:1d: e9:4e:51:49:69:ed:9b:62:42:57:79:98:07:a9:00:6e:27:2c: ac:a9:36:14:fd:ce:da:77:72:a4:11:09:0a:c1:3b:f9:e5:ab: be:b3:8e:5d:90:49:4f:53:41:26:2f:67:d4:5e:af:ea:b8:7e: 24:15:90:17:c9:8d:cb:7e:57:ab:71:41:da:7e:70:c8:16:14: e7:51:7c:75:6c:4c:2c:64:a4:b4:b3:44:f5:a8:2f:5e:4c:fd: c9:af:c9:be:9d:85:f4:3e:2b:e6:7b:f4:da:09:65:58:12:7d: e2:c7:6d:24:97:26:7f:53:ca:9d:9b:f1:bf:bf:82:1e:24:d4: 60:89:48:b7:9f:25:bc:fb:6e:21:63:c9:5c:65:ea:e8:ac:52: 47:db:ad:1c:6a:0a:68:4a:e5:9b:50:45:ab:81:69:20:af:47: 95:f2:50:0c:cb:6e:02:77:91:a1:64:08:b4:2d:40:dd:b0:84: 0b:37:6a:c1:04:c8:b5:14:0e:c4:a7:d2:6d:10:46:33:73:ce: 82:31:fa:93 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCH4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUNGRUIxMTAvBgNVBAUTKDUzODVFMTNBMUI1ODQ1RkI0NENFRUI2QkVEOERFQjRF ODlBRjM4MjkwHhcNMjQwMTMwMjEzOTIyWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWI5NmM4OS05ZGEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwsR+rW5uoh+oX48rVHxrPi7ONWyfjr6dhO/IwrCej9lMzxR2NHsPxX3L63pr xa0sECwQx81UBOo5qUmHtxxCOoC/ZpxNLeoQ+iYZ9MfapaghRjuAP9kiLT3ar34l 1HaZimZNQbFR9PhOTRzv4avc2vFa4nmilteTG96rr/ZreEVqZPrsBUPWu50NH8Tw ZyYjVTxoemkKwEh9/rhcfagKWPtwZ10omP9PXL2Sh1PVjSzQbFBilMpBhgZtoSCX UzUsoFFY1hxD3tQDgrRyjUoDYQmAm/Y2js3N8aFM5o4H2fPeHvMFOMMwc1Z4QkZ6 Q78RsnrcgQjyUJsEkNSsBkVs4wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFCWAJEET pPJZRY1APzjFr5YX7YICMB8GA1UdIwQYMBaAFFOF4TobWEX7RM7ra+2N606Jrzgp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQ0ZFQi9DQjJDMzNFNjkz NkUxMUVBQTVFNTZCN0VDNEY5QUUwMi9VNFhoT2h0WVJmdEV6dXRyN1kzclRvbXZP Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U0WGhPaHRZUmZ0RXp1dHI3WTNyVG9tdk9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUNGRUIvQ0IyQzMzRTY5MzZFMTFFQUE1RTU2QjdFQzRGOUFFMDIvMzU4MzFGQ0U5 MzcwMTFFQThBNzk1NTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnBgQDBAJxFBQwDQYJKoZIhvcNAQELBQADggEBAACXFitA LMfhfIhTf2rNvebpnN8YoO0KLNbnvu148NIWIrcFXMuy6HtkMN83RqNL29l8KSnE HelOUUlp7ZtiQld5mAepAG4nLKypNhT9ztp3cqQRCQrBO/nlq76zjl2QSU9TQSYv Z9Rer+q4fiQVkBfJjct+V6txQdp+cMgWFOdRfHVsTCxkpLSzRPWoL15M/cmvyb6d hfQ+K+Z79NoJZVgSfeLHbSSXJn9Typ2b8b+/gh4k1GCJSLefJbz7biFjyVxl6uis UkfbrRxqCmhK5ZtQRauBaSCvR5XyUAzLbgJ3kaFkCLQtQN2whAs3asEEyLUUDsSn 0m0QRjNzzoIx+pM= -----END CERTIFICATE-----Generated at Sat May 18 22:28:01 2024 by rpki-client on console-ams.rpki-client.org