$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF0B6/075938D6BF8811ECB1E25A30C4F9AE02/FB1D01D4BF8B11ECB9B8D351C4F9AE02.roa File: FB1D01D4BF8B11ECB9B8D351C4F9AE02.roa (raw, json) Hash identifier: SBU8GVreyOnldCYNvt0nDJnVdYm/HEq3WcHOf4U77zE= Subject key identifier: 8C:D4:1E:58:9A:D8:98:B4:66:5B:DD:25:C5:C4:0D:AC:55:CC:E6:E8 Certificate issuer: /CN=A91AF0B6/serialNumber=00A6406F2F0A947BEB51413670DF721BAD75BAC4 Certificate serial: 025B Authority key identifier: 00:A6:40:6F:2F:0A:94:7B:EB:51:41:36:70:DF:72:1B:AD:75:BA:C4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AKZAby8KlHvrUUE2cN9yG611usQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF0B6/075938D6BF8811ECB1E25A30C4F9AE02/FB1D01D4BF8B11ECB9B8D351C4F9AE02.roa Signing time: Thu 07 Mar 2024 03:25:35 +0000 ROA not before: Thu 07 Mar 2024 03:25:35 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 4768 IP address blocks: 103.162.104.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF0B6/075938D6BF8811ECB1E25A30C4F9AE02/AKZAby8KlHvrUUE2cN9yG611usQ.crl rsync://rpki.apnic.net/member_repository/A91AF0B6/075938D6BF8811ECB1E25A30C4F9AE02/AKZAby8KlHvrUUE2cN9yG611usQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AKZAby8KlHvrUUE2cN9yG611usQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 603 (0x25b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF0B6/serialNumber=00A6406F2F0A947BEB51413670DF721BAD75BAC4 Validity Not Before: Mar 7 03:25:35 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e933af-01e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1c:64:14:aa:16:c0:f9:dd:b8:59:a7:bf:16: 5d:56:e8:d5:69:b7:b4:6a:a8:5f:5d:94:8a:1b:fb: 12:cd:f9:b7:34:1b:03:27:c2:4f:7a:a6:89:b0:21: f5:35:2a:da:2b:79:75:32:8f:47:8d:f7:65:54:d2: 9d:6a:a8:43:fc:7f:ce:49:00:c5:d4:04:41:21:f4: 6d:a4:c1:d1:93:56:8a:d1:05:06:bd:dc:ad:bb:99: 00:51:c5:ea:0d:5b:47:7f:76:35:9d:dd:7e:94:08: d6:94:fb:32:19:1a:7b:6c:84:a5:2c:c0:bb:82:19: 19:71:72:40:09:e8:38:f7:56:89:fe:8d:25:93:da: 49:ff:2f:22:97:79:74:c7:1d:55:57:c0:7e:9f:a3: 57:54:65:36:b0:37:94:c0:b4:62:90:18:36:c6:29: 9b:47:d4:b3:9d:55:e4:fe:91:76:32:cb:e3:dd:99: 15:69:c2:34:8a:e5:f0:b6:bf:f2:ca:de:fa:61:28: a7:dd:f4:d7:5d:f7:7e:dc:9b:e4:df:bb:4e:22:ca: 1e:38:a5:4f:3a:5b:19:af:28:e1:a3:4d:59:5c:d0: d9:60:7e:45:09:9a:35:27:e1:0b:00:9b:a8:1f:57: 21:44:53:68:f9:74:c7:08:b0:aa:81:9c:d9:47:83: 04:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D4:1E:58:9A:D8:98:B4:66:5B:DD:25:C5:C4:0D:AC:55:CC:E6:E8 X509v3 Authority Key Identifier: keyid:00:A6:40:6F:2F:0A:94:7B:EB:51:41:36:70:DF:72:1B:AD:75:BA:C4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF0B6/075938D6BF8811ECB1E25A30C4F9AE02/AKZAby8KlHvrUUE2cN9yG611usQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AKZAby8KlHvrUUE2cN9yG611usQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF0B6/075938D6BF8811ECB1E25A30C4F9AE02/FB1D01D4BF8B11ECB9B8D351C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.104.0/24 Signature Algorithm: sha256WithRSAEncryption ca:55:ea:4c:0d:41:34:4d:ab:7e:08:4e:63:a0:cc:bf:3d:11: 98:85:45:64:e4:5b:6b:6a:06:e6:8e:e7:32:6a:f2:b0:5e:9d: eb:6f:1f:05:36:50:3a:87:1c:d0:74:4c:6c:26:75:3c:e6:3b: 64:51:17:37:2b:c2:d3:02:4d:79:af:3e:3e:6b:ce:e3:43:c6: d1:88:17:1e:ce:6f:c1:30:fd:e1:e8:a1:bd:30:b5:41:e3:f1: a5:bf:38:1f:33:5e:5f:7e:80:bb:8d:c8:a2:ab:75:87:ce:db: 2a:60:52:43:fa:d2:8e:38:7c:f2:3e:fc:95:1c:98:a5:e8:a9: 81:17:64:00:c7:b9:67:a2:46:21:08:d2:26:5a:70:91:3c:57: e9:c2:2a:16:c1:2d:08:0c:c9:82:04:e0:75:2e:a0:e5:c8:3e: 02:a5:b0:06:3e:be:34:9c:c0:22:0c:3c:10:0b:e9:1c:47:b2: f9:10:55:b1:6d:50:a7:cd:21:d4:0f:5c:c6:03:d7:79:15:ce: 71:dd:03:05:e3:01:ad:90:07:77:14:0c:52:b1:1d:9f:97:a4: 34:4c:e0:f6:3a:12:ab:86:72:93:72:52:47:75:73:f5:0b:a9: ee:5d:28:bb:0c:c9:0c:fd:26:5a:8a:23:27:69:19:0b:48:51: d5:a5:2c:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAlswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYwQjYxMTAvBgNVBAUTKDAwQTY0MDZGMkYwQTk0N0JFQjUxNDEzNjcwREY3MjFC QUQ3NUJBQzQwHhcNMjQwMzA3MDMyNTM1WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU5MzNhZi0wMWUzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRxkFKoWwPnduFmnvxZdVujVabe0aqhfXZSKG/sSzfm3NBsDJ8JPeqaJsCH1 NSraK3l1Mo9HjfdlVNKdaqhD/H/OSQDF1ARBIfRtpMHRk1aK0QUGvdytu5kAUcXq DVtHf3Y1nd1+lAjWlPsyGRp7bISlLMC7ghkZcXJACeg491aJ/o0lk9pJ/y8il3l0 xx1VV8B+n6NXVGU2sDeUwLRikBg2ximbR9SznVXk/pF2Msvj3ZkVacI0iuXwtr/y yt76YSin3fTXXfd+3Jvk37tOIsoeOKVPOlsZryjho01ZXNDZYH5FCZo1J+ELAJuo H1chRFNo+XTHCLCqgZzZR4MEgQIDAQABo4IClTCCApEwHQYDVR0OBBYEFIzUHlia 2Ji0ZlvdJcXEDaxVzOboMB8GA1UdIwQYMBaAFACmQG8vCpR761FBNnDfchutdbrE MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjBCNi8wNzU5MzhENkJG ODgxMUVDQjFFMjVBMzBDNEY5QUUwMi9BS1pBYnk4S2xIdnJVVUUyY045eUc2MTF1 c1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FLWkFieThLbEh2clVVRTJjTjl5RzYxMXVzUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYwQjYvMDc1OTM4RDZCRjg4MTFFQ0IxRTI1QTMwQzRGOUFFMDIvRkIxRDAxRDRC RjhCMTFFQ0I5QjhEMzUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnomgwDQYJKoZIhvcNAQELBQADggEBAMpV6kwNQTRNq34I TmOgzL89EZiFRWTkW2tqBuaO5zJq8rBenetvHwU2UDqHHNB0TGwmdTzmO2RRFzcr wtMCTXmvPj5rzuNDxtGIFx7Ob8Ew/eHoob0wtUHj8aW/OB8zXl9+gLuNyKKrdYfO 2ypgUkP60o44fPI+/JUcmKXoqYEXZADHuWeiRiEI0iZacJE8V+nCKhbBLQgMyYIE 4HUuoOXIPgKlsAY+vjScwCIMPBAL6RxHsvkQVbFtUKfNIdQPXMYD13kVznHdAwXj Aa2QB3cUDFKxHZ+XpDRM4PY6EquGcpNyUkd1c/ULqe5dKLsMyQz9JlqKIydpGQtI UdWlLKU= -----END CERTIFICATE-----Generated at Fri May 17 04:26:40 2024 by rpki-client on console-fra.rpki-client.org