$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/B412DC700EC011EE8C18290AC4F9AE02.roa File: B412DC700EC011EE8C18290AC4F9AE02.roa (raw, json) Hash identifier: sxSZPL5S8nU+23XN9GlBlXsqwXqLVIoquBXDfOxI/wY= Subject key identifier: D2:ED:9D:8F:10:85:F2:A8:F6:62:AB:45:CC:29:3B:57:2C:E4:31:61 Certificate issuer: /CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Certificate serial: 97 Authority key identifier: 58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/B412DC700EC011EE8C18290AC4F9AE02.roa Signing time: Thu 07 Dec 2023 05:36:15 +0000 ROA not before: Thu 07 Dec 2023 05:36:15 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 54600 IP address blocks: 103.104.172.0/22 maxlen: 22 103.116.20.0/22 maxlen: 22 103.124.192.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 06:35:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 151 (0x97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF2CD/serialNumber=5874520DA781F780DBD710D42C841C13A7AD1757 Validity Not Before: Dec 7 05:36:15 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=657159cf-3856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:b3:e0:ea:95:73:21:66:e4:cf:85:b2:00:ab: 57:4b:f2:ab:0c:68:6a:41:e2:11:ae:f9:d4:e1:04: c6:f2:5e:b1:db:21:64:c5:4b:05:55:83:3b:7c:25: 02:49:65:92:74:7e:f3:6c:5a:d8:bf:b4:f5:12:af: 9e:11:f9:ed:bd:29:6a:8a:ac:df:7c:a6:0b:82:9d: e2:8d:36:2d:e8:f0:26:ad:98:cf:aa:69:8f:46:b1: c1:e9:6a:ce:2b:3d:db:ff:24:dc:22:c5:51:14:ad: ea:0a:9d:a2:32:9e:65:31:88:93:5f:13:7f:e2:e2: d1:b6:9f:91:35:6d:f2:f4:66:75:59:ad:fd:99:d4: a5:0e:25:0a:58:7a:f5:69:62:2f:3e:92:9d:54:cc: 92:ed:b4:78:b8:b1:37:ca:6c:7a:04:6b:6a:a9:bc: 7f:c7:66:13:aa:4d:cd:fd:aa:77:2c:b3:89:61:b3: 38:39:9e:32:3f:c8:9b:6c:12:a5:dc:ff:e5:e8:c5: e4:1e:fb:3a:5e:df:39:48:b3:5e:a0:42:c0:04:c2: 84:3d:53:b8:b9:f8:aa:ae:11:79:dc:9a:37:1f:7c: ea:b5:0a:46:55:6b:9c:85:b5:e7:5f:77:b2:18:34: 12:4d:63:8e:9b:0d:43:f1:18:c3:b0:23:4b:9c:2d: 41:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:ED:9D:8F:10:85:F2:A8:F6:62:AB:45:CC:29:3B:57:2C:E4:31:61 X509v3 Authority Key Identifier: keyid:58:74:52:0D:A7:81:F7:80:DB:D7:10:D4:2C:84:1C:13:A7:AD:17:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/WHRSDaeB94Db1xDULIQcE6etF1c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/WHRSDaeB94Db1xDULIQcE6etF1c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF2CD/4FCBAC00D44C11ED86271582C4F9AE02/B412DC700EC011EE8C18290AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.104.172.0/22 103.116.20.0/22 103.124.192.0/22 Signature Algorithm: sha256WithRSAEncryption 8f:5b:3d:78:1f:ed:29:78:89:94:6d:fc:85:40:2c:75:06:e6: ea:6c:01:4e:0a:c4:a5:11:7c:0e:24:c7:2a:43:61:08:dc:d8: 4b:de:15:6e:0e:c5:95:c8:60:20:af:3f:07:03:90:80:5f:88: 1a:37:98:c4:db:f8:e5:6a:49:59:6d:68:bc:30:74:21:7b:d7: 55:f7:31:29:1d:53:db:53:8d:53:26:16:3d:bc:fc:5f:7c:64: af:a9:fe:8f:2d:45:11:50:bd:5d:61:1b:8f:35:2d:55:35:d8: 67:67:89:ea:57:64:0d:56:a3:49:28:e3:a4:a9:8a:0c:55:91: 76:33:b2:4d:72:80:4b:65:3f:7e:da:be:7b:20:22:bd:91:19: 28:2d:53:56:32:7a:a9:d6:ff:91:3c:45:d8:3d:3f:b7:09:fc: 88:76:74:04:bf:fa:82:5f:04:92:97:66:71:7a:d1:48:fb:79: 69:c5:96:1f:dd:6b:5f:7a:d6:ab:c1:da:74:3c:b8:bc:8b:f1: 6f:be:1d:73:28:f8:23:9b:51:ad:77:52:ff:36:ea:f1:20:5e: fa:74:8a:b8:cb:1b:39:0d:a0:12:cf:ed:88:24:28:40:26:26: 18:31:c5:0b:28:fc:47:0c:70:32:2e:cf:e5:37:1e:b6:4b:43: f9:1f:cd:93 -----BEGIN CERTIFICATE----- MIIFfTCCBGWgAwIBAgICAJcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUYyQ0QxMTAvBgNVBAUTKDU4NzQ1MjBEQTc4MUY3ODBEQkQ3MTBENDJDODQxQzEz QTdBRDE3NTcwHhcNMjMxMjA3MDUzNjE1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTcxNTljZi0zODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3rPg6pVzIWbkz4WyAKtXS/KrDGhqQeIRrvnU4QTG8l6x2yFkxUsFVYM7fCUC SWWSdH7zbFrYv7T1Eq+eEfntvSlqiqzffKYLgp3ijTYt6PAmrZjPqmmPRrHB6WrO Kz3b/yTcIsVRFK3qCp2iMp5lMYiTXxN/4uLRtp+RNW3y9GZ1Wa39mdSlDiUKWHr1 aWIvPpKdVMyS7bR4uLE3ymx6BGtqqbx/x2YTqk3N/ap3LLOJYbM4OZ4yP8ibbBKl 3P/l6MXkHvs6Xt85SLNeoELABMKEPVO4ufiqrhF53Jo3H3zqtQpGVWuchbXnX3ey GDQSTWOOmw1D8RjDsCNLnC1BkwIDAQABo4ICoTCCAp0wHQYDVR0OBBYEFNLtnY8Q hfKo9mKrRcwpO1cs5DFhMB8GA1UdIwQYMBaAFFh0Ug2ngfeA29cQ1CyEHBOnrRdX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjJDRC80RkNCQUMwMEQ0 NEMxMUVEODYyNzE1ODJDNEY5QUUwMi9XSFJTRGFlQjk0RGIxeERVTElRY0U2ZXRG MWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1dIUlNEYWVCOTREYjF4RFVMSVFjRTZldEYxYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUYyQ0QvNEZDQkFDMDBENDRDMTFFRDg2MjcxNTgyQzRGOUFFMDIvQjQxMkRDNzAw RUMwMTFFRThDMTgyOTBBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8E HDAaMBgEAgABMBIDBAJnaKwDBAJndBQDBAJnfMAwDQYJKoZIhvcNAQELBQADggEB AI9bPXgf7Sl4iZRt/IVALHUG5upsAU4KxKURfA4kxypDYQjc2EveFW4OxZXIYCCv PwcDkIBfiBo3mMTb+OVqSVltaLwwdCF711X3MSkdU9tTjVMmFj28/F98ZK+p/o8t RRFQvV1hG481LVU12GdniepXZA1Wo0ko46SpigxVkXYzsk1ygEtlP37avnsgIr2R GSgtU1YyeqnW/5E8Rdg9P7cJ/Ih2dAS/+oJfBJKXZnF60Uj7eWnFlh/da1961qvB 2nQ8uLyL8W++HXMo+CObUa13Uv826vEgXvp0irjLGzkNoBLP7YgkKEAmJhgxxQso /EcMcDIuz+U3HrZLQ/kfzZM= -----END CERTIFICATE-----Generated at Wed May 1 07:23:56 2024 by rpki-client on console-ams.rpki-client.org