$ rpki-client -vvf rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/BCD0F6B0A0FF11EC924D4461C4F9AE02.roa File: BCD0F6B0A0FF11EC924D4461C4F9AE02.roa (raw, json) Hash identifier: CUkiAWG5K4Q1HdHEYFRgbc4bpAS6g17dNYGvM1oOAQY= Subject key identifier: EB:CF:FC:FB:51:76:E0:51:0A:1C:B0:6C:92:AA:56:29:59:E2:89:05 Certificate issuer: /CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Certificate serial: 02CB Authority key identifier: 3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/BCD0F6B0A0FF11EC924D4461C4F9AE02.roa Signing time: Tue 07 May 2024 03:36:19 +0000 ROA not before: Tue 07 May 2024 03:36:19 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 141732 IP address blocks: 103.162.234.0/23 maxlen: 24 2407:1e40::/32 maxlen: 32 2407:1e40:5::/48 maxlen: 48 2407:1e40:200::/48 maxlen: 48 2407:1e40:300::/48 maxlen: 48 2407:1e40:400::/48 maxlen: 48 2407:1e40:500::/48 maxlen: 48 2407:1e40:600::/48 maxlen: 48 2407:1e40:fce::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 01 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 715 (0x2cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B10B9/serialNumber=3D77B586A3F682C563B64265262891D4DA46A7A8 Validity Not Before: May 7 03:36:19 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6639a1b3-5db4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0e:ea:a2:1e:e0:63:b6:64:b8:fa:f2:4d:65: f5:03:c2:a5:e2:4d:e2:da:ad:56:43:d5:76:b8:b7: 70:97:44:b6:07:1b:04:f9:a5:e5:d9:37:3b:4e:9f: 4a:c3:47:da:88:d9:85:97:75:d8:cc:34:99:56:8d: 6e:12:ad:c4:e6:d0:d5:94:0c:b0:65:75:e6:1f:74: aa:63:61:bb:e9:01:8c:95:c1:13:c6:a0:34:d3:ee: f0:36:7b:5a:1e:98:11:40:e6:1b:8f:da:fb:e2:75: 95:3b:bb:1d:9d:0f:b4:28:e0:a6:28:e7:40:ce:94: 93:7b:db:a5:f8:70:13:25:86:68:fc:6a:72:2b:5c: 88:25:63:6f:d2:50:8a:11:ce:16:b5:4b:58:91:95: 2a:fe:0f:15:f8:69:9a:a3:03:4d:00:0a:31:99:be: 59:ee:b8:ea:b9:5a:46:6c:7f:45:5e:d0:7f:15:77: ff:40:e4:11:f2:77:94:14:2a:ee:1f:fc:3b:d1:94: d4:e3:85:36:90:8d:ba:74:8f:70:c4:b7:7d:b2:79: 26:b7:50:46:56:18:b1:da:87:68:a1:dc:0c:25:f4: e7:c4:66:ae:19:da:12:50:b1:69:a7:f9:f7:48:af: a0:42:9f:54:98:07:67:6a:41:ed:f6:27:ea:f1:22: 23:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:CF:FC:FB:51:76:E0:51:0A:1C:B0:6C:92:AA:56:29:59:E2:89:05 X509v3 Authority Key Identifier: keyid:3D:77:B5:86:A3:F6:82:C5:63:B6:42:65:26:28:91:D4:DA:46:A7:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/PXe1hqP2gsVjtkJlJiiR1NpGp6g.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PXe1hqP2gsVjtkJlJiiR1NpGp6g.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B10B9/D13BEAAAA0FB11ECA5D1DF5BC4F9AE02/BCD0F6B0A0FF11EC924D4461C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.162.234.0/23 IPv6: 2407:1e40::/32 Signature Algorithm: sha256WithRSAEncryption 1c:ba:ce:0a:1c:8f:d0:e1:22:f9:5b:8d:d9:cc:ae:b7:8f:28: 4c:d9:95:c6:f6:36:76:40:00:57:b1:4e:20:ff:ac:46:e4:03: 6a:fa:00:31:81:cb:63:1f:7c:aa:39:e6:90:c4:32:d6:88:45: 51:c4:85:29:94:a3:1b:5c:12:5e:dc:5a:7d:06:55:0e:bd:48: 01:a4:6c:87:d0:97:68:c7:c6:4e:a7:9f:17:df:71:85:40:ae: 2a:d1:7d:f8:30:67:d1:64:15:a7:91:06:fc:96:5a:67:35:ab: 49:1a:9a:e2:74:f4:88:a3:4d:f7:a4:41:62:d4:40:39:83:07: 38:e6:0b:a0:0b:6c:41:2c:ea:db:c1:c8:20:0d:1d:ca:77:9e: 18:84:f0:fe:30:75:89:9b:50:13:60:53:5b:29:b4:5d:49:7c: 37:a8:71:56:0c:60:5b:1d:da:8a:12:fd:ac:97:a3:ab:89:be: ee:e7:18:58:58:88:35:37:46:0f:65:67:30:68:73:34:c9:51: 16:5c:5f:4a:33:38:fd:fd:f5:75:67:95:76:14:f3:92:23:e5: 4a:34:00:c7:10:4f:5f:b8:82:12:85:f3:12:ce:11:1f:00:a6: 9a:98:f9:f9:5d:1e:cf:c9:40:2e:68:a3:70:91:2c:bf:05:b7: bb:7b:6d:b6 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAsswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjEwQjkxMTAvBgNVBAUTKDNENzdCNTg2QTNGNjgyQzU2M0I2NDI2NTI2Mjg5MUQ0 REE0NkE3QTgwHhcNMjQwNTA3MDMzNjE5WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjM5YTFiMy01ZGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3w7qoh7gY7ZkuPryTWX1A8Kl4k3i2q1WQ9V2uLdwl0S2BxsE+aXl2Tc7Tp9K w0faiNmFl3XYzDSZVo1uEq3E5tDVlAywZXXmH3SqY2G76QGMlcETxqA00+7wNnta HpgRQOYbj9r74nWVO7sdnQ+0KOCmKOdAzpSTe9ul+HATJYZo/GpyK1yIJWNv0lCK Ec4WtUtYkZUq/g8V+GmaowNNAAoxmb5Z7rjquVpGbH9FXtB/FXf/QOQR8neUFCru H/w70ZTU44U2kI26dI9wxLd9snkmt1BGVhix2odoodwMJfTnxGauGdoSULFpp/n3 SK+gQp9UmAdnakHt9ifq8SIjhQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFOvP/PtR duBRChywbJKqVilZ4okFMB8GA1UdIwQYMBaAFD13tYaj9oLFY7ZCZSYokdTaRqeo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMTBCOS9EMTNCRUFBQUEw RkIxMUVDQTVEMURGNUJDNEY5QUUwMi9QWGUxaHFQMmdzVmp0a0psSmlpUjFOcEdw NmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1BYZTFocVAyZ3NWanRrSmxKaWlSMU5wR3A2Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjEwQjkvRDEzQkVBQUFBMEZCMTFFQ0E1RDFERjVCQzRGOUFFMDIvQkNEMEY2QjBB MEZGMTFFQzkyNEQ0NDYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnouowDQQCAAIwBwMFACQHHkAwDQYJKoZIhvcNAQELBQAD ggEBABy6zgocj9DhIvlbjdnMrrePKEzZlcb2NnZAAFexTiD/rEbkA2r6ADGBy2Mf fKo55pDEMtaIRVHEhSmUoxtcEl7cWn0GVQ69SAGkbIfQl2jHxk6nnxffcYVArirR ffgwZ9FkFaeRBvyWWmc1q0kamuJ09IijTfekQWLUQDmDBzjmC6ALbEEs6tvByCAN Hcp3nhiE8P4wdYmbUBNgU1sptF1JfDeocVYMYFsd2ooS/ayXo6uJvu7nGFhYiDU3 Rg9lZzBoczTJURZcX0ozOP399XVnlXYU85Ij5Uo0AMcQT1+4ghKF8xLOER8AppqY +fldHs/JQC5oo3CRLL8Ft7t7bbY= -----END CERTIFICATE-----Generated at Sat May 25 04:35:23 2024 by rpki-client on console-ams.rpki-client.org