$ rpki-client -vvf rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/B6C2A6FE4D2711ED8D49D62FC4F9AE02.roa File: B6C2A6FE4D2711ED8D49D62FC4F9AE02.roa (raw, json) Hash identifier: cGKzPRi4qpFTDp9AsYpCH0KUskozh5GY9aPuYwuAisU= Subject key identifier: 8D:67:52:E2:86:3E:71:F9:98:0C:86:82:AF:5F:EC:39:09:85:C5:0D Certificate issuer: /CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Certificate serial: DE Authority key identifier: DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/B6C2A6FE4D2711ED8D49D62FC4F9AE02.roa Signing time: Wed 13 Dec 2023 04:35:42 +0000 ROA not before: Wed 13 Dec 2023 04:35:42 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 150372 IP address blocks: 103.19.122.0/24 maxlen: 24 103.19.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 05:21:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B569E/serialNumber=DCB839319FD52EAD9FCB97782984FD1FD4492C17 Validity Not Before: Dec 13 04:35:42 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6579349e-c5d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:f0:b7:13:97:55:0e:c1:24:96:f9:74:05:0e: 3f:0a:f9:e1:84:b7:ff:87:6e:af:8e:e9:31:7b:55: 20:01:f8:33:95:80:47:8f:9c:05:4c:ab:7e:27:12: 28:95:f8:f5:3b:73:7a:5e:d0:e5:b0:98:d6:ed:4f: f1:db:ab:b8:8b:74:30:f2:4c:64:1d:86:cf:57:63: ac:26:59:c5:a6:b6:b3:fa:7a:06:01:37:ca:a2:08: 7f:bc:28:3d:b2:94:7d:9c:ae:69:c8:08:7d:fa:51: 22:8d:1f:3a:86:c1:f5:40:42:14:a3:67:43:c1:13: 9f:15:1f:2e:9a:23:4d:d4:40:b5:56:f3:21:12:e2: ae:c2:5e:1d:a9:cc:ea:77:a1:ad:1e:9c:bc:15:00: 85:40:0f:d7:97:2e:71:0c:f5:90:24:2d:b0:27:ab: 37:86:64:00:d8:89:16:2a:ad:13:bf:b3:5b:d6:36: 6a:d4:83:c8:02:08:ac:d4:c2:50:12:56:57:c3:ac: 7c:c1:2e:57:95:b1:ba:3d:4d:39:90:c2:8f:36:b3: a3:42:fa:f8:84:0e:c8:8f:55:4b:c9:09:39:75:59: ea:49:17:84:a9:95:c3:da:32:ab:5a:eb:0b:27:ed: e8:ea:91:05:9d:be:98:7f:05:eb:3a:6f:42:94:b9: e8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:67:52:E2:86:3E:71:F9:98:0C:86:82:AF:5F:EC:39:09:85:C5:0D X509v3 Authority Key Identifier: keyid:DC:B8:39:31:9F:D5:2E:AD:9F:CB:97:78:29:84:FD:1F:D4:49:2C:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3Lg5MZ_VLq2fy5d4KYT9H9RJLBc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B569E/2525C7C84D2511EDA6DDD22EC4F9AE02/B6C2A6FE4D2711ED8D49D62FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.19.122.0/23 Signature Algorithm: sha256WithRSAEncryption 58:b7:97:c1:78:12:e0:e3:fc:a9:9d:8d:10:18:6a:40:0b:d5: a3:29:a7:53:8c:d0:bd:30:6d:23:60:57:b5:bd:ce:15:48:a9: 72:ab:2f:52:7b:83:df:d3:d6:70:6f:9f:af:3f:60:00:65:35: b3:b0:5f:b3:06:c5:5c:0f:3f:bf:05:8b:ee:5f:4d:eb:03:85: 54:67:af:ed:81:b6:e3:17:d5:12:0f:c5:c5:52:5f:44:68:3e: 93:e7:f7:2a:76:6e:0c:68:3e:10:b4:65:da:a6:82:e8:01:12: 9f:3f:2a:d1:4d:51:50:d4:a6:b5:1c:64:e9:0d:cd:dc:42:29: 36:7a:f8:73:a4:3e:38:7d:cd:bb:28:b4:90:af:67:bd:ca:ee: 81:27:a4:da:64:db:1e:24:94:42:a2:99:42:7c:75:1c:47:1c: 08:64:45:e2:a8:17:9d:b2:51:d0:d3:90:db:e5:f3:73:23:6f: 9a:48:53:9a:7d:e3:52:2c:d0:f4:29:3a:c5:6a:d8:d2:7a:46: 77:92:7d:a0:9a:c6:1a:db:07:84:ce:37:ca:57:44:30:43:dd: 1e:e7:d0:88:6a:9d:92:38:c9:b2:cb:f5:a9:73:a8:ef:3b:2f: a8:70:ae:6c:ac:83:79:b0:10:eb:e4:f6:29:bf:1f:4d:7a:e8: fd:19:8a:2e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU2OUUxMTAvBgNVBAUTKERDQjgzOTMxOUZENTJFQUQ5RkNCOTc3ODI5ODRGRDFG RDQ0OTJDMTcwHhcNMjMxMjEzMDQzNTQyWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc5MzQ5ZS1jNWQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6PC3E5dVDsEklvl0BQ4/CvnhhLf/h26vjukxe1UgAfgzlYBHj5wFTKt+JxIo lfj1O3N6XtDlsJjW7U/x26u4i3Qw8kxkHYbPV2OsJlnFpraz+noGATfKogh/vCg9 spR9nK5pyAh9+lEijR86hsH1QEIUo2dDwROfFR8umiNN1EC1VvMhEuKuwl4dqczq d6GtHpy8FQCFQA/Xly5xDPWQJC2wJ6s3hmQA2IkWKq0Tv7Nb1jZq1IPIAgis1MJQ ElZXw6x8wS5XlbG6PU05kMKPNrOjQvr4hA7Ij1VLyQk5dVnqSReEqZXD2jKrWusL J+3o6pEFnb6YfwXrOm9ClLnoBwIDAQABo4IClTCCApEwHQYDVR0OBBYEFI1nUuKG PnH5mAyGgq9f7DkJhcUNMB8GA1UdIwQYMBaAFNy4OTGf1S6tn8uXeCmE/R/USSwX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTY5RS8yNTI1QzdDODRE MjUxMUVEQTZEREQyMkVDNEY5QUUwMi8zTGc1TVpfVkxxMmZ5NWQ0S1lUOUg5UkpM QmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNMZzVNWl9WTHEyZnk1ZDRLWVQ5SDlSSkxCYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU2OUUvMjUyNUM3Qzg0RDI1MTFFREE2REREMjJFQzRGOUFFMDIvQjZDMkE2RkU0 RDI3MTFFRDhENDlENjJGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnE3owDQYJKoZIhvcNAQELBQADggEBAFi3l8F4EuDj/Kmd jRAYakAL1aMpp1OM0L0wbSNgV7W9zhVIqXKrL1J7g9/T1nBvn68/YABlNbOwX7MG xVwPP78Fi+5fTesDhVRnr+2BtuMX1RIPxcVSX0RoPpPn9yp2bgxoPhC0ZdqmgugB Ep8/KtFNUVDUprUcZOkNzdxCKTZ6+HOkPjh9zbsotJCvZ73K7oEnpNpk2x4klEKi mUJ8dRxHHAhkReKoF52yUdDTkNvl83Mjb5pIU5p941Is0PQpOsVq2NJ6RneSfaCa xhrbB4TON8pXRDBD3R7n0IhqnZI4ybLL9alzqO87L6hwrmysg3mwEOvk9im/H016 6P0Zii4= -----END CERTIFICATE-----Generated at Wed May 29 06:01:36 2024 by rpki-client on console-fra.rpki-client.org