$ rpki-client -vvf rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/AD5EE696C0A711EE97A2E984C4F9AE02.roa File: AD5EE696C0A711EE97A2E984C4F9AE02.roa (raw, json) Hash identifier: FcWJi7DlN7uMWlMUmB7LQJ+WXKlsCTtubCazxvuIgKk= Subject key identifier: 43:D2:EA:5F:DD:65:CA:21:FB:E8:66:06:14:9D:B3:A5:87:26:08:01 Certificate issuer: /CN=A91B74E8/serialNumber=6C080A2BA7DAAC95D4D93488A900151AE3A59DF8 Certificate serial: 03B0 Authority key identifier: 6C:08:0A:2B:A7:DA:AC:95:D4:D9:34:88:A9:00:15:1A:E3:A5:9D:F8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/AD5EE696C0A711EE97A2E984C4F9AE02.roa Signing time: Thu 15 Feb 2024 02:14:31 +0000 ROA not before: Thu 15 Feb 2024 02:14:31 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 139604 IP address blocks: 103.176.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.crl rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:36:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 944 (0x3b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B74E8/serialNumber=6C080A2BA7DAAC95D4D93488A900151AE3A59DF8 Validity Not Before: Feb 15 02:14:31 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65cd7387-44c3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:ba:96:44:b4:29:1a:8e:a7:5e:33:e9:33:7a: f6:cc:ce:25:40:3c:06:7a:d6:01:92:ad:d0:b0:35: 16:f1:01:65:42:98:dd:34:c1:df:85:5f:c1:8d:af: 3e:b0:25:17:17:28:d1:e1:d9:0d:5c:e6:4c:14:a9: 32:82:ce:da:e5:80:d1:ca:79:a1:3c:f1:37:9d:e1: f9:ba:15:0e:e9:58:e9:54:19:75:aa:a7:86:98:e2: e0:f2:a5:68:3c:44:34:20:ce:a2:3e:c0:82:aa:25: 30:cb:e4:50:b8:ee:73:81:7c:fd:d5:3a:ef:06:30: fd:5d:20:78:e5:27:84:bf:61:b6:53:fe:f3:0b:73: 00:2a:c7:5e:5d:5b:36:31:7a:6d:be:4e:ed:b2:a9: 9d:72:95:ae:8f:ec:1d:6b:09:74:66:c9:9e:62:07: 3c:5d:5b:f2:65:0f:d7:35:64:43:dd:23:53:1d:eb: 4b:96:42:f9:a3:a7:9a:97:77:21:0a:e5:65:d2:b6: a8:88:e6:cf:94:97:cf:57:6d:7b:c6:be:3b:56:ee: 25:f6:42:31:f7:c7:dc:bc:b3:a9:f2:42:56:38:49: 2c:c2:a4:43:2d:c1:8c:d5:c5:9e:30:c7:7d:9d:95: 5a:e0:cc:ab:8d:75:d4:3b:18:76:b0:90:01:5c:ea: 57:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:D2:EA:5F:DD:65:CA:21:FB:E8:66:06:14:9D:B3:A5:87:26:08:01 X509v3 Authority Key Identifier: keyid:6C:08:0A:2B:A7:DA:AC:95:D4:D9:34:88:A9:00:15:1A:E3:A5:9D:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/bAgKK6farJXU2TSIqQAVGuOlnfg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bAgKK6farJXU2TSIqQAVGuOlnfg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B74E8/47F6201243EA11EC84AB6347C4F9AE02/AD5EE696C0A711EE97A2E984C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.176.2.0/24 Signature Algorithm: sha256WithRSAEncryption 01:cd:5d:7a:a0:e7:58:d5:ce:5f:ff:56:e2:14:af:3e:02:d3: 34:b3:1d:de:9e:20:d9:5e:bd:19:c2:f5:af:48:22:3b:b9:9f: 12:a9:5d:7f:6a:6f:01:07:c7:e5:3a:d4:18:7d:f5:e3:6a:92: 98:9f:4d:d0:c6:7b:48:50:a1:cf:6c:0e:96:39:2e:08:17:ad: 5e:a4:22:2f:83:05:a4:ab:8a:a8:af:ee:f2:a8:39:3d:a5:95: c0:4d:5a:ed:5c:4b:6f:72:31:1e:02:ae:88:aa:61:3b:3b:84: eb:7d:20:98:5e:01:78:c1:24:75:42:35:eb:42:cb:c8:f4:29: 24:8b:e0:1a:9b:56:1d:6a:86:e9:2b:65:97:db:04:8c:67:4c: 82:13:5c:ff:38:96:04:96:1c:d7:cd:34:9f:ff:dc:ff:89:c7: b2:5e:48:59:f7:58:f6:b4:e8:8b:20:e4:9e:8a:03:ec:01:f1: 7f:cb:d2:58:78:20:37:e9:84:c6:f0:75:9a:9e:d4:91:14:c1: b1:77:ae:9e:7b:54:1e:90:88:b2:2a:ee:2b:60:d0:de:ce:e2: a3:07:45:a9:06:21:c6:c4:9d:f1:e7:9e:be:bc:09:2f:24:d3: 2b:88:f6:fe:87:75:58:93:40:36:c8:45:bb:9a:2f:b6:8e:d6: 7b:40:62:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA7AwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Qjc0RTgxMTAvBgNVBAUTKDZDMDgwQTJCQTdEQUFDOTVENEQ5MzQ4OEE5MDAxNTFB RTNBNTlERjgwHhcNMjQwMjE1MDIxNDMxWhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNkNzM4Ny00NGMzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAorqWRLQpGo6nXjPpM3r2zM4lQDwGetYBkq3QsDUW8QFlQpjdNMHfhV/Bja8+ sCUXFyjR4dkNXOZMFKkygs7a5YDRynmhPPE3neH5uhUO6VjpVBl1qqeGmOLg8qVo PEQ0IM6iPsCCqiUwy+RQuO5zgXz91TrvBjD9XSB45SeEv2G2U/7zC3MAKsdeXVs2 MXptvk7tsqmdcpWuj+wdawl0ZsmeYgc8XVvyZQ/XNWRD3SNTHetLlkL5o6eal3ch CuVl0raoiObPlJfPV217xr47Vu4l9kIx98fcvLOp8kJWOEkswqRDLcGM1cWeMMd9 nZVa4MyrjXXUOxh2sJABXOpXIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEPS6l/d Zcoh++hmBhSds6WHJggBMB8GA1UdIwQYMBaAFGwICiun2qyV1Nk0iKkAFRrjpZ34 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNzRFOC80N0Y2MjAxMjQz RUExMUVDODRBQjYzNDdDNEY5QUUwMi9iQWdLSzZmYXJKWFUyVFNJcVFBVkd1T2xu ZmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JBZ0tLNmZhckpYVTJUU0lxUUFWR3VPbG5mZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Qjc0RTgvNDdGNjIwMTI0M0VBMTFFQzg0QUI2MzQ3QzRGOUFFMDIvQUQ1RUU2OTZD MEE3MTFFRTk3QTJFOTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnsAIwDQYJKoZIhvcNAQELBQADggEBAAHNXXqg51jVzl// VuIUrz4C0zSzHd6eINlevRnC9a9IIju5nxKpXX9qbwEHx+U61Bh99eNqkpifTdDG e0hQoc9sDpY5LggXrV6kIi+DBaSriqiv7vKoOT2llcBNWu1cS29yMR4CroiqYTs7 hOt9IJheAXjBJHVCNetCy8j0KSSL4BqbVh1qhukrZZfbBIxnTIITXP84lgSWHNfN NJ//3P+Jx7JeSFn3WPa06Isg5J6KA+wB8X/L0lh4IDfphMbwdZqe1JEUwbF3rp57 VB6QiLIq7itg0N7O4qMHRakGIcbEnfHnnr68CS8k0yuI9v6HdViTQDbIRbuaL7aO 1ntAYkc= -----END CERTIFICATE-----Generated at Fri May 17 03:17:00 2024 by rpki-client on console-fra.rpki-client.org