$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/713001A0A35811EC88C42869C4F9AE02.roa File: 713001A0A35811EC88C42869C4F9AE02.roa (raw, json) Hash identifier: SzmhUiOKFGJoKuBX56C52miBzPamnKu8Ji/qVMaBki8= Subject key identifier: AB:CD:11:0D:41:E2:EE:FC:5D:4E:7E:CA:B4:19:1C:9D:E6:6E:3B:97 Certificate issuer: /CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Certificate serial: 02B9 Authority key identifier: 51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/713001A0A35811EC88C42869C4F9AE02.roa Signing time: Wed 17 Apr 2024 03:36:08 +0000 ROA not before: Wed 17 Apr 2024 03:36:08 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149645 IP address blocks: 103.183.192.0/23 maxlen: 23 103.183.192.0/24 maxlen: 24 103.183.193.0/24 maxlen: 24 2400:6360::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 697 (0x2b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA8F5/serialNumber=51E094C057BEDA70A4C2B20091928DE7264B46C5 Validity Not Before: Apr 17 03:36:08 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661f43a7-4e32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:c9:5e:fd:07:db:24:c8:c0:65:e7:69:6c:91: b4:e2:9b:80:55:1c:22:6e:2b:3c:0a:36:2c:b7:87: f3:7a:cc:59:05:1e:dd:79:ce:70:ed:89:bb:4a:12: bd:62:dd:61:54:d2:c7:be:74:83:d7:20:f3:31:f1: 20:0a:8a:9e:ad:db:96:8d:02:29:0f:fc:0e:56:59: 82:67:1a:c7:bc:4a:cf:81:6f:2f:8a:f3:10:64:4e: 35:19:a9:1d:6d:0f:78:dd:ef:c9:61:22:9c:01:5a: 4e:fb:10:6f:40:1e:31:41:34:e6:33:fc:98:33:09: 7b:1b:4e:5a:be:a7:81:e1:b2:dc:07:35:aa:b7:61: f1:56:6b:b8:68:00:df:90:ba:57:a4:5c:8e:c4:db: a9:15:b6:84:bb:6f:95:ae:d9:5e:de:c5:c8:ce:53: db:7d:b4:14:0d:93:d6:b4:1f:08:51:5c:85:f5:7f: 45:a5:fb:bb:f9:62:17:0b:1d:11:84:eb:d6:bb:a6: ce:53:a2:c5:74:42:0e:65:1f:5b:81:f5:68:3a:0c: 5f:4f:c7:f0:8c:6a:03:0e:b6:c1:18:18:51:d4:ff: 5a:d3:f4:59:b4:be:fd:25:a1:fb:41:1b:ab:d6:cb: a8:9b:c5:84:49:87:08:06:ef:87:01:a9:7d:d5:1c: 36:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:CD:11:0D:41:E2:EE:FC:5D:4E:7E:CA:B4:19:1C:9D:E6:6E:3B:97 X509v3 Authority Key Identifier: keyid:51:E0:94:C0:57:BE:DA:70:A4:C2:B2:00:91:92:8D:E7:26:4B:46:C5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/UeCUwFe-2nCkwrIAkZKN5yZLRsU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UeCUwFe-2nCkwrIAkZKN5yZLRsU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA8F5/95AA1EECA35511EC861FE166C4F9AE02/713001A0A35811EC88C42869C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.183.192.0/23 IPv6: 2400:6360::/32 Signature Algorithm: sha256WithRSAEncryption 95:8b:c9:86:fa:e2:66:38:7d:25:80:87:9e:c6:e0:14:28:90: 44:34:1f:1b:6f:3c:02:f5:6b:31:ca:af:80:bf:0d:45:0e:1d: 18:c8:44:3c:10:59:64:64:77:97:ff:e6:3d:c1:a7:a1:65:38: 9c:ee:c0:62:95:03:77:aa:01:7a:89:f4:99:aa:8d:1c:db:24: b5:c2:3e:92:b7:e6:56:42:97:d6:17:02:7b:3f:f6:09:05:56: cb:c1:e9:8f:90:ad:e2:ed:6d:91:cf:9e:09:2b:3f:91:e3:e3: 36:69:d8:57:aa:50:98:97:28:ca:5a:52:e5:25:25:1c:0c:e4: 20:0c:10:d3:d9:6a:ed:d6:be:9c:b9:58:ad:f5:b5:45:45:52: 8b:90:b3:6a:a8:38:66:28:13:97:8c:f8:91:5e:0d:92:16:a0: 0e:2c:44:6b:16:d4:80:79:8f:cf:f9:61:6c:4e:98:35:f9:d1: c9:8b:36:7c:78:6c:ec:a5:bb:ab:4b:52:0f:f3:21:66:69:43: 13:61:f9:f5:e5:1f:3a:f6:d8:88:5c:56:1a:d2:cf:be:48:2d: f9:bb:50:8a:29:ea:69:de:a0:8d:01:a8:ed:53:7b:dd:7d:4f: d2:cd:28:13:c7:74:73:88:f1:63:f9:55:fc:a5:e4:ab:ef:78: 55:25:97:29 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICArkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE4RjUxMTAvBgNVBAUTKDUxRTA5NEMwNTdCRURBNzBBNEMyQjIwMDkxOTI4REU3 MjY0QjQ2QzUwHhcNMjQwNDE3MDMzNjA4WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmNDNhNy00ZTMyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx8le/QfbJMjAZedpbJG04puAVRwibis8CjYst4fzesxZBR7dec5w7Ym7ShK9 Yt1hVNLHvnSD1yDzMfEgCoqerduWjQIpD/wOVlmCZxrHvErPgW8vivMQZE41Gakd bQ943e/JYSKcAVpO+xBvQB4xQTTmM/yYMwl7G05avqeB4bLcBzWqt2HxVmu4aADf kLpXpFyOxNupFbaEu2+Vrtle3sXIzlPbfbQUDZPWtB8IUVyF9X9Fpfu7+WIXCx0R hOvWu6bOU6LFdEIOZR9bgfVoOgxfT8fwjGoDDrbBGBhR1P9a0/RZtL79JaH7QRur 1suom8WESYcIBu+HAal91Rw2yQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKvNEQ1B 4u78XU5+yrQZHJ3mbjuXMB8GA1UdIwQYMBaAFFHglMBXvtpwpMKyAJGSjecmS0bF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQThGNS85NUFBMUVFQ0Ez NTUxMUVDODYxRkUxNjZDNEY5QUUwMi9VZUNVd0ZlLTJuQ2t3cklBa1pLTjV5WkxS c1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VlQ1V3RmUtMm5Da3dySUFrWktONXlaTFJzVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE4RjUvOTVBQTFFRUNBMzU1MTFFQzg2MUZFMTY2QzRGOUFFMDIvNzEzMDAxQTBB MzU4MTFFQzg4QzQyODY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnt8AwDQQCAAIwBwMFACQAY2AwDQYJKoZIhvcNAQELBQAD ggEBAJWLyYb64mY4fSWAh57G4BQokEQ0HxtvPAL1azHKr4C/DUUOHRjIRDwQWWRk d5f/5j3Bp6FlOJzuwGKVA3eqAXqJ9JmqjRzbJLXCPpK35lZCl9YXAns/9gkFVsvB 6Y+QreLtbZHPngkrP5Hj4zZp2FeqUJiXKMpaUuUlJRwM5CAMENPZau3Wvpy5WK31 tUVFUouQs2qoOGYoE5eM+JFeDZIWoA4sRGsW1IB5j8/5YWxOmDX50cmLNnx4bOyl u6tLUg/zIWZpQxNh+fXlHzr22IhcVhrSz75ILfm7UIop6mneoI0BqO1Te919T9LN KBPHdHOI8WP5Vfyl5KvveFUllyk= -----END CERTIFICATE-----Generated at Fri May 17 04:44:32 2024 by rpki-client on console-ams.rpki-client.org