$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DBED3B7C011411EAAB0EF153C4F9AE02.roa File: DBED3B7C011411EAAB0EF153C4F9AE02.roa (raw, json) Hash identifier: 5VZxUDRMUQQgnnjybdQidjUZH2bCJTwBzXkF3QIUH2I= Subject key identifier: CA:32:17:66:C9:2B:DF:A2:A6:05:10:09:99:B0:8F:71:A5:4A:E6:E7 Certificate issuer: /CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Certificate serial: 0B02 Authority key identifier: E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DBED3B7C011411EAAB0EF153C4F9AE02.roa Signing time: Thu 08 Jun 2023 20:00:17 +0000 ROA not before: Thu 08 Jun 2023 20:00:17 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 24028 IP address blocks: 43.239.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:20:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2818 (0xb02) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA9CE/serialNumber=E9690BBB9F36C09D4C2ED4F66CF55DC35275FB72 Validity Not Before: Jun 8 20:00:17 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64823350-3f52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:27:cf:5e:27:80:eb:a5:aa:44:c1:d1:c6:b0: 9a:13:f1:20:00:c5:e5:22:6d:64:a8:33:6a:ba:33: bf:dd:8c:76:57:03:91:f3:5a:7f:9b:6c:91:81:69: 1d:c2:79:8c:3e:b8:67:d0:3d:67:eb:d6:a1:92:8f: 06:d4:aa:79:68:0c:f0:aa:9a:da:f6:fc:be:bb:d7: 80:38:a0:92:a5:1a:67:5d:92:94:82:32:1e:1a:bc: 60:4a:98:88:30:98:0d:6b:9e:be:f5:ae:4f:7b:cd: 4e:e7:3b:4d:bd:c9:f8:be:c9:c9:7f:e2:55:3b:78: d2:5d:4d:2f:87:24:9b:48:2a:1a:0b:61:95:82:07: d6:ee:5b:5b:0a:b1:4f:f4:eb:fa:58:73:25:b6:f9: cb:b4:2e:53:e6:1f:4d:d1:e1:34:0e:2a:6c:ec:06: 95:ea:6f:3a:4f:7f:de:be:2f:86:a2:54:c5:4f:8a: 29:54:15:8c:a7:b5:cc:85:30:d9:1a:c6:be:72:ce: d8:58:cb:a2:ed:8f:73:de:66:e8:25:6e:07:94:28: 86:94:82:69:12:af:e7:95:d3:44:a2:ad:e4:a4:e8: 02:20:bd:de:bb:b6:da:3e:81:d6:1e:7f:de:47:e2: 6c:f5:f8:c3:2c:f0:0f:22:c8:59:a6:df:b9:2f:5a: 21:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:32:17:66:C9:2B:DF:A2:A6:05:10:09:99:B0:8F:71:A5:4A:E6:E7 X509v3 Authority Key Identifier: keyid:E9:69:0B:BB:9F:36:C0:9D:4C:2E:D4:F6:6C:F5:5D:C3:52:75:FB:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/6WkLu582wJ1MLtT2bPVdw1J1-3I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6WkLu582wJ1MLtT2bPVdw1J1-3I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA9CE/54F15DA4011111EABD4F0A49C4F9AE02/DBED3B7C011411EAAB0EF153C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.239.103.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:36:76:ee:eb:b6:bf:de:28:f8:20:70:7a:77:d2:04:f3:34: 22:50:62:4f:09:f0:74:af:39:a6:11:b6:4b:10:cd:94:3e:3e: 72:37:84:cc:f8:a9:9d:1f:13:a1:f8:bd:95:b8:b6:57:6b:76: 21:cb:0c:9d:24:2b:c6:52:c7:cb:f6:32:dd:e4:47:02:c6:15: 41:94:ac:63:82:c3:3c:26:92:19:a2:63:ee:9c:9c:90:56:a7: 78:c5:42:0d:9f:88:40:6b:c4:17:c1:0a:83:63:d3:4a:56:1e: 12:23:b8:73:6c:d3:a5:59:42:fb:6f:2e:9b:17:bc:7a:4b:2f: 69:39:11:4a:d2:7d:45:a0:e3:d6:cb:1d:8d:18:45:d9:6c:b7: 83:63:b7:5e:5e:e9:b2:e1:15:49:66:a2:b6:f4:47:fd:15:81: 31:5a:4d:c5:3d:74:7d:f3:33:56:53:77:2a:49:58:38:69:5e: 6f:16:33:29:f3:7d:20:88:76:0f:86:cb:86:81:bc:35:67:bc: 44:e1:e5:47:b9:a1:b4:06:7c:42:51:5c:a9:19:ce:b3:68:01: 58:aa:09:d3:9a:89:4c:74:ea:d6:92:46:a3:94:e7:ad:32:d5: 22:01:3b:76:75:fc:34:eb:91:56:e2:d4:cc:1a:d7:2b:7d:18: 71:b0:1b:e2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCwIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE5Q0UxMTAvBgNVBAUTKEU5NjkwQkJCOUYzNkMwOUQ0QzJFRDRGNjZDRjU1REMz NTI3NUZCNzIwHhcNMjMwNjA4MjAwMDE3WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgyMzM1MC0zZjUyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3SfPXieA66WqRMHRxrCaE/EgAMXlIm1kqDNqujO/3Yx2VwOR81p/m2yRgWkd wnmMPrhn0D1n69ahko8G1Kp5aAzwqpra9vy+u9eAOKCSpRpnXZKUgjIeGrxgSpiI MJgNa56+9a5Pe81O5ztNvcn4vsnJf+JVO3jSXU0vhySbSCoaC2GVggfW7ltbCrFP 9Ov6WHMltvnLtC5T5h9N0eE0Dips7AaV6m86T3/evi+GolTFT4opVBWMp7XMhTDZ Gsa+cs7YWMui7Y9z3mboJW4HlCiGlIJpEq/nldNEoq3kpOgCIL3eu7baPoHWHn/e R+Js9fjDLPAPIshZpt+5L1ohXwIDAQABo4IClTCCApEwHQYDVR0OBBYEFMoyF2bJ K9+ipgUQCZmwj3GlSubnMB8GA1UdIwQYMBaAFOlpC7ufNsCdTC7U9mz1XcNSdfty MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTlDRS81NEYxNURBNDAx MTExMUVBQkQ0RjBBNDlDNEY5QUUwMi82V2tMdTU4MndKMU1MdFQyYlBWZHcxSjEt M0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzZXa0x1NTgyd0oxTUx0VDJiUFZkdzFKMS0zSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkE5Q0UvNTRGMTVEQTQwMTExMTFFQUJENEYwQTQ5QzRGOUFFMDIvREJFRDNCN0Mw MTE0MTFFQUFCMEVGMTUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAAr72cwDQYJKoZIhvcNAQELBQADggEBAJs2du7rtr/eKPgg cHp30gTzNCJQYk8J8HSvOaYRtksQzZQ+PnI3hMz4qZ0fE6H4vZW4tldrdiHLDJ0k K8ZSx8v2Mt3kRwLGFUGUrGOCwzwmkhmiY+6cnJBWp3jFQg2fiEBrxBfBCoNj00pW HhIjuHNs06VZQvtvLpsXvHpLL2k5EUrSfUWg49bLHY0YRdlst4Njt15e6bLhFUlm orb0R/0VgTFaTcU9dH3zM1ZTdypJWDhpXm8WMynzfSCIdg+Gy4aBvDVnvETh5Ue5 obQGfEJRXKkZzrNoAViqCdOaiUx06taSRqOU560y1SIBO3Z1/DTrkVbi1Mwa1yt9 GHGwG+I= -----END CERTIFICATE-----Generated at Sun May 26 23:05:39 2024 by rpki-client on console-ams.rpki-client.org