$ rpki-client -vvf rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/37C8FE80B2A211ED9A5C4B53C4F9AE02.roa File: 37C8FE80B2A211ED9A5C4B53C4F9AE02.roa (raw, json) Hash identifier: 0N+/z4kTKX8NyMAex9FH+ekMrAx1yYCVrWXAZK9y2fI= Subject key identifier: FB:86:B9:FB:6E:B5:D8:E9:CB:21:25:2B:43:50:EC:25:4A:B3:ED:1A Certificate issuer: /CN=A91BAFCE/serialNumber=FBD1A848A1F89A8D24DB0B6817A087FB2DF5DF08 Certificate serial: CF Authority key identifier: FB:D1:A8:48:A1:F8:9A:8D:24:DB:0B:68:17:A0:87:FB:2D:F5:DF:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/37C8FE80B2A211ED9A5C4B53C4F9AE02.roa Signing time: Mon 25 Mar 2024 05:58:01 +0000 ROA not before: Mon 25 Mar 2024 05:58:01 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 139901 IP address blocks: 103.93.34.0/23 maxlen: 24 2400:e260::/32 maxlen: 40 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.crl rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 06:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 207 (0xcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BAFCE/serialNumber=FBD1A848A1F89A8D24DB0B6817A087FB2DF5DF08 Validity Not Before: Mar 25 05:58:01 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=66011269-3fd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:8d:e4:4c:71:b4:6e:60:7d:47:cd:57:4d:10: a9:e8:62:9c:52:7e:4f:77:8d:bd:82:1b:28:0a:ba: 07:c5:15:b2:20:72:9f:6f:8a:0d:74:f6:fc:2f:0e: 7f:a5:da:57:d6:a8:24:6e:b2:f1:1c:5d:1b:69:d1: 7b:fe:6b:d5:23:d6:61:3d:99:a7:f3:14:6f:7f:2f: 0e:a9:d4:e1:a4:6f:27:81:c1:c2:6e:35:bb:da:fc: 31:ec:d5:34:be:7d:91:2e:06:63:ff:55:4e:4e:79: 0f:58:5d:8d:0c:b0:3a:12:22:95:56:27:b2:2e:f0: 8f:6d:4d:55:d5:48:8c:13:66:dd:2f:c2:5e:dc:e4: d8:57:55:96:12:72:ca:aa:07:a0:38:72:11:d7:ae: b9:e9:85:33:19:4b:cd:18:a5:6a:18:a3:ce:33:c7: 76:e8:c5:67:de:47:91:c1:3c:e1:d5:76:0c:ff:c9: c7:cb:a7:47:23:54:03:b9:df:65:17:1f:9f:cf:bc: 3d:c9:f6:8d:72:4a:41:4b:21:62:34:f1:ab:be:be: 56:3e:77:d6:47:a6:07:86:76:1a:ba:ba:4d:60:fa: d1:3c:cb:07:37:9b:c3:42:f1:e9:68:02:6b:63:9e: bc:ae:3e:76:c4:54:ee:fd:da:0d:40:5a:fd:25:c0: 97:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:86:B9:FB:6E:B5:D8:E9:CB:21:25:2B:43:50:EC:25:4A:B3:ED:1A X509v3 Authority Key Identifier: keyid:FB:D1:A8:48:A1:F8:9A:8D:24:DB:0B:68:17:A0:87:FB:2D:F5:DF:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/-9GoSKH4mo0k2wtoF6CH-y313wg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-9GoSKH4mo0k2wtoF6CH-y313wg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BAFCE/2D34C392B29C11ED98A8314AC4F9AE02/37C8FE80B2A211ED9A5C4B53C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.34.0/23 IPv6: 2400:e260::/32 Signature Algorithm: sha256WithRSAEncryption 0c:0c:05:af:4b:a3:62:e5:51:af:1e:0f:95:e9:34:53:6a:48: 9f:ba:d0:b9:21:1e:6c:34:3f:a9:90:24:3b:37:de:c0:0f:4e: 21:e9:0a:c9:3c:60:5a:70:03:2f:36:25:2c:48:68:93:d2:9b: 10:6c:e3:88:05:a5:f6:a9:4e:8f:6b:b8:90:0c:a0:d1:4c:bb: 06:0e:66:fb:f5:92:f5:e7:c5:c0:01:27:1d:1d:74:e0:27:a8: fa:61:78:bd:b7:9e:1a:f9:42:d1:18:69:e8:cc:a1:c7:bd:b5: 59:79:1c:43:dd:51:25:d4:bf:c7:0b:33:fc:31:f6:7f:61:cf: 48:16:ca:b6:c0:6a:ea:ca:65:e4:d6:ce:ea:11:4e:fe:58:f8: ed:44:ad:d8:67:6f:83:7f:1a:2e:c0:d9:33:79:22:da:0e:d6: 41:ab:7f:70:d4:3a:20:89:53:e8:aa:dc:d9:25:eb:11:ff:f6: ab:9a:92:ff:a0:08:23:90:d9:2e:e2:7b:64:ae:93:cb:20:26: a4:35:71:e0:5c:e9:89:46:c5:14:b2:8f:47:50:cb:2f:8e:8c: 0e:08:d4:32:06:77:ed:0a:2f:9d:f4:66:19:3a:1d:bf:d3:60: a3:01:82:ba:56:b9:ea:88:b9:34:0f:ce:82:5f:fd:89:e2:aa: b3:e7:e6:5f -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAM8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkFGQ0UxMTAvBgNVBAUTKEZCRDFBODQ4QTFGODlBOEQyNERCMEI2ODE3QTA4N0ZC MkRGNURGMDgwHhcNMjQwMzI1MDU1ODAxWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjAxMTI2OS0zZmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnI3kTHG0bmB9R81XTRCp6GKcUn5Pd429ghsoCroHxRWyIHKfb4oNdPb8Lw5/ pdpX1qgkbrLxHF0badF7/mvVI9ZhPZmn8xRvfy8OqdThpG8ngcHCbjW72vwx7NU0 vn2RLgZj/1VOTnkPWF2NDLA6EiKVVieyLvCPbU1V1UiME2bdL8Je3OTYV1WWEnLK qgegOHIR16656YUzGUvNGKVqGKPOM8d26MVn3keRwTzh1XYM/8nHy6dHI1QDud9l Fx+fz7w9yfaNckpBSyFiNPGrvr5WPnfWR6YHhnYaurpNYPrRPMsHN5vDQvHpaAJr Y568rj52xFTu/doNQFr9JcCXqQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFPuGuftu tdjpyyElK0NQ7CVKs+0aMB8GA1UdIwQYMBaAFPvRqEih+JqNJNsLaBegh/st9d8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQUZDRS8yRDM0QzM5MkIy OUMxMUVEOThBODMxNEFDNEY5QUUwMi8tOUdvU0tING1vMGsyd3RvRjZDSC15MzEz d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLy05R29TS0g0bW8wazJ3dG9GNkNILXkzMTN3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkFGQ0UvMkQzNEMzOTJCMjlDMTFFRDk4QTgzMTRBQzRGOUFFMDIvMzdDOEZFODBC MkEyMTFFRDlBNUM0QjUzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnXSIwDQQCAAIwBwMFACQA4mAwDQYJKoZIhvcNAQELBQAD ggEBAAwMBa9Lo2LlUa8eD5XpNFNqSJ+60LkhHmw0P6mQJDs33sAPTiHpCsk8YFpw Ay82JSxIaJPSmxBs44gFpfapTo9ruJAMoNFMuwYOZvv1kvXnxcABJx0ddOAnqPph eL23nhr5QtEYaejMoce9tVl5HEPdUSXUv8cLM/wx9n9hz0gWyrbAaurKZeTWzuoR Tv5Y+O1Erdhnb4N/Gi7A2TN5ItoO1kGrf3DUOiCJU+iq3Nkl6xH/9quakv+gCCOQ 2S7ie2Suk8sgJqQ1ceBc6YlGxRSyj0dQyy+OjA4I1DIGd+0KL530Zhk6Hb/TYKMB grpWueqIuTQPzoJf/YniqrPn5l8= -----END CERTIFICATE-----Generated at Mon May 27 08:08:50 2024 by rpki-client on console-ams.rpki-client.org