$ rpki-client -vvf rpki.apnic.net/member_repository/A91BB883/E982BA3610E711EA9D21C26FC4F9AE02/8160C03610E911EA86FA6774C4F9AE02.roa File: 8160C03610E911EA86FA6774C4F9AE02.roa (raw, json) Hash identifier: zl2/KyvOYO11VNEUno+KY1iGQk0Qm8eGwpcW6ERpUeM= Subject key identifier: D7:D2:A0:3B:EB:4E:37:8C:1C:8C:04:C5:63:1C:A9:5D:B4:46:CA:67 Certificate issuer: /CN=A91BB883/serialNumber=4F5AF565D30DD54F24147EF5E178AA0BAA33FC29 Certificate serial: 0B09 Authority key identifier: 4F:5A:F5:65:D3:0D:D5:4F:24:14:7E:F5:E1:78:AA:0B:AA:33:FC:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T1r1ZdMN1U8kFH714XiqC6oz_Ck.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BB883/E982BA3610E711EA9D21C26FC4F9AE02/8160C03610E911EA86FA6774C4F9AE02.roa Signing time: Thu 04 Jan 2024 19:37:44 +0000 ROA not before: Thu 04 Jan 2024 19:37:44 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 136009 IP address blocks: 103.79.182.0/23 maxlen: 23 103.79.182.0/24 maxlen: 24 103.79.183.0/24 maxlen: 24 103.122.90.0/23 maxlen: 23 103.122.90.0/24 maxlen: 24 103.122.91.0/24 maxlen: 24 2001:df6:d600::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BB883/E982BA3610E711EA9D21C26FC4F9AE02/T1r1ZdMN1U8kFH714XiqC6oz_Ck.crl rsync://rpki.apnic.net/member_repository/A91BB883/E982BA3610E711EA9D21C26FC4F9AE02/T1r1ZdMN1U8kFH714XiqC6oz_Ck.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T1r1ZdMN1U8kFH714XiqC6oz_Ck.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 19:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2825 (0xb09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BB883/serialNumber=4F5AF565D30DD54F24147EF5E178AA0BAA33FC29 Validity Not Before: Jan 4 19:37:44 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65970907-4fbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:14:ad:eb:31:6d:b9:1c:6b:b2:44:09:51:5c: cf:53:71:a9:f3:77:d2:7e:89:2a:b3:04:b1:4a:43: 55:25:7a:d6:4e:eb:92:c1:fa:51:1d:23:68:64:cd: bd:eb:e1:28:f5:c9:c9:28:56:eb:a4:8d:df:9d:56: ab:02:c1:d6:29:7a:6f:88:0e:8a:6a:bb:e7:d7:05: 1b:e5:10:c2:67:40:ac:3b:fb:ad:b7:cb:8b:cc:a6: 48:d6:b0:a5:62:42:2a:b6:4b:ef:d0:ea:20:e3:a9: ab:01:92:18:d2:44:76:e4:65:fe:0f:ad:9b:96:b8: 9a:26:4d:a2:6d:69:a2:4b:85:23:4e:20:b7:46:7b: be:3f:81:f2:fd:a3:85:c3:2e:22:01:de:83:b6:18: 41:98:5d:a3:09:54:0d:fc:64:fc:03:4b:86:fb:4b: 6c:6f:29:90:d0:71:0f:6a:62:74:35:6a:53:ef:0c: bc:fb:0a:6c:89:3f:51:dd:89:3a:4b:55:bd:0b:7b: 1d:15:bd:42:78:91:b4:1d:8d:8c:c4:40:c0:5d:bd: 09:48:13:05:d1:b7:68:dc:60:a7:25:c7:dc:07:9e: 85:44:06:5f:bb:ca:d2:0a:d8:69:42:ec:62:62:d4: 8f:99:6d:0c:40:d5:25:a6:4d:54:92:77:e3:09:07: 58:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:D2:A0:3B:EB:4E:37:8C:1C:8C:04:C5:63:1C:A9:5D:B4:46:CA:67 X509v3 Authority Key Identifier: keyid:4F:5A:F5:65:D3:0D:D5:4F:24:14:7E:F5:E1:78:AA:0B:AA:33:FC:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BB883/E982BA3610E711EA9D21C26FC4F9AE02/T1r1ZdMN1U8kFH714XiqC6oz_Ck.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T1r1ZdMN1U8kFH714XiqC6oz_Ck.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BB883/E982BA3610E711EA9D21C26FC4F9AE02/8160C03610E911EA86FA6774C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.79.182.0/23 103.122.90.0/23 IPv6: 2001:df6:d600::/48 Signature Algorithm: sha256WithRSAEncryption 90:c8:8d:fa:af:e2:d7:58:a7:da:0e:6b:19:d1:79:16:28:e6: e1:1c:ae:84:d1:e6:c2:ce:79:39:95:69:4f:5f:f2:d9:c3:fb: d1:13:f3:f0:27:da:b7:b4:50:3a:7f:58:c5:97:1f:3b:ae:84: f8:9e:b8:0e:a5:e3:ca:5a:8a:41:2c:0e:3e:05:38:27:77:f1: 1e:01:6b:63:63:c9:34:b4:85:36:13:dc:ce:cf:a0:b1:03:d5: cb:f6:3c:47:aa:af:70:7d:9e:06:8d:95:2f:97:b5:42:dd:8a: fb:d3:af:00:a6:f5:b5:20:a7:bd:6b:c2:97:ea:09:36:f0:e0: 72:44:5f:fa:24:88:0d:71:40:85:ff:b3:f4:6a:5d:e0:59:e2: e0:dd:f2:53:a4:4b:ad:4f:3c:09:92:55:70:f2:be:53:6b:1a: 8f:6f:bb:ee:21:ce:22:43:1a:86:03:56:9e:e1:bc:28:5e:df: 5b:a8:4c:8f:67:26:69:4e:d0:86:6f:83:be:47:c7:d3:e7:4d: be:03:a4:f9:35:e5:70:ef:b3:d7:c0:7b:c9:a2:b0:38:f6:a6: ba:ae:57:44:d9:83:94:da:eb:e9:72:04:2e:3b:25:bd:72:1c: 4a:5a:84:5c:e4:1e:29:b0:44:e5:25:e2:97:75:1b:af:0d:f3: ad:e3:40:48 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCwkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkI4ODMxMTAvBgNVBAUTKDRGNUFGNTY1RDMwREQ1NEYyNDE0N0VGNUUxNzhBQTBC QUEzM0ZDMjkwHhcNMjQwMTA0MTkzNzQ0WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk3MDkwNy00ZmJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvRSt6zFtuRxrskQJUVzPU3Gp83fSfokqswSxSkNVJXrWTuuSwfpRHSNoZM29 6+Eo9cnJKFbrpI3fnVarAsHWKXpviA6Karvn1wUb5RDCZ0CsO/utt8uLzKZI1rCl YkIqtkvv0Oog46mrAZIY0kR25GX+D62blriaJk2ibWmiS4UjTiC3Rnu+P4Hy/aOF wy4iAd6DthhBmF2jCVQN/GT8A0uG+0tsbymQ0HEPamJ0NWpT7wy8+wpsiT9R3Yk6 S1W9C3sdFb1CeJG0HY2MxEDAXb0JSBMF0bdo3GCnJcfcB56FRAZfu8rSCthpQuxi YtSPmW0MQNUlpk1UknfjCQdY/wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFNfSoDvr TjeMHIwExWMcqV20RspnMB8GA1UdIwQYMBaAFE9a9WXTDdVPJBR+9eF4qguqM/wp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQjg4My9FOTgyQkEzNjEw RTcxMUVBOUQyMUMyNkZDNEY5QUUwMi9UMXIxWmRNTjFVOGtGSDcxNFhpcUM2b3pf Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1QxcjFaZE1OMVU4a0ZINzE0WGlxQzZvel9Day5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkI4ODMvRTk4MkJBMzYxMEU3MTFFQTlEMjFDMjZGQzRGOUFFMDIvODE2MEMwMzYx MEU5MTFFQTg2RkE2Nzc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAFnT7YDBAFnelowDwQCAAIwCQMHACABDfbWADANBgkqhkiG 9w0BAQsFAAOCAQEAkMiN+q/i11in2g5rGdF5Fijm4RyuhNHmws55OZVpT1/y2cP7 0RPz8Cfat7RQOn9YxZcfO66E+J64DqXjylqKQSwOPgU4J3fxHgFrY2PJNLSFNhPc zs+gsQPVy/Y8R6qvcH2eBo2VL5e1Qt2K+9OvAKb1tSCnvWvCl+oJNvDgckRf+iSI DXFAhf+z9Gpd4Fni4N3yU6RLrU88CZJVcPK+U2saj2+77iHOIkMahgNWnuG8KF7f W6hMj2cmaU7Qhm+DvkfH0+dNvgOk+TXlcO+z18B7yaKwOPamuq5XRNmDlNrr6XIE LjslvXIcSlqEXOQeKbBE5SXil3Ubrw3zreNASA== -----END CERTIFICATE-----Generated at Fri May 24 20:48:04 2024 by rpki-client on console-fra.rpki-client.org