$ rpki-client -vvf rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/5FB07B1421CF11EBA0C85857C4F9AE02.roa File: 5FB07B1421CF11EBA0C85857C4F9AE02.roa (raw, json) Hash identifier: qkPQhdZ1AXp1eu/jPQTReH5I7eEjnJm7cKpLdbqNUqQ= Subject key identifier: 0E:56:18:76:3B:B2:EB:80:D3:7A:EE:1B:9D:AE:1A:83:9D:D7:A3:F2 Certificate issuer: /CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Certificate serial: 0E6A Authority key identifier: 6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/5FB07B1421CF11EBA0C85857C4F9AE02.roa Signing time: Fri 20 Oct 2023 18:06:21 +0000 ROA not before: Fri 20 Oct 2023 18:06:21 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 135386 IP address blocks: 103.99.40.0/23 maxlen: 24 103.132.234.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 16:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3690 (0xe6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BC6B4/serialNumber=6CA6B2AC1DD17B014DB6C767279D08C66E4EFC05 Validity Not Before: Oct 20 18:06:21 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6532c19d-8304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ef:0f:5b:eb:1c:02:e3:44:c5:57:7d:cf:0e: 6a:8d:09:73:2a:81:c3:08:6a:e1:a1:61:1d:e3:1a: ba:d6:f2:64:73:72:4b:a7:3b:05:fa:4e:df:65:71: 49:ec:3d:31:71:f0:65:17:21:85:82:e3:51:11:ab: 48:67:1e:d9:e7:5d:37:43:b5:df:4f:30:c5:65:b1: 78:4b:b1:25:61:2c:64:45:2a:ac:ea:34:40:e7:02: 31:b5:d3:f6:86:f7:82:7a:e8:c1:c4:75:85:c0:00: 94:36:e3:b1:60:af:1b:b7:6f:9d:66:9b:68:57:2b: b0:97:78:e2:72:a6:6d:4c:a9:7f:a9:b4:8f:c4:21: 46:4c:f4:9d:d9:3e:e8:04:4b:a4:01:4d:94:ca:55: eb:90:0f:9a:54:d3:48:ab:c7:a9:72:dd:18:be:30: 6b:e1:f6:2d:42:51:ff:d0:73:e3:98:86:b5:54:39: f4:a9:14:63:48:5f:e7:ce:bc:a7:6f:b4:4b:3f:ab: 22:f9:a6:e4:98:b0:96:b2:28:52:f0:cd:4e:a6:f1: a6:96:3d:92:c0:90:32:de:87:87:22:f2:6d:3e:4f: 67:8d:50:86:93:99:38:ff:45:e3:45:ec:44:99:4c: 14:1a:6c:e8:f6:b3:0c:d5:78:23:8b:2a:7b:88:ae: 3c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:56:18:76:3B:B2:EB:80:D3:7A:EE:1B:9D:AE:1A:83:9D:D7:A3:F2 X509v3 Authority Key Identifier: keyid:6C:A6:B2:AC:1D:D1:7B:01:4D:B6:C7:67:27:9D:08:C6:6E:4E:FC:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/bKayrB3RewFNtsdnJ50Ixm5O_AU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bKayrB3RewFNtsdnJ50Ixm5O_AU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BC6B4/726F51C263F211E9BB20DD45C4F9AE02/5FB07B1421CF11EBA0C85857C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.40.0/23 103.132.234.0/23 Signature Algorithm: sha256WithRSAEncryption 0e:bc:37:1f:c8:20:c1:f2:fe:8f:39:bf:b7:c0:71:08:92:40: b0:c6:dd:01:9f:6b:eb:41:37:24:a9:07:3c:50:56:9b:62:b4: 0b:18:f4:8b:56:ac:ec:36:92:07:78:d0:f5:22:2f:0f:84:aa: 2a:f0:d8:cd:f1:9e:6e:51:ec:e7:48:22:59:10:f7:aa:9a:8c: 20:23:a6:ff:d6:45:23:ae:d5:c7:c0:d8:57:8a:e8:b3:cd:3b: e3:a2:17:64:7c:fd:09:7e:b4:1b:5b:04:6f:da:b9:e1:1a:f8: 54:f9:90:5f:a4:45:4a:67:ea:20:c8:7d:86:9d:80:e9:76:d0: c0:2b:f3:9e:ea:2b:a8:8e:b4:02:f6:9f:c0:76:10:86:8a:cc: c8:90:81:3b:23:f7:78:e2:d9:7e:37:4f:29:38:3a:4f:78:67: 11:06:61:04:36:4f:b5:44:e6:a3:a4:fe:91:2b:d0:3b:ee:73: f9:81:a9:cf:5e:89:84:14:4d:a7:b6:48:6e:3a:7d:f4:96:8f: 1f:50:26:e5:06:ae:e6:33:a4:36:4f:36:fe:e2:59:65:23:ac: b6:14:42:b6:2b:73:40:5c:50:4f:0f:ff:fb:c1:1f:fb:5b:eb: a0:2a:a0:e7:e3:f6:bb:53:53:0b:00:2a:63:51:c4:ae:e2:f8: 29:23:ee:ba -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICDmowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkM2QjQxMTAvBgNVBAUTKDZDQTZCMkFDMUREMTdCMDE0REI2Qzc2NzI3OUQwOEM2 NkU0RUZDMDUwHhcNMjMxMDIwMTgwNjIxWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTMyYzE5ZC04MzA0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsO8PW+scAuNExVd9zw5qjQlzKoHDCGrhoWEd4xq61vJkc3JLpzsF+k7fZXFJ 7D0xcfBlFyGFguNREatIZx7Z5103Q7XfTzDFZbF4S7ElYSxkRSqs6jRA5wIxtdP2 hveCeujBxHWFwACUNuOxYK8bt2+dZptoVyuwl3jicqZtTKl/qbSPxCFGTPSd2T7o BEukAU2UylXrkA+aVNNIq8epct0YvjBr4fYtQlH/0HPjmIa1VDn0qRRjSF/nzryn b7RLP6si+abkmLCWsihS8M1OpvGmlj2SwJAy3oeHIvJtPk9njVCGk5k4/0XjRexE mUwUGmzo9rMM1Xgjiyp7iK489wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFA5WGHY7 suuA03ruG52uGoOd16PyMB8GA1UdIwQYMBaAFGymsqwd0XsBTbbHZyedCMZuTvwF MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQzZCNC83MjZGNTFDMjYz RjIxMUU5QkIyMERENDVDNEY5QUUwMi9iS2F5ckIzUmV3Rk50c2RuSjUwSXhtNU9f QVUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JLYXlyQjNSZXdGTnRzZG5KNTBJeG01T19BVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkM2QjQvNzI2RjUxQzI2M0YyMTFFOUJCMjBERDQ1QzRGOUFFMDIvNUZCMDdCMTQy MUNGMTFFQkEwQzg1ODU3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAFnYygDBAFnhOowDQYJKoZIhvcNAQELBQADggEBAA68Nx/I IMHy/o85v7fAcQiSQLDG3QGfa+tBNySpBzxQVptitAsY9ItWrOw2kgd40PUiLw+E qirw2M3xnm5R7OdIIlkQ96qajCAjpv/WRSOu1cfA2FeK6LPNO+OiF2R8/Ql+tBtb BG/aueEa+FT5kF+kRUpn6iDIfYadgOl20MAr857qK6iOtAL2n8B2EIaKzMiQgTsj 93ji2X43Tyk4Ok94ZxEGYQQ2T7VE5qOk/pEr0Dvuc/mBqc9eiYQUTae2SG46ffSW jx9QJuUGruYzpDZPNv7iWWUjrLYUQrYrc0BcUE8P//vBH/tb66AqoOfj9rtTUwsA KmNRxK7i+Ckj7ro= -----END CERTIFICATE-----Generated at Sun Apr 14 18:48:00 2024 by rpki-client on console-ams.rpki-client.org