$ rpki-client -vvf rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/19250B84675711EAA928E22DC4F9AE02.roa File: 19250B84675711EAA928E22DC4F9AE02.roa (raw, json) Hash identifier: BfaBbqdTeXcprKlCZnPR/VFXV6AoP9YV7kqFZXcvXOo= Subject key identifier: DC:BD:FA:E3:E7:BD:D2:BA:54:39:AA:DC:32:10:1D:33:B9:19:8C:31 Certificate issuer: /CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Certificate serial: 0978 Authority key identifier: F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/19250B84675711EAA928E22DC4F9AE02.roa Signing time: Thu 28 Mar 2024 20:59:46 +0000 ROA not before: Thu 28 Mar 2024 20:59:46 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 63526 IP address blocks: 103.149.142.0/23 maxlen: 23 103.149.142.0/24 maxlen: 24 103.149.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2424 (0x978) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BF8D1/serialNumber=F0466593C2B6CEA9CBF02E26AAE6BF790F527EA8 Validity Not Before: Mar 28 20:59:46 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6605da42-10fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:a5:56:63:db:c8:40:02:b2:1f:d4:9b:74:41: 84:bb:49:71:db:7f:02:4e:d6:91:07:b9:85:a8:79: 12:a5:a8:2c:a1:b9:5f:59:87:fd:b6:a0:87:88:b0: e2:a7:8f:09:79:be:48:b3:ff:eb:77:d0:c8:9d:e0: 04:e8:f9:3a:82:99:7f:32:f4:3d:11:9f:b9:86:14: 60:84:39:98:96:57:44:28:70:f3:db:8a:c3:c5:73: d5:76:4a:70:45:46:e8:71:bf:4b:d5:6e:14:1e:7c: 32:de:fa:99:d8:9f:76:b3:e2:c3:5a:67:a9:37:c5: ef:54:36:29:f3:49:1d:d0:1f:7f:d8:32:06:99:a0: 06:41:fb:44:e8:73:46:b3:65:e8:eb:b3:c6:14:cf: e5:18:09:91:a3:6c:5b:60:25:82:e8:1d:46:6c:59: 15:4e:46:fa:28:dc:17:12:9c:96:3f:f9:35:2b:8b: 06:c5:99:fb:b6:c9:11:12:f2:d7:95:02:1d:69:f5: cf:15:58:cc:89:70:e8:78:38:d7:29:d9:f7:7c:c1: fa:16:c3:95:d4:60:54:5e:96:c7:28:53:8d:ec:29: 5b:f8:36:65:e8:d4:6f:f2:55:66:8d:69:ce:17:a5: 79:cb:be:a4:6f:96:5e:94:b0:25:c8:f1:7a:fc:44: 14:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:BD:FA:E3:E7:BD:D2:BA:54:39:AA:DC:32:10:1D:33:B9:19:8C:31 X509v3 Authority Key Identifier: keyid:F0:46:65:93:C2:B6:CE:A9:CB:F0:2E:26:AA:E6:BF:79:0F:52:7E:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/8EZlk8K2zqnL8C4mqua_eQ9Sfqg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BF8D1/7C4E34BC675511EAA087302BC4F9AE02/19250B84675711EAA928E22DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.149.142.0/23 Signature Algorithm: sha256WithRSAEncryption b4:c8:93:65:e9:52:6c:46:87:03:cc:70:d7:0b:e8:8f:b5:aa: 01:38:dc:b5:31:65:11:a5:22:3d:cf:03:3a:df:3e:f8:3b:85: 3b:fe:6d:3b:34:f6:6d:e2:2d:b4:73:72:4f:1f:d6:b5:c4:c2: 3c:c6:87:6f:3c:da:0a:25:79:6e:8b:85:fc:7b:a9:59:26:b7: 12:ec:a9:fa:e3:b5:47:2f:7d:ae:42:5d:9c:64:c9:01:7a:4c: 99:28:c1:74:8e:ae:d9:c1:7e:22:30:e4:fb:97:88:fb:3a:9c: 4a:56:c4:32:74:bb:5e:46:1f:f5:15:1c:9f:60:88:0b:d5:b2: 3a:d9:8b:94:71:17:93:17:af:29:ee:e4:68:51:d0:32:71:a2: bc:79:d8:ee:d3:99:bf:67:63:24:27:b6:f9:25:84:46:c0:6c: 92:91:aa:8c:5b:11:d8:22:0c:68:18:e9:4c:2f:84:12:12:fc: 59:46:07:39:6e:7c:40:63:1a:59:56:92:71:0d:43:16:36:1f: 14:64:0e:00:17:c2:dd:b3:78:8d:b6:1a:87:ab:a5:03:33:bf: c8:74:16:07:3c:4c:62:1f:a7:35:6f:ad:04:c9:ce:d3:83:89: 57:55:a1:ca:65:6c:54:de:66:5d:9b:28:95:2d:35:f0:7e:a0: 57:6d:4b:8c -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCXgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkY4RDExMTAvBgNVBAUTKEYwNDY2NTkzQzJCNkNFQTlDQkYwMkUyNkFBRTZCRjc5 MEY1MjdFQTgwHhcNMjQwMzI4MjA1OTQ2WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1ZGE0Mi0xMGZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2aVWY9vIQAKyH9SbdEGEu0lx238CTtaRB7mFqHkSpagsoblfWYf9tqCHiLDi p48Jeb5Is//rd9DIneAE6Pk6gpl/MvQ9EZ+5hhRghDmYlldEKHDz24rDxXPVdkpw RUbocb9L1W4UHnwy3vqZ2J92s+LDWmepN8XvVDYp80kd0B9/2DIGmaAGQftE6HNG s2Xo67PGFM/lGAmRo2xbYCWC6B1GbFkVTkb6KNwXEpyWP/k1K4sGxZn7tskREvLX lQIdafXPFVjMiXDoeDjXKdn3fMH6FsOV1GBUXpbHKFON7Clb+DZl6NRv8lVmjWnO F6V5y76kb5ZelLAlyPF6/EQU/wIDAQABo4IClTCCApEwHQYDVR0OBBYEFNy9+uPn vdK6VDmq3DIQHTO5GYwxMB8GA1UdIwQYMBaAFPBGZZPCts6py/AuJqrmv3kPUn6o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRjhEMS83QzRFMzRCQzY3 NTUxMUVBQTA4NzMwMkJDNEY5QUUwMi84RVpsazhLMnpxbkw4QzRtcXVhX2VROVNm cWcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzhFWmxrOEsyenFuTDhDNG1xdWFfZVE5U2ZxZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkY4RDEvN0M0RTM0QkM2NzU1MTFFQUEwODczMDJCQzRGOUFFMDIvMTkyNTBCODQ2 NzU3MTFFQUE5MjhFMjJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnlY4wDQYJKoZIhvcNAQELBQADggEBALTIk2XpUmxGhwPM cNcL6I+1qgE43LUxZRGlIj3PAzrfPvg7hTv+bTs09m3iLbRzck8f1rXEwjzGh288 2goleW6Lhfx7qVkmtxLsqfrjtUcvfa5CXZxkyQF6TJkowXSOrtnBfiIw5PuXiPs6 nEpWxDJ0u15GH/UVHJ9giAvVsjrZi5RxF5MXrynu5GhR0DJxorx52O7Tmb9nYyQn tvklhEbAbJKRqoxbEdgiDGgY6UwvhBIS/FlGBzlufEBjGllWknENQxY2HxRkDgAX wt2zeI22GoerpQMzv8h0Fgc8TGIfpzVvrQTJztODiVdVocplbFTeZl2bKJUtNfB+ oFdtS4w= -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org