$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/304D6C7E24C211EBAC07F90DC4F9AE02.roa File: 304D6C7E24C211EBAC07F90DC4F9AE02.roa (raw, json) Hash identifier: n1vxOfeH6P3j2kI6oTZnPuNcdgy+8cc1bFtbEdKCass= Subject key identifier: C7:C6:E2:D8:47:F0:5B:0B:CE:46:4C:8C:A0:CC:49:9A:10:B5:09:71 Certificate issuer: /CN=A91BFD87/serialNumber=AC9F95B7D478E98285CF44BFC57D81595534566F Certificate serial: 0628 Authority key identifier: AC:9F:95:B7:D4:78:E9:82:85:CF:44:BF:C5:7D:81:59:55:34:56:6F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/304D6C7E24C211EBAC07F90DC4F9AE02.roa Signing time: Mon 16 Oct 2023 22:51:26 +0000 ROA not before: Mon 16 Oct 2023 22:51:26 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 141194 IP address blocks: 103.156.56.0/24 maxlen: 24 103.161.226.0/24 maxlen: 24 2001:df5:5a80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.crl rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 21:17:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1576 (0x628) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFD87/serialNumber=AC9F95B7D478E98285CF44BFC57D81595534566F Validity Not Before: Oct 16 22:51:26 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652dbe6e-d767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e5:0a:52:22:9c:8b:97:97:82:b2:31:f1:25: ff:06:62:52:a7:27:05:65:bd:6a:7c:ef:ae:dd:d6: 61:44:58:78:df:6d:54:8c:65:cb:48:3a:c1:cb:cb: 12:7c:52:2c:7c:4b:8a:22:b1:b3:b9:e1:2f:db:fc: 7b:38:df:f9:a3:b1:90:f9:70:17:ed:4d:fe:ff:ed: d7:57:aa:0d:52:33:e4:98:6e:51:97:5e:dc:1e:08: 9f:11:b9:bc:53:b9:c0:df:f6:1d:26:5a:9a:b3:a5: c4:01:6d:a5:ff:f1:cf:b4:14:99:3f:e0:46:70:2c: e2:34:e2:45:1c:34:a8:fc:0b:4d:11:50:0f:ab:61: fb:f0:96:e6:c5:34:0d:1a:1a:3c:ca:13:26:2e:df: a4:2f:07:22:5c:f8:37:46:a9:98:b5:f3:79:b4:a6: a2:99:d5:f5:d4:b9:f8:3d:34:0c:5f:67:4e:9e:5e: b0:cc:42:d1:2f:41:42:a3:9e:42:3a:8c:ef:a7:da: 13:73:55:69:6f:ec:ae:ae:0f:4d:b4:e5:ee:f9:93: f3:0d:c9:fc:34:fb:99:ef:e8:71:bd:b6:10:16:2e: 4e:73:7b:4b:4e:12:cb:80:87:de:95:a5:a2:eb:aa: c6:96:0b:f1:a7:7f:d7:b7:d0:39:2c:b7:5a:f1:57: af:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:C6:E2:D8:47:F0:5B:0B:CE:46:4C:8C:A0:CC:49:9A:10:B5:09:71 X509v3 Authority Key Identifier: keyid:AC:9F:95:B7:D4:78:E9:82:85:CF:44:BF:C5:7D:81:59:55:34:56:6F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rJ-Vt9R46YKFz0S_xX2BWVU0Vm8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFD87/DDE73B2824C011EBBD47050DC4F9AE02/304D6C7E24C211EBAC07F90DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.156.56.0/24 103.161.226.0/24 IPv6: 2001:df5:5a80::/48 Signature Algorithm: sha256WithRSAEncryption 44:37:96:bf:26:3a:2b:16:ae:d8:7a:79:b0:4b:97:40:d1:17: 76:72:3d:f2:c4:d3:d9:b2:72:25:5a:65:56:64:36:74:6b:ce: 30:79:97:a5:e6:ad:3b:c0:95:6b:e9:d2:29:2e:cc:4f:73:ce: 91:7f:ac:fb:f3:7c:6e:d6:87:a5:72:94:bc:0a:14:52:10:4e: 18:87:36:2f:0b:b6:05:ab:49:f5:71:ca:b6:c5:7e:b1:b0:a1: 69:98:5f:4d:3d:c9:47:cf:36:e3:c3:9d:41:c3:23:69:98:95: 85:22:a2:27:a8:54:2a:6c:6c:87:3f:99:32:aa:e8:91:6e:fa: 2b:1d:c7:61:d1:6b:6d:d1:54:4f:65:74:16:c0:73:fa:95:2c: 31:43:49:ae:b9:39:46:02:21:43:9e:3c:54:c5:4a:f0:7c:04: 90:c3:d7:29:f5:e8:92:b1:b4:44:44:77:b5:73:2a:7d:3b:6b: 9d:82:43:ac:0f:b4:fd:27:98:f3:b7:80:22:7f:be:16:f2:ff: 90:94:de:ee:bb:2a:8f:ac:75:ab:fe:18:c4:12:88:86:28:a4: f5:48:27:68:6c:c9:a8:fb:bb:86:0e:04:02:ad:9c:36:32:3c: 5a:e3:77:aa:10:c4:d5:8a:65:00:d3:fb:96:ab:51:61:e7:83: 39:f9:cd:ba -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBigwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZEODcxMTAvBgNVBAUTKEFDOUY5NUI3RDQ3OEU5ODI4NUNGNDRCRkM1N0Q4MTU5 NTUzNDU2NkYwHhcNMjMxMDE2MjI1MTI2WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJkYmU2ZS1kNzY3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4OUKUiKci5eXgrIx8SX/BmJSpycFZb1qfO+u3dZhRFh4321UjGXLSDrBy8sS fFIsfEuKIrGzueEv2/x7ON/5o7GQ+XAX7U3+/+3XV6oNUjPkmG5Rl17cHgifEbm8 U7nA3/YdJlqas6XEAW2l//HPtBSZP+BGcCziNOJFHDSo/AtNEVAPq2H78JbmxTQN Gho8yhMmLt+kLwciXPg3RqmYtfN5tKaimdX11Ln4PTQMX2dOnl6wzELRL0FCo55C Oozvp9oTc1Vpb+yurg9NtOXu+ZPzDcn8NPuZ7+hxvbYQFi5Oc3tLThLLgIfelaWi 66rGlgvxp3/Xt9A5LLda8VevgwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMfG4thH 8FsLzkZMjKDMSZoQtQlxMB8GA1UdIwQYMBaAFKyflbfUeOmChc9Ev8V9gVlVNFZv MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkQ4Ny9EREU3M0IyODI0 QzAxMUVCQkQ0NzA1MERDNEY5QUUwMi9ySi1WdDlSNDZZS0Z6MFNfeFgyQldWVTBW bTguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JKLVZ0OVI0NllLRnowU194WDJCV1ZVMFZtOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZEODcvRERFNzNCMjgyNEMwMTFFQkJENDcwNTBEQzRGOUFFMDIvMzA0RDZDN0Uy NEMyMTFFQkFDMDdGOTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnnDgDBABnoeIwDwQCAAIwCQMHACABDfVagDANBgkqhkiG 9w0BAQsFAAOCAQEARDeWvyY6Kxau2Hp5sEuXQNEXdnI98sTT2bJyJVplVmQ2dGvO MHmXpeatO8CVa+nSKS7MT3POkX+s+/N8btaHpXKUvAoUUhBOGIc2Lwu2BatJ9XHK tsV+sbChaZhfTT3JR88248OdQcMjaZiVhSKiJ6hUKmxshz+ZMqrokW76Kx3HYdFr bdFUT2V0FsBz+pUsMUNJrrk5RgIhQ548VMVK8HwEkMPXKfXokrG0RER3tXMqfTtr nYJDrA+0/SeY87eAIn++FvL/kJTe7rsqj6x1q/4YxBKIhiik9UgnaGzJqPu7hg4E Aq2cNjI8WuN3qhDE1YplANP7lqtRYeeDOfnNug== -----END CERTIFICATE-----Generated at Sun May 26 23:57:05 2024 by rpki-client on console-fra.rpki-client.org