$ rpki-client -vvf rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/5BFDCF8C05FE11EFA2A14B6DC4F9AE02.roa File: 5BFDCF8C05FE11EFA2A14B6DC4F9AE02.roa (raw, json) Hash identifier: OGzJcg7L9PCLCfzbyQJgcKaHiB3UrYwg9svS3wqdzqs= Subject key identifier: 3F:BC:4E:D8:7B:6E:C1:BC:D5:56:B1:31:ED:65:C6:0D:FC:EE:B7:99 Certificate issuer: /CN=A91C13E1/serialNumber=077BEA9BFE300646165C3436C7D4CC38346C6BA3 Certificate serial: 04 Authority key identifier: 07:7B:EA:9B:FE:30:06:46:16:5C:34:36:C7:D4:CC:38:34:6C:6B:A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B3vqm_4wBkYWXDQ2x9TMODRsa6M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/5BFDCF8C05FE11EFA2A14B6DC4F9AE02.roa Signing time: Mon 29 Apr 2024 07:59:53 +0000 ROA not before: Mon 29 Apr 2024 07:59:53 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152718 IP address blocks: 103.51.128.0/23 maxlen: 24 2001:df3:bcc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/B3vqm_4wBkYWXDQ2x9TMODRsa6M.crl rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/B3vqm_4wBkYWXDQ2x9TMODRsa6M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B3vqm_4wBkYWXDQ2x9TMODRsa6M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C13E1/serialNumber=077BEA9BFE300646165C3436C7D4CC38346C6BA3 Validity Not Before: Apr 29 07:59:53 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=662f5379-93d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:74:aa:15:59:4f:24:e2:1c:c3:ad:ef:7a:fd: d0:0d:c0:d1:81:77:81:44:14:03:04:f5:88:76:14: 6f:5f:03:4c:ce:32:4b:6b:7b:5c:1c:65:3d:cd:8d: 34:fa:13:2c:4e:53:ac:12:47:9a:c1:c6:3e:d1:64: fd:11:ac:c7:51:60:43:91:66:41:df:2f:07:68:78: 58:88:0f:93:53:7a:0a:d1:80:43:6c:a1:6c:c4:36: 2a:e9:cc:62:b1:6f:f7:80:f1:77:b4:23:c2:65:4f: f5:10:b3:0f:2d:55:a0:95:0c:0e:be:7a:1c:02:35: de:16:a0:06:0d:f4:2a:68:71:83:93:ee:2b:56:62: 37:3b:25:b3:6f:39:48:4d:07:1d:bc:47:ac:2e:8a: b1:47:80:ef:69:90:23:54:84:2a:93:4c:75:73:a7: 4c:ca:d1:ef:62:59:eb:c7:9b:d6:41:34:88:f0:49: 15:e2:17:09:c4:ab:16:b9:45:17:c4:bf:18:81:ea: 81:de:76:14:05:ba:ae:a2:4f:14:0d:2f:57:25:9a: b1:5f:d4:60:27:12:f0:16:a3:8c:14:02:fd:6e:17: 37:b4:76:07:9f:fb:20:8e:a0:99:bf:fe:cf:b9:ba: a4:dc:78:80:b2:2f:f9:cb:c8:df:68:0c:83:e1:2b: 48:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:BC:4E:D8:7B:6E:C1:BC:D5:56:B1:31:ED:65:C6:0D:FC:EE:B7:99 X509v3 Authority Key Identifier: keyid:07:7B:EA:9B:FE:30:06:46:16:5C:34:36:C7:D4:CC:38:34:6C:6B:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/B3vqm_4wBkYWXDQ2x9TMODRsa6M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/B3vqm_4wBkYWXDQ2x9TMODRsa6M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C13E1/82FDF91A05FC11EF8A5FC368C4F9AE02/5BFDCF8C05FE11EFA2A14B6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.128.0/23 IPv6: 2001:df3:bcc0::/48 Signature Algorithm: sha256WithRSAEncryption b0:0b:ab:65:1f:0a:0a:4b:61:fe:67:7e:b9:8b:bf:4f:39:98: b8:41:95:56:42:f4:3a:f3:84:2d:3f:59:ec:3c:8e:ea:29:98: c3:33:9a:1d:7e:6f:9b:1b:8a:02:e6:3a:da:64:44:b6:46:39: 08:0f:6f:53:a7:e4:e6:bb:c7:43:1a:71:12:f2:cd:64:a8:b9: 68:74:ea:fb:8a:1a:8b:bc:90:3a:f6:43:38:ef:58:df:f1:3a: 99:22:96:f6:50:85:8b:05:40:05:24:28:93:5d:55:7e:0a:1a: 6f:99:64:0a:51:ed:dc:b3:ce:ef:5e:b9:53:8e:09:36:5c:5f: 52:6b:a9:3f:a0:4b:cd:e5:8b:92:da:c2:0e:06:8b:b9:df:5e: 12:10:f2:aa:4e:67:85:7f:80:b2:69:ec:09:48:fe:af:3e:6a: ae:a7:1e:a7:a5:d1:97:3d:69:fb:41:12:c1:e7:52:b8:64:1d: 54:6f:00:39:a8:75:de:9f:e6:4a:53:0f:c8:20:ef:63:b4:0d: e8:dd:e1:7a:3c:3a:f8:66:5b:79:7f:c1:de:8a:cb:aa:cb:46: 1c:a4:31:d3:98:c1:09:6b:19:53:62:7b:a2:7e:49:dc:e2:c9: 55:13:86:cc:30:e5:ad:84:74:16:d3:fe:07:d2:a4:54:2c:c2: c8:cc:a4:ef -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD MTNFMTExMC8GA1UEBRMoMDc3QkVBOUJGRTMwMDY0NjE2NUMzNDM2QzdENENDMzgz NDZDNkJBMzAeFw0yNDA0MjkwNzU5NTNaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MmY1Mzc5LTkzZDYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDHdKoVWU8k4hzDre96/dANwNGBd4FEFAME9Yh2FG9fA0zOMktre1wcZT3NjTT6 EyxOU6wSR5rBxj7RZP0RrMdRYEORZkHfLwdoeFiID5NTegrRgENsoWzENirpzGKx b/eA8Xe0I8JlT/UQsw8tVaCVDA6+ehwCNd4WoAYN9CpocYOT7itWYjc7JbNvOUhN Bx28R6wuirFHgO9pkCNUhCqTTHVzp0zK0e9iWevHm9ZBNIjwSRXiFwnEqxa5RRfE vxiB6oHedhQFuq6iTxQNL1clmrFf1GAnEvAWo4wUAv1uFze0dgef+yCOoJm//s+5 uqTceICyL/nLyN9oDIPhK0jlAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUP7xO2Htu wbzVVrEx7WXGDfzut5kwHwYDVR0jBBgwFoAUB3vqm/4wBkYWXDQ2x9TMODRsa6Mw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUMxM0UxLzgyRkRGOTFBMDVG QzExRUY4QTVGQzM2OEM0RjlBRTAyL0IzdnFtXzR3QmtZV1hEUTJ4OVRNT0RSc2E2 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQjN2cW1fNHdCa1lXWERRMng5VE1PRFJzYTZNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD MTNFMS84MkZERjkxQTA1RkMxMUVGOEE1RkMzNjhDNEY5QUUwMi81QkZEQ0Y4QzA1 RkUxMUVGQTJBMTRCNkRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWczgDAPBAIAAjAJAwcAIAEN87zAMA0GCSqGSIb3DQEBCwUA A4IBAQCwC6tlHwoKS2H+Z365i79POZi4QZVWQvQ684QtP1nsPI7qKZjDM5odfm+b G4oC5jraZES2RjkID29Tp+Tmu8dDGnES8s1kqLlodOr7ihqLvJA69kM471jf8TqZ Ipb2UIWLBUAFJCiTXVV+ChpvmWQKUe3cs87vXrlTjgk2XF9Sa6k/oEvN5YuS2sIO Bou5314SEPKqTmeFf4CyaewJSP6vPmqupx6npdGXPWn7QRLB51K4ZB1UbwA5qHXe n+ZKUw/IIO9jtA3o3eF6PDr4Zlt5f8Heisuqy0YcpDHTmMEJaxlTYnuifknc4slV E4bMMOWthHQW0/4H0qRULMLIzKTv -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:28 2024 by rpki-client on console-ams.rpki-client.org