$ rpki-client -vvf rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa File: C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa (raw, json) Hash identifier: BhY5N3MgVaw0QMBj+DSRNy1Aln3Tg/7PwODU1TXoO+o= Subject key identifier: 85:4C:3E:D4:D1:64:7B:03:85:61:55:78:DC:CC:EA:76:56:FB:55:39 Certificate issuer: /CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Certificate serial: 03EA Authority key identifier: 53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa Signing time: Thu 03 Aug 2023 01:01:48 +0000 ROA not before: Thu 03 Aug 2023 01:01:48 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 140732 IP address blocks: 103.167.162.0/24 maxlen: 24 2001:df6:b980::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 01:46:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C17A9/serialNumber=5394E57D285777FD751428D15CB0FB2FC592C7A6 Validity Not Before: Aug 3 01:01:48 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64cafc7c-fb66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1e:12:2f:75:f6:dd:09:e1:ef:7d:49:b0:3b: 88:84:b5:45:36:1e:ac:a9:3d:02:43:d6:c7:c3:73: 9e:1a:8c:df:2e:1e:b8:76:03:fa:31:4a:f6:79:30: 60:1c:b3:3c:2b:1b:19:08:63:24:70:39:01:ad:84: a0:6d:6a:bc:37:88:b6:bc:8a:61:bb:a2:db:51:fa: 98:45:02:59:c8:f8:bf:6d:7e:ad:8b:05:13:87:e1: 43:a4:f8:f3:9d:ce:87:f7:32:79:28:03:74:65:9e: 51:81:c4:16:27:f5:c3:72:25:9e:90:db:b3:32:e6: 78:80:75:c2:d3:4e:83:94:48:72:05:f8:d9:1e:76: 90:87:51:12:fd:aa:b3:a9:9e:7f:8f:27:6c:4c:de: d2:4a:99:68:8b:17:a7:71:b3:02:02:dc:6b:83:c2: c7:1d:4d:b9:b9:1a:d0:4a:44:c7:8f:db:34:af:56: 60:30:f2:2a:41:f0:3b:60:7b:22:9b:64:03:f7:94: 16:0a:e9:23:37:be:27:7f:c9:3b:7d:7e:27:27:c3: 75:b9:53:18:b6:f5:17:26:d7:9f:4e:fa:99:9f:5b: 42:cf:a2:d7:2d:14:9c:ec:27:fa:be:8a:0f:11:e7: ce:89:64:5a:30:1b:b7:b0:90:21:66:d9:6c:ac:2c: df:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:4C:3E:D4:D1:64:7B:03:85:61:55:78:DC:CC:EA:76:56:FB:55:39 X509v3 Authority Key Identifier: keyid:53:94:E5:7D:28:57:77:FD:75:14:28:D1:5C:B0:FB:2F:C5:92:C7:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/U5TlfShXd_11FCjRXLD7L8WSx6Y.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/U5TlfShXd_11FCjRXLD7L8WSx6Y.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C17A9/5F89F6ECFB3111EB8FBFA559C4F9AE02/C2CAC16E5C9D11EC99F7D10BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.162.0/24 IPv6: 2001:df6:b980::/48 Signature Algorithm: sha256WithRSAEncryption 77:8b:5a:b6:16:14:dd:b2:b1:f7:ee:dd:bc:9e:7f:7a:b3:ab: 31:79:47:09:36:a2:73:37:5a:1f:5f:b2:85:66:79:33:3b:5b: 9f:b5:af:cb:b9:e8:40:9e:f9:65:80:36:b0:a9:15:5b:a8:ff: 4a:c3:d0:bd:eb:2e:9b:44:96:6c:0c:9b:bc:c2:d8:8c:bb:ba: 18:90:4b:b0:03:1e:35:05:18:6f:8c:17:c7:b8:ca:b4:2a:fe: 57:4c:17:65:5b:91:14:f0:ef:58:b0:15:d0:9e:20:3d:9a:8a: 3b:bc:58:37:9e:37:02:2f:34:46:bb:d9:71:4f:d8:36:2e:d3: ec:81:63:45:dc:84:0c:11:1f:9b:57:3d:f0:90:eb:6d:28:25: 6e:a7:65:83:51:5a:03:d9:ad:f5:d3:e9:c3:fa:59:9b:b3:10: 9d:6e:a1:5b:0b:93:c9:ad:7e:a2:b8:83:13:29:ba:91:4f:41: 73:0b:c1:55:a7:31:01:2b:c5:ac:ff:9c:e9:09:15:a0:e3:df: 70:87:71:10:c4:db:5b:9c:25:8f:69:5f:05:7e:7e:71:59:14: b2:6b:c1:00:e5:d4:02:89:c5:ba:b2:19:67:89:20:20:94:66: 65:dd:c2:c0:04:57:fa:e3:fd:93:1b:52:10:ce:65:c7:de:ff: 38:87:68:1f -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICA+owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzE3QTkxMTAvBgNVBAUTKDUzOTRFNTdEMjg1Nzc3RkQ3NTE0MjhEMTVDQjBGQjJG QzU5MkM3QTYwHhcNMjMwODAzMDEwMTQ4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNhZmM3Yy1mYjY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxB4SL3X23Qnh731JsDuIhLVFNh6sqT0CQ9bHw3OeGozfLh64dgP6MUr2eTBg HLM8KxsZCGMkcDkBrYSgbWq8N4i2vIphu6LbUfqYRQJZyPi/bX6tiwUTh+FDpPjz nc6H9zJ5KAN0ZZ5RgcQWJ/XDciWekNuzMuZ4gHXC006DlEhyBfjZHnaQh1ES/aqz qZ5/jydsTN7SSploixencbMCAtxrg8LHHU25uRrQSkTHj9s0r1ZgMPIqQfA7YHsi m2QD95QWCukjN74nf8k7fX4nJ8N1uVMYtvUXJtefTvqZn1tCz6LXLRSc7Cf6vooP EefOiWRaMBu3sJAhZtlsrCzfHwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIVMPtTR ZHsDhWFVeNzM6nZW+1U5MB8GA1UdIwQYMBaAFFOU5X0oV3f9dRQo0Vyw+y/Fksem MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMTdBOS81Rjg5RjZFQ0ZC MzExMUVCOEZCRkE1NTlDNEY5QUUwMi9VNVRsZlNoWGRfMTFGQ2pSWExEN0w4V1N4 NlkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1U1VGxmU2hYZF8xMUZDalJYTEQ3TDhXU3g2WS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzE3QTkvNUY4OUY2RUNGQjMxMTFFQjhGQkZBNTU5QzRGOUFFMDIvQzJDQUMxNkU1 QzlEMTFFQzk5RjdEMTBCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnp6IwDwQCAAIwCQMHACABDfa5gDANBgkqhkiG9w0BAQsF AAOCAQEAd4tathYU3bKx9+7dvJ5/erOrMXlHCTaiczdaH1+yhWZ5Mztbn7Wvy7no QJ75ZYA2sKkVW6j/SsPQvesum0SWbAybvMLYjLu6GJBLsAMeNQUYb4wXx7jKtCr+ V0wXZVuRFPDvWLAV0J4gPZqKO7xYN543Ai80RrvZcU/YNi7T7IFjRdyEDBEfm1c9 8JDrbSglbqdlg1FaA9mt9dPpw/pZm7MQnW6hWwuTya1+oriDEym6kU9BcwvBVacx ASvFrP+c6QkVoOPfcIdxEMTbW5wlj2lfBX5+cVkUsmvBAOXUAonFurIZZ4kgIJRm Zd3CwARX+uP9kxtSEM5lx97/OIdoHw== -----END CERTIFICATE-----Generated at Tue May 21 03:39:39 2024 by rpki-client on console-ams.rpki-client.org