$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/7F2355F2FE2A11EA8A51B85AC4F9AE02.roa File: 7F2355F2FE2A11EA8A51B85AC4F9AE02.roa (raw, json) Hash identifier: k1OCR/hebk2sDyU2kQY6MZJlVjmexhMLICsY/iovIDg= Subject key identifier: 62:53:3A:44:84:78:C3:7D:C7:43:FE:60:0A:67:58:BE:4A:77:69:CD Certificate issuer: /CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Certificate serial: 0653 Authority key identifier: 68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/7F2355F2FE2A11EA8A51B85AC4F9AE02.roa Signing time: Sat 08 Jul 2023 21:58:03 +0000 ROA not before: Sat 08 Jul 2023 21:58:03 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 139244 IP address blocks: 103.140.92.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 22:33:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1619 (0x653) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE216/serialNumber=68A4FC812D0191363E1C4A13099F53B027376579 Validity Not Before: Jul 8 21:58:03 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a9dbeb-b60b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:8b:4f:ac:4d:b4:e6:8d:48:2a:34:c3:5d:14: b8:fa:d9:e8:d4:3c:f0:a4:ee:f3:74:fb:b7:f2:5e: 77:23:94:91:2d:dc:18:6c:4e:c6:15:88:4e:f8:f3: 61:2e:ce:31:fb:67:d2:67:e0:b6:2e:ab:f8:ca:41: a3:9d:dd:82:7e:ae:95:c5:7d:3e:2f:c2:d4:28:52: 00:d4:c2:19:8f:65:ae:60:de:5f:5f:a4:7b:e9:ac: 2e:9b:c9:80:0b:b6:32:fe:6a:73:60:f8:0e:35:85: e7:08:26:2e:91:23:c2:7d:0c:03:2a:d6:37:67:88: 3f:bc:8d:c9:1f:f7:45:c2:59:1b:42:a9:41:13:74: cf:62:1c:d7:e7:d3:8b:b1:17:1c:17:5d:45:19:51: 04:7b:a0:5a:73:45:f6:c0:22:a3:bd:46:45:7f:90: 49:6a:4e:71:da:3e:78:0d:3e:3a:64:4e:2b:07:1a: ec:d0:b7:31:b1:3e:76:3c:63:0a:72:8d:14:49:b9: e9:99:cd:02:d5:ea:c1:3d:0c:aa:a2:2f:9c:73:08: b8:1b:ae:2a:84:9a:ee:66:3b:e8:25:12:66:b2:18: 61:ef:e1:29:44:1a:d2:9a:7d:e7:3f:aa:3c:15:9d: bd:61:43:55:57:d9:96:b8:09:0b:38:4b:c7:9e:7f: 68:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:53:3A:44:84:78:C3:7D:C7:43:FE:60:0A:67:58:BE:4A:77:69:CD X509v3 Authority Key Identifier: keyid:68:A4:FC:81:2D:01:91:36:3E:1C:4A:13:09:9F:53:B0:27:37:65:79 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/aKT8gS0BkTY-HEoTCZ9TsCc3ZXk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE216/AF57B6FCFE2811EAA7350158C4F9AE02/7F2355F2FE2A11EA8A51B85AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.92.0/23 Signature Algorithm: sha256WithRSAEncryption 55:1b:b0:0c:cd:40:73:c2:81:8d:2e:bd:82:eb:24:0b:e7:ce: 77:36:18:71:dd:22:5c:fa:d5:57:11:25:13:de:ff:ef:02:a6: e7:76:ac:18:bd:a3:da:aa:82:ef:b4:7b:34:86:e7:52:db:e9: 93:7a:e7:5e:4e:cf:a0:d8:d7:33:74:46:37:68:00:5a:8b:f1: fd:fc:8d:1f:4c:5c:bd:3a:1f:7a:e6:fa:35:f6:e5:9b:3c:21: 50:25:8e:51:7c:c3:55:81:2a:b0:ad:8a:0c:7e:21:1d:d0:01: fb:c0:ff:7a:d2:4c:1e:41:a3:9d:d7:64:6b:c9:f3:32:3c:91: a2:4f:44:c2:c4:ec:bb:73:72:04:b5:c9:27:1f:05:d6:74:f8: 00:9e:fd:1e:2d:22:a4:da:0f:78:75:ae:fb:dd:da:85:d2:5e: 9c:d1:02:df:30:42:ea:9b:78:d0:0e:62:e2:38:11:6d:66:f3: 98:71:3a:f9:3a:cf:48:30:42:f5:85:f5:c1:af:9e:e6:4c:c4: 3e:cc:77:56:19:4c:fc:d6:07:9b:26:f2:e8:f3:c1:95:fa:26: 82:68:aa:90:14:b6:c7:3f:62:eb:c6:15:f6:d1:90:f5:f1:47: 3b:8c:a4:f3:83:d3:90:30:ff:c9:46:34:32:26:12:19:73:01: fc:68:c2:ab -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBlMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0UyMTYxMTAvBgNVBAUTKDY4QTRGQzgxMkQwMTkxMzYzRTFDNEExMzA5OUY1M0Iw MjczNzY1NzkwHhcNMjMwNzA4MjE1ODAzWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5ZGJlYi1iNjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAr4tPrE205o1IKjTDXRS4+tno1DzwpO7zdPu38l53I5SRLdwYbE7GFYhO+PNh Ls4x+2fSZ+C2Lqv4ykGjnd2Cfq6VxX0+L8LUKFIA1MIZj2WuYN5fX6R76awum8mA C7Yy/mpzYPgONYXnCCYukSPCfQwDKtY3Z4g/vI3JH/dFwlkbQqlBE3TPYhzX59OL sRccF11FGVEEe6Bac0X2wCKjvUZFf5BJak5x2j54DT46ZE4rBxrs0LcxsT52PGMK co0USbnpmc0C1erBPQyqoi+ccwi4G64qhJruZjvoJRJmshhh7+EpRBrSmn3nP6o8 FZ29YUNVV9mWuAkLOEvHnn9o8QIDAQABo4IClTCCApEwHQYDVR0OBBYEFGJTOkSE eMN9x0P+YApnWL5Kd2nNMB8GA1UdIwQYMBaAFGik/IEtAZE2PhxKEwmfU7AnN2V5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTIxNi9BRjU3QjZGQ0ZF MjgxMUVBQTczNTAxNThDNEY5QUUwMi9hS1Q4Z1MwQmtUWS1IRW9UQ1o5VHNDYzNa WGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2FLVDhnUzBCa1RZLUhFb1RDWjlUc0NjM1pYay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0UyMTYvQUY1N0I2RkNGRTI4MTFFQUE3MzUwMTU4QzRGOUFFMDIvN0YyMzU1RjJG RTJBMTFFQThBNTFCODVBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnjFwwDQYJKoZIhvcNAQELBQADggEBAFUbsAzNQHPCgY0u vYLrJAvnznc2GHHdIlz61VcRJRPe/+8Cpud2rBi9o9qqgu+0ezSG51Lb6ZN6515O z6DY1zN0RjdoAFqL8f38jR9MXL06H3rm+jX25Zs8IVAljlF8w1WBKrCtigx+IR3Q AfvA/3rSTB5Bo53XZGvJ8zI8kaJPRMLE7LtzcgS1yScfBdZ0+ACe/R4tIqTaD3h1 rvvd2oXSXpzRAt8wQuqbeNAOYuI4EW1m85hxOvk6z0gwQvWF9cGvnuZMxD7Md1YZ TPzWB5sm8ujzwZX6JoJoqpAUtsc/YuvGFfbRkPXxRzuMpPOD05Aw/8lGNDImEhlz Afxowqs= -----END CERTIFICATE-----Generated at Mon May 20 23:16:46 2024 by rpki-client on console-fra.rpki-client.org