$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa File: EC56413A5B4B11EE9A031C81C4F9AE02.roa (raw, json) Hash identifier: Hh0/f6NytDdeyTGJ1ZKz3ERIyV3jDbMOhWYWKs/vNpU= Subject key identifier: 41:ED:72:B8:C4:97:DC:C0:3B:F4:F8:2F:B9:0F:80:88:21:F0:F7:68 Certificate issuer: /CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Certificate serial: 7C Authority key identifier: 00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa Signing time: Mon 13 May 2024 07:41:50 +0000 ROA not before: Mon 13 May 2024 07:41:50 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 1851 IP address blocks: 103.37.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Sep 2024 04:19:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 124 (0x7c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE5A6/serialNumber=009928F0B8CD30EDA05630A8BA674E762A9D2833 Validity Not Before: May 13 07:41:50 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=6641c43d-ff07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d1:cc:71:ab:b4:ab:dc:64:19:fe:eb:80:ed: d0:88:8d:83:b4:38:b4:95:be:b4:b4:95:ac:d7:54: 4c:bc:5f:3f:73:73:a5:c4:22:a8:26:21:f6:eb:b8: 19:3d:a9:8f:7a:95:e0:a1:16:d7:19:6f:72:1e:41: 22:e5:3e:b4:7f:d5:3d:3e:b3:80:d9:68:31:35:96: 17:cd:49:d4:74:45:0a:d7:60:69:83:81:16:a7:14: ca:0b:27:49:51:d1:03:c2:7a:19:0b:cb:38:4e:fe: 91:6b:a6:ba:73:f7:66:14:e5:2b:d2:2a:39:94:0f: a1:fb:81:90:f4:a7:fc:3b:aa:ac:6e:71:3a:0e:84: e1:90:fc:60:c9:79:46:f9:38:e7:bd:73:f6:6b:2b: 06:8f:e6:f3:eb:68:d1:eb:3c:19:d0:8f:7f:d0:d6: 03:9f:93:88:13:2d:01:2d:75:3a:dc:6a:44:19:11: 38:26:c9:b7:05:e1:0b:01:94:ae:bc:4c:a3:23:40: ac:ec:1d:fc:36:a4:78:6c:0f:6a:e6:71:38:dc:10: 09:f1:08:84:73:97:17:e5:5b:33:d1:37:70:17:bd: ae:a8:d7:d1:0b:ca:43:ed:98:13:b5:85:a7:9a:28: bf:48:2e:2a:3c:aa:cb:0e:6b:3b:0d:36:ae:4d:1b: 06:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:ED:72:B8:C4:97:DC:C0:3B:F4:F8:2F:B9:0F:80:88:21:F0:F7:68 X509v3 Authority Key Identifier: keyid:00:99:28:F0:B8:CD:30:ED:A0:56:30:A8:BA:67:4E:76:2A:9D:28:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/AJko8LjNMO2gVjCoumdOdiqdKDM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AJko8LjNMO2gVjCoumdOdiqdKDM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE5A6/B37497105B3F11EE8F1D3D6EC4F9AE02/EC56413A5B4B11EE9A031C81C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.37.128.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:84:25:fe:eb:3a:a0:c7:db:7e:10:14:ed:f8:7f:59:ac:b6: d7:80:33:18:7f:be:f7:93:f8:f6:0f:31:25:fa:a4:73:4f:73: bf:49:0b:d9:ab:d0:a5:0f:18:bf:69:4d:27:0f:9a:c1:1e:da: c7:19:56:c3:a8:f4:67:41:ba:17:5c:51:78:3e:71:7b:73:30: 2d:0b:b3:c4:fe:31:c2:aa:38:96:53:c7:67:6d:d1:08:f9:9c: eb:07:57:f0:14:bc:c5:77:87:29:88:be:52:4c:85:27:56:1a: d0:34:8e:86:1a:99:63:2e:ab:d2:0a:d8:64:9a:6e:b6:92:f3: c5:64:3a:75:66:c0:17:59:e0:56:f6:70:43:43:cb:d1:3a:46: ea:f7:81:f9:ea:5e:80:8f:d0:f3:d4:33:fc:1c:99:ba:32:64: 07:d2:5d:d1:23:e8:bc:b4:59:0b:d1:fc:2d:1d:e9:5d:ae:64: 1e:81:e4:27:66:8c:25:b8:eb:6a:c7:78:74:09:a9:9b:fb:77: 75:71:9e:b6:35:19:e9:b2:57:fd:18:2e:d9:ac:f2:b9:d5:1d: 91:17:29:00:73:9e:ab:6b:7c:c7:b8:8d:77:d7:ac:2e:0c:3a: b5:60:57:e9:62:3f:dc:ed:70:5c:67:53:28:d4:34:d4:57:2d: ef:81:6a:f4 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBfDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD RTVBNjExMC8GA1UEBRMoMDA5OTI4RjBCOENEMzBFREEwNTYzMEE4QkE2NzRFNzYy QTlEMjgzMzAeFw0yNDA1MTMwNzQxNTBaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2NDFjNDNkLWZmMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDV0cxxq7Sr3GQZ/uuA7dCIjYO0OLSVvrS0lazXVEy8Xz9zc6XEIqgmIfbruBk9 qY96leChFtcZb3IeQSLlPrR/1T0+s4DZaDE1lhfNSdR0RQrXYGmDgRanFMoLJ0lR 0QPCehkLyzhO/pFrprpz92YU5SvSKjmUD6H7gZD0p/w7qqxucToOhOGQ/GDJeUb5 OOe9c/ZrKwaP5vPraNHrPBnQj3/Q1gOfk4gTLQEtdTrcakQZETgmybcF4QsBlK68 TKMjQKzsHfw2pHhsD2rmcTjcEAnxCIRzlxflWzPRN3AXva6o19ELykPtmBO1haea KL9ILio8qssOazsNNq5NGwbRAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUQe1yuMSX 3MA79PgvuQ+AiCHw92gwHwYDVR0jBBgwFoAUAJko8LjNMO2gVjCoumdOdiqdKDMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUNFNUE2L0IzNzQ5NzEwNUIz RjExRUU4RjFEM0Q2RUM0RjlBRTAyL0FKa284TGpOTU8yZ1ZqQ291bWRPZGlxZEtE TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvQUprbzhMak5NTzJnVmpDb3VtZE9kaXFkS0RNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD RTVBNi9CMzc0OTcxMDVCM0YxMUVFOEYxRDNENkVDNEY5QUUwMi9FQzU2NDEzQTVC NEIxMUVFOUEwMzFDODFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmclgDANBgkqhkiG9w0BAQsFAAOCAQEAG4Ql/us6oMfbfhAU 7fh/Way214AzGH++95P49g8xJfqkc09zv0kL2avQpQ8Yv2lNJw+awR7axxlWw6j0 Z0G6F1xReD5xe3MwLQuzxP4xwqo4llPHZ23RCPmc6wdX8BS8xXeHKYi+UkyFJ1Ya 0DSOhhqZYy6r0grYZJputpLzxWQ6dWbAF1ngVvZwQ0PL0TpG6veB+epegI/Q89Qz /ByZujJkB9Jd0SPovLRZC9H8LR3pXa5kHoHkJ2aMJbjrasd4dAmpm/t3dXGetjUZ 6bJX/Rgu2azyudUdkRcpAHOeq2t8x7iNd9esLgw6tWBX6WI/3O1wXGdTKNQ01Fct 74Fq9A== -----END CERTIFICATE-----Generated at Thu Sep 19 07:14:23 2024 by rpki-client on console-fra.rpki-client.org