$ rpki-client -vvf rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa File: D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa (raw, json) Hash identifier: pCQ6Zv4AQRohxIezVUYwDmwCrvRYPnBVH50M3Opl1jc= Subject key identifier: 32:D8:53:A0:97:2A:F0:3F:77:FE:4F:0D:83:B1:0D:42:3E:D6:B6:AA Certificate issuer: /CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Certificate serial: 0E30 Authority key identifier: 30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa Signing time: Tue 02 May 2023 19:16:11 +0000 ROA not before: Tue 02 May 2023 19:16:11 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 6939 IP address blocks: 103.138.32.0/24 maxlen: 24 103.139.90.0/24 maxlen: 24 2404:bb40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 18:21:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3632 (0xe30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D17E8/serialNumber=3027308159151941AB734C720617DF7FDCC2410C Validity Not Before: May 2 19:16:11 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6451617a-3711 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7c:f8:5b:69:ad:d9:fa:5d:49:fd:6b:61:b3: 89:72:14:5d:ec:9b:6c:5f:6e:a6:92:53:c7:39:a4: ad:11:90:be:56:66:f2:6a:42:07:41:77:d5:31:b3: 14:ac:4b:bc:bc:07:f0:f9:16:86:f7:02:ac:3d:81: 4b:e5:58:b5:cf:76:fc:ce:37:f9:4b:6b:47:09:70: 6b:54:5b:da:a5:9a:c8:95:a2:ef:d6:ec:37:f4:13: e8:9d:6a:75:2e:e6:64:4f:86:d4:c0:ae:4f:1a:03: 47:5d:a1:58:4a:08:57:2f:c7:c5:7a:9f:aa:30:b1: bb:9d:b6:52:bf:1d:d8:99:9e:63:0c:b8:34:41:b4: 85:99:3d:29:e6:1c:ad:96:43:69:31:51:13:9d:df: 69:65:f8:dd:0c:e6:8b:e2:3a:61:53:dd:67:3a:f0: 22:83:88:78:aa:21:47:1e:b1:55:08:7d:34:04:5a: 14:45:46:dc:71:8e:c9:be:24:c4:5f:92:0f:9b:c7: 97:de:65:78:c8:5a:88:bb:b8:25:24:71:de:f8:08: 93:22:2c:92:8c:20:a9:dd:c5:6d:5b:1b:8f:07:d9: 9a:d5:6a:6e:be:92:ac:e0:a7:3c:15:aa:53:59:89: e8:da:20:c5:7b:76:a6:0a:3d:6c:4c:13:d3:de:98: 78:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D8:53:A0:97:2A:F0:3F:77:FE:4F:0D:83:B1:0D:42:3E:D6:B6:AA X509v3 Authority Key Identifier: keyid:30:27:30:81:59:15:19:41:AB:73:4C:72:06:17:DF:7F:DC:C2:41:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/MCcwgVkVGUGrc0xyBhfff9zCQQw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/MCcwgVkVGUGrc0xyBhfff9zCQQw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D17E8/F16E18565C5311E99AB5CF68C4F9AE02/D8C69E2A5C5511E98C4B6D6BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.32.0/24 103.139.90.0/24 IPv6: 2404:bb40::/32 Signature Algorithm: sha256WithRSAEncryption 78:44:20:25:e5:1c:7c:76:53:51:86:1d:35:4d:fa:73:16:6f: c1:dd:49:da:aa:0d:de:2a:19:55:5f:30:cb:ed:98:d7:d7:c8: 2e:16:c1:e3:83:e4:d5:f9:69:9d:be:ed:84:46:43:59:c3:54: 37:aa:c7:6d:67:f4:74:33:a6:82:dd:2f:47:f8:1f:94:e1:f1: 56:3b:fd:3c:a6:23:de:1a:58:da:a3:7e:30:d8:e5:99:20:bf: 34:d2:6f:6c:60:f7:7d:36:a6:ce:23:ef:64:54:76:2a:a0:d7: f6:56:b4:a7:00:21:aa:d1:3b:0b:b4:a7:b4:06:a6:13:b9:cf: 35:79:e7:c2:6b:4b:86:b0:0d:ad:00:38:f9:f4:18:a7:18:2a: af:99:ff:c0:f4:e8:70:3a:1e:8a:ed:e1:ae:97:b5:d4:01:5c: db:b9:7e:3c:79:8f:7e:b1:7c:df:ee:b8:79:d3:15:46:61:dc: a4:f0:d0:cd:91:d2:09:1b:22:e6:44:b0:de:ae:02:62:39:86: c4:5e:0c:77:a8:4e:63:1e:86:12:e3:c2:86:5e:7a:0d:c7:77: 6b:b5:c2:c7:92:e5:b2:dc:e2:bf:d8:7c:34:d2:8d:c2:ec:f1: 51:72:52:08:5a:2c:96:35:ad:1f:65:20:eb:08:6a:19:ff:17: 46:1f:0d:a3 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDjAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDE3RTgxMTAvBgNVBAUTKDMwMjczMDgxNTkxNTE5NDFBQjczNEM3MjA2MTdERjdG RENDMjQxMEMwHhcNMjMwNTAyMTkxNjExWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDUxNjE3YS0zNzExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAq3z4W2mt2fpdSf1rYbOJchRd7JtsX26mklPHOaStEZC+VmbyakIHQXfVMbMU rEu8vAfw+RaG9wKsPYFL5Vi1z3b8zjf5S2tHCXBrVFvapZrIlaLv1uw39BPonWp1 LuZkT4bUwK5PGgNHXaFYSghXL8fFep+qMLG7nbZSvx3YmZ5jDLg0QbSFmT0p5hyt lkNpMVETnd9pZfjdDOaL4jphU91nOvAig4h4qiFHHrFVCH00BFoURUbccY7JviTE X5IPm8eX3mV4yFqIu7glJHHe+AiTIiySjCCp3cVtWxuPB9ma1WpuvpKs4Kc8FapT WYno2iDFe3amCj1sTBPT3ph4WQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFDLYU6CX KvA/d/5PDYOxDUI+1raqMB8GA1UdIwQYMBaAFDAnMIFZFRlBq3NMcgYX33/cwkEM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTdFOC9GMTZFMTg1NjVD NTMxMUU5OUFCNUNGNjhDNEY5QUUwMi9NQ2N3Z1ZrVkdVR3JjMHh5QmhmZmY5ekNR UXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01DY3dnVmtWR1VHcmMweHlCaGZmZjl6Q1FRdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDE3RTgvRjE2RTE4NTY1QzUzMTFFOTlBQjVDRjY4QzRGOUFFMDIvRDhDNjlFMkE1 QzU1MTFFOThDNEI2RDZCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBABniiADBABni1owDQQCAAIwBwMFACQEu0AwDQYJKoZIhvcN AQELBQADggEBAHhEICXlHHx2U1GGHTVN+nMWb8HdSdqqDd4qGVVfMMvtmNfXyC4W weOD5NX5aZ2+7YRGQ1nDVDeqx21n9HQzpoLdL0f4H5Th8VY7/TymI94aWNqjfjDY 5ZkgvzTSb2xg9302ps4j72RUdiqg1/ZWtKcAIarROwu0p7QGphO5zzV558JrS4aw Da0AOPn0GKcYKq+Z/8D06HA6Hort4a6XtdQBXNu5fjx5j36xfN/uuHnTFUZh3KTw 0M2R0gkbIuZEsN6uAmI5hsReDHeoTmMehhLjwoZeeg3Hd2u1wseS5bLc4r/YfDTS jcLs8VFyUghaLJY1rR9lIOsIahn/F0YfDaM= -----END CERTIFICATE-----Generated at Wed Apr 24 20:29:52 2024 by rpki-client on console-fra.rpki-client.org