$ rpki-client -vvf rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/A14BDCE491EB11EBAD7A1530C4F9AE02.roa File: A14BDCE491EB11EBAD7A1530C4F9AE02.roa (raw, json) Hash identifier: oheVgwgcc5IUYSIleOKjSz3O1d0TWSDn9p0tlk0co7w= Subject key identifier: B2:4D:55:60:90:32:E9:67:6A:93:97:39:BE:D1:ED:05:05:46:93:22 Certificate issuer: /CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Certificate serial: 056D Authority key identifier: 5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/A14BDCE491EB11EBAD7A1530C4F9AE02.roa Signing time: Tue 09 Apr 2024 01:03:27 +0000 ROA not before: Tue 09 Apr 2024 01:03:27 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 142008 IP address blocks: 103.164.158.0/24 maxlen: 24 103.173.38.0/24 maxlen: 24 2001:df6:4c80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1389 (0x56d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D1EBA/serialNumber=5C37CDFCC8E9E90C41164A391EE903B4DE54DFB1 Validity Not Before: Apr 9 01:03:27 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661493de-c7ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:74:92:9a:ac:ef:e4:7f:5b:6c:f2:bd:b6:47: f5:c5:6e:b1:11:ac:95:62:45:e4:35:f4:7a:db:92: 5e:bf:90:62:29:5d:0e:c3:b7:1c:0a:01:56:6c:a6: 79:0c:e5:7b:0e:ac:dc:b6:fb:a2:7b:4a:10:ce:19: 9c:f4:e9:24:34:fc:30:04:44:c5:b5:67:90:7d:2f: 7b:41:a3:6a:f5:c0:6c:5f:4d:4f:54:46:78:6d:f9: 21:c4:90:f6:bc:47:6d:d3:49:72:b8:dc:89:ec:24: 75:08:92:6d:0f:eb:b8:aa:3d:ca:bc:16:98:01:20: 20:ad:a7:88:d7:2b:ca:ac:1b:af:4a:c1:36:82:6c: 96:f6:e8:18:fd:0e:62:ee:0f:63:9c:e6:ee:98:df: 3a:52:d5:08:8d:7f:5b:1c:9b:b2:a1:d2:f0:37:79: 47:90:7b:fc:c2:55:12:64:a8:2b:60:ab:68:fb:97: 2b:36:35:87:2f:74:14:56:a4:db:58:af:33:91:c7: ac:93:2b:09:65:d4:1f:f3:58:7b:3e:c8:4b:ab:4e: 57:ca:e9:39:65:54:24:89:1e:f6:5b:d0:13:45:17: 64:0f:95:52:97:07:c5:41:bb:f9:cb:1e:6d:84:63: 8f:69:e5:94:20:d9:eb:b0:59:50:14:4c:24:e2:2a: a0:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:4D:55:60:90:32:E9:67:6A:93:97:39:BE:D1:ED:05:05:46:93:22 X509v3 Authority Key Identifier: keyid:5C:37:CD:FC:C8:E9:E9:0C:41:16:4A:39:1E:E9:03:B4:DE:54:DF:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/XDfN_Mjp6QxBFko5HukDtN5U37E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XDfN_Mjp6QxBFko5HukDtN5U37E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D1EBA/8394E25091EA11EBAADBF92FC4F9AE02/A14BDCE491EB11EBAD7A1530C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.164.158.0/24 103.173.38.0/24 IPv6: 2001:df6:4c80::/48 Signature Algorithm: sha256WithRSAEncryption 99:17:38:9f:20:7a:91:e1:ec:75:6b:96:b5:18:93:9f:32:2f: 3d:12:3c:f2:89:9e:36:72:b8:bf:90:6c:76:9a:55:17:77:8c: 21:f0:87:e9:1a:fc:58:52:68:b2:81:99:33:63:7d:3b:a6:56: 73:7c:81:90:3b:e4:43:5e:01:da:92:19:07:be:04:fd:2a:ed: cc:8a:65:55:14:df:f4:be:e4:7e:c5:d6:9a:a5:0f:ca:99:e7: c6:9e:c0:9e:5e:6b:66:59:0f:c7:63:06:c8:9f:56:81:4d:0e: 26:95:81:36:c3:f6:27:8f:87:41:4a:b4:cc:5a:d1:4e:23:37: 9e:34:ef:da:5e:f4:ee:f1:39:2a:f8:6e:45:36:da:d7:1d:13: 6f:00:f9:2d:22:bc:e8:4f:e5:f8:a4:23:f6:ad:b2:b0:0b:a9: 5d:63:ef:d3:b6:a6:1a:4e:16:fa:98:ab:74:61:69:bd:90:b6: 46:b9:d5:3a:82:40:18:8b:f1:c1:fc:4f:83:fa:8d:0d:be:ec: 2f:de:da:34:b2:22:d7:a1:40:4c:54:ae:42:6f:a4:7c:5f:dc: 25:6e:41:d4:c8:76:cc:8e:0f:37:7e:8a:a9:a7:4d:1e:2a:ae: 65:a8:f2:5d:2c:39:09:c6:a6:4c:c0:9e:29:fd:b1:ce:ed:5d: 82:cd:0c:1f -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICBW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDFFQkExMTAvBgNVBAUTKDVDMzdDREZDQzhFOUU5MEM0MTE2NEEzOTFFRTkwM0I0 REU1NERGQjEwHhcNMjQwNDA5MDEwMzI3WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjE0OTNkZS1jN2FiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwHSSmqzv5H9bbPK9tkf1xW6xEayVYkXkNfR625Jev5BiKV0Ow7ccCgFWbKZ5 DOV7Dqzctvuie0oQzhmc9OkkNPwwBETFtWeQfS97QaNq9cBsX01PVEZ4bfkhxJD2 vEdt00lyuNyJ7CR1CJJtD+u4qj3KvBaYASAgraeI1yvKrBuvSsE2gmyW9ugY/Q5i 7g9jnObumN86UtUIjX9bHJuyodLwN3lHkHv8wlUSZKgrYKto+5crNjWHL3QUVqTb WK8zkceskysJZdQf81h7PshLq05Xyuk5ZVQkiR72W9ATRRdkD5VSlwfFQbv5yx5t hGOPaeWUINnrsFlQFEwk4iqgKwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFLJNVWCQ MulnapOXOb7R7QUFRpMiMB8GA1UdIwQYMBaAFFw3zfzI6ekMQRZKOR7pA7TeVN+x MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMUVCQS84Mzk0RTI1MDkx RUExMUVCQUFEQkY5MkZDNEY5QUUwMi9YRGZOX01qcDZReEJGa281SHVrRHRONVUz N0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hEZk5fTWpwNlF4QkZrbzVIdWtEdE41VTM3RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDFFQkEvODM5NEUyNTA5MUVBMTFFQkFBREJGOTJGQzRGOUFFMDIvQTE0QkRDRTQ5 MUVCMTFFQkFEN0ExNTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnpJ4DBABnrSYwDwQCAAIwCQMHACABDfZMgDANBgkqhkiG 9w0BAQsFAAOCAQEAmRc4nyB6keHsdWuWtRiTnzIvPRI88omeNnK4v5BsdppVF3eM IfCH6Rr8WFJosoGZM2N9O6ZWc3yBkDvkQ14B2pIZB74E/SrtzIplVRTf9L7kfsXW mqUPypnnxp7Anl5rZlkPx2MGyJ9WgU0OJpWBNsP2J4+HQUq0zFrRTiM3njTv2l70 7vE5KvhuRTba1x0TbwD5LSK86E/l+KQj9q2ysAupXWPv07amGk4W+pirdGFpvZC2 RrnVOoJAGIvxwfxPg/qNDb7sL97aNLIi16FATFSuQm+kfF/cJW5B1Mh2zI4PN36K qadNHiquZajyXSw5CcamTMCeKf2xzu1dgs0MHw== -----END CERTIFICATE-----Generated at Sun May 19 01:47:16 2024 by rpki-client on console-ams.rpki-client.org