$ rpki-client -vvf rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/CE6FBAEE813111EBA15FAC34C4F9AE02.roa File: CE6FBAEE813111EBA15FAC34C4F9AE02.roa (raw, json) Hash identifier: aDYY4L0K3KhTRWZqYiXaA1NmtZx9xM7d4Wrx2kjyFx8= Subject key identifier: 4E:D0:4E:41:A7:75:B8:15:12:72:58:F0:AA:83:FB:19:90:C7:1A:95 Certificate issuer: /CN=A91D4325/serialNumber=25FD5AC999B0395E6C0EBD561E1B1B88E0D60763 Certificate serial: 0547 Authority key identifier: 25:FD:5A:C9:99:B0:39:5E:6C:0E:BD:56:1E:1B:1B:88:E0:D6:07:63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jf1ayZmwOV5sDr1WHhsbiODWB2M.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/CE6FBAEE813111EBA15FAC34C4F9AE02.roa Signing time: Sun 05 Nov 2023 00:11:54 +0000 ROA not before: Sun 05 Nov 2023 00:11:54 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141397 IP address blocks: 103.198.24.0/24 maxlen: 24 103.198.25.0/24 maxlen: 24 2403:1280::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/Jf1ayZmwOV5sDr1WHhsbiODWB2M.crl rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/Jf1ayZmwOV5sDr1WHhsbiODWB2M.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jf1ayZmwOV5sDr1WHhsbiODWB2M.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1351 (0x547) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D4325/serialNumber=25FD5AC999B0395E6C0EBD561E1B1B88E0D60763 Validity Not Before: Nov 5 00:11:54 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6546ddca-7f3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c3:4a:13:13:f7:70:4c:23:81:43:b1:dc:8c: 00:03:5f:2e:3f:3c:d4:85:79:ff:2c:00:b5:6c:1a: 1b:46:24:5f:cc:c9:09:e1:a6:9b:0c:96:0c:00:d0: e3:e5:19:98:af:7e:fb:c1:7c:2d:de:ef:29:49:50: 49:c3:27:62:ad:57:88:03:60:ee:a1:b5:13:3e:e9: 7b:52:d5:23:4f:3d:fb:ac:1d:be:3f:86:ac:ad:ab: 9c:b2:1c:b6:07:bd:03:08:a3:bb:4f:04:0f:6c:ef: 3d:df:a7:da:6e:23:41:c0:a5:ba:a8:bd:ac:0f:31: 5b:ed:0e:d4:da:1a:88:f4:bd:40:9d:81:6d:43:01: a3:ca:35:57:da:22:50:18:cd:08:db:91:8a:74:19: d9:53:c6:71:68:4e:0e:c0:9d:3d:77:4b:c4:4b:86: 8e:fb:1b:24:03:d0:94:e4:57:e1:3f:8a:52:ca:f6: 46:e7:2c:15:cd:ab:dd:04:45:d5:1f:a6:3d:10:fb: f0:b5:a6:5d:7f:e0:d7:1a:b1:73:d0:81:21:ef:a4: ae:3c:3c:9d:99:8e:4b:91:0a:3c:21:d8:e5:85:97: 95:62:b8:bc:da:c1:14:3c:d7:10:53:37:00:25:63: da:22:c2:0c:94:ba:bf:9a:b1:39:d0:59:b1:52:23: 25:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:D0:4E:41:A7:75:B8:15:12:72:58:F0:AA:83:FB:19:90:C7:1A:95 X509v3 Authority Key Identifier: keyid:25:FD:5A:C9:99:B0:39:5E:6C:0E:BD:56:1E:1B:1B:88:E0:D6:07:63 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/Jf1ayZmwOV5sDr1WHhsbiODWB2M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Jf1ayZmwOV5sDr1WHhsbiODWB2M.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D4325/ED8565E8812F11EB94D38132C4F9AE02/CE6FBAEE813111EBA15FAC34C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.24.0/23 IPv6: 2403:1280::/32 Signature Algorithm: sha256WithRSAEncryption 21:9e:96:a6:7a:d6:4d:02:48:87:31:79:02:f7:7e:d2:b9:c8: 1f:c4:eb:ab:38:72:18:35:53:21:a9:0a:90:61:93:63:41:21: a8:cd:dd:fd:6b:fa:b4:1a:b8:5c:49:1b:3d:3b:0a:46:1e:c3: 34:8d:56:87:de:e4:1c:70:da:13:81:ca:8c:aa:5a:b3:da:35: f9:7c:37:08:60:a6:a8:2b:15:95:3e:5c:95:ef:a5:95:4c:59: 3e:ec:98:fa:90:32:63:01:3c:bc:84:18:23:cb:ab:df:46:ca: 31:fa:ae:eb:9f:72:30:33:64:1f:04:7b:0e:11:17:1c:67:4a: f5:1e:f1:78:28:67:47:10:c3:6c:64:05:9d:14:f9:9f:2e:68: b9:7e:4e:df:41:f6:d6:d3:4f:86:46:29:c4:80:08:c4:a7:91: 40:c4:20:c1:c9:dd:42:a1:19:08:28:d0:47:a3:98:84:98:fe: 43:5e:b4:41:3f:97:ea:ba:7a:60:c8:f5:dc:9a:b0:99:c5:b9: f5:4f:ec:ff:5a:e4:92:e7:4a:c3:65:c8:dd:b2:1a:5d:ab:48: 46:d6:ce:b5:a3:41:28:6c:bb:51:48:f2:4e:95:e9:ff:39:67: dc:cd:04:01:9b:ce:46:32:a1:e7:c4:29:9b:33:58:23:e5:ac: 2b:32:06:7b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBUcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDQzMjUxMTAvBgNVBAUTKDI1RkQ1QUM5OTlCMDM5NUU2QzBFQkQ1NjFFMUIxQjg4 RTBENjA3NjMwHhcNMjMxMTA1MDAxMTU0WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ2ZGRjYS03ZjNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApMNKExP3cEwjgUOx3IwAA18uPzzUhXn/LAC1bBobRiRfzMkJ4aabDJYMANDj 5RmYr377wXwt3u8pSVBJwydirVeIA2DuobUTPul7UtUjTz37rB2+P4asraucshy2 B70DCKO7TwQPbO8936fabiNBwKW6qL2sDzFb7Q7U2hqI9L1AnYFtQwGjyjVX2iJQ GM0I25GKdBnZU8ZxaE4OwJ09d0vES4aO+xskA9CU5FfhP4pSyvZG5ywVzavdBEXV H6Y9EPvwtaZdf+DXGrFz0IEh76SuPDydmY5LkQo8IdjlhZeVYri82sEUPNcQUzcA JWPaIsIMlLq/mrE50FmxUiMlJwIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFE7QTkGn dbgVEnJY8KqD+xmQxxqVMB8GA1UdIwQYMBaAFCX9WsmZsDlebA69Vh4bG4jg1gdj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENDMyNS9FRDg1NjVFODgx MkYxMUVCOTREMzgxMzJDNEY5QUUwMi9KZjFheVptd09WNXNEcjFXSGhzYmlPRFdC Mk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pmMWF5Wm13T1Y1c0RyMVdIaHNiaU9EV0IyTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDQzMjUvRUQ4NTY1RTg4MTJGMTFFQjk0RDM4MTMyQzRGOUFFMDIvQ0U2RkJBRUU4 MTMxMTFFQkExNUZBQzM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnxhgwDQQCAAIwBwMFACQDEoAwDQYJKoZIhvcNAQELBQAD ggEBACGelqZ61k0CSIcxeQL3ftK5yB/E66s4chg1UyGpCpBhk2NBIajN3f1r+rQa uFxJGz07CkYewzSNVofe5Bxw2hOByoyqWrPaNfl8NwhgpqgrFZU+XJXvpZVMWT7s mPqQMmMBPLyEGCPLq99GyjH6ruufcjAzZB8Eew4RFxxnSvUe8XgoZ0cQw2xkBZ0U +Z8uaLl+Tt9B9tbTT4ZGKcSACMSnkUDEIMHJ3UKhGQgo0EejmISY/kNetEE/l+q6 emDI9dyasJnFufVP7P9a5JLnSsNlyN2yGl2rSEbWzrWjQShsu1FI8k6V6f85Z9zN BAGbzkYyoefEKZszWCPlrCsyBns= -----END CERTIFICATE-----Generated at Sun May 19 01:47:16 2024 by rpki-client on console-ams.rpki-client.org