$ rpki-client -vvf rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa File: A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa (raw, json) Hash identifier: WcxbXK7pdjHqiaOm+c53LrwbHNpvehmBziJhBJ+L4+A= Subject key identifier: 8E:27:91:2E:68:23:88:4D:E6:F4:6B:82:9C:29:2C:18:63:14:8F:05 Certificate issuer: /CN=A91D56CA/serialNumber=675A8676ED37D16ABBCA2FEF8EAA1F23F257B29F Certificate serial: 16CE Authority key identifier: 67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa Signing time: Thu 30 Nov 2023 17:24:33 +0000 ROA not before: Thu 30 Nov 2023 17:24:33 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 135628 IP address blocks: 103.77.17.0/24 maxlen: 24 103.77.18.0/23 maxlen: 24 203.153.60.0/23 maxlen: 23 203.153.60.0/24 maxlen: 24 203.153.61.0/24 maxlen: 24 203.153.63.0/24 maxlen: 24 2407:8780::/32 maxlen: 32 2407:8780::/48 maxlen: 48 2407:8780:1::/48 maxlen: 48 2407:8780:2::/48 maxlen: 48 2407:8780:3::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5838 (0x16ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D56CA/serialNumber=675A8676ED37D16ABBCA2FEF8EAA1F23F257B29F Validity Not Before: Nov 30 17:24:33 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6568c551-65d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:21:db:d8:1f:a7:6e:45:31:0e:e1:89:9c:25: 81:0e:66:13:3b:ab:7f:eb:a9:af:44:23:21:7e:a8: 36:19:c9:f9:de:c1:fa:66:51:dc:1d:5b:53:0b:b5: 08:0e:28:a2:fa:87:ad:0e:53:cc:01:f1:b1:d2:bd: bd:b4:0e:bb:80:af:20:fa:74:e4:ae:64:2b:36:d3: 3a:a0:b2:b3:4e:ad:57:f4:d6:ca:a2:12:57:23:81: 9b:e9:16:0c:e4:29:81:cd:f3:36:c0:77:c7:a8:ff: dd:ef:93:1b:53:50:2d:67:19:71:6c:f0:4c:b5:b2: 9f:fe:47:2e:45:09:f5:91:21:16:5d:b1:92:b5:02: ca:c0:76:f7:18:71:3d:f6:d5:8d:b4:56:6b:56:56: e0:3b:e1:17:c1:cc:90:a3:b2:2a:96:c1:6d:81:ab: f3:bf:03:ba:37:96:b0:8a:01:fb:6e:95:0d:ea:e6: 86:64:a1:2a:61:01:92:63:80:44:63:a6:5a:a7:c3: 34:10:97:45:d3:e3:ed:ed:96:e8:23:39:fc:82:d1: 07:eb:13:1b:dd:68:2b:ed:a9:f1:74:21:df:d9:79: 0f:dd:88:fd:85:40:57:3d:f1:05:b4:eb:32:3b:aa: 64:ea:6a:63:af:84:f9:1b:36:55:45:88:01:65:a0: bf:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:27:91:2E:68:23:88:4D:E6:F4:6B:82:9C:29:2C:18:63:14:8F:05 X509v3 Authority Key Identifier: keyid:67:5A:86:76:ED:37:D1:6A:BB:CA:2F:EF:8E:AA:1F:23:F2:57:B2:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/Z1qGdu030Wq7yi_vjqofI_JXsp8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Z1qGdu030Wq7yi_vjqofI_JXsp8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D56CA/914E53F6C0D111E78D1EF82BC4F9AE02/A6DF4CF8C34B11ECAFB25A68C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.77.17.0-103.77.19.255 203.153.60.0/23 203.153.63.0/24 IPv6: 2407:8780::/32 Signature Algorithm: sha256WithRSAEncryption 29:43:95:32:7f:e5:ce:7d:f4:0d:a4:81:75:05:e1:f7:86:78: 95:0a:7e:57:3b:75:18:38:27:df:56:63:78:2b:fd:0c:ad:a0: c9:a9:cf:db:19:f9:89:6a:1e:f6:70:c2:76:61:3f:89:05:93: bc:2e:64:07:a6:f0:5b:1b:4f:1c:a3:9d:19:34:96:76:d8:a6: f2:ab:5e:56:45:55:9d:68:57:8e:c7:48:39:65:89:01:2c:88: 48:76:9d:bc:f2:21:6d:14:3c:a9:c9:68:f9:ff:76:8c:fd:41: 33:50:58:8c:31:bf:00:04:2f:e9:5d:b6:6c:e9:0e:16:bd:13: 61:1e:b3:cc:b6:95:10:eb:cc:91:33:58:d1:60:a6:41:cb:b4: dd:d0:d5:ab:42:51:7d:c3:f3:63:4a:08:58:6d:06:28:a2:68: 52:68:db:fd:ec:c7:ea:f1:4b:ca:10:9d:55:e1:a8:cb:39:d5: 9b:b4:b7:ec:b9:c0:2e:c1:e7:4c:bc:18:68:38:51:1b:53:9f: 17:2c:80:58:70:94:90:ac:c5:24:fa:11:9d:4a:f4:e9:8a:f5: 14:12:cc:4f:19:98:86:a5:11:f6:09:46:8e:5a:12:94:f6:72: 2b:5c:8f:c6:62:a2:54:7d:ac:15:7c:5e:56:65:ad:0c:8f:8c: 61:58:d1:30 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgICFs4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDU2Q0ExMTAvBgNVBAUTKDY3NUE4Njc2RUQzN0QxNkFCQkNBMkZFRjhFQUExRjIz RjI1N0IyOUYwHhcNMjMxMTMwMTcyNDMzWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY4YzU1MS02NWQyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5CHb2B+nbkUxDuGJnCWBDmYTO6t/66mvRCMhfqg2Gcn53sH6ZlHcHVtTC7UI Diii+oetDlPMAfGx0r29tA67gK8g+nTkrmQrNtM6oLKzTq1X9NbKohJXI4Gb6RYM 5CmBzfM2wHfHqP/d75MbU1AtZxlxbPBMtbKf/kcuRQn1kSEWXbGStQLKwHb3GHE9 9tWNtFZrVlbgO+EXwcyQo7IqlsFtgavzvwO6N5awigH7bpUN6uaGZKEqYQGSY4BE Y6Zap8M0EJdF0+Pt7ZboIzn8gtEH6xMb3Wgr7anxdCHf2XkP3Yj9hUBXPfEFtOsy O6pk6mpjr4T5GzZVRYgBZaC/NQIDAQABo4ICuDCCArQwHQYDVR0OBBYEFI4nkS5o I4hN5vRrgpwpLBhjFI8FMB8GA1UdIwQYMBaAFGdahnbtN9Fqu8ov746qHyPyV7Kf MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENTZDQS85MTRFNTNGNkMw RDExMUU3OEQxRUY4MkJDNEY5QUUwMi9aMXFHZHUwMzBXcTd5aV92anFvZklfSlhz cDguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1oxcUdkdTAzMFdxN3lpX3ZqcW9mSV9KWHNwOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDU2Q0EvOTE0RTUzRjZDMEQxMTFFNzhEMUVGODJCQzRGOUFFMDIvQTZERjRDRjhD MzRCMTFFQ0FGQjI1QTY4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwQgYIKwYBBQUHAQcBAf8E MzAxMCAEAgABMBowDAMEAGdNEQMEAmdNEAMEAcuZPAMEAMuZPzANBAIAAjAHAwUA JAeHgDANBgkqhkiG9w0BAQsFAAOCAQEAKUOVMn/lzn30DaSBdQXh94Z4lQp+Vzt1 GDgn31ZjeCv9DK2gyanP2xn5iWoe9nDCdmE/iQWTvC5kB6bwWxtPHKOdGTSWdtim 8qteVkVVnWhXjsdIOWWJASyISHadvPIhbRQ8qclo+f92jP1BM1BYjDG/AAQv6V22 bOkOFr0TYR6zzLaVEOvMkTNY0WCmQcu03dDVq0JRfcPzY0oIWG0GKKJoUmjb/ezH 6vFLyhCdVeGoyznVm7S37LnALsHnTLwYaDhRG1OfFyyAWHCUkKzFJPoRnUr06Yr1 FBLMTxmYhqUR9glGjloSlPZyK1yPxmKiVH2sFXxeVmWtDI+MYVjRMA== -----END CERTIFICATE-----Generated at Sat May 18 18:21:39 2024 by rpki-client on console-ams.rpki-client.org