$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/B3F0AAB8587211EAA4D4870FC4F9AE02.roa File: B3F0AAB8587211EAA4D4870FC4F9AE02.roa (raw, json) Hash identifier: FsrqJMxwUArDqSx9PxSQpooYLmcJ2wgDgIoQ/drJeLc= Subject key identifier: B6:64:59:2D:62:92:B5:AB:84:CB:32:29:8B:21:F3:B0:3E:19:BF:53 Certificate issuer: /CN=A91D6210/serialNumber=8D48A0EE57E6647090C24B3D25FE5FCA6FA804E1 Certificate serial: 0923 Authority key identifier: 8D:48:A0:EE:57:E6:64:70:90:C2:4B:3D:25:FE:5F:CA:6F:A8:04:E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUig7lfmZHCQwks9Jf5fym-oBOE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/B3F0AAB8587211EAA4D4870FC4F9AE02.roa Signing time: Fri 26 May 2023 22:02:48 +0000 ROA not before: Fri 26 May 2023 22:02:48 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 136515 IP address blocks: 103.91.140.0/22 maxlen: 22 103.91.140.0/24 maxlen: 24 103.91.141.0/24 maxlen: 24 103.91.142.0/24 maxlen: 24 103.91.143.0/24 maxlen: 24 123.253.48.0/22 maxlen: 22 123.253.48.0/24 maxlen: 24 123.253.49.0/24 maxlen: 24 123.253.50.0/24 maxlen: 24 123.253.51.0/24 maxlen: 24 2401:740::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/jUig7lfmZHCQwks9Jf5fym-oBOE.crl rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/jUig7lfmZHCQwks9Jf5fym-oBOE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUig7lfmZHCQwks9Jf5fym-oBOE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2339 (0x923) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6210/serialNumber=8D48A0EE57E6647090C24B3D25FE5FCA6FA804E1 Validity Not Before: May 26 22:02:48 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64712c88-d90a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3b:f6:2e:05:2b:7c:59:3b:55:4c:47:ba:ee: 33:0a:7b:30:36:c7:7e:d2:eb:c2:2f:8f:18:22:60: 08:02:6b:13:6a:da:d5:08:8c:cc:16:5d:d5:28:e3: 46:5c:be:73:54:56:a9:a5:e2:bc:bc:9d:63:c1:3c: bc:aa:18:d5:d5:09:fe:58:93:c3:df:bc:a8:94:0b: 73:e9:c5:5c:df:5f:c7:0a:c5:4b:ff:3a:0d:a2:01: 83:12:51:1c:87:63:f0:15:2a:4c:48:0c:1c:a3:1e: eb:6d:79:52:75:aa:ac:56:18:8b:99:e4:d9:d9:29: 13:8a:a7:30:85:0c:a5:c8:b6:65:29:42:64:88:14: 3d:e0:e6:3e:d1:9c:0c:65:ab:67:cc:3b:8a:05:80: c5:53:44:9f:7a:09:91:14:1c:9e:1c:2e:1c:de:a7: 57:7c:62:af:0f:ba:54:53:95:69:5d:01:ff:60:d2: 17:30:57:16:63:c8:4f:c3:71:aa:e5:02:33:e3:a2: 10:14:03:d2:c1:fa:4d:40:aa:86:93:e4:f4:47:82: ef:29:5e:59:cf:3a:a5:64:4e:3b:8b:41:1c:b2:a8: 36:66:33:7f:d8:6c:f5:cd:56:7a:e2:4a:a6:cc:28: 8e:df:dc:1e:c6:81:df:be:0a:fb:4a:8d:52:a3:14: a0:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:64:59:2D:62:92:B5:AB:84:CB:32:29:8B:21:F3:B0:3E:19:BF:53 X509v3 Authority Key Identifier: keyid:8D:48:A0:EE:57:E6:64:70:90:C2:4B:3D:25:FE:5F:CA:6F:A8:04:E1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/jUig7lfmZHCQwks9Jf5fym-oBOE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jUig7lfmZHCQwks9Jf5fym-oBOE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6210/89090F44587111EAB37E090DC4F9AE02/B3F0AAB8587211EAA4D4870FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.140.0/22 123.253.48.0/22 IPv6: 2401:740::/32 Signature Algorithm: sha256WithRSAEncryption 4c:9f:a6:c5:45:7b:ad:1f:f3:b0:2d:0c:2d:42:79:7e:af:64: 77:76:be:e9:a1:0e:38:da:cf:be:96:7e:f1:bc:a5:6c:42:6a: b1:e4:22:b0:87:8a:fd:6f:47:69:69:16:d7:90:e7:1c:cb:74: 51:63:94:df:28:d9:ac:d3:42:2e:bd:93:a1:d5:6f:4a:45:4c: e8:06:0e:74:07:cc:66:eb:0f:60:33:49:97:c5:a5:30:f5:cb: 80:a3:49:51:c6:5c:6e:e9:a6:84:b2:14:c6:ae:50:76:d5:80: 24:6d:5a:5b:8d:16:57:82:dd:75:1c:c6:48:00:4c:a7:88:55: dc:cc:31:bf:34:ea:e5:ea:eb:ef:b0:be:4f:b2:98:ad:e2:02: 04:6f:ed:d1:8d:44:0b:7a:14:25:09:51:f3:4a:b7:58:ad:17: 9a:c4:16:fd:ec:af:7e:a9:70:61:c6:d0:68:d2:e6:07:8d:75: 7f:c7:0c:d6:d0:a3:d9:6e:fe:c6:c9:76:88:b6:c0:06:3f:ce: 3b:7c:ce:c2:bf:7b:ea:9a:0a:ed:3d:57:f0:f6:86:64:55:82: 6d:66:c9:82:dc:bb:dd:dc:bf:ca:72:48:d6:99:b6:52:07:30: b7:46:3e:e6:d7:6a:30:49:63:8e:ba:3d:61:5c:fe:16:33:53: 11:40:97:3f -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCSMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDYyMTAxMTAvBgNVBAUTKDhENDhBMEVFNTdFNjY0NzA5MEMyNEIzRDI1RkU1RkNB NkZBODA0RTEwHhcNMjMwNTI2MjIwMjQ4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxMmM4OC1kOTBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvDv2LgUrfFk7VUxHuu4zCnswNsd+0uvCL48YImAIAmsTatrVCIzMFl3VKONG XL5zVFappeK8vJ1jwTy8qhjV1Qn+WJPD37yolAtz6cVc31/HCsVL/zoNogGDElEc h2PwFSpMSAwcox7rbXlSdaqsVhiLmeTZ2SkTiqcwhQylyLZlKUJkiBQ94OY+0ZwM ZatnzDuKBYDFU0SfegmRFByeHC4c3qdXfGKvD7pUU5VpXQH/YNIXMFcWY8hPw3Gq 5QIz46IQFAPSwfpNQKqGk+T0R4LvKV5ZzzqlZE47i0Ecsqg2ZjN/2Gz1zVZ64kqm zCiO39wexoHfvgr7So1SoxSgjwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFLZkWS1i krWrhMsyKYsh87A+Gb9TMB8GA1UdIwQYMBaAFI1IoO5X5mRwkMJLPSX+X8pvqATh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFENjIxMC84OTA5MEY0NDU4 NzExMUVBQjM3RTA5MERDNEY5QUUwMi9qVWlnN2xmbVpIQ1F3a3M5SmY1ZnltLW9C T0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pVaWc3bGZtWkhDUXdrczlKZjVmeW0tb0JPRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDYyMTAvODkwOTBGNDQ1ODcxMTFFQUIzN0UwOTBEQzRGOUFFMDIvQjNGMEFBQjg1 ODcyMTFFQUE0RDQ4NzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnW4wDBAJ7/TAwDQQCAAIwBwMFACQBB0AwDQYJKoZIhvcN AQELBQADggEBAEyfpsVFe60f87AtDC1CeX6vZHd2vumhDjjaz76WfvG8pWxCarHk IrCHiv1vR2lpFteQ5xzLdFFjlN8o2azTQi69k6HVb0pFTOgGDnQHzGbrD2AzSZfF pTD1y4CjSVHGXG7ppoSyFMauUHbVgCRtWluNFleC3XUcxkgATKeIVdzMMb806uXq 6++wvk+ymK3iAgRv7dGNRAt6FCUJUfNKt1itF5rEFv3sr36pcGHG0GjS5geNdX/H DNbQo9lu/sbJdoi2wAY/zjt8zsK/e+qaCu09V/D2hmRVgm1myYLcu93cv8pySNaZ tlIHMLdGPubXajBJY466PWFc/hYzUxFAlz8= -----END CERTIFICATE-----Generated at Sat May 18 21:24:23 2024 by rpki-client on console-fra.rpki-client.org