$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/5CF4C0D4FADD11EE8083D572C4F9AE02.roa File: 5CF4C0D4FADD11EE8083D572C4F9AE02.roa (raw, json) Hash identifier: FMEa50CaRfULd6cfo4tSIUoG249epzgdwD0JCTtzESo= Subject key identifier: 07:C4:64:41:04:50:2D:A4:04:B2:78:C7:D4:07:5A:6B:E1:AC:C5:84 Certificate issuer: /CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Certificate serial: 61 Authority key identifier: C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/5CF4C0D4FADD11EE8083D572C4F9AE02.roa Signing time: Mon 15 Apr 2024 04:05:15 +0000 ROA not before: Mon 15 Apr 2024 04:05:15 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 56229 IP address blocks: 103.189.136.0/24 maxlen: 24 103.189.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:44:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 97 (0x61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6884/serialNumber=C5D409FB5D3AA973A950C9C31CC30155F3493F62 Validity Not Before: Apr 15 04:05:15 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=661ca77b-01e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cb:f8:ec:a3:c8:91:8b:35:5f:4a:49:6f:4d: ec:0a:6b:d0:5d:bd:c8:89:76:49:38:56:1c:2a:99: ca:08:7e:39:73:9c:73:28:cf:38:0b:cc:c0:d2:e0: b8:fb:19:eb:90:47:b6:28:b8:f6:fc:77:91:72:86: ba:45:eb:8c:30:f3:b9:8b:fb:1c:8c:62:87:9a:31: 39:94:4a:4a:48:50:cf:4a:26:cd:a6:5f:98:ce:e3: 1f:72:9f:95:6a:33:77:bc:19:7a:25:f6:52:37:23: 65:a4:01:9a:95:06:22:fc:59:d3:2c:7a:cb:25:3c: c6:ce:b7:a7:09:ef:13:27:c6:0c:6a:90:a0:e7:1e: da:b9:1e:da:0b:6a:72:f1:cf:f8:99:ee:cb:8c:54: c5:1f:28:ed:d0:23:17:44:e8:4f:6c:d4:13:19:eb: 78:48:fb:f6:15:a8:ab:6f:22:1f:a4:8e:60:4b:12: 46:ef:98:7e:54:24:d2:05:2b:c3:14:2f:d0:94:4e: e2:db:2c:85:1d:02:46:6b:93:e2:04:40:df:be:8d: 56:76:b3:d3:a6:5f:e2:05:e2:cb:85:a1:d1:5c:5e: 57:f0:19:00:23:60:6d:93:a1:cf:8e:f2:9e:54:de: af:94:65:39:9f:45:8b:e5:c4:d5:27:28:eb:ed:1c: 3b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C4:64:41:04:50:2D:A4:04:B2:78:C7:D4:07:5A:6B:E1:AC:C5:84 X509v3 Authority Key Identifier: keyid:C5:D4:09:FB:5D:3A:A9:73:A9:50:C9:C3:1C:C3:01:55:F3:49:3F:62 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/xdQJ-106qXOpUMnDHMMBVfNJP2I.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xdQJ-106qXOpUMnDHMMBVfNJP2I.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6884/2A950256697511EEB70A550EC4F9AE02/5CF4C0D4FADD11EE8083D572C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.189.136.0/23 Signature Algorithm: sha256WithRSAEncryption 1f:90:2c:d2:1a:0a:58:06:b6:f9:c6:62:ed:b1:d5:34:fd:31: fd:5e:64:23:72:78:3a:80:7b:12:7f:11:66:e1:73:8a:52:ae: 8b:55:61:bc:ad:f6:60:7d:9c:9c:4b:c3:fb:dd:46:53:87:8b: 1e:9e:86:47:44:4c:b4:fb:22:6a:34:b0:c5:65:c5:96:5a:75: 89:28:2c:04:b3:e0:a2:8e:9a:62:00:35:7d:35:6b:de:4c:c3: 42:08:aa:de:2d:86:09:76:50:d0:4a:ce:f4:1a:bf:c3:68:ef: 6a:f7:a8:a7:f3:d2:d3:28:00:91:b3:76:86:d6:24:44:4e:df: 05:b3:7b:c4:c6:36:9c:7b:8f:1a:fe:a0:44:c4:db:33:2f:db: 21:51:84:5a:e2:6d:74:26:90:ff:08:2e:9f:48:90:31:83:65: 67:18:47:e5:88:59:ae:17:df:89:66:d4:f0:81:d3:55:87:b0: ee:46:93:5f:e3:39:e3:fd:f2:5b:23:60:77:a8:6c:76:18:e6: ec:34:c0:65:81:49:84:0e:b6:7b:9c:f5:60:f1:f1:84:d4:19: 84:b7:6b:33:96:5a:f7:0d:9b:ae:02:68:87:0d:38:9b:42:9f: 08:c4:c2:df:4e:31:9d:5e:77:d3:7a:47:e9:ab:6d:c8:ea:d2: 50:6b:cd:82 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBYTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE Njg4NDExMC8GA1UEBRMoQzVENDA5RkI1RDNBQTk3M0E5NTBDOUMzMUNDMzAxNTVG MzQ5M0Y2MjAeFw0yNDA0MTUwNDA1MTVaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MWNhNzdiLTAxZTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCvy/jso8iRizVfSklvTewKa9BdvciJdkk4VhwqmcoIfjlznHMozzgLzMDS4Lj7 GeuQR7YouPb8d5FyhrpF64ww87mL+xyMYoeaMTmUSkpIUM9KJs2mX5jO4x9yn5Vq M3e8GXol9lI3I2WkAZqVBiL8WdMsesslPMbOt6cJ7xMnxgxqkKDnHtq5HtoLanLx z/iZ7suMVMUfKO3QIxdE6E9s1BMZ63hI+/YVqKtvIh+kjmBLEkbvmH5UJNIFK8MU L9CUTuLbLIUdAkZrk+IEQN++jVZ2s9OmX+IF4suFodFcXlfwGQAjYG2Toc+O8p5U 3q+UZTmfRYvlxNUnKOvtHDsZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUB8RkQQRQ LaQEsnjH1Adaa+GsxYQwHwYDVR0jBBgwFoAUxdQJ+106qXOpUMnDHMMBVfNJP2Iw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2ODg0LzJBOTUwMjU2Njk3 NTExRUVCNzBBNTUwRUM0RjlBRTAyL3hkUUotMTA2cVhPcFVNbkRITU1CVmZOSlAy SS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIveGRRSi0xMDZxWE9wVU1uREhNTUJWZk5KUDJJLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE Njg4NC8yQTk1MDI1NjY5NzUxMUVFQjcwQTU1MEVDNEY5QUUwMi81Q0Y0QzBENEZB REQxMUVFODA4M0Q1NzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWe9iDANBgkqhkiG9w0BAQsFAAOCAQEAH5As0hoKWAa2+cZi 7bHVNP0x/V5kI3J4OoB7En8RZuFzilKui1VhvK32YH2cnEvD+91GU4eLHp6GR0RM tPsiajSwxWXFllp1iSgsBLPgoo6aYgA1fTVr3kzDQgiq3i2GCXZQ0ErO9Bq/w2jv aveop/PS0ygAkbN2htYkRE7fBbN7xMY2nHuPGv6gRMTbMy/bIVGEWuJtdCaQ/wgu n0iQMYNlZxhH5YhZrhffiWbU8IHTVYew7kaTX+M54/3yWyNgd6hsdhjm7DTAZYFJ hA62e5z1YPHxhNQZhLdrM5Za9w2brgJohw04m0KfCMTC304xnV5303pH6attyOrS UGvNgg== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:32 2024 by rpki-client on console-fra.rpki-client.org