$ rpki-client -vvf rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/B01A5D448A0E11EAA8C40916C4F9AE02.roa File: B01A5D448A0E11EAA8C40916C4F9AE02.roa (raw, json) Hash identifier: mt4WbS+aMKt8hL7uqTtgSgonTuN2JlqnqxPeSCtlNXA= Subject key identifier: A5:2B:7C:34:44:F5:32:1F:BB:AE:EE:20:30:BE:31:FA:AC:26:3A:F8 Certificate issuer: /CN=A91D83B3/serialNumber=5E057446C4961E4D26C37FFEA8AC3F7AADD83B32 Certificate serial: 07B8 Authority key identifier: 5E:05:74:46:C4:96:1E:4D:26:C3:7F:FE:A8:AC:3F:7A:AD:D8:3B:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XgV0RsSWHk0mw3_-qKw_eq3YOzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/B01A5D448A0E11EAA8C40916C4F9AE02.roa Signing time: Tue 08 Nov 2022 22:27:59 +0000 ROA not before: Tue 08 Nov 2022 22:27:59 +0000 ROA not after: Sat 30 Dec 2023 00:00:00 +0000 asID: 58895 IP address blocks: 103.129.140.0/22 maxlen: 22 103.129.140.0/24 maxlen: 24 103.129.141.0/24 maxlen: 24 103.129.142.0/24 maxlen: 24 103.129.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/XgV0RsSWHk0mw3_-qKw_eq3YOzI.crl rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/XgV0RsSWHk0mw3_-qKw_eq3YOzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XgV0RsSWHk0mw3_-qKw_eq3YOzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Mar 2023 22:08:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1976 (0x7b8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D83B3/serialNumber=5E057446C4961E4D26C37FFEA8AC3F7AADD83B32 Validity Not Before: Nov 8 22:27:59 2022 GMT Not After : Dec 30 00:00:00 2023 GMT Subject: CN=636ad7ee-b485 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5e:a6:3d:4e:a2:55:8f:6d:e3:b4:3d:c8:89: 17:1f:d0:9c:b8:73:19:b6:bd:30:db:cb:4c:3e:9e: ac:eb:d0:18:c4:e3:f8:3d:cf:f1:b3:51:84:84:4d: 29:a6:69:d1:8f:4a:6d:cd:0e:fa:5c:8c:0c:8a:61: fa:c0:28:ea:77:fe:e7:8f:50:47:6d:dc:fd:18:70: e9:a1:2b:42:10:f8:38:9f:d1:59:de:40:d9:6e:e5: d5:4f:67:05:ec:ad:84:80:a8:0a:2e:a5:8f:dc:0b: 93:3e:53:54:85:d8:d5:b2:a2:57:04:94:15:64:5a: 87:53:3e:68:6b:ab:6e:2c:8c:2a:e1:8b:9e:a8:44: f1:59:2d:a4:73:90:94:dd:93:4d:25:ea:51:78:69: 14:da:b4:0e:fb:08:50:7d:bf:77:4b:8a:96:08:66: e0:51:d2:20:6a:d1:cb:ed:b5:4e:fd:bc:92:24:2d: 40:2d:3e:a1:26:86:b7:3f:ba:76:aa:bc:92:b7:a6: 2d:53:ad:e3:0d:04:04:2c:fa:3a:bb:27:21:50:2c: f0:91:59:96:f7:74:27:df:d9:ec:35:26:15:25:57: 87:7f:3d:d6:8b:85:3c:88:15:d1:a0:82:02:19:95: 79:8c:80:f3:d9:82:c3:65:46:7e:4b:ce:b0:af:38: 7e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:2B:7C:34:44:F5:32:1F:BB:AE:EE:20:30:BE:31:FA:AC:26:3A:F8 X509v3 Authority Key Identifier: keyid:5E:05:74:46:C4:96:1E:4D:26:C3:7F:FE:A8:AC:3F:7A:AD:D8:3B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/XgV0RsSWHk0mw3_-qKw_eq3YOzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XgV0RsSWHk0mw3_-qKw_eq3YOzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D83B3/A3D3D8228A0D11EAA5059714C4F9AE02/B01A5D448A0E11EAA8C40916C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.129.140.0/22 Signature Algorithm: sha256WithRSAEncryption ac:82:5e:c8:c1:66:cd:27:26:c8:65:6b:4e:97:e0:31:41:a6: 86:b1:4d:ed:7c:3e:0e:1f:21:c7:4b:40:82:29:3d:b4:66:ed: f9:f1:6d:97:f8:91:36:9c:79:0f:df:67:13:0b:a4:26:f1:71: d0:63:10:91:9b:a4:fd:36:d4:ab:13:54:97:21:44:f5:7a:9c: dd:dd:e4:c4:77:d7:aa:cb:e9:ea:e9:f9:43:bd:6c:5d:1c:c8: 2b:7a:e6:99:04:79:20:e2:3a:1f:1c:c4:1a:0d:0b:3d:6f:78: b1:c7:6c:93:7c:52:80:47:2b:f1:6e:56:f8:fe:c6:45:2f:4a: 53:6d:d9:15:72:32:2c:9b:f7:b1:d2:cb:d3:b4:d5:03:cc:e0: a1:29:8c:df:b3:9e:73:06:35:38:68:b4:3f:40:ec:89:0c:8f: ef:66:7d:c2:1e:f8:7a:98:49:e5:9d:20:2f:70:c0:0f:12:35: 69:34:65:5e:11:51:e5:22:65:be:36:28:79:7b:99:86:29:53: 6c:53:af:1a:b8:f9:5c:db:ca:91:89:63:ef:8a:3a:cb:b9:16: 25:e3:db:fc:83:ae:06:4b:db:d8:34:5e:90:c7:2c:87:54:bc: af:67:97:f8:64:38:63:e5:d3:eb:33:61:1a:85:d5:bf:c7:26: 99:35:04:b5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICB7gwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDgzQjMxMTAvBgNVBAUTKDVFMDU3NDQ2QzQ5NjFFNEQyNkMzN0ZGRUE4QUMzRjdB QUREODNCMzIwHhcNMjIxMTA4MjIyNzU5WhcNMjMxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02MzZhZDdlZS1iNDg1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAn16mPU6iVY9t47Q9yIkXH9CcuHMZtr0w28tMPp6s69AYxOP4Pc/xs1GEhE0p pmnRj0ptzQ76XIwMimH6wCjqd/7nj1BHbdz9GHDpoStCEPg4n9FZ3kDZbuXVT2cF 7K2EgKgKLqWP3AuTPlNUhdjVsqJXBJQVZFqHUz5oa6tuLIwq4YueqETxWS2kc5CU 3ZNNJepReGkU2rQO+whQfb93S4qWCGbgUdIgatHL7bVO/bySJC1ALT6hJoa3P7p2 qrySt6YtU63jDQQELPo6uychUCzwkVmW93Qn39nsNSYVJVeHfz3Wi4U8iBXRoIIC GZV5jIDz2YLDZUZ+S86wrzh+mwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKUrfDRE 9TIfu67uIDC+MfqsJjr4MB8GA1UdIwQYMBaAFF4FdEbElh5NJsN//qisP3qt2Dsy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODNCMy9BM0QzRDgyMjhB MEQxMUVBQTUwNTk3MTRDNEY5QUUwMi9YZ1YwUnNTV0hrMG13M18tcUt3X2VxM1lP ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hnVjBSc1NXSGswbXczXy1xS3dfZXEzWU96SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDgzQjMvQTNEM0Q4MjI4QTBEMTFFQUE1MDU5NzE0QzRGOUFFMDIvQjAxQTVENDQ4 QTBFMTFFQUE4QzQwOTE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJngYwwDQYJKoZIhvcNAQELBQADggEBAKyCXsjBZs0nJshl a06X4DFBpoaxTe18Pg4fIcdLQIIpPbRm7fnxbZf4kTaceQ/fZxMLpCbxcdBjEJGb pP021KsTVJchRPV6nN3d5MR316rL6erp+UO9bF0cyCt65pkEeSDiOh8cxBoNCz1v eLHHbJN8UoBHK/FuVvj+xkUvSlNt2RVyMiyb97HSy9O01QPM4KEpjN+znnMGNTho tD9A7IkMj+9mfcIe+HqYSeWdIC9wwA8SNWk0ZV4RUeUiZb42KHl7mYYpU2xTrxq4 +VzbypGJY++KOsu5FiXj2/yDrgZL29g0XpDHLIdUvK9nl/hkOGPl0+szYRqF1b/H Jpk1BLU= -----END CERTIFICATE-----Generated at Wed Mar 15 11:54:23 2023 by rpki-client on console-fra.rpki-client.org