$ rpki-client -vvf rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/5E2A4C584ED911EAA7F1A521C4F9AE02.roa File: 5E2A4C584ED911EAA7F1A521C4F9AE02.roa (raw, json) Hash identifier: QoMzWv+zlvph7lrjhvkUoh86qb7MSEvRWB21jNC66Lg= Subject key identifier: 02:19:C8:60:74:5E:60:FC:CE:95:62:37:C6:83:28:F0:59:6C:2E:E4 Certificate issuer: /CN=A91D87CF/serialNumber=D2EC0790BC4EBD3407C95074E6B56B40003812DA Certificate serial: 09FC Authority key identifier: D2:EC:07:90:BC:4E:BD:34:07:C9:50:74:E6:B5:6B:40:00:38:12:DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0uwHkLxOvTQHyVB05rVrQAA4Eto.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/5E2A4C584ED911EAA7F1A521C4F9AE02.roa Signing time: Tue 16 Apr 2024 20:59:30 +0000 ROA not before: Tue 16 Apr 2024 20:59:30 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 139310 IP address blocks: 103.137.130.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/0uwHkLxOvTQHyVB05rVrQAA4Eto.crl rsync://rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/0uwHkLxOvTQHyVB05rVrQAA4Eto.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0uwHkLxOvTQHyVB05rVrQAA4Eto.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 20:34:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2556 (0x9fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D87CF/serialNumber=D2EC0790BC4EBD3407C95074E6B56B40003812DA Validity Not Before: Apr 16 20:59:30 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=661ee6b2-2c6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ce:40:7d:40:23:e9:7f:f1:f7:be:da:df:3a: c7:80:92:9a:c1:e5:5c:7f:3b:ef:d3:ed:ca:7e:93: b6:90:a4:18:4f:75:0d:6f:a0:ed:b0:36:24:d3:26: b2:5c:63:75:e8:2d:23:6e:31:f4:b6:37:93:db:43: df:65:df:2f:60:92:69:1a:37:0c:21:a3:c2:d4:ab: 16:13:56:c2:1e:c7:88:4b:3b:a2:34:42:99:9a:b7: 6a:c1:49:a1:5d:70:99:93:4e:06:98:0b:e7:72:f9: 64:4b:f8:c2:b8:6c:5f:41:1e:7b:67:9f:8d:ce:59: 09:cb:72:3b:56:35:8a:3c:df:b6:2d:91:7d:40:ee: 04:72:90:93:89:ab:1f:fb:0a:22:bc:f3:a1:86:1b: 1c:0e:a9:81:9e:d3:27:f8:b0:e8:78:28:7d:57:e6: 5b:0e:f6:29:82:16:dd:4b:ba:07:e9:8f:79:4f:65: 75:fd:81:a2:79:13:b2:2f:77:f6:70:f2:11:ed:bd: b2:0e:28:7c:a1:c4:a3:db:88:0c:32:b5:4c:6f:8a: 01:8a:77:82:37:d5:14:f3:d9:c4:b6:b0:f3:56:4c: 32:24:f5:c5:30:3a:53:85:92:68:a3:5f:69:a7:f7: c9:29:77:88:11:11:48:a2:c4:10:99:b0:36:2d:03: 30:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:19:C8:60:74:5E:60:FC:CE:95:62:37:C6:83:28:F0:59:6C:2E:E4 X509v3 Authority Key Identifier: keyid:D2:EC:07:90:BC:4E:BD:34:07:C9:50:74:E6:B5:6B:40:00:38:12:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/0uwHkLxOvTQHyVB05rVrQAA4Eto.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0uwHkLxOvTQHyVB05rVrQAA4Eto.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D87CF/E685B12A4ED711EA88E6051FC4F9AE02/5E2A4C584ED911EAA7F1A521C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.130.0/23 Signature Algorithm: sha256WithRSAEncryption 90:e7:34:46:90:1b:f1:64:f1:e0:25:81:59:b2:2e:4c:f4:53: a5:c2:ea:0c:e0:85:7f:40:f3:07:17:65:16:57:9f:39:4d:7d: 66:2d:b3:c8:ad:1c:f4:05:61:f0:fc:33:32:21:4c:c0:f5:73: 9b:dc:4d:85:94:4f:56:80:a3:3a:25:4a:de:b5:65:3b:6d:d6: 5e:9b:eb:93:24:78:8c:03:2e:dc:b4:63:02:59:6d:1d:1e:6b: 9a:1d:13:5d:69:6f:fe:a8:b4:81:00:98:3e:9e:5c:95:a4:58: 38:bf:63:ca:a9:b6:28:1c:9c:1a:3e:93:ef:59:ba:4a:67:6d: b6:8e:02:10:13:af:07:16:af:b4:5c:8e:ff:c9:28:1a:2c:ce: 4c:eb:c2:0f:84:52:3e:b5:0a:3e:a8:2d:95:94:36:ae:d5:3b: 4e:ef:bc:ce:b4:ca:2b:f1:0d:d0:4f:30:32:4d:3e:f2:75:14: 4b:78:99:22:da:2e:37:4a:6a:6a:d6:2f:b7:76:b8:11:dd:6b: 61:9e:ae:4b:14:4b:a0:fd:af:e2:4a:88:e8:97:09:f8:74:e8: e7:33:74:da:26:32:ff:26:43:1f:26:8f:c2:9c:a8:ad:ab:43: d7:07:d5:82:c8:53:69:f5:de:7c:51:42:58:9b:49:d8:97:f7: 2a:01:e4:e3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCfwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDg3Q0YxMTAvBgNVBAUTKEQyRUMwNzkwQkM0RUJEMzQwN0M5NTA3NEU2QjU2QjQw MDAzODEyREEwHhcNMjQwNDE2MjA1OTMwWhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFlZTZiMi0yYzZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsc5AfUAj6X/x977a3zrHgJKaweVcfzvv0+3KfpO2kKQYT3UNb6DtsDYk0yay XGN16C0jbjH0tjeT20PfZd8vYJJpGjcMIaPC1KsWE1bCHseISzuiNEKZmrdqwUmh XXCZk04GmAvncvlkS/jCuGxfQR57Z5+NzlkJy3I7VjWKPN+2LZF9QO4EcpCTiasf +woivPOhhhscDqmBntMn+LDoeCh9V+ZbDvYpghbdS7oH6Y95T2V1/YGieROyL3f2 cPIR7b2yDih8ocSj24gMMrVMb4oBineCN9UU89nEtrDzVkwyJPXFMDpThZJoo19p p/fJKXeIERFIosQQmbA2LQMwwQIDAQABo4IClTCCApEwHQYDVR0OBBYEFAIZyGB0 XmD8zpViN8aDKPBZbC7kMB8GA1UdIwQYMBaAFNLsB5C8Tr00B8lQdOa1a0AAOBLa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEODdDRi9FNjg1QjEyQTRF RDcxMUVBODhFNjA1MUZDNEY5QUUwMi8wdXdIa0x4T3ZUUUh5VkIwNXJWclFBQTRF dG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzB1d0hrTHhPdlRRSHlWQjA1clZyUUFBNEV0by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDg3Q0YvRTY4NUIxMkE0RUQ3MTFFQTg4RTYwNTFGQzRGOUFFMDIvNUUyQTRDNTg0 RUQ5MTFFQUE3RjFBNTIxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFniYIwDQYJKoZIhvcNAQELBQADggEBAJDnNEaQG/Fk8eAl gVmyLkz0U6XC6gzghX9A8wcXZRZXnzlNfWYts8itHPQFYfD8MzIhTMD1c5vcTYWU T1aAozolSt61ZTtt1l6b65MkeIwDLty0YwJZbR0ea5odE11pb/6otIEAmD6eXJWk WDi/Y8qptigcnBo+k+9ZukpnbbaOAhATrwcWr7Rcjv/JKBoszkzrwg+EUj61Cj6o LZWUNq7VO07vvM60yivxDdBPMDJNPvJ1FEt4mSLaLjdKamrWL7d2uBHda2GerksU S6D9r+JKiOiXCfh06OczdNomMv8mQx8mj8KcqK2rQ9cH1YLIU2n13nxRQlibSdiX 9yoB5OM= -----END CERTIFICATE-----Generated at Tue May 14 21:48:45 2024 by rpki-client on console-ams.rpki-client.org