$ rpki-client -vvf rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/34EEA87C040511EEA466E336C4F9AE02.roa File: 34EEA87C040511EEA466E336C4F9AE02.roa (raw, json) Hash identifier: 5uqHr9WzaI9hGdiEKRKQvARm6NgS6ujezLHWBDKu2RQ= Subject key identifier: 51:FC:AC:20:AF:45:0F:F9:2A:3B:01:E1:30:CC:C0:2A:46:F9:EA:98 Certificate issuer: /CN=A91DAAAF/serialNumber=ABE23A8A011ED3286155DA51F5AD78C1B6FCC93D Certificate serial: BB Authority key identifier: AB:E2:3A:8A:01:1E:D3:28:61:55:DA:51:F5:AD:78:C1:B6:FC:C9:3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/34EEA87C040511EEA466E336C4F9AE02.roa Signing time: Mon 13 May 2024 06:42:27 +0000 ROA not before: Mon 13 May 2024 06:42:27 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 151191 IP address blocks: 103.161.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.crl rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 06:35:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 187 (0xbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DAAAF/serialNumber=ABE23A8A011ED3286155DA51F5AD78C1B6FCC93D Validity Not Before: May 13 06:42:27 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6641b652-022d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:e4:f7:63:2f:2a:1b:21:9f:74:f2:78:4b:63: da:6e:0f:af:1e:91:0d:07:c5:f7:0b:25:5e:5d:ce: d9:c7:f3:e4:d0:73:77:d7:de:b4:43:7d:f7:85:d1: 4e:e6:99:9c:36:74:ab:dd:71:0e:f6:8a:d0:63:4d: 94:34:69:a6:b2:e3:5e:36:98:02:0c:61:fb:6e:eb: c1:65:f6:92:65:c8:55:69:4d:cb:3c:44:74:00:56: a7:e7:c3:42:54:7d:60:26:ce:6c:45:8b:35:0a:7a: 7a:49:8c:b1:cc:44:13:31:80:17:a6:24:cb:79:1d: 29:d4:8f:10:8e:27:6e:c0:90:25:9b:1d:57:45:33: 1c:98:5c:79:3d:9f:cf:f1:d8:b7:ba:23:66:de:39: 07:dd:45:63:b3:7f:f3:e8:ec:6b:99:c2:84:03:e1: eb:bc:7c:95:a8:a1:8f:86:10:d5:a4:4c:6c:5a:c3: 62:53:ba:ba:68:10:da:cc:33:3c:3a:c6:be:a0:6b: 96:3c:56:5f:51:09:ce:f4:3d:27:42:4a:1e:dc:16: b6:29:ae:01:1c:8b:9b:2e:79:83:bf:b1:04:e8:29: e2:2b:79:e9:ec:fa:6a:2e:26:80:3c:fe:36:b4:6e: 68:5f:2b:61:9b:35:80:af:96:b5:4c:5d:7b:93:ad: bc:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:FC:AC:20:AF:45:0F:F9:2A:3B:01:E1:30:CC:C0:2A:46:F9:EA:98 X509v3 Authority Key Identifier: keyid:AB:E2:3A:8A:01:1E:D3:28:61:55:DA:51:F5:AD:78:C1:B6:FC:C9:3D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/q-I6igEe0yhhVdpR9a14wbb8yT0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q-I6igEe0yhhVdpR9a14wbb8yT0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DAAAF/56B01DC0F85111EDA86FC820C4F9AE02/34EEA87C040511EEA466E336C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.161.154.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:03:6c:6c:c5:70:1f:0a:7c:48:cf:9c:62:13:39:08:d3:88: a8:5d:4d:5a:ab:c9:61:3d:28:df:b0:c8:c3:5e:3c:2e:e8:27: f0:89:a7:a5:21:25:5e:09:df:47:31:3c:e6:06:b9:8d:6d:e6: 85:5b:cf:f1:d7:86:7a:03:d9:91:0b:11:23:3f:db:55:96:bc: ab:00:a1:fa:c5:ab:b4:f6:51:79:e5:d0:9e:92:c2:38:23:2a: f6:91:91:b9:be:78:e9:de:b7:bc:1c:54:d0:00:06:b3:be:7f: 00:7f:b2:b7:b5:6c:8f:1d:a4:8a:88:15:24:7f:10:ab:b5:b6: f3:d2:32:9e:db:00:4b:41:c9:e5:2e:31:5f:2d:d1:29:15:ef: 66:5e:1d:41:73:a8:36:ea:b5:5f:06:78:32:35:96:be:fb:04: 70:cd:57:80:87:ca:4e:46:58:4a:ed:0d:13:ae:39:99:9f:ca: f6:92:ea:8f:1c:2c:06:7c:b3:7a:02:0d:45:9b:82:6d:54:d7: 40:ab:87:9f:9b:45:9c:72:e3:16:71:6c:eb:e8:d3:2b:b7:8d: 8c:38:e2:61:2e:53:74:1b:86:c2:c2:8a:bd:49:9a:92:90:1c: ee:fb:55:dd:ca:88:24:cc:65:85:0b:22:7a:a6:d5:23:15:1d: 83:c0:93:b3 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REFBQUYxMTAvBgNVBAUTKEFCRTIzQThBMDExRUQzMjg2MTU1REE1MUY1QUQ3OEMx QjZGQ0M5M0QwHhcNMjQwNTEzMDY0MjI3WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxYjY1Mi0wMjJkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAteT3Yy8qGyGfdPJ4S2Pabg+vHpENB8X3CyVeXc7Zx/Pk0HN31960Q333hdFO 5pmcNnSr3XEO9orQY02UNGmmsuNeNpgCDGH7buvBZfaSZchVaU3LPER0AFan58NC VH1gJs5sRYs1Cnp6SYyxzEQTMYAXpiTLeR0p1I8QjiduwJAlmx1XRTMcmFx5PZ/P 8di3uiNm3jkH3UVjs3/z6OxrmcKEA+HrvHyVqKGPhhDVpExsWsNiU7q6aBDazDM8 Osa+oGuWPFZfUQnO9D0nQkoe3Ba2Ka4BHIubLnmDv7EE6CniK3np7PpqLiaAPP42 tG5oXythmzWAr5a1TF17k628YwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFH8rCCv RQ/5KjsB4TDMwCpG+eqYMB8GA1UdIwQYMBaAFKviOooBHtMoYVXaUfWteMG2/Mk9 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQUFBRi81NkIwMURDMEY4 NTExMUVEQTg2RkM4MjBDNEY5QUUwMi9xLUk2aWdFZTB5aGhWZHBSOWExNHdiYjh5 VDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3EtSTZpZ0VlMHloaFZkcFI5YTE0d2JiOHlUMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REFBQUYvNTZCMDFEQzBGODUxMTFFREE4NkZDODIwQzRGOUFFMDIvMzRFRUE4N0Mw NDA1MTFFRUE0NjZFMzM2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnoZowDQYJKoZIhvcNAQELBQADggEBAG8DbGzFcB8KfEjP nGITOQjTiKhdTVqryWE9KN+wyMNePC7oJ/CJp6UhJV4J30cxPOYGuY1t5oVbz/HX hnoD2ZELESM/21WWvKsAofrFq7T2UXnl0J6SwjgjKvaRkbm+eOnet7wcVNAABrO+ fwB/sre1bI8dpIqIFSR/EKu1tvPSMp7bAEtByeUuMV8t0SkV72ZeHUFzqDbqtV8G eDI1lr77BHDNV4CHyk5GWErtDROuOZmfyvaS6o8cLAZ8s3oCDUWbgm1U10Crh5+b RZxy4xZxbOvo0yu3jYw44mEuU3QbhsLCir1JmpKQHO77Vd3KiCTMZYULInqm1SMV HYPAk7M= -----END CERTIFICATE-----Generated at Mon May 27 08:08:52 2024 by rpki-client on console-ams.rpki-client.org