$ rpki-client -vvf rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa File: D6A658CE01DE11ED8236F073C4F9AE02.roa (raw, json) Hash identifier: 3jO5gQ3mtA12c2tS+FHpo9rGt78BUiyC6ee551oNUfs= Subject key identifier: A7:D9:0D:FE:76:17:E7:A6:3E:BA:CF:C5:AB:22:7B:A3:CC:19:86:45 Certificate issuer: /CN=A91DD75B/serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Certificate serial: 01AE Authority key identifier: EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa Signing time: Tue 27 Feb 2024 04:06:25 +0000 ROA not before: Tue 27 Feb 2024 04:06:25 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 138902 IP address blocks: 103.136.226.0/23 maxlen: 23 103.136.226.0/24 maxlen: 24 2400:94e0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 430 (0x1ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DD75B/serialNumber=EB813F59761C7C6B1AE28C478167E2061AB5CACF Validity Not Before: Feb 27 04:06:25 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=65dd5fc0-b82c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:26:b0:d5:82:8d:a0:4a:67:20:d7:14:30:96: 1a:97:2b:43:84:bf:61:f9:b1:15:2a:75:97:16:9d: 63:68:21:c4:59:97:a6:d7:35:fa:b1:74:d4:48:73: e9:89:b8:7d:5d:68:1f:25:26:1e:39:77:dc:92:80: 19:f8:09:86:22:91:ff:25:a5:08:bc:9f:23:09:a1: 80:2e:c7:be:38:1e:63:d2:22:26:20:ab:49:b1:54: d5:bb:22:cf:39:35:ff:8a:cb:0f:3f:0b:3f:3a:e0: d0:eb:27:6f:10:b4:45:88:ab:fd:05:51:2d:23:c3: c9:63:75:8a:c6:0b:55:39:32:ef:d6:25:18:f0:06: 9a:e3:ad:d2:8d:36:30:90:4a:09:8b:d4:b4:18:4b: 93:e6:a3:1b:94:71:e3:d9:ec:b7:1f:28:bc:be:45: e4:07:a7:f3:b6:70:78:42:88:b4:0b:e5:4a:3f:25: 85:ff:ed:9b:9e:00:39:da:a7:b9:ee:f3:4b:f5:2d: 2b:2d:81:63:20:02:21:d8:4a:af:61:2c:27:d5:b3: 7f:d4:f0:5b:27:c3:b2:cc:60:c4:01:5d:7e:29:df: 7a:51:f4:57:62:99:b7:73:6b:55:8a:b7:d8:8d:ef: e5:9d:12:34:e3:b5:f0:06:7f:c6:30:ef:a4:b6:28: 8c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:D9:0D:FE:76:17:E7:A6:3E:BA:CF:C5:AB:22:7B:A3:CC:19:86:45 X509v3 Authority Key Identifier: keyid:EB:81:3F:59:76:1C:7C:6B:1A:E2:8C:47:81:67:E2:06:1A:B5:CA:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/64E_WXYcfGsa4oxHgWfiBhq1ys8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/64E_WXYcfGsa4oxHgWfiBhq1ys8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DD75B/64A1DA4801DC11ED9EFE2A56C4F9AE02/D6A658CE01DE11ED8236F073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.136.226.0/23 IPv6: 2400:94e0::/32 Signature Algorithm: sha256WithRSAEncryption 05:b7:d2:ac:ea:a7:48:80:2a:00:a1:f3:67:6a:b1:45:5a:bf: 16:39:a5:0b:a0:49:85:3f:93:a2:30:aa:83:b9:67:4e:e9:ba: c1:99:ab:c5:d5:b5:4a:b8:0a:17:9c:83:ff:8d:09:56:a6:8b: d0:17:cd:e5:b2:75:ea:61:ab:90:f9:a2:81:ea:5d:57:63:b8: 29:d8:20:7a:fe:d4:a1:0d:84:13:95:09:4c:36:58:12:f8:99: 0e:9e:1f:3e:0b:6e:17:4c:8c:aa:88:92:5c:e1:75:dd:a7:d5: 9d:eb:ce:e5:72:47:51:f2:e8:ac:7d:ad:1a:5a:50:be:d1:1e: 64:76:4c:79:d3:1b:45:94:eb:be:f0:d1:86:cc:6a:6f:9f:92: cf:e9:cc:8d:d6:0e:15:ed:e1:cf:af:72:ab:15:8d:85:b9:93: f8:96:5f:33:95:25:f6:18:07:4c:97:e2:69:b4:16:30:ad:6f: 74:d7:9b:2f:53:c9:70:a1:98:c5:42:7a:ff:09:ed:a6:10:3a: 65:c8:47:c0:ae:92:f4:5b:cd:7b:ab:ac:b9:50:44:66:59:8e: c1:85:64:6b:9b:f7:a6:18:4e:e2:ee:cf:35:f3:bb:5d:fa:56: 69:c7:94:99:3b:27:fa:55:01:f2:d9:79:31:47:b9:17:ca:71: f2:4d:be:8b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAa4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REQ3NUIxMTAvBgNVBAUTKEVCODEzRjU5NzYxQzdDNkIxQUUyOEM0NzgxNjdFMjA2 MUFCNUNBQ0YwHhcNMjQwMjI3MDQwNjI1WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRkNWZjMC1iODJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsSaw1YKNoEpnINcUMJYalytDhL9h+bEVKnWXFp1jaCHEWZem1zX6sXTUSHPp ibh9XWgfJSYeOXfckoAZ+AmGIpH/JaUIvJ8jCaGALse+OB5j0iImIKtJsVTVuyLP OTX/issPPws/OuDQ6ydvELRFiKv9BVEtI8PJY3WKxgtVOTLv1iUY8Aaa463SjTYw kEoJi9S0GEuT5qMblHHj2ey3Hyi8vkXkB6fztnB4Qoi0C+VKPyWF/+2bngA52qe5 7vNL9S0rLYFjIAIh2EqvYSwn1bN/1PBbJ8OyzGDEAV1+Kd96UfRXYpm3c2tVirfY je/lnRI047XwBn/GMO+ktiiM1wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFKfZDf52 F+emPrrPxasie6PMGYZFMB8GA1UdIwQYMBaAFOuBP1l2HHxrGuKMR4Fn4gYatcrP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERDc1Qi82NEExREE0ODAx REMxMUVEOUVGRTJBNTZDNEY5QUUwMi82NEVfV1hZY2ZHc2E0b3hIZ1dmaUJocTF5 czguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzY0RV9XWFljZkdzYTRveEhnV2ZpQmhxMXlzOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REQ3NUIvNjRBMURBNDgwMURDMTFFRDlFRkUyQTU2QzRGOUFFMDIvRDZBNjU4Q0Uw MURFMTFFRDgyMzZGMDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFniOIwDQQCAAIwBwMFACQAlOAwDQYJKoZIhvcNAQELBQAD ggEBAAW30qzqp0iAKgCh82dqsUVavxY5pQugSYU/k6IwqoO5Z07pusGZq8XVtUq4 Checg/+NCVami9AXzeWydephq5D5ooHqXVdjuCnYIHr+1KENhBOVCUw2WBL4mQ6e Hz4LbhdMjKqIklzhdd2n1Z3rzuVyR1Hy6Kx9rRpaUL7RHmR2THnTG0WU677w0YbM am+fks/pzI3WDhXt4c+vcqsVjYW5k/iWXzOVJfYYB0yX4mm0FjCtb3TXmy9TyXCh mMVCev8J7aYQOmXIR8CukvRbzXurrLlQRGZZjsGFZGub96YYTuLuzzXzu136VmnH lJk7J/pVAfLZeTFHuRfKcfJNvos= -----END CERTIFICATE-----Generated at Sun May 19 04:56:56 2024 by rpki-client on console-fra.rpki-client.org