$ rpki-client -vvf rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/0EB22CD66BBE11EDBF717818C4F9AE02.roa File: 0EB22CD66BBE11EDBF717818C4F9AE02.roa (raw, json) Hash identifier: z1yCiwyZj4UON44/vKIdzR5Ra7KvMftlif3KyAZf2Ig= Subject key identifier: 75:CB:3B:C6:81:64:73:E4:AC:C8:51:F2:1A:BD:B0:FC:D7:EE:4A:4E Certificate issuer: /CN=A91DF3CA/serialNumber=BB93256E607D42EB6E3420DCC7137F20B84D0C8A Certificate serial: 1676 Authority key identifier: BB:93:25:6E:60:7D:42:EB:6E:34:20:DC:C7:13:7F:20:B8:4D:0C:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5MlbmB9QutuNCDcxxN_ILhNDIo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/0EB22CD66BBE11EDBF717818C4F9AE02.roa Signing time: Fri 28 Jul 2023 17:14:11 +0000 ROA not before: Fri 28 Jul 2023 17:14:11 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 132018 IP address blocks: 103.21.192.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/u5MlbmB9QutuNCDcxxN_ILhNDIo.crl rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/u5MlbmB9QutuNCDcxxN_ILhNDIo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5MlbmB9QutuNCDcxxN_ILhNDIo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 17:12:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5750 (0x1676) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DF3CA/serialNumber=BB93256E607D42EB6E3420DCC7137F20B84D0C8A Validity Not Before: Jul 28 17:14:11 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c3f762-637f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1e:56:7c:8f:34:4b:48:2e:89:90:7c:94:0e: 87:de:d1:40:34:21:a0:95:8e:bf:f8:48:ca:29:59: 27:11:71:ec:76:7f:5f:59:d0:09:f0:6d:bb:23:ba: c7:75:45:d4:6d:1e:b3:65:ec:34:b9:8d:4c:07:8f: 80:4a:67:de:75:df:d4:6f:ef:3f:b3:ff:e1:63:25: 1c:df:96:05:07:3f:80:fe:57:04:39:9d:ef:fe:bd: b1:20:e9:f7:16:8e:52:3e:82:00:91:d5:b0:46:52: 81:73:a2:54:79:2d:f9:02:17:41:2c:72:5b:d0:17: c4:3e:32:74:28:2c:c9:1a:02:67:1e:e6:f1:a6:bb: 1a:d6:d9:38:aa:37:b1:6d:43:4b:df:ed:57:f2:af: 9d:f4:cd:b8:c0:d5:05:c3:24:50:f6:4a:bd:8d:57: 29:b0:04:b2:fa:e3:a8:d4:60:7c:bd:a1:6d:c1:2f: ac:a7:c4:11:3a:75:61:54:c4:f0:fd:ed:e7:72:b5: 2c:0d:99:d1:48:bc:5f:2a:40:48:e9:8b:ac:50:e0: ae:84:bc:39:0d:4c:86:9f:29:5a:cb:01:7a:3b:52: 9d:e9:b9:a9:67:3f:00:47:64:06:7b:ac:62:38:c1: 18:88:3c:98:98:e6:7c:e7:a8:aa:f9:60:a7:3b:ae: d9:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:CB:3B:C6:81:64:73:E4:AC:C8:51:F2:1A:BD:B0:FC:D7:EE:4A:4E X509v3 Authority Key Identifier: keyid:BB:93:25:6E:60:7D:42:EB:6E:34:20:DC:C7:13:7F:20:B8:4D:0C:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/u5MlbmB9QutuNCDcxxN_ILhNDIo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u5MlbmB9QutuNCDcxxN_ILhNDIo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DF3CA/EF4F937CC3A411E797BBF15EC4F9AE02/0EB22CD66BBE11EDBF717818C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.192.0/24 Signature Algorithm: sha256WithRSAEncryption c2:12:06:93:e0:0e:1f:02:56:a2:8a:6e:58:20:d7:aa:7a:e4: 0a:55:d8:12:b1:f4:ce:4e:78:64:ae:de:d4:d8:2d:76:7c:6c: 7a:64:30:de:81:4a:fa:3b:9f:b0:9e:60:88:be:94:54:f8:11: ab:01:88:7c:6e:a6:3b:8c:88:ed:f1:7d:2b:89:51:fb:44:81: 3d:d0:d4:79:11:b5:49:9c:62:46:88:42:73:c0:b3:c4:97:7b: f4:e0:aa:34:45:56:e4:ce:a2:11:22:14:96:93:f3:0a:25:ce: bb:68:ba:7a:6b:52:70:73:59:8e:7d:1e:8e:10:f5:f0:cf:f4: cd:7c:38:b9:6b:94:a8:08:a4:ba:6c:ae:2f:a9:00:cd:75:2d: 43:02:ef:bd:ad:0e:c4:51:97:d4:ee:63:b3:7b:7b:c7:ef:c9: 06:b0:fe:51:62:d3:ed:38:94:1b:38:0a:48:bd:d4:c3:ef:f4: 59:26:aa:1c:65:30:47:22:14:c6:94:6b:85:9f:17:11:2d:57: 8b:a0:ca:98:e7:56:0e:60:43:62:ab:fe:ef:f8:8f:9f:83:75: 1c:8d:4b:d6:60:4b:aa:4a:f9:05:ab:77:33:6f:f7:24:dd:dc: 51:5b:3a:53:56:fc:2d:4c:39:46:a9:ef:82:5f:c5:ad:60:31: f9:05:18:6e -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICFnYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REYzQ0ExMTAvBgNVBAUTKEJCOTMyNTZFNjA3RDQyRUI2RTM0MjBEQ0M3MTM3RjIw Qjg0RDBDOEEwHhcNMjMwNzI4MTcxNDExWhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGMzZjc2Mi02MzdmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvx5WfI80S0guiZB8lA6H3tFANCGglY6/+EjKKVknEXHsdn9fWdAJ8G27I7rH dUXUbR6zZew0uY1MB4+ASmfedd/Ub+8/s//hYyUc35YFBz+A/lcEOZ3v/r2xIOn3 Fo5SPoIAkdWwRlKBc6JUeS35AhdBLHJb0BfEPjJ0KCzJGgJnHubxprsa1tk4qjex bUNL3+1X8q+d9M24wNUFwyRQ9kq9jVcpsASy+uOo1GB8vaFtwS+sp8QROnVhVMTw /e3ncrUsDZnRSLxfKkBI6YusUOCuhLw5DUyGnylaywF6O1Kd6bmpZz8AR2QGe6xi OMEYiDyYmOZ856iq+WCnO67Z+wIDAQABo4IClTCCApEwHQYDVR0OBBYEFHXLO8aB ZHPkrMhR8hq9sPzX7kpOMB8GA1UdIwQYMBaAFLuTJW5gfULrbjQg3McTfyC4TQyK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFERjNDQS9FRjRGOTM3Q0Mz QTQxMUU3OTdCQkYxNUVDNEY5QUUwMi91NU1sYm1COVF1dHVOQ0RjeHhOX0lMaE5E SW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U1TWxibUI5UXV0dU5DRGN4eE5fSUxoTkRJby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REYzQ0EvRUY0RjkzN0NDM0E0MTFFNzk3QkJGMTVFQzRGOUFFMDIvMEVCMjJDRDY2 QkJFMTFFREJGNzE3ODE4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFcAwDQYJKoZIhvcNAQELBQADggEBAMISBpPgDh8CVqKK blgg16p65ApV2BKx9M5OeGSu3tTYLXZ8bHpkMN6BSvo7n7CeYIi+lFT4EasBiHxu pjuMiO3xfSuJUftEgT3Q1HkRtUmcYkaIQnPAs8SXe/TgqjRFVuTOohEiFJaT8wol zrtounprUnBzWY59Ho4Q9fDP9M18OLlrlKgIpLpsri+pAM11LUMC772tDsRRl9Tu Y7N7e8fvyQaw/lFi0+04lBs4Cki91MPv9FkmqhxlMEciFMaUa4WfFxEtV4ugypjn Vg5gQ2Kr/u/4j5+DdRyNS9ZgS6pK+QWrdzNv9yTd3FFbOlNW/C1MOUap74Jfxa1g MfkFGG4= -----END CERTIFICATE-----Generated at Thu May 16 18:26:10 2024 by rpki-client on console-fra.rpki-client.org