$ rpki-client -vvf rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/91FD24BA23C511EDA6D7F073C4F9AE02.roa File: 91FD24BA23C511EDA6D7F073C4F9AE02.roa (raw, json) Hash identifier: xQqoae/tPKWvzjrxyk3lVCq70Z56Y74w86x5I0sSs00= Subject key identifier: 41:E1:C3:33:12:06:F2:EA:16:94:09:C9:D9:0B:57:68:66:2A:F9:D5 Certificate issuer: /CN=A91E28C1/serialNumber=25841FA77C05716585FE7BDB0600B9864E3406D2 Certificate serial: 0802 Authority key identifier: 25:84:1F:A7:7C:05:71:65:85:FE:7B:DB:06:00:B9:86:4E:34:06:D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/91FD24BA23C511EDA6D7F073C4F9AE02.roa Signing time: Thu 10 Aug 2023 15:24:46 +0000 ROA not before: Thu 10 Aug 2023 15:24:46 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58629 IP address blocks: 103.138.122.0/24 maxlen: 24 103.138.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.crl rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2050 (0x802) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E28C1/serialNumber=25841FA77C05716585FE7BDB0600B9864E3406D2 Validity Not Before: Aug 10 15:24:46 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64d5013e-d7e1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:75:4d:40:94:6e:5c:d7:8e:f3:3a:29:ad:a1: 4d:59:b7:56:20:b8:3a:06:99:b7:d7:c4:e7:c3:20: c7:4c:a7:f8:ab:15:d6:7d:48:dc:37:1a:66:27:91: ce:b0:c5:73:27:21:15:02:a5:c2:5f:3b:17:cd:10: b8:79:7c:e5:6e:b2:eb:68:63:32:e9:a1:36:1c:ce: af:ab:ba:45:5a:8a:56:04:2a:a5:6f:a0:d6:3b:64: 16:20:da:cf:e0:20:ff:74:53:be:e4:e1:31:98:c2: 43:79:3e:56:83:b1:7d:f6:38:ac:ec:2b:4e:ca:d0: 0b:2e:4c:24:46:9f:29:cf:a2:a6:25:60:9d:79:65: 8f:0d:e9:76:b7:a0:a1:18:df:72:96:e1:64:93:df: 96:1b:96:5f:79:c5:e8:ec:1f:eb:41:f7:25:75:7e: de:ff:03:e9:9c:c0:b7:41:2f:6c:e6:eb:b9:46:5f: 71:10:3c:6f:b3:1d:5d:e0:07:48:f1:9a:20:06:4a: af:f4:32:b8:28:67:b0:42:5d:29:1e:15:5c:b9:18: be:4b:b3:ae:d8:ca:cd:49:e1:43:a6:a6:07:53:70: b6:78:e6:2e:e4:0b:1f:a2:bc:33:ce:e0:8d:3b:b7: 9f:d3:20:c8:b8:fd:1c:69:46:4f:60:34:6a:ae:40: c9:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E1:C3:33:12:06:F2:EA:16:94:09:C9:D9:0B:57:68:66:2A:F9:D5 X509v3 Authority Key Identifier: keyid:25:84:1F:A7:7C:05:71:65:85:FE:7B:DB:06:00:B9:86:4E:34:06:D2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/JYQfp3wFcWWF_nvbBgC5hk40BtI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JYQfp3wFcWWF_nvbBgC5hk40BtI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E28C1/F8AFA14099E011EA96652F32C4F9AE02/91FD24BA23C511EDA6D7F073C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.122.0/23 Signature Algorithm: sha256WithRSAEncryption 01:cc:2d:1f:92:9d:71:4c:56:fc:b3:5b:d7:84:c8:ce:4a:99: a1:7b:41:72:7c:14:dd:71:fc:27:70:8e:9e:80:9b:e4:a4:a5: 22:0d:cf:6f:6c:8f:c9:0e:4e:ad:66:7c:2b:3c:c9:4d:09:1a: 97:fb:91:0d:13:38:97:e7:49:e2:8d:d5:52:39:f2:aa:7d:40: 5b:c9:34:b6:8b:b6:fb:97:7c:3e:dc:6d:b8:09:2c:75:ee:cf: 67:89:b4:de:ae:c4:d5:ad:e4:c0:6c:f8:32:cc:e0:79:ef:dc: 76:e2:51:2d:b9:1f:ed:38:5b:aa:a8:1f:b6:43:6b:6d:3a:16: 2a:a4:2b:c4:a9:ca:98:45:60:b4:a6:2c:e2:5e:7f:d2:94:71: a8:ea:6a:d4:13:c6:77:b9:bc:4a:4a:d9:4c:5a:cc:7f:c5:b7: 7a:fd:a7:53:ae:8f:2d:ba:2b:09:46:f7:d9:d5:10:5e:86:bc: 9c:0f:b0:22:e1:ad:cc:86:59:25:69:4d:6e:a2:41:f5:a4:44: 56:41:a5:eb:03:8e:2e:46:2e:7c:56:74:6c:69:40:44:16:f4: 8b:8a:cc:f9:0c:08:3c:54:27:8b:21:fd:24:bb:56:26:eb:f3: d9:e5:8c:32:30:23:3a:d3:0b:2a:fc:7c:ac:2a:0f:5f:63:f8: bb:3b:52:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCAIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTI4QzExMTAvBgNVBAUTKDI1ODQxRkE3N0MwNTcxNjU4NUZFN0JEQjA2MDBCOTg2 NEUzNDA2RDIwHhcNMjMwODEwMTUyNDQ2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGQ1MDEzZS1kN2UxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArnVNQJRuXNeO8zopraFNWbdWILg6Bpm318TnwyDHTKf4qxXWfUjcNxpmJ5HO sMVzJyEVAqXCXzsXzRC4eXzlbrLraGMy6aE2HM6vq7pFWopWBCqlb6DWO2QWINrP 4CD/dFO+5OExmMJDeT5Wg7F99jis7CtOytALLkwkRp8pz6KmJWCdeWWPDel2t6Ch GN9yluFkk9+WG5ZfecXo7B/rQfcldX7e/wPpnMC3QS9s5uu5Rl9xEDxvsx1d4AdI 8ZogBkqv9DK4KGewQl0pHhVcuRi+S7Ou2MrNSeFDpqYHU3C2eOYu5AsforwzzuCN O7ef0yDIuP0caUZPYDRqrkDJIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFEHhwzMS BvLqFpQJydkLV2hmKvnVMB8GA1UdIwQYMBaAFCWEH6d8BXFlhf572wYAuYZONAbS MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMjhDMS9GOEFGQTE0MDk5 RTAxMUVBOTY2NTJGMzJDNEY5QUUwMi9KWVFmcDN3RmNXV0ZfbnZiQmdDNWhrNDBC dEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0pZUWZwM3dGY1dXRl9udmJCZ0M1aGs0MEJ0SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTI4QzEvRjhBRkExNDA5OUUwMTFFQTk2NjUyRjMyQzRGOUFFMDIvOTFGRDI0QkEy M0M1MTFFREE2RDdGMDczQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFninowDQYJKoZIhvcNAQELBQADggEBAAHMLR+SnXFMVvyz W9eEyM5KmaF7QXJ8FN1x/Cdwjp6Am+SkpSINz29sj8kOTq1mfCs8yU0JGpf7kQ0T OJfnSeKN1VI58qp9QFvJNLaLtvuXfD7cbbgJLHXuz2eJtN6uxNWt5MBs+DLM4Hnv 3HbiUS25H+04W6qoH7ZDa206FiqkK8SpyphFYLSmLOJef9KUcajqatQTxne5vEpK 2UxazH/Ft3r9p1Oujy26KwlG99nVEF6GvJwPsCLhrcyGWSVpTW6iQfWkRFZBpesD ji5GLnxWdGxpQEQW9IuKzPkMCDxUJ4sh/SS7Vibr89nljDIwIzrTCyr8fKwqD19j +Ls7Utg= -----END CERTIFICATE-----Generated at Thu May 16 22:23:38 2024 by rpki-client on console-fra.rpki-client.org