$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/53AD6F32DA5E11EBA323F462C4F9AE02.roa File: 53AD6F32DA5E11EBA323F462C4F9AE02.roa (raw, json) Hash identifier: +axJ8lBhTZNSZ8tPJXnzcEci8O0ZatyQYeFvGTFF+aw= Subject key identifier: 3A:45:0E:6F:D6:34:06:11:5C:96:2A:F3:73:2A:11:0E:A5:94:89:73 Certificate issuer: /CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Certificate serial: 02D7 Authority key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/53AD6F32DA5E11EBA323F462C4F9AE02.roa Signing time: Thu 30 Jun 2022 14:48:49 +0000 ROA not before: Thu 30 Jun 2022 14:48:49 +0000 ROA not after: Thu 31 Aug 2023 00:00:00 +0000 asID: 16509 IP address blocks: 103.168.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Mar 2023 02:35:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 727 (0x2d7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05 Validity Not Before: Jun 30 14:48:49 2022 GMT Not After : Aug 31 00:00:00 2023 GMT Subject: CN=62bdb7d0-7929 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:56:6c:e4:10:73:0c:40:54:16:5b:e6:cd:db: 0c:bb:aa:de:de:69:4a:3d:be:5f:2e:d3:c1:3a:ca: a5:bb:ef:2f:b0:9b:3a:b3:dc:e8:d5:60:fc:db:6c: 20:17:be:da:f5:2a:ba:d5:f5:63:b4:a7:0c:16:67: 9b:71:d6:d5:4a:45:6b:49:0f:e8:01:5c:26:26:4a: f1:fe:85:ae:94:d1:cd:7e:3e:0a:d5:9f:07:87:89: 93:ff:38:db:24:b8:78:8f:17:6a:95:7c:14:7d:de: d6:f8:d9:46:8f:fe:91:71:c5:0a:7c:4a:fd:24:33: 49:04:8c:31:14:92:17:a2:81:89:50:b2:f8:77:6b: f3:79:91:fa:b9:32:9e:bb:eb:ae:15:ce:e1:72:25: 47:e8:f5:4c:4b:f4:4a:b2:35:64:db:7d:03:bd:03: 0d:43:4c:a6:23:b8:34:71:6b:3b:38:19:59:b8:c3: 3d:8d:29:f5:54:42:a3:23:af:84:7c:32:63:dc:06: 2f:59:62:cf:92:03:93:d7:42:f8:25:22:04:26:4c: 1a:1c:b0:84:92:c3:57:ce:63:ee:34:6f:55:1f:d4: f8:01:56:30:18:fe:88:e7:c9:76:ec:46:2a:ec:94: 81:c4:85:3b:9d:9b:51:77:51:aa:7e:fc:14:9e:c7: 57:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:45:0E:6F:D6:34:06:11:5C:96:2A:F3:73:2A:11:0E:A5:94:89:73 X509v3 Authority Key Identifier: keyid:B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/53AD6F32DA5E11EBA323F462C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.168.209.0/24 Signature Algorithm: sha256WithRSAEncryption a1:b8:32:8c:c7:09:df:e3:e4:28:0e:0a:b1:63:9d:f5:aa:03: 83:8d:50:d4:cc:13:35:16:99:f3:9c:20:c2:42:63:00:7b:61: db:99:3a:03:d1:d6:4f:b1:d8:82:b1:4d:8b:a6:3c:4d:e1:6e: 1c:16:69:22:8d:55:90:6e:39:e0:96:ae:2a:66:e1:7e:38:e1: de:f2:5a:89:dd:62:34:7c:5a:45:88:75:86:9d:77:b9:e1:d5: e9:f9:32:0b:be:3b:d6:ae:e9:d3:a2:18:a9:f9:74:68:f9:05: ff:7b:ce:2f:12:05:24:72:cc:32:9e:66:c1:6a:cc:bb:76:b3: 3b:32:1e:53:59:90:0c:4e:4e:fe:96:00:ff:54:ef:e2:85:af: ab:28:87:c2:85:4a:a4:6e:92:cd:66:ef:9a:9f:b0:7c:a9:44: e5:ce:4d:91:22:b5:ca:e9:9c:b7:43:76:50:cb:fb:27:55:ef: dc:53:fe:b0:4c:33:fd:19:50:1e:b4:66:ae:f9:df:42:65:c3: fe:7c:34:ce:40:00:93:91:66:1e:a8:5a:81:53:56:5f:f4:bc: 34:e0:69:c6:96:b5:e2:5e:4b:8c:cb:04:df:6e:72:0e:fc:7b: 40:5e:45:21:40:95:5d:2e:fd:05:c4:34:a5:af:8e:cf:ac:19: 68:71:11:47 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAtcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJCNjYxMTAvBgNVBAUTKEIwMTNCOTcyQjQyQ0E1QUQ5RjZBMTYyQkYzQjVDNzRG OTMzQzFFMDUwHhcNMjIwNjMwMTQ0ODQ5WhcNMjMwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02MmJkYjdkMC03OTI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmFZs5BBzDEBUFlvmzdsMu6re3mlKPb5fLtPBOsqlu+8vsJs6s9zo1WD822wg F77a9Sq61fVjtKcMFmebcdbVSkVrSQ/oAVwmJkrx/oWulNHNfj4K1Z8Hh4mT/zjb JLh4jxdqlXwUfd7W+NlGj/6RccUKfEr9JDNJBIwxFJIXooGJULL4d2vzeZH6uTKe u+uuFc7hciVH6PVMS/RKsjVk230DvQMNQ0ymI7g0cWs7OBlZuMM9jSn1VEKjI6+E fDJj3AYvWWLPkgOT10L4JSIEJkwaHLCEksNXzmPuNG9VH9T4AVYwGP6I58l27EYq 7JSBxIU7nZtRd1GqfvwUnsdX+QIDAQABo4IClTCCApEwHQYDVR0OBBYEFDpFDm/W NAYRXJYq83MqEQ6llIlzMB8GA1UdIwQYMBaAFLATuXK0LKWtn2oWK/O1x0+TPB4F MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkI2Ni81M0U4RkJFQURB NUIxMUVCODNCRTM3MUFDNEY5QUUwMi9zQk81Y3JRc3BhMmZhaFlyODdYSFQ1TThI Z1UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3NCTzVjclFzcGEyZmFoWXI4N1hIVDVNOEhnVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTJCNjYvNTNFOEZCRUFEQTVCMTFFQjgzQkUzNzFBQzRGOUFFMDIvNTNBRDZGMzJE QTVFMTFFQkEzMjNGNDYyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnqNEwDQYJKoZIhvcNAQELBQADggEBAKG4MozHCd/j5CgO CrFjnfWqA4ONUNTMEzUWmfOcIMJCYwB7YduZOgPR1k+x2IKxTYumPE3hbhwWaSKN VZBuOeCWripm4X444d7yWondYjR8WkWIdYadd7nh1en5Mgu+O9au6dOiGKn5dGj5 Bf97zi8SBSRyzDKeZsFqzLt2szsyHlNZkAxOTv6WAP9U7+KFr6soh8KFSqRuks1m 75qfsHypROXOTZEitcrpnLdDdlDL+ydV79xT/rBMM/0ZUB60Zq7530Jlw/58NM5A AJORZh6oWoFTVl/0vDTgacaWteJeS4zLBN9ucg78e0BeRSFAlV0u/QXENKWvjs+s GWhxEUc= -----END CERTIFICATE-----Generated at Wed Mar 15 11:45:38 2023 by rpki-client on console-ams.rpki-client.org