$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/DAC9D5960C7E11EF9A189E18C4F9AE02.roa File: DAC9D5960C7E11EF9A189E18C4F9AE02.roa (raw, json) Hash identifier: 31H5Vhs+f/h3u06zcfDWH9AwqpcXpDRyJ5vXA17DcEI= Subject key identifier: 54:01:72:7F:3D:9A:FB:84:9D:11:7E:89:72:6E:AF:3B:1A:CA:8F:4D Certificate issuer: /CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Certificate serial: 21 Authority key identifier: F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/DAC9D5960C7E11EF9A189E18C4F9AE02.roa Signing time: Tue 07 May 2024 14:34:05 +0000 ROA not before: Tue 07 May 2024 14:34:05 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 152711 IP address blocks: 103.51.62.0/24 maxlen: 24 103.51.63.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Sep 2024 04:46:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33 (0x21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Validity Not Before: May 7 14:34:05 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=663a3bdd-4e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:4c:62:d5:89:a5:15:56:8c:0a:a8:e9:08: e1:dc:5e:73:2d:2f:eb:1a:d0:ee:45:19:f5:e7:1a: 90:df:8e:9f:10:13:43:e2:0f:d2:c2:8b:a8:23:80: bb:56:2f:7a:a5:68:67:b2:ec:c6:1d:09:92:8f:0c: d1:04:88:6f:56:2d:53:bb:7e:c5:00:29:34:c1:44: 82:ac:5e:d4:4e:78:b3:84:18:66:82:d5:44:79:46: c8:a0:36:df:3d:c0:a8:76:0e:23:75:1c:42:21:4f: 48:6a:cf:1f:98:d6:4c:ab:b1:db:d4:a5:42:6a:11: 76:13:d5:6f:3d:ba:52:ff:39:7b:24:f5:b3:1e:92: d0:6f:51:21:7c:8e:18:cb:da:97:0b:e3:f5:f2:1d: 90:e6:e6:c9:0f:64:37:60:d7:40:a7:14:96:0f:85: 9a:4c:69:f3:43:00:84:d2:da:13:0c:f6:60:52:8c: 15:18:17:f2:46:59:e6:70:b4:d9:9c:b2:e0:66:80: 50:45:7f:da:57:75:06:b1:14:e6:e8:ba:60:11:09: ad:0f:4f:00:6a:c2:e0:32:c5:c1:8b:89:4a:98:38: ff:38:c5:10:7e:52:6b:72:f9:d6:3c:99:5a:26:b9: e8:9a:4c:ae:12:d3:05:f3:a0:bf:53:9c:ef:50:f8: 48:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:01:72:7F:3D:9A:FB:84:9D:11:7E:89:72:6E:AF:3B:1A:CA:8F:4D X509v3 Authority Key Identifier: keyid:F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/DAC9D5960C7E11EF9A189E18C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.51.62.0/23 Signature Algorithm: sha256WithRSAEncryption 68:a2:b9:b7:a8:ee:4a:ec:77:0f:67:2c:4e:12:eb:1e:50:e0: 36:c7:eb:e3:45:40:7d:fc:f7:f7:fc:bb:65:1c:ae:fd:06:48: 50:f6:91:ba:a2:c0:d6:2b:2f:7a:f0:00:17:4f:34:df:23:ee: ca:82:1b:e5:d1:39:d1:84:8e:4b:70:07:f7:55:f8:42:26:46: b8:b6:36:e1:0c:1b:f2:1c:27:8e:6f:b5:1b:47:b2:57:04:48: 61:92:88:08:19:2c:6f:bd:d9:06:cd:45:24:c6:43:68:e5:06: 88:15:7e:08:75:a0:14:ef:9b:bf:96:b7:fb:b9:52:b6:32:6f: 3c:50:b1:d5:88:b3:17:16:c4:c1:8b:2c:5e:b3:91:71:ea:29: 1e:27:21:14:6c:4f:91:52:93:23:48:40:57:3c:7c:95:85:66: 4c:ca:9c:f6:16:00:54:5a:ba:c6:7c:59:ae:a3:f1:7f:db:4d: 97:a0:ad:87:0c:0c:de:2f:c6:ac:fe:e4:e1:c8:76:2e:26:cd: a5:a7:f0:db:d9:d7:c6:06:c0:4b:a3:d9:44:b6:fa:51:55:1b: c9:b5:af:65:9b:60:1a:04:a1:bf:95:89:9c:22:36:8a:dc:b1: 3d:b9:c4:a8:03:fc:7e:09:9b:14:5e:bc:60:c6:88:72:15:e2: a3:43:4b:f9 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBITANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF MkY4MDExMC8GA1UEBRMoRjQxMEM0ODNBNEM4QzkxNkZGRDRDRjQyMEM0QzExMDg4 OTc5ODg5MTAeFw0yNDA1MDcxNDM0MDVaFw0yNTA3MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2M2EzYmRkLTRlMWUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBr0xi1YmlFVaMCqjpCOHcXnMtL+sa0O5FGfXnGpDfjp8QE0PiD9LCi6gjgLtW L3qlaGey7MYdCZKPDNEEiG9WLVO7fsUAKTTBRIKsXtROeLOEGGaC1UR5RsigNt89 wKh2DiN1HEIhT0hqzx+Y1kyrsdvUpUJqEXYT1W89ulL/OXsk9bMektBvUSF8jhjL 2pcL4/XyHZDm5skPZDdg10CnFJYPhZpMafNDAITS2hMM9mBSjBUYF/JGWeZwtNmc suBmgFBFf9pXdQaxFOboumARCa0PTwBqwuAyxcGLiUqYOP84xRB+Umty+dY8mVom ueiaTK4S0wXzoL9TnO9Q+EjZAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUVAFyfz2a +4SdEX6Jcm6vOxrKj00wHwYDVR0jBBgwFoAU9BDEg6TIyRb/1M9CDEwRCIl5iJEw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUUyRjgwLzk0QzU0QjgwMDM5 NTExRUY4NUI2OUY0RUM0RjlBRTAyLzlCREVnNlRJeVJiXzFNOUNERXdSQ0lsNWlK RS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvOUJERWc2VEl5UmJfMU05Q0RFd1JDSWw1aUpFLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkY4MC85NEM1NEI4MDAzOTUxMUVGODVCNjlGNEVDNEY5QUUwMi9EQUM5RDU5NjBD N0UxMUVGOUExODlFMThDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWczPjANBgkqhkiG9w0BAQsFAAOCAQEAaKK5t6juSux3D2cs ThLrHlDgNsfr40VAffz39/y7ZRyu/QZIUPaRuqLA1isvevAAF0803yPuyoIb5dE5 0YSOS3AH91X4QiZGuLY24Qwb8hwnjm+1G0eyVwRIYZKICBksb73ZBs1FJMZDaOUG iBV+CHWgFO+bv5a3+7lStjJvPFCx1YizFxbEwYssXrORceopHichFGxPkVKTI0hA Vzx8lYVmTMqc9hYAVFq6xnxZrqPxf9tNl6CthwwM3i/GrP7k4ch2LibNpafw29nX xgbAS6PZRLb6UVUbybWvZZtgGgShv5WJnCI2ityxPbnEqAP8fgmbFF68YMaIchXi o0NL+Q== -----END CERTIFICATE-----Generated at Tue Sep 17 08:12:30 2024 by rpki-client on console-ams.rpki-client.org