$ rpki-client -vvf rpki.apnic.net/member_repository/A91E3C42/3FB3B8D8F55911E9B7574956C4F9AE02/C41C9EFEF55A11E9BF182559C4F9AE02.roa File: C41C9EFEF55A11E9BF182559C4F9AE02.roa (raw, json) Hash identifier: gtQBI4S78oRGzDerxcGVhnFswIklyjzdp1Q/C1it5xw= Subject key identifier: 13:56:CD:15:A4:79:C3:4C:99:9C:66:EB:48:35:EE:CA:A8:03:EB:16 Certificate issuer: /CN=A91E3C42/serialNumber=4FEF6507B255D8066A0DA3FF27D395468B152D38 Certificate serial: 0BA2 Authority key identifier: 4F:EF:65:07:B2:55:D8:06:6A:0D:A3:FF:27:D3:95:46:8B:15:2D:38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-9lB7JV2AZqDaP_J9OVRosVLTg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E3C42/3FB3B8D8F55911E9B7574956C4F9AE02/C41C9EFEF55A11E9BF182559C4F9AE02.roa Signing time: Tue 06 Feb 2024 19:07:33 +0000 ROA not before: Tue 06 Feb 2024 19:07:33 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 136211 IP address blocks: 103.83.196.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E3C42/3FB3B8D8F55911E9B7574956C4F9AE02/T-9lB7JV2AZqDaP_J9OVRosVLTg.crl rsync://rpki.apnic.net/member_repository/A91E3C42/3FB3B8D8F55911E9B7574956C4F9AE02/T-9lB7JV2AZqDaP_J9OVRosVLTg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-9lB7JV2AZqDaP_J9OVRosVLTg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2978 (0xba2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E3C42/serialNumber=4FEF6507B255D8066A0DA3FF27D395468B152D38 Validity Not Before: Feb 6 19:07:33 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65c28374-5217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a5:9f:19:2f:df:0a:c0:7f:13:f6:51:dc:0c: c3:2f:2c:80:95:53:56:83:08:3c:c6:e6:06:fc:6c: 57:f3:c4:f4:bd:b7:79:01:6b:68:17:4e:14:5f:fe: cc:37:d1:12:20:32:c1:d5:b8:f2:0f:76:55:73:17: 13:65:45:ef:82:e6:8e:8f:7c:91:de:0f:9e:1c:58: 88:1e:c0:21:05:03:98:10:e8:3d:74:15:ca:33:ff: 86:b3:e2:c9:86:64:8a:ad:b4:f8:c0:2d:44:2d:05: eb:55:bb:93:62:0b:ec:93:eb:1e:5a:55:cc:de:fa: 44:ad:82:9a:0e:c7:da:f4:7e:15:f9:e7:bd:49:0d: de:25:65:fb:d0:ee:80:1e:02:1f:02:95:73:5b:f5: ff:56:3e:20:53:6a:7d:c6:ba:bd:02:93:8d:21:89: b4:51:b4:db:bd:8e:73:9e:f5:f9:41:cd:69:0b:4a: 49:58:cf:47:bf:1f:3f:c9:b6:52:c0:11:d5:4f:01: b3:06:72:bc:8b:18:ce:73:75:47:9e:79:a0:a2:93: 53:38:2c:6f:3d:75:a9:82:6d:76:80:9f:a4:60:1b: 70:bd:d8:5f:1d:a2:f5:b3:b1:d2:03:a3:36:02:62: 78:e5:ca:c0:83:d4:aa:74:1e:7f:7e:fa:a3:ff:8e: b9:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:56:CD:15:A4:79:C3:4C:99:9C:66:EB:48:35:EE:CA:A8:03:EB:16 X509v3 Authority Key Identifier: keyid:4F:EF:65:07:B2:55:D8:06:6A:0D:A3:FF:27:D3:95:46:8B:15:2D:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E3C42/3FB3B8D8F55911E9B7574956C4F9AE02/T-9lB7JV2AZqDaP_J9OVRosVLTg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/T-9lB7JV2AZqDaP_J9OVRosVLTg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E3C42/3FB3B8D8F55911E9B7574956C4F9AE02/C41C9EFEF55A11E9BF182559C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.83.196.0/24 Signature Algorithm: sha256WithRSAEncryption 4e:f0:eb:d1:49:e2:b6:10:4a:0b:f9:f0:41:a2:52:2b:9c:40: 4a:6a:fb:d1:78:d8:f8:10:21:1e:b6:e6:2d:42:92:e0:d0:8c: 3c:cb:28:ef:83:ae:a5:ec:0e:51:28:81:fd:76:fc:48:b2:bc: ee:e0:7e:07:bb:91:0e:b0:6c:1a:56:e2:f9:70:9e:56:0b:08: 3a:8d:7d:17:e5:3a:56:ea:11:2e:db:be:6d:a6:14:ff:83:81: 58:e3:eb:4e:55:eb:27:6e:36:34:3c:aa:f2:6c:16:5d:c8:49: 25:c7:02:86:3f:1a:a0:03:57:ed:c6:d4:57:65:8f:0f:28:fe: 37:30:bf:b0:01:a6:c5:00:b2:7b:63:2f:25:f4:6d:60:be:d2: cb:e0:ce:47:ee:b3:39:d0:85:1c:d9:41:ad:86:e1:dc:94:c6: de:b1:73:00:93:df:0c:d0:fa:be:23:a1:28:69:c7:ef:03:f4: 4d:4a:31:96:a4:f0:48:45:2b:02:bd:dc:51:3b:3b:a5:fc:10: 73:2f:6e:b2:4a:43:c1:d5:83:1d:15:0d:b6:db:bc:80:3a:d7: 82:fb:cd:02:39:c9:f4:f0:e0:ce:ca:26:51:ec:88:54:72:67: 56:68:92:94:b7:62:8e:ae:4c:7e:c8:f8:a6:ff:d8:54:5f:36: c5:21:20:13 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC6IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTNDNDIxMTAvBgNVBAUTKDRGRUY2NTA3QjI1NUQ4MDY2QTBEQTNGRjI3RDM5NTQ2 OEIxNTJEMzgwHhcNMjQwMjA2MTkwNzMzWhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWMyODM3NC01MjE3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1aWfGS/fCsB/E/ZR3AzDLyyAlVNWgwg8xuYG/GxX88T0vbd5AWtoF04UX/7M N9ESIDLB1bjyD3ZVcxcTZUXvguaOj3yR3g+eHFiIHsAhBQOYEOg9dBXKM/+Gs+LJ hmSKrbT4wC1ELQXrVbuTYgvsk+seWlXM3vpErYKaDsfa9H4V+ee9SQ3eJWX70O6A HgIfApVzW/X/Vj4gU2p9xrq9ApONIYm0UbTbvY5znvX5Qc1pC0pJWM9Hvx8/ybZS wBHVTwGzBnK8ixjOc3VHnnmgopNTOCxvPXWpgm12gJ+kYBtwvdhfHaL1s7HSA6M2 AmJ45crAg9SqdB5/fvqj/465VQIDAQABo4IClTCCApEwHQYDVR0OBBYEFBNWzRWk ecNMmZxm60g17sqoA+sWMB8GA1UdIwQYMBaAFE/vZQeyVdgGag2j/yfTlUaLFS04 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFM0M0Mi8zRkIzQjhEOEY1 NTkxMUU5Qjc1NzQ5NTZDNEY5QUUwMi9ULTlsQjdKVjJBWnFEYVBfSjlPVlJvc1ZM VGcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1QtOWxCN0pWMkFacURhUF9KOU9WUm9zVkxUZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTNDNDIvM0ZCM0I4RDhGNTU5MTFFOUI3NTc0OTU2QzRGOUFFMDIvQzQxQzlFRkVG NTVBMTFFOUJGMTgyNTU5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnU8QwDQYJKoZIhvcNAQELBQADggEBAE7w69FJ4rYQSgv5 8EGiUiucQEpq+9F42PgQIR625i1CkuDQjDzLKO+DrqXsDlEogf12/EiyvO7gfge7 kQ6wbBpW4vlwnlYLCDqNfRflOlbqES7bvm2mFP+DgVjj605V6yduNjQ8qvJsFl3I SSXHAoY/GqADV+3G1Fdljw8o/jcwv7ABpsUAsntjLyX0bWC+0svgzkfusznQhRzZ Qa2G4dyUxt6xcwCT3wzQ+r4joShpx+8D9E1KMZak8EhFKwK93FE7O6X8EHMvbrJK Q8HVgx0VDbbbvIA614L7zQI5yfTw4M7KJlHsiFRyZ1ZokpS3Yo6uTH7I+Kb/2FRf NsUhIBM= -----END CERTIFICATE-----Generated at Wed May 8 21:04:04 2024 by rpki-client on console-fra.rpki-client.org