$ rpki-client -vvf rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/2852349E915F11ED9305D966C4F9AE02.roa File: 2852349E915F11ED9305D966C4F9AE02.roa (raw, json) Hash identifier: RiWpB9x0E8oqxlYug417cWYfwS2ZFvIkRh2B5mAivTM= Subject key identifier: 3A:0E:6A:87:63:0F:08:E4:E1:86:19:65:60:89:F9:F0:17:B5:80:E0 Certificate issuer: /CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Certificate serial: 032C Authority key identifier: 20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/2852349E915F11ED9305D966C4F9AE02.roa Signing time: Wed 11 Jan 2023 03:22:20 +0000 ROA not before: Wed 11 Jan 2023 03:22:20 +0000 ROA not after: Sat 30 Dec 2023 00:00:00 +0000 asID: 16509 IP address blocks: 103.173.84.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Mar 2023 03:13:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 812 (0x32c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E4DFA/serialNumber=2078AD5BBDF1D4C5B970BBE2934D9A355DB31CE8 Validity Not Before: Jan 11 03:22:20 2023 GMT Not After : Dec 30 00:00:00 2023 GMT Subject: CN=63be2b6c-6835 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:62:3e:92:a1:d7:7a:d4:9e:69:9d:36:aa:41: e4:52:fd:e6:a0:6f:8f:7f:74:36:a5:0f:6e:9a:d1: 7a:0b:1c:f1:8d:55:f1:b0:e6:1e:9b:80:14:ae:5b: f5:43:07:c0:8b:f0:1c:d4:f9:4f:92:a9:63:9b:6b: d6:bc:a6:ef:19:e3:01:c3:c4:d7:9d:67:ed:08:bb: b7:f1:63:ba:56:22:df:34:7c:07:39:1a:45:03:5d: 54:4f:1e:2f:fc:d6:92:15:69:23:e0:43:d2:c8:12: ef:ca:06:e5:14:46:be:2c:90:38:0e:61:79:bf:30: c9:5f:c1:56:fa:51:2e:4f:e0:d8:a2:80:c4:e1:65: 71:dc:83:8a:58:79:ea:12:eb:a6:ef:19:16:4f:8e: d3:c2:33:9c:93:8e:20:9c:ce:f9:d8:a2:a3:f8:6c: 8f:f7:71:c5:c0:28:30:ce:95:9b:d1:f7:7a:f7:59: 42:b7:04:1b:9e:93:45:2c:1e:f0:c8:84:2f:d2:7b: a5:5a:60:99:15:74:16:9a:eb:3f:e1:cd:ee:74:4d: cf:75:dd:76:41:64:36:0a:a3:ae:66:67:a3:ee:46: 31:46:cf:4c:54:41:64:42:1f:89:21:01:2b:65:1a: e5:d5:00:ba:6c:ca:10:2d:e6:36:01:42:57:b5:9f: d7:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0E:6A:87:63:0F:08:E4:E1:86:19:65:60:89:F9:F0:17:B5:80:E0 X509v3 Authority Key Identifier: keyid:20:78:AD:5B:BD:F1:D4:C5:B9:70:BB:E2:93:4D:9A:35:5D:B3:1C:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/IHitW73x1MW5cLvik02aNV2zHOg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IHitW73x1MW5cLvik02aNV2zHOg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E4DFA/845984CE1A8511ECA76AEA3AC4F9AE02/2852349E915F11ED9305D966C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.173.84.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:eb:76:61:1f:29:e3:b3:bb:3d:9d:20:57:f4:39:ef:37:6f: 50:0b:56:83:f9:24:05:39:83:8f:f1:5d:36:51:92:71:66:18: ba:84:3d:2b:f9:d1:55:21:e6:35:07:b4:32:86:23:b7:50:e2: 73:64:26:7c:88:44:a1:02:7f:1f:fc:1f:ab:e1:10:5e:89:6a: ed:79:1d:7d:fc:e1:1b:92:5a:e4:88:a5:74:60:88:db:e1:1f: 3a:f3:98:40:f3:30:fe:df:8e:be:46:2d:52:b1:34:33:07:71: 9a:9d:57:3a:c4:a1:26:3b:e8:52:e1:00:7e:36:e3:14:12:95: 58:3e:61:cd:d2:00:60:af:b2:2a:48:d2:ae:88:52:06:63:38: 7b:b4:cd:49:de:34:81:ea:f1:55:39:ee:18:72:3f:e2:6e:e2: 11:83:ed:1e:16:29:3b:94:19:23:a5:65:b5:bf:8e:7d:8e:e7: c1:cc:c2:49:a1:33:9d:40:60:15:2b:6a:ef:96:fa:79:0f:5c: a4:f1:cd:f4:02:a4:c4:de:70:c9:7b:c4:9e:50:9c:77:a7:65: b3:e7:4c:e2:e6:da:fc:67:36:78:55:bb:88:d0:90:4d:a6:37: bf:81:0b:43:d5:3b:2d:fb:5e:ab:26:b9:a1:96:3b:63:5b:0c: c7:5b:1a:d7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAywwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTRERkExMTAvBgNVBAUTKDIwNzhBRDVCQkRGMUQ0QzVCOTcwQkJFMjkzNEQ5QTM1 NURCMzFDRTgwHhcNMjMwMTExMDMyMjIwWhcNMjMxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02M2JlMmI2Yy02ODM1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzGI+kqHXetSeaZ02qkHkUv3moG+Pf3Q2pQ9umtF6CxzxjVXxsOYem4AUrlv1 QwfAi/Ac1PlPkqljm2vWvKbvGeMBw8TXnWftCLu38WO6ViLfNHwHORpFA11UTx4v /NaSFWkj4EPSyBLvygblFEa+LJA4DmF5vzDJX8FW+lEuT+DYooDE4WVx3IOKWHnq Euum7xkWT47TwjOck44gnM752KKj+GyP93HFwCgwzpWb0fd691lCtwQbnpNFLB7w yIQv0nulWmCZFXQWmus/4c3udE3Pdd12QWQ2CqOuZmej7kYxRs9MVEFkQh+JIQEr ZRrl1QC6bMoQLeY2AUJXtZ/X3wIDAQABo4IClTCCApEwHQYDVR0OBBYEFDoOaodj Dwjk4YYZZWCJ+fAXtYDgMB8GA1UdIwQYMBaAFCB4rVu98dTFuXC74pNNmjVdsxzo MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNERGQS84NDU5ODRDRTFB ODUxMUVDQTc2QUVBM0FDNEY5QUUwMi9JSGl0VzczeDFNVzVjTHZpazAyYU5WMnpI T2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0lIaXRXNzN4MU1XNWNMdmlrMDJhTlYyekhPZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTRERkEvODQ1OTg0Q0UxQTg1MTFFQ0E3NkFFQTNBQzRGOUFFMDIvMjg1MjM0OUU5 MTVGMTFFRDkzMDVEOTY2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnrVQwDQYJKoZIhvcNAQELBQADggEBAD7rdmEfKeOzuz2d IFf0Oe83b1ALVoP5JAU5g4/xXTZRknFmGLqEPSv50VUh5jUHtDKGI7dQ4nNkJnyI RKECfx/8H6vhEF6Jau15HX384RuSWuSIpXRgiNvhHzrzmEDzMP7fjr5GLVKxNDMH cZqdVzrEoSY76FLhAH424xQSlVg+Yc3SAGCvsipI0q6IUgZjOHu0zUneNIHq8VU5 7hhyP+Ju4hGD7R4WKTuUGSOlZbW/jn2O58HMwkmhM51AYBUrau+W+nkPXKTxzfQC pMTecMl7xJ5QnHenZbPnTOLm2vxnNnhVu4jQkE2mN7+BC0PVOy37XqsmuaGWO2Nb DMdbGtc= -----END CERTIFICATE-----Generated at Wed Mar 15 11:54:26 2023 by rpki-client on console-fra.rpki-client.org