$ rpki-client -vvf rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/EC9A7C9EE26811EDBB19B85EC4F9AE02.roa File: EC9A7C9EE26811EDBB19B85EC4F9AE02.roa (raw, json) Hash identifier: TdhZIYOqiSxv9GOoUzAaigjvIFJrtJpP2QczwEIQ1mA= Subject key identifier: 12:38:3E:C6:98:48:E4:15:39:1F:22:9B:C8:0A:5B:10:06:B1:10:6B Certificate issuer: /CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Certificate serial: 73 Authority key identifier: 60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/EC9A7C9EE26811EDBB19B85EC4F9AE02.roa Signing time: Wed 29 Nov 2023 05:56:01 +0000 ROA not before: Wed 29 Nov 2023 05:56:01 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 139723 IP address blocks: 103.144.23.0/24 maxlen: 24 2001:df1:af80::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:21:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E5A08/serialNumber=6006B9658313D864991619D6979B0F7E01E4B668 Validity Not Before: Nov 29 05:56:01 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6566d271-8615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:1b:83:3d:31:87:1e:e4:be:cc:a8:f4:89:54: e6:40:c6:66:a8:a8:a5:2f:3b:ca:ff:e3:3c:6e:9c: b0:d2:d9:fb:1e:f9:77:8a:ea:0d:e7:4b:26:af:79: 72:d9:78:f7:ab:56:92:75:9a:71:04:34:35:7b:40: be:2e:94:06:88:a9:cd:3a:3f:12:66:1e:9e:be:62: 86:fd:fa:04:d2:f9:6b:e6:65:60:8a:e2:ea:79:34: b0:8a:16:73:45:62:93:31:0e:94:2f:fa:50:82:27: ea:23:9f:e3:d7:3c:6a:50:c3:2b:e2:a4:31:32:15: 58:04:1e:ab:6b:af:56:a2:89:b0:4a:4a:24:6d:68: 2e:34:7e:19:a8:3f:8e:82:69:00:91:a8:b3:86:ca: 8d:eb:87:ee:41:c5:64:ed:6c:ab:36:fe:44:8e:c6: ef:91:8f:5a:39:18:7d:2f:f7:b8:3a:5f:ca:f2:ce: cd:39:5c:b2:f2:57:4b:c1:43:ca:22:3b:a5:61:83: 14:ac:7f:47:a6:d1:f0:d7:3f:00:62:5c:f7:8e:33: 70:26:f7:da:56:f3:b1:92:f3:6f:5d:86:cb:7a:55: 58:2f:75:b4:16:69:e6:66:e6:ec:e4:2a:0a:a9:2e: 3f:c0:36:26:e5:9f:6b:34:f2:ef:cf:1f:57:a4:2d: 98:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:38:3E:C6:98:48:E4:15:39:1F:22:9B:C8:0A:5B:10:06:B1:10:6B X509v3 Authority Key Identifier: keyid:60:06:B9:65:83:13:D8:64:99:16:19:D6:97:9B:0F:7E:01:E4:B6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/YAa5ZYMT2GSZFhnWl5sPfgHktmg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YAa5ZYMT2GSZFhnWl5sPfgHktmg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E5A08/B060CC54E26511ED850CDE54C4F9AE02/EC9A7C9EE26811EDBB19B85EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.144.23.0/24 IPv6: 2001:df1:af80::/48 Signature Algorithm: sha256WithRSAEncryption a1:c0:a2:02:54:fe:91:16:1f:7a:63:02:c8:7a:43:e1:22:34: 92:22:7b:f0:10:60:a9:98:1c:b9:47:2c:47:52:9a:0d:43:bd: cc:ed:63:93:dc:5b:0f:7a:16:b7:a6:31:78:07:68:2f:dd:f9: 9a:72:56:c1:e8:3a:45:c4:29:61:f7:c7:d8:94:09:52:62:49: d5:f6:be:a0:c0:79:f0:01:d1:e7:23:f3:73:e6:73:9c:70:8f: 70:f1:f2:4a:09:9b:07:b6:50:68:48:35:9f:92:f7:c4:e3:f3: 95:52:8e:83:28:29:b6:4a:2d:95:05:4c:ba:f5:d4:92:27:53: f3:1b:16:46:d0:9b:c3:2a:5a:bf:22:df:dd:b7:80:0f:2f:8e: 13:3d:98:9c:ff:37:59:64:ab:cf:54:c5:e2:23:ca:90:ce:da: 4f:5f:e6:e5:8b:c1:9a:9f:81:9e:a3:3d:d2:c5:0f:7b:d9:1c: 61:15:ab:51:62:95:f9:fe:a2:64:38:29:74:74:71:8b:37:7e: 1f:f7:7d:15:85:75:de:c5:6e:bb:7b:d0:b3:06:09:b6:41:30: 21:ba:18:ec:2f:d9:af:2b:5b:ed:64:9a:d0:b8:40:6e:65:8c: 74:4c:c6:61:4f:63:ed:71:e0:94:3d:bd:1c:11:d8:70:e8:24: 4b:d5:c0:fc -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBczANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFF NUEwODExMC8GA1UEBRMoNjAwNkI5NjU4MzEzRDg2NDk5MTYxOUQ2OTc5QjBGN0Uw MUU0QjY2ODAeFw0yMzExMjkwNTU2MDFaFw0yNTAxMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1NjZkMjcxLTg2MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkG4M9MYce5L7MqPSJVOZAxmaoqKUvO8r/4zxunLDS2fse+XeK6g3nSyaveXLZ ePerVpJ1mnEENDV7QL4ulAaIqc06PxJmHp6+Yob9+gTS+WvmZWCK4up5NLCKFnNF YpMxDpQv+lCCJ+ojn+PXPGpQwyvipDEyFVgEHqtrr1aiibBKSiRtaC40fhmoP46C aQCRqLOGyo3rh+5BxWTtbKs2/kSOxu+Rj1o5GH0v97g6X8ryzs05XLLyV0vBQ8oi O6VhgxSsf0em0fDXPwBiXPeOM3Am99pW87GS829dhst6VVgvdbQWaeZm5uzkKgqp Lj/ANibln2s08u/PH1ekLZjDAgMBAAGjggKmMIICojAdBgNVHQ4EFgQUEjg+xphI 5BU5HyKbyApbEAaxEGswHwYDVR0jBBgwFoAUYAa5ZYMT2GSZFhnWl5sPfgHktmgw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUU1QTA4L0IwNjBDQzU0RTI2 NTExRUQ4NTBDREU1NEM0RjlBRTAyL1lBYTVaWU1UMkdTWkZobldsNXNQZmdIa3Rt Zy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvWUFhNVpZTVQyR1NaRmhuV2w1c1BmZ0hrdG1nLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF NUEwOC9CMDYwQ0M1NEUyNjUxMUVEODUwQ0RFNTRDNEY5QUUwMi9FQzlBN0M5RUUy NjgxMUVEQkIxOUI4NUVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGeQFzAPBAIAAjAJAwcAIAEN8a+AMA0GCSqGSIb3DQEBCwUA A4IBAQChwKICVP6RFh96YwLIekPhIjSSInvwEGCpmBy5RyxHUpoNQ73M7WOT3FsP eha3pjF4B2gv3fmaclbB6DpFxClh98fYlAlSYknV9r6gwHnwAdHnI/Nz5nOccI9w 8fJKCZsHtlBoSDWfkvfE4/OVUo6DKCm2Si2VBUy69dSSJ1PzGxZG0JvDKlq/It/d t4APL44TPZic/zdZZKvPVMXiI8qQztpPX+bli8Gan4Geoz3SxQ972RxhFatRYpX5 /qJkOCl0dHGLN34f930VhXXexW67e9CzBgm2QTAhuhjsL9mvK1vtZJrQuEBuZYx0 TMZhT2PtceCUPb0cEdhw6CRL1cD8 -----END CERTIFICATE-----Generated at Fri May 17 08:13:55 2024 by rpki-client on console-fra.rpki-client.org