$ rpki-client -vvf rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/BB3452D6C0A411EEBD3E267CC4F9AE02.roa File: BB3452D6C0A411EEBD3E267CC4F9AE02.roa (raw, json) Hash identifier: 8eiIgWolPjNUnUszcoLcjdavZ8raZZItOwoJlLvSh8A= Subject key identifier: 0B:3E:D8:8E:FE:C3:FA:C2:3D:DD:B9:3E:1E:6A:B5:55:CA:14:17:69 Certificate issuer: /CN=A91E7290/serialNumber=8D5BAB370CA92E4F5FD789FC2273310F9AEA38F6 Certificate serial: 0436 Authority key identifier: 8D:5B:AB:37:0C:A9:2E:4F:5F:D7:89:FC:22:73:31:0F:9A:EA:38:F6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVurNwypLk9f14n8InMxD5rqOPY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/BB3452D6C0A411EEBD3E267CC4F9AE02.roa Signing time: Tue 13 Feb 2024 01:53:36 +0000 ROA not before: Tue 13 Feb 2024 01:53:36 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 134504 IP address blocks: 103.43.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/jVurNwypLk9f14n8InMxD5rqOPY.crl rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/jVurNwypLk9f14n8InMxD5rqOPY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVurNwypLk9f14n8InMxD5rqOPY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 01:55:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1078 (0x436) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E7290/serialNumber=8D5BAB370CA92E4F5FD789FC2273310F9AEA38F6 Validity Not Before: Feb 13 01:53:36 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65cacb9f-6f94 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:91:26:95:dd:cb:01:d0:72:91:67:95:f0:89: fb:8e:1b:46:08:85:28:85:db:05:ec:e3:39:38:66: ef:b7:c1:ca:76:f0:b1:dc:b0:59:0b:2f:70:f8:79: 88:f7:93:e7:28:c6:cd:57:2b:a8:0c:d4:33:5e:e0: 09:48:64:17:e0:e1:1f:cc:3a:1b:56:9f:d9:77:c8: 2b:9e:b7:6d:a1:fe:d2:aa:85:a7:8b:43:52:bf:83: 9f:c2:42:75:6b:d3:9a:ca:fe:f5:9a:bd:d9:17:cd: ba:98:eb:3d:a2:32:68:1c:17:b8:c6:a2:cb:12:da: 03:8a:da:e3:3a:68:45:62:8a:9b:cf:f6:74:62:93: fe:85:c5:e1:2e:e4:8b:f2:bd:ef:be:e6:31:6c:63: 64:c2:d4:9a:33:1d:95:e0:7b:ba:e8:76:a6:2e:89: 4b:8c:42:17:61:9f:a9:e4:7c:41:c0:26:fd:b6:d8: 35:3e:4a:4a:9d:f0:fb:d2:a9:fe:2b:f2:bf:fd:f8: 67:c9:be:38:81:ad:1e:bc:0d:a3:97:61:bd:5e:99: d2:e9:b5:b0:62:b2:39:c0:1c:a0:7c:ce:90:87:05: a3:e6:d1:3e:5d:05:57:78:81:09:b2:c4:f7:91:54: b0:33:5c:ff:39:ab:ab:fc:45:bd:ae:3c:9b:4a:5c: ab:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:3E:D8:8E:FE:C3:FA:C2:3D:DD:B9:3E:1E:6A:B5:55:CA:14:17:69 X509v3 Authority Key Identifier: keyid:8D:5B:AB:37:0C:A9:2E:4F:5F:D7:89:FC:22:73:31:0F:9A:EA:38:F6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/jVurNwypLk9f14n8InMxD5rqOPY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jVurNwypLk9f14n8InMxD5rqOPY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E7290/F68141E00B0311ECA4460754C4F9AE02/BB3452D6C0A411EEBD3E267CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.43.168.0/22 Signature Algorithm: sha256WithRSAEncryption b4:5c:69:1b:32:a8:f2:26:01:61:a8:55:ec:71:b2:f0:05:a6: 2a:47:a7:e3:d1:04:96:10:c7:ac:34:a0:c1:15:24:62:b9:00: ff:ae:41:f4:c0:ab:89:dd:2f:e9:09:c4:5e:d0:8a:bd:37:e9: 53:b9:c0:e0:d6:94:ca:50:59:68:e3:1a:d2:c0:1f:bd:60:72: f6:b8:4a:91:30:f3:2a:22:9a:f5:ac:2e:2a:79:ff:86:d6:9a: 61:a7:91:f6:96:d2:f7:2d:7b:a1:2f:58:da:25:af:95:8a:0e: 59:d3:c2:87:e2:30:e2:22:02:53:cf:d2:8d:e6:3a:4f:d3:7e: 91:8b:f3:00:c4:a9:82:55:ef:60:ac:ce:9e:4e:89:43:f0:e0: 1f:2c:df:be:98:4f:71:64:dc:58:c5:3a:a7:f7:19:ca:5a:1d: 39:3c:3d:8a:a0:8b:b9:b7:f9:c3:ba:69:67:53:61:6a:31:00: 46:eb:ec:d7:ff:ab:a9:7b:7b:d0:8c:c1:07:e5:77:10:57:38: 8a:81:ee:82:a5:4e:d9:c2:21:8c:6e:45:8a:24:28:7e:33:81: ec:e3:2d:a1:a9:9c:0d:e6:54:b9:bd:2b:84:c4:a6:c9:b8:60: 3c:0b:8c:a1:b0:9b:b7:62:bd:a5:6a:69:ae:44:12:d6:5c:e0: c0:ed:25:d1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBDYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcyOTAxMTAvBgNVBAUTKDhENUJBQjM3MENBOTJFNEY1RkQ3ODlGQzIyNzMzMTBG OUFFQTM4RjYwHhcNMjQwMjEzMDE1MzM2WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NWNhY2I5Zi02Zjk0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyZEmld3LAdBykWeV8In7jhtGCIUohdsF7OM5OGbvt8HKdvCx3LBZCy9w+HmI 95PnKMbNVyuoDNQzXuAJSGQX4OEfzDobVp/Zd8grnrdtof7SqoWni0NSv4OfwkJ1 a9Oayv71mr3ZF826mOs9ojJoHBe4xqLLEtoDitrjOmhFYoqbz/Z0YpP+hcXhLuSL 8r3vvuYxbGNkwtSaMx2V4Hu66HamLolLjEIXYZ+p5HxBwCb9ttg1PkpKnfD70qn+ K/K//fhnyb44ga0evA2jl2G9XpnS6bWwYrI5wBygfM6QhwWj5tE+XQVXeIEJssT3 kVSwM1z/Oaur/EW9rjybSlyr4wIDAQABo4IClTCCApEwHQYDVR0OBBYEFAs+2I7+ w/rCPd25Ph5qtVXKFBdpMB8GA1UdIwQYMBaAFI1bqzcMqS5PX9eJ/CJzMQ+a6jj2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzI5MC9GNjgxNDFFMDBC MDMxMUVDQTQ0NjA3NTRDNEY5QUUwMi9qVnVyTnd5cExrOWYxNG44SW5NeEQ1cnFP UFkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pWdXJOd3lwTGs5ZjE0bjhJbk14RDVycU9QWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcyOTAvRjY4MTQxRTAwQjAzMTFFQ0E0NDYwNzU0QzRGOUFFMDIvQkIzNDUyRDZD MEE0MTFFRUJEM0UyNjdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnK6gwDQYJKoZIhvcNAQELBQADggEBALRcaRsyqPImAWGo VexxsvAFpipHp+PRBJYQx6w0oMEVJGK5AP+uQfTAq4ndL+kJxF7Qir036VO5wODW lMpQWWjjGtLAH71gcva4SpEw8yoimvWsLip5/4bWmmGnkfaW0vcte6EvWNolr5WK DlnTwofiMOIiAlPP0o3mOk/TfpGL8wDEqYJV72Cszp5OiUPw4B8s376YT3Fk3FjF Oqf3GcpaHTk8PYqgi7m3+cO6aWdTYWoxAEbr7Nf/q6l7e9CMwQfldxBXOIqB7oKl TtnCIYxuRYokKH4zgezjLaGpnA3mVLm9K4TEpsm4YDwLjKGwm7divaVqaa5EEtZc 4MDtJdE= -----END CERTIFICATE-----Generated at Tue May 21 03:39:41 2024 by rpki-client on console-ams.rpki-client.org