$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa File: 40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa (raw, json) Hash identifier: MSLBrmZhOVTKN/R6HTT7BdBFhHLlDs6tCvAZclp5GvU= Subject key identifier: E0:E0:C0:C2:E9:32:DE:91:BD:3A:7C:11:29:D6:F0:96:72:F1:B3:4B Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0D37 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa Signing time: Fri 08 Sep 2023 18:25:45 +0000 ROA not before: Fri 08 Sep 2023 18:25:45 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135366 IP address blocks: 103.5.0.0/22 maxlen: 22 103.5.0.0/23 maxlen: 23 103.5.0.0/24 maxlen: 24 103.5.1.0/24 maxlen: 24 103.5.2.0/23 maxlen: 23 103.5.2.0/24 maxlen: 24 103.5.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3383 (0xd37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Sep 8 18:25:45 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64fb6729-d092 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2e:db:33:dd:a8:d6:44:00:2c:16:d3:25:17: 27:71:c9:3e:64:6c:0c:48:5e:9e:e7:0b:7f:9a:1f: a8:40:39:6b:75:b5:f1:6b:eb:90:bd:be:71:c1:58: 7c:48:b1:5d:29:0a:19:c4:cb:b4:fd:70:89:99:cc: 74:03:15:b0:ca:23:4d:5f:88:43:15:35:6f:01:20: 7a:f6:0c:4d:47:68:1d:a6:36:85:87:d6:e8:b9:33: e7:b5:28:51:b5:00:23:34:44:bf:d0:3a:25:67:55: b0:06:02:03:62:f0:f4:d5:f0:86:ef:62:78:cf:40: af:31:8c:ef:47:ed:9f:ca:14:b9:cf:f4:1e:2e:ba: 9d:15:79:87:a0:13:69:74:46:08:5f:50:df:40:f2: 87:e8:8d:7c:9e:f6:1f:92:ff:3b:70:59:00:42:ef: 23:e9:ce:1e:49:c3:11:66:96:fb:c1:5c:ad:59:16: 89:ee:4e:52:5c:33:7f:43:29:df:a7:d3:1e:ca:2b: 27:4b:77:54:7f:e7:d4:53:0f:d6:e7:62:77:fc:79: 38:89:11:e5:e4:69:e9:e4:56:0e:26:b8:29:4d:5d: 62:7a:3e:c2:09:3b:2c:a4:30:b0:64:16:1d:c1:3f: ab:36:63:f5:3c:54:1f:ed:3a:c6:7c:5d:e4:78:68: 54:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E0:C0:C2:E9:32:DE:91:BD:3A:7C:11:29:D6:F0:96:72:F1:B3:4B X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/40BA3F5C3D8211EEA0E4DD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.0.0/22 Signature Algorithm: sha256WithRSAEncryption 95:47:71:c0:c4:63:28:ed:d0:76:ba:73:52:56:c2:4a:99:15: 59:c1:ef:a4:3f:bc:da:b2:52:c2:30:c0:9d:2a:43:95:ce:01: 12:6d:3c:1d:b0:61:df:fe:0e:a4:21:eb:88:10:2e:ed:54:7f: 8d:f8:f6:cf:c9:bb:0a:e0:af:f0:60:70:4c:29:07:9d:80:bb: 16:cd:d2:26:78:2e:7e:24:a6:8e:fd:19:c3:a5:46:3c:f5:5e: 88:21:10:6b:1c:a9:7b:ed:d5:fe:46:ae:46:2f:f9:99:1c:c1: 40:0c:81:a3:98:1a:da:f2:50:16:8c:ab:c4:8d:66:86:db:7d: f5:c0:09:b6:5d:41:2c:29:65:d3:3b:d8:83:af:df:16:a9:a3: 9e:bc:f6:89:69:74:de:af:bb:90:8e:76:55:a3:24:42:e6:9e: 7c:c8:5e:21:5c:48:d9:3b:da:dd:f3:d0:d8:9c:bb:a3:49:e7: b4:45:f0:85:27:a6:c0:3f:b7:21:d0:f2:e3:b0:ea:36:dd:b4: c2:40:2e:a3:c2:bb:d9:c8:d6:d6:c1:8c:fb:03:a6:de:06:e0: 2e:31:b5:d0:ed:80:07:4e:e2:cd:f6:da:47:19:cd:8c:86:d8: 4a:4b:a2:b3:a9:aa:04:f3:36:07:60:a4:0d:66:eb:a7:6d:fe: 5f:c2:42:a1 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDTcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjMwOTA4MTgyNTQ1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZiNjcyOS1kMDkyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApS7bM92o1kQALBbTJRcncck+ZGwMSF6e5wt/mh+oQDlrdbXxa+uQvb5xwVh8 SLFdKQoZxMu0/XCJmcx0AxWwyiNNX4hDFTVvASB69gxNR2gdpjaFh9bouTPntShR tQAjNES/0DolZ1WwBgIDYvD01fCG72J4z0CvMYzvR+2fyhS5z/QeLrqdFXmHoBNp dEYIX1DfQPKH6I18nvYfkv87cFkAQu8j6c4eScMRZpb7wVytWRaJ7k5SXDN/Qynf p9MeyisnS3dUf+fUUw/W52J3/Hk4iRHl5Gnp5FYOJrgpTV1iej7CCTsspDCwZBYd wT+rNmP1PFQf7TrGfF3keGhUpQIDAQABo4IClTCCApEwHQYDVR0OBBYEFODgwMLp Mt6RvTp8ESnW8JZy8bNLMB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2OEMvM0ZCOTMzNjhBOURCMTFFOTg0Mjg1Mjg2QzRGOUFFMDIvNDBCQTNGNUMz RDgyMTFFRUEwRTRERDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBQAwDQYJKoZIhvcNAQELBQADggEBAJVHccDEYyjt0Ha6 c1JWwkqZFVnB76Q/vNqyUsIwwJ0qQ5XOARJtPB2wYd/+DqQh64gQLu1Uf4349s/J uwrgr/BgcEwpB52AuxbN0iZ4Ln4kpo79GcOlRjz1XoghEGscqXvt1f5GrkYv+Zkc wUAMgaOYGtryUBaMq8SNZobbffXACbZdQSwpZdM72IOv3xapo5689olpdN6vu5CO dlWjJELmnnzIXiFcSNk72t3z0Nicu6NJ57RF8IUnpsA/tyHQ8uOw6jbdtMJALqPC u9nI1tbBjPsDpt4G4C4xtdDtgAdO4s322kcZzYyG2EpLorOpqgTzNgdgpA1m66dt /l/CQqE= -----END CERTIFICATE-----Generated at Fri May 10 20:05:37 2024 by rpki-client on console-fra.rpki-client.org