$ rpki-client -vvf rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/41A09C683D8211EEA0E4DD46C4F9AE02.roa File: 41A09C683D8211EEA0E4DD46C4F9AE02.roa (raw, json) Hash identifier: HtFhpWD7ofpi/nRu+ku3OEZsNHklE9FGBRQ+B81U48w= Subject key identifier: AF:B2:88:FF:02:01:B6:38:4A:D6:C9:07:FF:AD:67:D0:6E:58:37:BB Certificate issuer: /CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Certificate serial: 0D38 Authority key identifier: 28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/41A09C683D8211EEA0E4DD46C4F9AE02.roa Signing time: Fri 08 Sep 2023 18:25:46 +0000 ROA not before: Fri 08 Sep 2023 18:25:46 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 137818 IP address blocks: 103.5.0.0/22 maxlen: 22 103.5.0.0/23 maxlen: 23 103.5.0.0/24 maxlen: 24 103.5.1.0/24 maxlen: 24 103.5.2.0/23 maxlen: 23 103.5.2.0/24 maxlen: 24 103.5.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3384 (0xd38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E868C/serialNumber=28E670C2E37012F05C63BB566E203C51DC45E2B2 Validity Not Before: Sep 8 18:25:46 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64fb672a-baee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c2:7f:7e:c3:fb:7e:3e:0c:51:8f:2a:a7:c9: ab:81:e0:25:38:f4:59:10:72:0d:fa:7d:62:69:4d: 3f:7c:a0:7f:de:dd:d4:06:f2:5b:38:f8:b3:07:2b: 51:50:b1:d5:f1:9f:5d:68:53:24:17:40:a2:d1:dc: 2a:4d:35:da:b7:30:2e:18:c8:4d:21:28:c3:bf:80: bc:89:22:c0:d2:a6:cc:82:7f:28:bf:f1:a8:2f:ba: 49:f2:15:4b:62:bb:b6:d8:e1:a3:c9:14:b5:0c:9b: b8:6e:61:d3:f1:0b:31:f6:df:6c:b1:f6:44:da:4f: 82:70:3f:fc:bf:d2:b5:10:ec:7f:e5:1c:ce:71:82: ff:82:42:b2:8e:dc:a0:4f:07:4e:2a:6b:0b:ea:63: af:d0:e4:39:69:9b:ec:e1:d0:5a:f3:bc:8c:7f:e5: 18:aa:02:d5:f0:e4:07:28:18:92:69:ec:d6:a8:7a: 41:ec:ae:a4:4e:fa:7c:39:1c:da:fc:13:bd:24:00: 41:b0:b7:06:4e:dc:1f:3e:ef:49:f6:59:6f:01:3c: ad:02:28:64:ce:82:b6:a8:c9:92:14:58:25:db:f5: ec:d0:e8:e5:99:f5:7e:58:41:20:d9:9e:b2:8b:af: 6e:3a:f2:19:03:87:39:e7:2c:2c:33:ab:a9:a0:6c: 19:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:B2:88:FF:02:01:B6:38:4A:D6:C9:07:FF:AD:67:D0:6E:58:37:BB X509v3 Authority Key Identifier: keyid:28:E6:70:C2:E3:70:12:F0:5C:63:BB:56:6E:20:3C:51:DC:45:E2:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/KOZwwuNwEvBcY7tWbiA8UdxF4rI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KOZwwuNwEvBcY7tWbiA8UdxF4rI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E868C/3FB93368A9DB11E984285286C4F9AE02/41A09C683D8211EEA0E4DD46C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.5.0.0/22 Signature Algorithm: sha256WithRSAEncryption 82:c5:c3:f6:e7:dc:5b:5a:5d:c0:af:66:cc:1b:be:50:c9:f7: 81:1e:1b:58:7a:47:b3:29:71:76:65:03:32:d0:8d:e3:05:d4: 14:4f:33:02:59:44:c5:56:03:5a:ff:3f:3c:48:95:f5:2e:b4: d2:63:92:f6:6c:9f:7a:07:57:00:67:b4:00:9f:e0:00:50:fb: 0e:f4:d8:ca:43:94:66:eb:e3:43:cb:5f:1e:d2:54:21:ee:44: 3d:c1:f2:80:a3:35:9a:24:5f:6f:14:33:15:ee:12:5b:b2:7f: 9a:bd:8d:e7:b7:d2:82:ae:e3:ec:f1:66:14:b5:1e:e6:10:49: ea:07:b5:1d:26:f7:79:ad:bc:eb:96:ea:37:08:d6:6b:88:b6: 7d:73:d2:65:fb:52:97:11:89:d1:84:c6:3f:9e:05:eb:6f:01: 6c:27:44:08:e5:6f:ac:5f:68:b2:3e:86:cd:38:a6:5c:78:57: b4:39:14:bd:24:d9:58:1d:6c:5b:91:2d:7f:bb:73:5a:93:f4: 7e:3d:03:12:7c:69:27:1d:69:e4:a1:b2:c2:37:d5:17:7a:88: ce:00:d4:8c:c7:f9:65:0b:d6:da:b5:ea:3a:6e:fd:c6:de:63: bf:e5:16:80:03:7b:09:ac:f1:ce:2d:c0:96:4d:a6:94:a1:7e: 98:78:67:87 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDTgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg2OEMxMTAvBgNVBAUTKDI4RTY3MEMyRTM3MDEyRjA1QzYzQkI1NjZFMjAzQzUx REM0NUUyQjIwHhcNMjMwOTA4MTgyNTQ2WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZiNjcyYS1iYWVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAscJ/fsP7fj4MUY8qp8mrgeAlOPRZEHIN+n1iaU0/fKB/3t3UBvJbOPizBytR ULHV8Z9daFMkF0Ci0dwqTTXatzAuGMhNISjDv4C8iSLA0qbMgn8ov/GoL7pJ8hVL Yru22OGjyRS1DJu4bmHT8Qsx9t9ssfZE2k+CcD/8v9K1EOx/5RzOcYL/gkKyjtyg TwdOKmsL6mOv0OQ5aZvs4dBa87yMf+UYqgLV8OQHKBiSaezWqHpB7K6kTvp8ORza /BO9JABBsLcGTtwfPu9J9llvATytAihkzoK2qMmSFFgl2/Xs0OjlmfV+WEEg2Z6y i69uOvIZA4c55ywsM6upoGwZ4QIDAQABo4IClTCCApEwHQYDVR0OBBYEFK+yiP8C AbY4StbJB/+tZ9BuWDe7MB8GA1UdIwQYMBaAFCjmcMLjcBLwXGO7Vm4gPFHcReKy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODY4Qy8zRkI5MzM2OEE5 REIxMUU5ODQyODUyODZDNEY5QUUwMi9LT1p3d3VOd0V2QmNZN3RXYmlBOFVkeEY0 ckkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tPWnd3dU53RXZCY1k3dFdiaUE4VWR4RjRySS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg2OEMvM0ZCOTMzNjhBOURCMTFFOTg0Mjg1Mjg2QzRGOUFFMDIvNDFBMDlDNjgz RDgyMTFFRUEwRTRERDQ2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnBQAwDQYJKoZIhvcNAQELBQADggEBAILFw/bn3FtaXcCv ZswbvlDJ94EeG1h6R7MpcXZlAzLQjeMF1BRPMwJZRMVWA1r/PzxIlfUutNJjkvZs n3oHVwBntACf4ABQ+w702MpDlGbr40PLXx7SVCHuRD3B8oCjNZokX28UMxXuEluy f5q9jee30oKu4+zxZhS1HuYQSeoHtR0m93mtvOuW6jcI1muItn1z0mX7UpcRidGE xj+eBetvAWwnRAjlb6xfaLI+hs04plx4V7Q5FL0k2VgdbFuRLX+7c1qT9H49AxJ8 aScdaeShssI31Rd6iM4A1IzH+WUL1tq16jpu/cbeY7/lFoADewms8c4twJZNppSh fph4Z4c= -----END CERTIFICATE-----Generated at Fri May 10 19:18:49 2024 by rpki-client on console-ams.rpki-client.org