$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9721/8AEC2AC43FC411E992A3E62DC4F9AE02/16EA264C3FC611E9A0E68A30C4F9AE02.roa File: 16EA264C3FC611E9A0E68A30C4F9AE02.roa (raw, json) Hash identifier: NL02ywKjeKtGgKrynz587r/KaAhwoL9/ivVp/Q30Ou8= Subject key identifier: 69:5B:F1:94:5B:04:57:01:93:2A:F1:21:FA:3D:17:2B:5C:F1:91:6E Certificate issuer: /CN=A91E9721/serialNumber=7DA589CED57F1E5CC48603D1384223936E16027E Certificate serial: 0ED8 Authority key identifier: 7D:A5:89:CE:D5:7F:1E:5C:C4:86:03:D1:38:42:23:93:6E:16:02:7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/faWJztV_HlzEhgPROEIjk24WAn4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9721/8AEC2AC43FC411E992A3E62DC4F9AE02/16EA264C3FC611E9A0E68A30C4F9AE02.roa Signing time: Sat 08 Jul 2023 17:54:44 +0000 ROA not before: Sat 08 Jul 2023 17:54:44 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 45259 IP address blocks: 103.139.109.0/24 maxlen: 24 202.59.230.0/24 maxlen: 24 202.90.36.0/24 maxlen: 24 2001:df1:ba00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9721/8AEC2AC43FC411E992A3E62DC4F9AE02/faWJztV_HlzEhgPROEIjk24WAn4.crl rsync://rpki.apnic.net/member_repository/A91E9721/8AEC2AC43FC411E992A3E62DC4F9AE02/faWJztV_HlzEhgPROEIjk24WAn4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/faWJztV_HlzEhgPROEIjk24WAn4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 17:15:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3800 (0xed8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9721/serialNumber=7DA589CED57F1E5CC48603D1384223936E16027E Validity Not Before: Jul 8 17:54:44 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64a9a2e4-c3f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fb:cb:39:c0:91:bb:2a:3f:7f:fe:78:e6:1d: 28:53:78:26:69:ab:4d:cb:41:fe:a7:d4:f8:73:c4: 5b:76:75:f7:9b:36:50:98:a8:7d:fa:f2:62:38:56: 92:ba:56:f0:eb:a9:13:f7:a4:46:50:8a:db:54:05: 81:98:12:53:9c:6c:0b:81:b8:b1:c3:35:a0:14:0c: 98:23:5a:4d:ee:55:70:e7:e2:df:9d:1d:64:bc:72: 0e:ac:c9:f9:39:a4:fc:23:99:d0:32:2b:37:14:2e: 28:61:85:9a:d6:89:1d:85:ae:49:ed:46:10:fa:25: 43:0b:00:90:ec:a7:7e:9a:98:03:6c:07:6f:8d:10: 9f:e6:ab:69:4d:ae:cc:dc:ba:79:af:ce:23:fa:dd: 3a:86:f4:27:ee:69:7c:37:83:d9:7c:b2:2d:b6:ca: 7f:7a:c5:ee:f2:9f:80:fd:f6:c2:1e:73:fe:56:a8: 7f:31:78:31:1f:44:f1:76:fe:38:e4:4a:7a:2b:ab: 2f:3c:6f:96:7d:ee:bd:f1:d4:42:6c:52:11:dd:f7: 1b:f1:69:f1:6f:4a:f5:10:9c:4d:51:94:de:5f:0c: bf:90:3a:e9:5e:00:4a:fc:f9:10:07:92:c6:6c:41: ef:06:ef:67:8c:6b:75:8b:7d:5d:09:05:af:90:f9: e6:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:5B:F1:94:5B:04:57:01:93:2A:F1:21:FA:3D:17:2B:5C:F1:91:6E X509v3 Authority Key Identifier: keyid:7D:A5:89:CE:D5:7F:1E:5C:C4:86:03:D1:38:42:23:93:6E:16:02:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9721/8AEC2AC43FC411E992A3E62DC4F9AE02/faWJztV_HlzEhgPROEIjk24WAn4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/faWJztV_HlzEhgPROEIjk24WAn4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9721/8AEC2AC43FC411E992A3E62DC4F9AE02/16EA264C3FC611E9A0E68A30C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.109.0/24 202.59.230.0/24 202.90.36.0/24 IPv6: 2001:df1:ba00::/48 Signature Algorithm: sha256WithRSAEncryption 44:b2:00:f7:dc:f5:95:a6:78:d4:57:fd:0b:d4:a0:83:8f:83: 27:67:cc:79:fa:ca:9b:09:3c:fb:14:68:20:0e:2f:68:e6:0c: fc:56:2e:d0:ba:93:f8:37:97:b6:f5:54:51:e7:30:11:0c:dd: 8d:28:5c:b8:32:ee:34:44:a5:2b:35:07:10:d1:44:13:83:2b: 32:71:18:5c:c6:b0:27:36:f6:1b:48:e1:76:31:9c:38:dc:f8: fb:bf:5c:f4:00:42:01:f0:08:ae:e0:1f:6a:41:5f:ff:1f:74: 58:7c:79:a8:61:16:2c:93:17:a5:c1:74:6f:3a:74:54:0d:4d: 2d:2b:23:2b:7d:3e:6d:a1:42:1c:1f:5a:28:e6:e3:01:4f:46: 76:b1:48:c9:0b:30:5e:b5:02:73:33:fc:74:c8:f9:bb:7e:10: 46:b9:28:22:09:fe:b4:a1:88:f8:3b:b3:39:d2:25:e2:da:09: 42:da:30:cb:ac:da:82:bf:ca:88:ab:c3:12:d9:7a:99:d6:37: d2:33:62:b7:ac:4a:cb:6f:90:60:e4:c1:54:bc:6a:fe:72:66: 12:c3:bd:ef:4d:bd:b0:30:df:e1:12:68:cc:7a:8a:f5:e7:35: 64:eb:36:46:c5:7d:07:9e:2f:46:2a:5d:f2:c1:79:1f:de:78: 25:f6:24:4d -----BEGIN CERTIFICATE----- MIIFjjCCBHagAwIBAgICDtgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTk3MjExMTAvBgNVBAUTKDdEQTU4OUNFRDU3RjFFNUNDNDg2MDNEMTM4NDIyMzkz NkUxNjAyN0UwHhcNMjMwNzA4MTc1NDQ0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGE5YTJlNC1jM2YxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyvvLOcCRuyo/f/545h0oU3gmaatNy0H+p9T4c8RbdnX3mzZQmKh9+vJiOFaS ulbw66kT96RGUIrbVAWBmBJTnGwLgbixwzWgFAyYI1pN7lVw5+LfnR1kvHIOrMn5 OaT8I5nQMis3FC4oYYWa1okdha5J7UYQ+iVDCwCQ7Kd+mpgDbAdvjRCf5qtpTa7M 3Lp5r84j+t06hvQn7ml8N4PZfLIttsp/esXu8p+A/fbCHnP+Vqh/MXgxH0Txdv44 5Ep6K6svPG+Wfe698dRCbFIR3fcb8Wnxb0r1EJxNUZTeXwy/kDrpXgBK/PkQB5LG bEHvBu9njGt1i31dCQWvkPnmRQIDAQABo4ICsjCCAq4wHQYDVR0OBBYEFGlb8ZRb BFcBkyrxIfo9Fytc8ZFuMB8GA1UdIwQYMBaAFH2lic7Vfx5cxIYD0ThCI5NuFgJ+ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOTcyMS84QUVDMkFDNDNG QzQxMUU5OTJBM0U2MkRDNEY5QUUwMi9mYVdKenRWX0hsekVoZ1BST0VJamsyNFdB bjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2ZhV0p6dFZfSGx6RWhnUFJPRUlqazI0V0FuNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTk3MjEvOEFFQzJBQzQzRkM0MTFFOTkyQTNFNjJEQzRGOUFFMDIvMTZFQTI2NEMz RkM2MTFFOUEwRTY4QTMwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwPAYIKwYBBQUHAQcBAf8E LTArMBgEAgABMBIDBABni20DBADKO+YDBADKWiQwDwQCAAIwCQMHACABDfG6ADAN BgkqhkiG9w0BAQsFAAOCAQEARLIA99z1laZ41Ff9C9Sgg4+DJ2fMefrKmwk8+xRo IA4vaOYM/FYu0LqT+DeXtvVUUecwEQzdjShcuDLuNESlKzUHENFEE4MrMnEYXMaw Jzb2G0jhdjGcONz4+79c9ABCAfAIruAfakFf/x90WHx5qGEWLJMXpcF0bzp0VA1N LSsjK30+baFCHB9aKObjAU9GdrFIyQswXrUCczP8dMj5u34QRrkoIgn+tKGI+Duz OdIl4toJQtowy6zagr/KiKvDEtl6mdY30jNit6xKy2+QYOTBVLxq/nJmEsO97029 sDDf4RJozHqK9ec1ZOs2RsV9B54vRipd8sF5H954JfYkTQ== -----END CERTIFICATE-----Generated at Sun May 26 19:11:45 2024 by rpki-client on console-ams.rpki-client.org