$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/81C9B5A4BBFA11ED99272016C4F9AE02.roa File: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (raw, json) Hash identifier: RO8mGq9V+LngMo34HYwRFUfgiZ72wGqi5MpbdkZyygY= Subject key identifier: 1F:37:1A:81:83:D5:F8:D5:D6:5C:10:81:8B:6C:F7:D5:D0:A7:0F:1A Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 3347 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/81C9B5A4BBFA11ED99272016C4F9AE02.roa Signing time: Tue 30 May 2023 14:50:09 +0000 ROA not before: Tue 30 May 2023 14:50:09 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 0 IP address blocks: 103.16.102.0/23 maxlen: 32 2001:de8:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 14:20:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13127 (0x3347) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: May 30 14:50:09 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64760d21-3baf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:9b:9c:c4:36:98:e6:1b:c1:52:5e:57:69: 4d:cd:89:d8:fa:39:89:1c:9b:25:12:da:11:ee:e6: 0d:4a:41:f2:12:d5:a6:68:04:0d:50:ff:a8:e3:d0: 5c:e8:2e:b8:c0:31:3b:bc:95:3a:02:de:2f:56:2e: 27:2f:56:02:ac:f6:67:d0:9c:1f:ef:2a:89:1c:9a: 67:e8:eb:ea:a7:9f:86:23:f6:b2:17:b4:90:8b:51: a3:2c:b3:3f:8d:bc:29:ba:59:72:c7:b0:9a:8c:a1: 12:36:bd:ad:68:42:31:a8:69:fb:43:00:fe:1b:93: d1:7c:45:9c:94:a8:ab:1e:59:5d:d1:66:7a:88:e1: a2:9c:37:63:7c:bf:33:15:24:e5:97:cd:45:58:3f: 8e:dc:2f:e6:61:42:83:5f:b3:a8:45:a3:1c:56:41: 2a:33:53:e0:f9:77:88:f1:52:92:1a:85:06:67:e2: 6f:e7:eb:12:a4:a3:47:49:c6:fe:95:71:e0:a0:64: 7e:be:23:57:11:cb:ae:1b:94:46:12:7a:b8:3c:3a: 9c:60:35:6a:c6:db:aa:81:79:03:f2:e3:bb:b6:df: 00:3d:bf:65:cc:2b:dd:2f:60:16:f7:83:cd:43:66: 3f:49:e6:ea:97:b9:bc:32:b5:21:e3:0d:28:6b:33: 23:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:37:1A:81:83:D5:F8:D5:D6:5C:10:81:8B:6C:F7:D5:D0:A7:0F:1A X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/81C9B5A4BBFA11ED99272016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.102.0/23 IPv6: 2001:de8:12::/48 Signature Algorithm: sha256WithRSAEncryption 0f:af:fe:aa:21:a4:f3:c8:82:94:37:12:2e:a3:0d:b2:08:e4: d5:13:e6:9c:84:8d:9a:44:b2:28:d5:6a:ed:a2:7a:73:90:a8: be:bb:33:30:ff:1c:b6:2b:00:02:90:e6:c8:67:c7:5f:30:3a: 39:61:c2:6c:4e:2d:39:66:4c:a6:24:df:d4:7f:4e:de:db:1a: 1b:7c:f6:49:a0:e1:ff:c5:ac:ee:21:ec:7a:ef:b2:dd:95:d5: ee:2c:d7:cd:0c:4c:6f:8f:eb:56:cc:b6:e4:f6:29:34:0c:de: ce:62:8e:d3:c9:2b:ea:f9:cd:e9:bb:6a:20:1a:62:4a:27:89: 32:0a:00:03:6c:be:c6:d4:84:db:68:9b:61:65:30:3d:3d:41: 13:ef:51:0f:cd:82:08:6b:1a:fb:f9:a8:e8:e4:af:67:e6:14: 96:c8:d5:15:ac:98:33:08:7c:e3:15:a3:f8:7d:26:8a:e0:42: a4:6c:ea:4b:2a:8d:87:b1:90:17:79:ff:f6:01:b8:bc:66:e4: b9:fc:d9:71:07:3e:6e:48:73:27:e8:34:55:f9:09:82:4f:c2: 7e:6f:1a:2d:8e:a3:42:84:b2:0d:b6:6b:83:17:3e:cb:88:61: 27:12:e2:43:e3:e6:00:a2:51:a2:ef:95:ca:de:05:f2:23:50: aa:cf:dd:61 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICM0cwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjMwNTMwMTQ1MDA5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc2MGQyMS0zYmFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvU2bnMQ2mOYbwVJeV2lNzYnY+jmJHJslEtoR7uYNSkHyEtWmaAQNUP+o49Bc 6C64wDE7vJU6At4vVi4nL1YCrPZn0Jwf7yqJHJpn6Ovqp5+GI/ayF7SQi1GjLLM/ jbwpullyx7CajKESNr2taEIxqGn7QwD+G5PRfEWclKirHlld0WZ6iOGinDdjfL8z FSTll81FWD+O3C/mYUKDX7OoRaMcVkEqM1Pg+XeI8VKSGoUGZ+Jv5+sSpKNHScb+ lXHgoGR+viNXEcuuG5RGEnq4PDqcYDVqxtuqgXkD8uO7tt8APb9lzCvdL2AW94PN Q2Y/Sebql7m8MrUh4w0oazMj4QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFB83GoGD 1fjV1lwQgYts99XQpw8aMB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlEMUEvQzU5QjAyREExRDcwMTFFMjg2RjE0N0I1MDhCMDJDRDIvODFDOUI1QTRC QkZBMTFFRDk5MjcyMDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnEGYwDwQCAAIwCQMHACABDegAEjANBgkqhkiG9w0BAQsF AAOCAQEAD6/+qiGk88iClDcSLqMNsgjk1RPmnISNmkSyKNVq7aJ6c5CovrszMP8c tisAApDmyGfHXzA6OWHCbE4tOWZMpiTf1H9O3tsaG3z2SaDh/8Ws7iHseu+y3ZXV 7izXzQxMb4/rVsy25PYpNAzezmKO08kr6vnN6btqIBpiSieJMgoAA2y+xtSE22ib YWUwPT1BE+9RD82CCGsa+/mo6OSvZ+YUlsjVFayYMwh84xWj+H0miuBCpGzqSyqN h7GQF3n/9gG4vGbkufzZcQc+bkhzJ+g0VfkJgk/Cfm8aLY6jQoSyDbZrgxc+y4hh JxLiQ+PmAKJRou+Vyt4F8iNQqs/dYQ== -----END CERTIFICATE-----Generated at Wed Apr 24 15:50:28 2024 by rpki-client on console-ams.rpki-client.org