$ rpki-client -vvf rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/81C9B5A4BBFA11ED99272016C4F9AE02.roa File: 81C9B5A4BBFA11ED99272016C4F9AE02.roa (raw, json) Hash identifier: LKJoEQzPb1sMSVb2vDN9+BembbPiOElHd7gaQSKpvPY= Subject key identifier: 5C:08:08:18:52:BB:51:4D:39:99:1C:F8:2C:65:A9:5D:40:3D:B0:7E Certificate issuer: /CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Certificate serial: 3407 Authority key identifier: 09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/81C9B5A4BBFA11ED99272016C4F9AE02.roa Signing time: Thu 30 May 2024 14:50:11 +0000 ROA not before: Thu 30 May 2024 14:50:11 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 0 IP address blocks: 103.16.102.0/23 maxlen: 32 2001:de8:12::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 14:19:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13319 (0x3407) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E9D1A/serialNumber=0976FC3D23186D48C671773740891CF54E31B80E Validity Not Before: May 30 14:50:11 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=66589223-38e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:19:7c:05:96:4d:85:7c:49:44:fb:e6:e0:55: 26:43:4d:d4:30:da:3b:38:00:46:e9:1e:cf:6c:1b: 74:82:ea:49:aa:04:f0:90:dd:a5:69:19:44:14:7d: 22:12:6a:9b:48:46:28:8b:94:ee:c1:f5:30:95:3c: 44:3d:1f:49:99:d2:6e:a5:37:4b:8c:88:7d:3b:2f: 33:02:df:88:ef:cf:92:c2:2b:58:af:84:b5:79:1b: 13:ef:bf:40:68:3c:96:cb:21:c5:b9:1d:b4:c0:e8: bb:86:cb:89:d1:51:66:b6:bf:85:c4:5f:04:4c:0b: 7e:75:40:50:bd:77:f3:8c:60:51:7e:94:88:fc:74: ee:e0:a0:c3:20:ec:4f:b4:05:6c:83:6c:a0:42:62: 77:bf:eb:9a:00:7f:eb:05:91:63:d2:82:44:0f:65: b3:cb:35:dc:d3:6f:f3:ce:7e:72:f7:b0:e0:77:af: d8:69:31:cd:8f:6c:d0:24:42:5a:f4:3d:70:a0:4c: 38:ce:49:4a:cd:d7:c7:01:ab:6d:96:5d:51:85:a5: 75:e0:5b:47:e1:73:59:99:45:f4:3d:19:84:be:91: ba:6b:da:64:da:ea:3d:64:9f:74:a9:f9:41:ae:bc: a0:4e:92:5e:7e:37:4b:fe:28:5b:9e:77:a3:d6:da: 5e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:08:08:18:52:BB:51:4D:39:99:1C:F8:2C:65:A9:5D:40:3D:B0:7E X509v3 Authority Key Identifier: keyid:09:76:FC:3D:23:18:6D:48:C6:71:77:37:40:89:1C:F5:4E:31:B8:0E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CXb8PSMYbUjGcXc3QIkc9U4xuA4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E9D1A/C59B02DA1D7011E286F147B508B02CD2/81C9B5A4BBFA11ED99272016C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.16.102.0/23 IPv6: 2001:de8:12::/48 Signature Algorithm: sha256WithRSAEncryption 7e:e6:77:52:87:88:b5:9d:18:71:0d:16:f8:dc:3a:d5:e2:ba: 15:71:f0:25:fc:d7:9e:4b:96:32:09:b1:11:00:51:a3:3a:23: e6:7d:12:c7:ca:04:6e:36:c9:bb:42:ea:35:db:a9:ff:53:d6: b0:e4:8d:b2:f5:a4:8f:a0:0c:a4:2d:79:f7:ec:4b:21:19:a3: 03:b5:ec:76:38:2a:8d:9a:b7:d8:09:ea:9e:e1:9f:57:4d:3c: 70:3a:22:33:3e:73:79:13:12:58:61:6d:18:17:6f:d9:69:4b: c7:2d:7a:45:f0:48:5c:c7:34:aa:fd:ad:49:1a:52:d5:ac:52: e2:b1:2f:68:8a:87:dc:83:2b:5b:32:32:f1:f7:01:c7:fe:04: 69:98:a8:d3:ed:83:50:0e:be:cd:03:0b:2a:8c:40:e0:a4:49: 11:5f:af:0c:84:bd:fa:67:80:87:09:75:0f:d3:a6:54:81:8e: 8d:d9:af:8a:2f:d7:8d:4d:c1:7a:95:af:b7:23:bc:50:98:26: 53:67:cc:c5:26:09:02:bf:8e:33:05:c3:93:7e:71:6e:6e:83: 02:4f:0a:ee:1c:6f:b6:84:78:5d:e8:19:1b:6b:20:e0:4a:61: f7:be:0d:6b:8e:cc:b3:a1:49:ab:d3:17:4d:2f:db:92:64:78: f2:94:0c:ef -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICNAcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTlEMUExMTAvBgNVBAUTKDA5NzZGQzNEMjMxODZENDhDNjcxNzczNzQwODkxQ0Y1 NEUzMUI4MEUwHhcNMjQwNTMwMTQ1MDExWhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU4OTIyMy0zOGU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAohl8BZZNhXxJRPvm4FUmQ03UMNo7OABG6R7PbBt0gupJqgTwkN2laRlEFH0i EmqbSEYoi5TuwfUwlTxEPR9JmdJupTdLjIh9Oy8zAt+I78+SwitYr4S1eRsT779A aDyWyyHFuR20wOi7hsuJ0VFmtr+FxF8ETAt+dUBQvXfzjGBRfpSI/HTu4KDDIOxP tAVsg2ygQmJ3v+uaAH/rBZFj0oJED2WzyzXc02/zzn5y97Dgd6/YaTHNj2zQJEJa 9D1woEw4zklKzdfHAattll1RhaV14FtH4XNZmUX0PRmEvpG6a9pk2uo9ZJ90qflB rrygTpJefjdL/ihbnnej1tpeKQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFwICBhS u1FNOZkc+CxlqV1APbB+MB8GA1UdIwQYMBaAFAl2/D0jGG1IxnF3N0CJHPVOMbgO MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFOUQxQS9DNTlCMDJEQTFE NzAxMUUyODZGMTQ3QjUwOEIwMkNEMi9DWGI4UFNNWWJVakdjWGMzUUlrYzlVNHh1 QTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NYYjhQU01ZYlVqR2NYYzNRSWtjOVU0eHVBNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTlEMUEvQzU5QjAyREExRDcwMTFFMjg2RjE0N0I1MDhCMDJDRDIvODFDOUI1QTRC QkZBMTFFRDk5MjcyMDE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnEGYwDwQCAAIwCQMHACABDegAEjANBgkqhkiG9w0BAQsF AAOCAQEAfuZ3UoeItZ0YcQ0W+Nw61eK6FXHwJfzXnkuWMgmxEQBRozoj5n0Sx8oE bjbJu0LqNdup/1PWsOSNsvWkj6AMpC159+xLIRmjA7XsdjgqjZq32AnqnuGfV008 cDoiMz5zeRMSWGFtGBdv2WlLxy16RfBIXMc0qv2tSRpS1axS4rEvaIqH3IMrWzIy 8fcBx/4EaZio0+2DUA6+zQMLKoxA4KRJEV+vDIS9+meAhwl1D9OmVIGOjdmvii/X jU3BepWvtyO8UJgmU2fMxSYJAr+OMwXDk35xbm6DAk8K7hxvtoR4XegZG2sg4Eph 974Na47Ms6FJq9MXTS/bkmR48pQM7w== -----END CERTIFICATE-----Generated at Wed Nov 20 16:00:19 2024 by rpki-client on console-ams.rpki-client.org