$ rpki-client -vvf rpki.apnic.net/member_repository/A91EB095/B1316A92BBAB11E9A1F61B6CC4F9AE02/B75F392ABBAC11E9A8355F6DC4F9AE02.roa File: B75F392ABBAC11E9A8355F6DC4F9AE02.roa (raw, json) Hash identifier: nQHZt5It8SSChaUZjXVPwYBj8P2XFpk/UxoBS65SjME= Subject key identifier: 51:F6:5D:6C:29:AC:30:95:6C:D6:59:75:FC:1A:07:DD:96:9A:DB:94 Certificate issuer: /CN=A91EB095/serialNumber=48FA1D3E8F86DFB08FB9743248522426A1CAD133 Certificate serial: 0CFF Authority key identifier: 48:FA:1D:3E:8F:86:DF:B0:8F:B9:74:32:48:52:24:26:A1:CA:D1:33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPodPo-G37CPuXQySFIkJqHK0TM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EB095/B1316A92BBAB11E9A1F61B6CC4F9AE02/B75F392ABBAC11E9A8355F6DC4F9AE02.roa Signing time: Thu 02 May 2024 19:07:33 +0000 ROA not before: Thu 02 May 2024 19:07:33 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 138658 IP address blocks: 103.135.208.0/22 maxlen: 22 103.135.208.0/23 maxlen: 23 103.135.208.0/24 maxlen: 24 103.135.209.0/24 maxlen: 24 103.135.210.0/23 maxlen: 23 103.135.210.0/24 maxlen: 24 103.135.211.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EB095/B1316A92BBAB11E9A1F61B6CC4F9AE02/SPodPo-G37CPuXQySFIkJqHK0TM.crl rsync://rpki.apnic.net/member_repository/A91EB095/B1316A92BBAB11E9A1F61B6CC4F9AE02/SPodPo-G37CPuXQySFIkJqHK0TM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPodPo-G37CPuXQySFIkJqHK0TM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 29 May 2024 18:46:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3327 (0xcff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EB095/serialNumber=48FA1D3E8F86DFB08FB9743248522426A1CAD133 Validity Not Before: May 2 19:07:33 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=6633e474-8b40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:9b:66:d8:98:1c:36:e3:5b:48:c7:d8:ee:21: 60:d2:9c:46:c8:42:45:25:48:f3:8d:f6:77:7f:22: a4:c8:83:76:38:3c:93:cf:41:9a:c0:75:cd:7b:8d: 7b:7e:0d:90:fe:d6:e5:d6:ae:be:7a:f7:9c:90:06: 8f:31:7e:38:e1:47:34:11:4a:45:29:04:86:3c:29: 9a:cb:77:c2:36:f2:da:dc:17:75:96:a2:39:f7:a9: 16:b5:7c:60:27:a7:cf:1e:9a:3e:80:69:cc:54:67: b6:e1:b8:90:88:a5:fe:ce:93:16:d0:e1:66:b5:11: 66:bf:51:2c:45:e2:fa:1e:23:c5:ea:17:cd:9a:3b: 0e:9a:ff:3d:c5:14:50:cb:86:31:cb:db:3f:fd:64: 41:2e:3f:b6:b9:80:12:72:cb:2a:07:8d:1f:4c:a3: 3d:23:18:14:b7:69:18:03:17:90:89:4d:36:42:6e: 04:87:ed:5a:6b:e7:5c:33:df:be:55:08:2e:60:35: 3f:b9:d7:4e:20:f4:a4:56:5c:24:24:ec:82:9b:f3: 93:3a:86:b8:2d:7e:c0:d6:17:a7:f6:07:e3:6e:d3: 7e:ba:f8:ce:34:fd:a8:a6:f6:bd:1d:c5:d6:05:57: 38:ee:90:62:6b:cd:75:c4:a3:5a:eb:01:d2:d1:a2: e2:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:F6:5D:6C:29:AC:30:95:6C:D6:59:75:FC:1A:07:DD:96:9A:DB:94 X509v3 Authority Key Identifier: keyid:48:FA:1D:3E:8F:86:DF:B0:8F:B9:74:32:48:52:24:26:A1:CA:D1:33 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EB095/B1316A92BBAB11E9A1F61B6CC4F9AE02/SPodPo-G37CPuXQySFIkJqHK0TM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SPodPo-G37CPuXQySFIkJqHK0TM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EB095/B1316A92BBAB11E9A1F61B6CC4F9AE02/B75F392ABBAC11E9A8355F6DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.135.208.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:cc:a7:de:09:94:81:60:2d:57:c4:e4:d4:7b:bd:ca:b5:b6: 31:18:a7:39:61:1f:ab:a9:71:4d:56:04:22:a3:f0:1f:5c:4b: 50:7c:44:c9:76:61:2d:17:22:b2:6c:51:63:44:87:48:2c:94: c1:70:9c:16:57:9e:5e:d4:b8:e5:41:1e:df:49:7c:ee:8f:ff: fb:c3:a9:58:7e:59:97:b4:dc:5f:58:28:69:56:ad:65:44:2f: e5:0f:a5:6f:8b:6a:a4:1d:29:6b:c4:1a:0b:5a:b4:ce:09:41: 1e:03:e8:de:4c:41:37:29:80:ba:bc:f6:79:4f:49:40:f2:1a: 67:cc:8c:10:ff:f3:c3:2a:dc:8a:79:a0:48:6f:f2:04:77:9e: 27:88:33:82:16:a2:12:6a:73:f1:39:e7:6f:7a:ac:9e:3e:a7: 93:ef:84:bd:60:06:2c:b8:70:15:e6:9a:24:3f:fe:4f:c4:69: e5:f2:2f:a4:f9:7d:e6:a9:3e:69:9a:45:64:98:bf:4f:7c:8f: 2a:0a:c5:cc:86:89:a3:56:c8:87:3b:5e:d0:e1:bb:56:5c:1f: 42:05:40:16:b6:47:76:39:e4:6e:c1:f4:3c:f5:52:fc:aa:4c: f9:9b:63:3e:74:ed:01:16:82:be:c3:23:4a:1a:e6:95:76:46: a3:d2:ea:16 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUIwOTUxMTAvBgNVBAUTKDQ4RkExRDNFOEY4NkRGQjA4RkI5NzQzMjQ4NTIyNDI2 QTFDQUQxMzMwHhcNMjQwNTAyMTkwNzMzWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjMzZTQ3NC04YjQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5Jtm2JgcNuNbSMfY7iFg0pxGyEJFJUjzjfZ3fyKkyIN2ODyTz0GawHXNe417 fg2Q/tbl1q6+eveckAaPMX444Uc0EUpFKQSGPCmay3fCNvLa3Bd1lqI596kWtXxg J6fPHpo+gGnMVGe24biQiKX+zpMW0OFmtRFmv1EsReL6HiPF6hfNmjsOmv89xRRQ y4Yxy9s//WRBLj+2uYAScssqB40fTKM9IxgUt2kYAxeQiU02Qm4Eh+1aa+dcM9++ VQguYDU/uddOIPSkVlwkJOyCm/OTOoa4LX7A1hen9gfjbtN+uvjONP2opva9HcXW BVc47pBia811xKNa6wHS0aLiqwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFH2XWwp rDCVbNZZdfwaB92WmtuUMB8GA1UdIwQYMBaAFEj6HT6Pht+wj7l0MkhSJCahytEz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQjA5NS9CMTMxNkE5MkJC QUIxMUU5QTFGNjFCNkNDNEY5QUUwMi9TUG9kUG8tRzM3Q1B1WFF5U0ZJa0pxSEsw VE0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NQb2RQby1HMzdDUHVYUXlTRklrSnFISzBUTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUIwOTUvQjEzMTZBOTJCQkFCMTFFOUExRjYxQjZDQzRGOUFFMDIvQjc1RjM5MkFC QkFDMTFFOUE4MzU1RjZEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnh9AwDQYJKoZIhvcNAQELBQADggEBAB/Mp94JlIFgLVfE 5NR7vcq1tjEYpzlhH6upcU1WBCKj8B9cS1B8RMl2YS0XIrJsUWNEh0gslMFwnBZX nl7UuOVBHt9JfO6P//vDqVh+WZe03F9YKGlWrWVEL+UPpW+LaqQdKWvEGgtatM4J QR4D6N5MQTcpgLq89nlPSUDyGmfMjBD/88Mq3Ip5oEhv8gR3nieIM4IWohJqc/E5 5296rJ4+p5PvhL1gBiy4cBXmmiQ//k/EaeXyL6T5feapPmmaRWSYv098jyoKxcyG iaNWyIc7XtDhu1ZcH0IFQBa2R3Y55G7B9Dz1UvyqTPmbYz507QEWgr7DI0oa5pV2 RqPS6hY= -----END CERTIFICATE-----Generated at Wed May 22 20:42:52 2024 by rpki-client on console-fra.rpki-client.org