$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/D6AAD7B2745A11EC8FBEDD40C4F9AE02.roa File: D6AAD7B2745A11EC8FBEDD40C4F9AE02.roa (raw, json) Hash identifier: SE5zc1fO/aEed5V7IyJ0ZULI0CLrZqKxJrcQOxWzEkY= Subject key identifier: 93:87:65:E3:35:34:96:33:33:7E:2B:74:BF:68:97:3E:15:6A:98:4A Certificate issuer: /CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Certificate serial: 031A Authority key identifier: BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/D6AAD7B2745A11EC8FBEDD40C4F9AE02.roa Signing time: Sun 25 Feb 2024 02:34:56 +0000 ROA not before: Sun 25 Feb 2024 02:34:56 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 149433 IP address blocks: 103.179.128.0/23 maxlen: 23 103.179.128.0/24 maxlen: 24 103.179.129.0/24 maxlen: 24 2001:df0:4d40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 02:53:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 794 (0x31a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBA81/serialNumber=BA69FCB40E3349757FA24F8E335791C5F0045D58 Validity Not Before: Feb 25 02:34:56 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65daa750-9b6d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5e:50:2b:b3:2c:57:c9:ee:a0:a0:43:50:b4: f0:1c:84:8a:f5:fa:74:05:a8:5f:a8:48:00:a8:e0: f3:79:83:b8:db:ec:59:73:5f:db:6e:66:ff:57:ff: 9b:5d:f1:82:d0:b1:a6:9e:72:ce:53:08:28:58:ae: 50:72:cb:6c:73:db:dc:4d:ea:c6:37:37:f1:4d:13: 11:61:51:ae:3f:75:f8:63:89:84:69:88:a3:9a:bd: 14:97:41:d9:72:aa:e3:e2:56:ff:f3:2b:f9:99:2a: 8e:4d:9b:ac:5b:6e:50:33:7f:ed:e1:7b:8d:90:b9: c5:3a:86:7e:bf:6a:f6:32:73:7f:1a:5e:43:1b:e5: 18:bf:22:2a:b6:d7:d3:1e:dc:63:a1:03:2e:9e:d3: 75:b4:10:43:3b:7c:c0:5f:9e:5a:84:67:9a:04:22: 59:3b:11:25:ee:5a:3f:7d:fb:36:48:a9:70:eb:e0: 05:81:89:e1:9c:6d:16:39:51:eb:b1:9c:e3:c4:7d: 2a:cc:e5:32:de:a4:4d:f1:36:c8:52:26:55:dc:12: c2:cf:67:51:f9:93:5f:d0:b0:af:f6:f8:60:37:ed: 69:39:df:c7:75:e0:25:95:7f:0a:30:3a:bf:71:bc: d3:76:24:00:d0:75:6a:20:ef:fa:ca:18:29:09:75: a8:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:87:65:E3:35:34:96:33:33:7E:2B:74:BF:68:97:3E:15:6A:98:4A X509v3 Authority Key Identifier: keyid:BA:69:FC:B4:0E:33:49:75:7F:A2:4F:8E:33:57:91:C5:F0:04:5D:58 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/umn8tA4zSXV_ok-OM1eRxfAEXVg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/umn8tA4zSXV_ok-OM1eRxfAEXVg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBA81/CE136BD0745711ECB3987518C4F9AE02/D6AAD7B2745A11EC8FBEDD40C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.179.128.0/23 IPv6: 2001:df0:4d40::/48 Signature Algorithm: sha256WithRSAEncryption ba:2d:3a:c9:3d:6e:48:90:64:87:d0:96:d7:3e:52:85:5a:94: 1e:14:9a:cf:2a:cf:5a:4c:9b:6b:8e:17:d0:9a:53:32:ac:7d: e6:86:ec:bf:6f:cd:f1:d8:98:22:23:36:06:e1:c8:f3:41:9e: b6:70:35:24:39:7f:ab:b3:50:64:35:d1:14:70:20:2e:05:cc: 7f:65:d2:cb:86:2b:e1:e2:9b:77:5e:b4:b5:d3:ff:c9:6f:ce: 23:b0:5d:b9:1d:3e:b9:27:c6:1b:25:6f:fc:e7:a5:41:68:57: ca:65:f3:2d:82:11:1c:e5:ff:22:68:4b:41:06:e5:cf:85:3b: a8:77:30:ae:63:8c:3e:ea:df:16:50:46:02:e1:a4:26:65:d0: 80:09:d6:45:10:ca:cd:18:66:7c:bc:77:2a:11:49:6f:f5:16: 0d:15:60:ca:9b:82:e3:c2:61:f3:4a:a8:f7:36:a6:06:32:97: 26:9a:f6:40:2c:3c:a8:78:f6:49:69:ee:e0:e8:70:2f:d2:16: a5:7e:da:af:ab:30:9f:0a:f1:63:36:1c:fc:80:65:6c:4c:77: 9d:37:14:42:89:33:10:2f:ee:02:7b:c5:2b:bb:69:64:f8:f5: 40:9c:9b:cb:3f:ed:ea:c6:cc:e3:ef:d3:3a:2a:1a:15:6c:8d: ab:6c:08:60 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAxowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJBODExMTAvBgNVBAUTKEJBNjlGQ0I0MEUzMzQ5NzU3RkEyNEY4RTMzNTc5MUM1 RjAwNDVENTgwHhcNMjQwMjI1MDIzNDU2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRhYTc1MC05YjZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxV5QK7MsV8nuoKBDULTwHISK9fp0BahfqEgAqODzeYO42+xZc1/bbmb/V/+b XfGC0LGmnnLOUwgoWK5Qcstsc9vcTerGNzfxTRMRYVGuP3X4Y4mEaYijmr0Ul0HZ cqrj4lb/8yv5mSqOTZusW25QM3/t4XuNkLnFOoZ+v2r2MnN/Gl5DG+UYvyIqttfT HtxjoQMuntN1tBBDO3zAX55ahGeaBCJZOxEl7lo/ffs2SKlw6+AFgYnhnG0WOVHr sZzjxH0qzOUy3qRN8TbIUiZV3BLCz2dR+ZNf0LCv9vhgN+1pOd/HdeAllX8KMDq/ cbzTdiQA0HVqIO/6yhgpCXWoPwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFJOHZeM1 NJYzM34rdL9olz4VaphKMB8GA1UdIwQYMBaAFLpp/LQOM0l1f6JPjjNXkcXwBF1Y MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkE4MS9DRTEzNkJEMDc0 NTcxMUVDQjM5ODc1MThDNEY5QUUwMi91bW44dEE0elNYVl9vay1PTTFlUnhmQUVY VmcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Vtbjh0QTR6U1hWX29rLU9NMWVSeGZBRVhWZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJBODEvQ0UxMzZCRDA3NDU3MTFFQ0IzOTg3NTE4QzRGOUFFMDIvRDZBQUQ3QjI3 NDVBMTFFQzhGQkVERDQwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFns4AwDwQCAAIwCQMHACABDfBNQDANBgkqhkiG9w0BAQsF AAOCAQEAui06yT1uSJBkh9CW1z5ShVqUHhSazyrPWkyba44X0JpTMqx95obsv2/N 8diYIiM2BuHI80GetnA1JDl/q7NQZDXRFHAgLgXMf2XSy4Yr4eKbd160tdP/yW/O I7BduR0+uSfGGyVv/OelQWhXymXzLYIRHOX/ImhLQQblz4U7qHcwrmOMPurfFlBG AuGkJmXQgAnWRRDKzRhmfLx3KhFJb/UWDRVgypuC48Jh80qo9zamBjKXJpr2QCw8 qHj2SWnu4OhwL9IWpX7ar6swnwrxYzYc/IBlbEx3nTcUQokzEC/uAnvFK7tpZPj1 QJybyz/t6sbM4+/TOioaFWyNq2wIYA== -----END CERTIFICATE-----Generated at Fri May 17 03:52:23 2024 by rpki-client on console-ams.rpki-client.org