$ rpki-client -vvf rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/F690CAECF87D11E9A746D05BC4F9AE02.roa File: F690CAECF87D11E9A746D05BC4F9AE02.roa (raw, json) Hash identifier: tRW1SHxCN8QAU/mz80KqvbDC65dMejXwVIGduSjQTvI= Subject key identifier: 01:C8:9E:C8:5E:36:D9:0D:53:66:99:2D:D6:0B:2B:47:73:65:6D:39 Certificate issuer: /CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Certificate serial: 0B23 Authority key identifier: CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/F690CAECF87D11E9A746D05BC4F9AE02.roa Signing time: Wed 12 Jul 2023 18:55:39 +0000 ROA not before: Wed 12 Jul 2023 18:55:39 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 136759 IP address blocks: 103.95.96.0/22 maxlen: 24 2401:5a40::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2851 (0xb23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EBFB0/serialNumber=CC8509D31FB63A8DDD6BF2D3D84C7BC0B2BA3FC0 Validity Not Before: Jul 12 18:55:39 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64aef72a-54b9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6e:2b:f4:cb:37:b3:3e:26:21:8c:60:ae:9a: 71:54:ce:8e:3d:bd:43:ea:0e:9b:2f:26:57:4e:6c: 8a:7c:01:29:9f:f6:77:f1:06:d1:ed:88:78:78:0b: 6b:fd:02:a5:21:8e:80:38:a9:ad:3c:3e:b3:ca:d7: 72:fd:cb:df:c3:1a:5e:6a:e2:3f:6c:44:58:03:45: 5c:51:50:4d:1f:9b:e1:01:e9:f1:ce:04:42:91:0a: 14:d0:ee:d0:9b:de:bd:26:da:6c:e6:31:76:90:54: bf:49:ba:88:59:66:0b:aa:1c:34:11:5b:a8:b8:f4: 6f:72:d6:6a:7a:6e:04:d7:fd:79:cc:72:6c:88:40: 11:b3:72:ab:39:cc:67:7a:ae:9c:dc:c9:53:d6:1c: 7e:12:d2:3a:33:76:e8:52:34:31:ff:e7:1e:32:3e: 70:35:fd:b1:77:4e:4f:4e:9a:c7:b8:2a:e5:9a:04: a2:00:7d:55:ff:ad:f1:7e:94:3d:48:62:43:6a:aa: 8c:67:b2:4f:d4:9e:b7:e6:81:c6:cd:a4:98:18:f2: fb:a2:78:d1:83:a7:82:5d:a1:f0:49:dd:1e:c7:ea: c3:a9:b1:92:35:af:1e:44:6d:49:ea:4f:d4:8a:47: 57:7d:2d:94:5b:7a:21:33:eb:10:6f:8d:05:e3:a3: 5f:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:C8:9E:C8:5E:36:D9:0D:53:66:99:2D:D6:0B:2B:47:73:65:6D:39 X509v3 Authority Key Identifier: keyid:CC:85:09:D3:1F:B6:3A:8D:DD:6B:F2:D3:D8:4C:7B:C0:B2:BA:3F:C0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zIUJ0x-2Oo3da_LT2Ex7wLK6P8A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EBFB0/A3AB43B2F87C11E9AA2CF158C4F9AE02/F690CAECF87D11E9A746D05BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.95.96.0/22 IPv6: 2401:5a40::/32 Signature Algorithm: sha256WithRSAEncryption 98:e0:4a:b7:36:2f:58:9b:10:e6:af:c9:59:5f:c6:d2:2e:0e: e6:0e:fd:19:67:3b:6b:ad:e0:ee:7d:3d:78:14:1c:5c:36:ab: c2:33:68:cf:8c:c0:2a:a3:f2:86:1b:12:ab:a7:ad:5e:4a:87: 50:8b:0e:4a:50:8d:ff:0e:7f:bc:de:62:ad:f2:50:9c:ce:7d: 53:d6:3f:0e:10:b0:09:7b:4b:28:53:e4:56:e5:d4:08:43:66: 6e:f5:ee:52:4b:53:5f:2a:af:6e:4d:91:b1:74:49:39:17:00: b0:fe:9e:dc:f9:72:1e:b3:7b:8a:c3:ed:92:f6:2c:dd:00:48: 25:3d:ef:3c:08:96:89:67:ff:09:4f:e2:4b:c9:7e:47:f1:6e: 7a:36:42:c3:52:db:4d:ed:46:60:cf:c2:e9:9e:9f:6e:7c:be: d7:9a:9e:9c:93:c7:20:f1:8c:db:33:f3:4e:11:98:7b:7d:af: 9f:09:25:15:7c:0b:e1:ef:2d:86:14:07:6c:e4:df:35:8c:7b: 7f:1e:e3:1e:65:ca:04:e6:78:3b:79:1d:5a:60:25:cf:d0:11: 48:65:95:e1:5a:05:68:8b:5a:44:a5:b9:07:b8:04:f7:51:13: 1b:d3:61:d7:49:33:d9:82:79:d5:38:ff:7c:94:3a:b5:37:18: 1d:3d:e4:ce -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCyMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUJGQjAxMTAvBgNVBAUTKENDODUwOUQzMUZCNjNBOERERDZCRjJEM0Q4NEM3QkMw QjJCQTNGQzAwHhcNMjMwNzEyMTg1NTM5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFlZjcyYS01NGI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnW4r9Ms3sz4mIYxgrppxVM6OPb1D6g6bLyZXTmyKfAEpn/Z38QbR7Yh4eAtr /QKlIY6AOKmtPD6zytdy/cvfwxpeauI/bERYA0VcUVBNH5vhAenxzgRCkQoU0O7Q m969Jtps5jF2kFS/SbqIWWYLqhw0EVuouPRvctZqem4E1/15zHJsiEARs3KrOcxn eq6c3MlT1hx+EtI6M3boUjQx/+ceMj5wNf2xd05PTprHuCrlmgSiAH1V/63xfpQ9 SGJDaqqMZ7JP1J635oHGzaSYGPL7onjRg6eCXaHwSd0ex+rDqbGSNa8eRG1J6k/U ikdXfS2UW3ohM+sQb40F46Nf6QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFAHInshe NtkNU2aZLdYLK0dzZW05MB8GA1UdIwQYMBaAFMyFCdMftjqN3Wvy09hMe8Cyuj/A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFQkZCMC9BM0FCNDNCMkY4 N0MxMUU5QUEyQ0YxNThDNEY5QUUwMi96SVVKMHgtMk9vM2RhX0xUMkV4N3dMSzZQ OEEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pJVUoweC0yT28zZGFfTFQyRXg3d0xLNlA4QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUJGQjAvQTNBQjQzQjJGODdDMTFFOUFBMkNGMTU4QzRGOUFFMDIvRjY5MENBRUNG ODdEMTFFOUE3NDZEMDVCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnX2AwDQQCAAIwBwMFACQBWkAwDQYJKoZIhvcNAQELBQAD ggEBAJjgSrc2L1ibEOavyVlfxtIuDuYO/RlnO2ut4O59PXgUHFw2q8IzaM+MwCqj 8oYbEqunrV5Kh1CLDkpQjf8Of7zeYq3yUJzOfVPWPw4QsAl7SyhT5Fbl1AhDZm71 7lJLU18qr25NkbF0STkXALD+ntz5ch6ze4rD7ZL2LN0ASCU97zwIloln/wlP4kvJ fkfxbno2QsNS203tRmDPwumen258vteanpyTxyDxjNsz804RmHt9r58JJRV8C+Hv LYYUB2zk3zWMe38e4x5lygTmeDt5HVpgJc/QEUhlleFaBWiLWkSluQe4BPdRExvT YddJM9mCedU4/3yUOrU3GB095M4= -----END CERTIFICATE-----Generated at Wed May 8 20:36:06 2024 by rpki-client on console-ams.rpki-client.org