$ rpki-client -vvf rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/7D6F53547F0411EBB8CAEE2BC4F9AE02.roa File: 7D6F53547F0411EBB8CAEE2BC4F9AE02.roa (raw, json) Hash identifier: PINEqptHm0CJeX7CW8cAbNAbERK5tklVb8QL+cmfYFg= Subject key identifier: 54:90:8F:9B:24:E6:D5:6C:65:5D:91:F4:EB:2A:43:5C:D0:CE:B3:3D Certificate issuer: /CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Certificate serial: 0501 Authority key identifier: 6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/7D6F53547F0411EBB8CAEE2BC4F9AE02.roa Signing time: Sat 03 Jun 2023 01:38:48 +0000 ROA not before: Sat 03 Jun 2023 01:38:48 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 137222 IP address blocks: 103.215.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:19:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1281 (0x501) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91EF2E1/serialNumber=6C197DA4922CFDDC4E98C8846E03A7D7D0E40B71 Validity Not Before: Jun 3 01:38:48 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647a99a8-8c54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:5f:f4:9b:99:71:be:b5:1e:12:2d:fe:2c:53: 84:7f:de:bd:de:24:d3:c9:3d:dc:22:bb:6c:6f:5a: 69:d7:c1:cf:f0:a2:e1:90:03:d7:03:4c:7a:e3:6b: 16:c0:7d:6f:7d:aa:ec:98:7b:25:67:32:b5:e3:0a: 9c:37:3b:42:fe:56:c5:50:04:0c:dd:2e:ec:2d:24: ce:58:8f:cc:22:62:23:e8:cb:d7:a2:8c:6e:ea:a0: 15:0e:33:79:4d:30:58:12:f3:78:79:c8:dd:ab:ba: ca:b2:7a:c3:eb:7c:83:42:62:3b:fd:32:17:ac:94: 34:8b:4a:76:85:24:6f:9b:ba:fc:0c:9d:7e:52:be: 64:e4:1b:f1:51:0d:24:c8:b2:a3:5a:c6:c9:c5:0d: 6a:a7:39:14:9b:fa:2a:3f:6f:a7:54:21:8c:52:69: 85:24:47:dc:45:0e:a8:44:ed:9e:bd:93:19:c5:25: 28:dc:4d:87:ce:44:3a:4f:7b:a0:00:12:8d:0d:80: dd:f1:34:d8:b1:f1:2e:6f:a4:fc:43:bf:83:7b:f6: bd:98:81:1e:1b:e6:49:73:7b:27:1d:4f:2f:d4:d8: 5e:ee:09:ab:50:67:62:52:4c:d6:65:31:7d:6d:b5: 47:62:83:61:d6:70:01:4b:25:1a:81:bb:8b:6e:2c: 8a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:90:8F:9B:24:E6:D5:6C:65:5D:91:F4:EB:2A:43:5C:D0:CE:B3:3D X509v3 Authority Key Identifier: keyid:6C:19:7D:A4:92:2C:FD:DC:4E:98:C8:84:6E:03:A7:D7:D0:E4:0B:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/bBl9pJIs_dxOmMiEbgOn19DkC3E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bBl9pJIs_dxOmMiEbgOn19DkC3E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91EF2E1/3F69CC667F0311EBA081A02BC4F9AE02/7D6F53547F0411EBB8CAEE2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.64.0/22 Signature Algorithm: sha256WithRSAEncryption 5f:89:40:9c:c5:ed:08:59:c2:d6:db:f6:fe:f7:92:16:f4:85: fd:f5:be:a0:a3:f2:d9:37:99:16:6e:39:de:52:da:a0:57:6c: cd:90:ca:21:6b:54:30:c7:74:7b:e9:20:50:fc:aa:b6:c4:ee: 13:a6:ca:8b:f4:a5:f7:ae:6d:00:4b:2f:b5:8d:1d:d6:6c:8a: d1:6b:44:73:ca:05:59:ad:06:40:e9:a1:16:de:47:64:02:4e: 52:7a:b1:9b:d5:10:90:12:bb:66:b3:13:4b:0a:76:4b:94:0c: d6:07:05:3d:a9:1d:14:36:e3:3e:f8:24:c8:33:e4:0b:27:0e: 0a:fd:b0:b5:54:a7:b9:09:ce:f2:09:d0:5e:a5:a3:17:51:92: 25:e1:04:a1:85:61:ad:17:f5:d7:3d:19:c4:8f:17:d3:2e:b1: 45:37:59:4c:db:96:a8:90:2a:f1:52:d7:5f:af:23:cc:61:a9: 4c:f7:f8:51:bf:f5:72:56:a6:84:b2:d9:7d:fd:13:e9:06:02: b1:53:2d:7f:f1:d1:02:8f:e7:45:f0:0e:18:8e:c4:ba:8c:35: ae:5d:50:7e:51:f8:e3:18:f5:23:e0:6b:c5:38:37:e1:6f:ae: 5b:bc:b3:ee:bb:57:7b:fa:ca:66:80:71:eb:f9:ad:03:29:67: d5:52:5c:c0 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBQEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RUYyRTExMTAvBgNVBAUTKDZDMTk3REE0OTIyQ0ZEREM0RTk4Qzg4NDZFMDNBN0Q3 RDBFNDBCNzEwHhcNMjMwNjAzMDEzODQ4WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdhOTlhOC04YzU0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAl1/0m5lxvrUeEi3+LFOEf9693iTTyT3cIrtsb1pp18HP8KLhkAPXA0x642sW wH1vfarsmHslZzK14wqcNztC/lbFUAQM3S7sLSTOWI/MImIj6MvXooxu6qAVDjN5 TTBYEvN4ecjdq7rKsnrD63yDQmI7/TIXrJQ0i0p2hSRvm7r8DJ1+Ur5k5BvxUQ0k yLKjWsbJxQ1qpzkUm/oqP2+nVCGMUmmFJEfcRQ6oRO2evZMZxSUo3E2HzkQ6T3ug ABKNDYDd8TTYsfEub6T8Q7+De/a9mIEeG+ZJc3snHU8v1Nhe7gmrUGdiUkzWZTF9 bbVHYoNh1nABSyUagbuLbiyKyQIDAQABo4IClTCCApEwHQYDVR0OBBYEFFSQj5sk 5tVsZV2R9OsqQ1zQzrM9MB8GA1UdIwQYMBaAFGwZfaSSLP3cTpjIhG4Dp9fQ5Atx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFRjJFMS8zRjY5Q0M2NjdG MDMxMUVCQTA4MUEwMkJDNEY5QUUwMi9iQmw5cEpJc19keE9tTWlFYmdPbjE5RGtD M0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JCbDlwSklzX2R4T21NaUViZ09uMTlEa0MzRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RUYyRTEvM0Y2OUNDNjY3RjAzMTFFQkEwODFBMDJCQzRGOUFFMDIvN0Q2RjUzNTQ3 RjA0MTFFQkI4Q0FFRTJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJn10AwDQYJKoZIhvcNAQELBQADggEBAF+JQJzF7QhZwtbb 9v73khb0hf31vqCj8tk3mRZuOd5S2qBXbM2QyiFrVDDHdHvpIFD8qrbE7hOmyov0 pfeubQBLL7WNHdZsitFrRHPKBVmtBkDpoRbeR2QCTlJ6sZvVEJASu2azE0sKdkuU DNYHBT2pHRQ24z74JMgz5AsnDgr9sLVUp7kJzvIJ0F6loxdRkiXhBKGFYa0X9dc9 GcSPF9MusUU3WUzblqiQKvFS11+vI8xhqUz3+FG/9XJWpoSy2X39E+kGArFTLX/x 0QKP50XwDhiOxLqMNa5dUH5R+OMY9SPga8U4N+Fvrlu8s+67V3v6ymaAcev5rQMp Z9VSXMA= -----END CERTIFICATE-----Generated at Tue May 21 01:50:56 2024 by rpki-client on console-ams.rpki-client.org