$ rpki-client -vvf rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/90269D3A716611ED9D80F448C4F9AE02.roa File: 90269D3A716611ED9D80F448C4F9AE02.roa (raw, json) Hash identifier: yCHbl8QlQbMzjHfu0kPf5s8MBmUK/QILBQq+fNO53wc= Subject key identifier: 5A:2B:38:67:57:36:41:AA:C8:CB:11:6E:7C:F9:16:35:88:6E:AB:EF Certificate issuer: /CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Certificate serial: C5 Authority key identifier: B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/90269D3A716611ED9D80F448C4F9AE02.roa Signing time: Wed 13 Dec 2023 04:56:25 +0000 ROA not before: Wed 13 Dec 2023 04:56:25 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 150458 IP address blocks: 103.167.58.0/23 maxlen: 23 103.167.58.0/24 maxlen: 24 103.167.59.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 02:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 197 (0xc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F134A/serialNumber=B8DF43EEEB35469BB2CC0BA5212D1BFF268A7B6E Validity Not Before: Dec 13 04:56:25 2023 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=65793979-dc13 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:e2:45:bd:4a:64:a0:2a:e2:73:bd:5d:d9:07: 37:d2:99:f4:4a:5d:b1:47:12:77:7f:6c:67:7d:83: 3d:94:82:3f:9f:84:1a:a9:26:e9:91:82:de:be:e5: e1:48:fe:04:aa:11:d7:4a:3f:9e:26:2a:3c:0f:16: c9:05:f2:2d:75:22:ca:0f:2b:27:69:e8:3c:81:ba: 35:63:e7:d6:aa:79:bc:87:32:f9:34:bb:09:af:44: 24:48:1d:15:d7:82:da:99:66:e3:ad:73:16:28:8b: 2c:17:70:8f:8c:e1:ad:1b:14:f7:01:cc:e3:5d:e2: f9:a7:fb:d1:f6:75:41:0d:26:39:f5:19:a6:45:ac: 7b:1d:4e:4f:ba:9c:cf:8e:6e:a0:73:b5:dd:b4:63: 41:e3:7f:a9:cf:96:1b:3f:70:1b:b8:03:15:01:30: 99:e0:7c:a0:bc:15:9c:06:0a:28:c5:bd:c4:3a:b3: 93:2b:f6:f5:05:2a:0a:9e:54:13:6d:4b:b7:92:90: bc:99:b0:2e:42:a8:46:f7:17:d2:ca:34:c4:67:56: 1b:38:ad:cd:60:72:ba:52:d8:1b:5a:9b:8d:d9:21: ad:e3:b6:c7:71:cb:96:c5:3b:87:60:f0:53:5e:9e: 2b:f8:1d:f1:b4:87:c2:c0:e9:b0:bf:70:d1:6a:75: 2c:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:2B:38:67:57:36:41:AA:C8:CB:11:6E:7C:F9:16:35:88:6E:AB:EF X509v3 Authority Key Identifier: keyid:B8:DF:43:EE:EB:35:46:9B:B2:CC:0B:A5:21:2D:1B:FF:26:8A:7B:6E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/uN9D7us1RpuyzAulIS0b_yaKe24.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uN9D7us1RpuyzAulIS0b_yaKe24.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F134A/F976BFDA716211ED88931331C4F9AE02/90269D3A716611ED9D80F448C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.167.58.0/23 Signature Algorithm: sha256WithRSAEncryption 25:bb:99:4e:64:9e:7a:e2:1a:82:66:e7:e1:7f:db:b3:76:22: 57:1b:69:48:14:72:2b:f1:b5:c1:3e:fc:54:e5:46:cd:5f:8a: 21:77:8d:d4:99:4a:bc:e5:81:eb:2c:42:9b:af:2f:8c:fd:3e: f2:cf:88:18:e1:4a:48:b5:fc:93:93:32:b3:10:03:70:a6:b5: 48:8a:ee:f2:28:ef:2f:24:70:3a:f1:a0:37:8c:0e:2d:2a:4b: 9b:89:4e:40:da:0f:04:22:b4:7b:c2:40:39:ef:07:53:8c:60: e5:28:1a:e0:78:19:c7:7b:5a:17:0a:37:00:81:8c:aa:6e:cb: 47:6b:1e:86:d1:7f:45:a8:ab:84:38:b9:4d:a0:b2:85:f0:b1: c7:19:4e:a8:cd:2e:fa:1a:da:2a:d6:e6:d9:69:7a:d0:16:5c: 98:c5:e9:b0:02:0d:20:1d:f0:b6:c7:e3:cc:75:6d:45:74:d3: 11:5b:f8:7c:cd:78:69:8d:4e:c4:90:e9:59:b3:51:ef:2f:e6: 56:5e:31:23:e5:23:7b:39:cb:08:86:6d:43:64:87:fe:5a:91: 9d:ec:b4:6b:f0:6c:80:2f:84:f6:20:c4:9f:50:50:54:34:e2: 65:6d:04:42:44:c1:26:80:cc:95:b6:53:92:22:6f:4a:0c:80: b9:57:3e:ba -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAMUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjEzNEExMTAvBgNVBAUTKEI4REY0M0VFRUIzNTQ2OUJCMkNDMEJBNTIxMkQxQkZG MjY4QTdCNkUwHhcNMjMxMjEzMDQ1NjI1WhcNMjUwMzAyMDAwMDAwWjAYMRYwFAYD VQQDEw02NTc5Mzk3OS1kYzEzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApOJFvUpkoCric71d2Qc30pn0Sl2xRxJ3f2xnfYM9lII/n4QaqSbpkYLevuXh SP4EqhHXSj+eJio8DxbJBfItdSLKDysnaeg8gbo1Y+fWqnm8hzL5NLsJr0QkSB0V 14LamWbjrXMWKIssF3CPjOGtGxT3AczjXeL5p/vR9nVBDSY59RmmRax7HU5PupzP jm6gc7XdtGNB43+pz5YbP3AbuAMVATCZ4HygvBWcBgooxb3EOrOTK/b1BSoKnlQT bUu3kpC8mbAuQqhG9xfSyjTEZ1YbOK3NYHK6UtgbWpuN2SGt47bHccuWxTuHYPBT Xp4r+B3xtIfCwOmwv3DRanUsbQIDAQABo4IClTCCApEwHQYDVR0OBBYEFForOGdX NkGqyMsRbnz5FjWIbqvvMB8GA1UdIwQYMBaAFLjfQ+7rNUabsswLpSEtG/8mintu MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTM0QS9GOTc2QkZEQTcx NjIxMUVEODg5MzEzMzFDNEY5QUUwMi91TjlEN3VzMVJwdXl6QXVsSVMwYl95YUtl MjQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VOOUQ3dXMxUnB1eXpBdWxJUzBiX3lhS2UyNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjEzNEEvRjk3NkJGREE3MTYyMTFFRDg4OTMxMzMxQzRGOUFFMDIvOTAyNjlEM0E3 MTY2MTFFRDlEODBGNDQ4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnpzowDQYJKoZIhvcNAQELBQADggEBACW7mU5knnriGoJm 5+F/27N2IlcbaUgUcivxtcE+/FTlRs1fiiF3jdSZSrzlgessQpuvL4z9PvLPiBjh Ski1/JOTMrMQA3CmtUiK7vIo7y8kcDrxoDeMDi0qS5uJTkDaDwQitHvCQDnvB1OM YOUoGuB4Gcd7WhcKNwCBjKpuy0drHobRf0Woq4Q4uU2gsoXwsccZTqjNLvoa2irW 5tlpetAWXJjF6bACDSAd8LbH48x1bUV00xFb+HzNeGmNTsSQ6VmzUe8v5lZeMSPl I3s5ywiGbUNkh/5akZ3stGvwbIAvhPYgxJ9QUFQ04mVtBEJEwSaAzJW2U5Iib0oM gLlXPro= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:58 2024 by rpki-client on console-ams.rpki-client.org