$ rpki-client -vvf rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/D6A35008C53811ECB4EAFD1AC4F9AE02.roa File: D6A35008C53811ECB4EAFD1AC4F9AE02.roa (raw, json) Hash identifier: 2X0d3XaRVlyEv6o6Oz6Zuu3w3Y7KES84+qdWvzxEZqU= Subject key identifier: 49:B9:3A:B1:92:E6:61:2B:32:21:78:AE:D7:1C:6A:C6:84:84:4F:B4 Certificate issuer: /CN=A91F1446/serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Certificate serial: 0222 Authority key identifier: B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/D6A35008C53811ECB4EAFD1AC4F9AE02.roa Signing time: Wed 29 Nov 2023 03:34:09 +0000 ROA not before: Wed 29 Nov 2023 03:34:09 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 8100 IP address blocks: 103.21.208.0/22 maxlen: 22 103.21.208.64/26 maxlen: 26 103.21.208.128/25 maxlen: 25 103.21.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 03:49:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 546 (0x222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F1446/serialNumber=B5D33A7A32A5082D336B6B05B7965F307470A276 Validity Not Before: Nov 29 03:34:09 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6566b131-ec02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4f:cd:83:ea:09:be:b8:89:84:aa:2d:b0:db: 36:dc:4a:a0:d6:aa:45:0c:30:f9:a5:f9:f9:71:42: 7f:6e:e8:34:27:4c:4a:de:bf:23:d9:17:52:00:02: 7b:37:3b:d4:8c:71:aa:cc:47:f7:22:15:b9:38:97: 47:8a:20:b6:7d:4a:5d:ce:84:9d:d9:60:4a:ba:89: 2a:1a:40:aa:89:e9:48:a8:4a:3e:f1:8e:37:e8:86: 47:85:43:1d:b1:17:1f:87:a8:9c:07:11:df:d5:79: 54:99:0c:a5:93:1c:25:b7:42:5a:4a:00:29:60:ea: dd:51:34:a6:44:88:8b:ab:a2:00:bf:57:e1:e9:b9: f6:28:a5:0e:d5:35:c6:c6:30:25:52:3c:5a:73:86: f6:78:03:9b:68:2d:61:98:55:88:18:ca:91:bb:2c: f1:d1:94:74:1b:f1:6c:4d:23:c8:cf:18:fb:78:2a: b1:e5:bc:13:95:f9:66:17:3a:65:79:5d:f8:c4:3c: 2d:23:47:79:11:88:8d:82:fb:37:08:ed:5a:42:bf: c3:57:95:f4:25:fa:4a:e1:9c:31:28:5b:bd:68:47: 00:30:cd:89:93:7b:16:ce:25:b9:f1:16:e3:56:4b: 11:4a:66:e7:36:4d:9e:d0:3d:8b:2f:f5:72:ae:48: af:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:B9:3A:B1:92:E6:61:2B:32:21:78:AE:D7:1C:6A:C6:84:84:4F:B4 X509v3 Authority Key Identifier: keyid:B5:D3:3A:7A:32:A5:08:2D:33:6B:6B:05:B7:96:5F:30:74:70:A2:76 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/tdM6ejKlCC0za2sFt5ZfMHRwonY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tdM6ejKlCC0za2sFt5ZfMHRwonY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F1446/2A1FF56EC53511EC8E5A0313C4F9AE02/D6A35008C53811ECB4EAFD1AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.208.0/22 Signature Algorithm: sha256WithRSAEncryption ab:a8:bc:08:06:02:57:1f:68:af:55:25:6b:8e:4e:ac:c2:14: f9:28:9d:9e:cc:e9:2d:c8:66:25:6b:52:61:76:5c:7d:5a:5a: ec:9f:fd:50:be:8c:94:60:4e:be:42:1d:f3:10:e9:38:da:35: 37:76:5f:ee:47:5d:de:dc:2e:9a:0f:9e:cf:08:3d:9f:20:37: 2f:2a:6a:e4:30:99:6c:16:ee:b6:b7:b8:1f:0e:ca:fc:9e:f0: 95:32:6c:fe:b5:94:b3:85:26:c1:ff:d0:22:1d:20:34:e9:b5: 87:3c:4a:ca:6a:d4:06:57:bd:1e:b8:f1:d2:98:f7:01:a1:9b: d5:7b:35:e9:37:3e:ef:b7:4d:f1:54:26:2a:dc:7b:43:0f:65: 59:eb:19:25:38:fc:26:5d:82:e0:7c:cd:73:a4:53:59:18:22: 8d:8d:3e:3f:54:2f:6f:65:09:e4:04:8d:e2:7f:d6:c8:f1:1f: 61:42:3c:89:e2:bb:6c:17:1d:07:55:82:05:a0:33:5c:fd:18: 3c:6e:05:37:05:c0:07:8f:f4:78:af:27:0d:15:5a:b8:2e:85: 30:72:7d:cb:ba:65:88:d8:49:76:6c:f3:9d:fe:ed:8b:2d:33: 27:ec:3f:25:cd:ac:14:65:88:3f:4c:23:89:6b:8a:3a:55:de: b5:87:d3:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjE0NDYxMTAvBgNVBAUTKEI1RDMzQTdBMzJBNTA4MkQzMzZCNkIwNUI3OTY1RjMw NzQ3MEEyNzYwHhcNMjMxMTI5MDMzNDA5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTY2YjEzMS1lYzAyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlk/Ng+oJvriJhKotsNs23Eqg1qpFDDD5pfn5cUJ/bug0J0xK3r8j2RdSAAJ7 NzvUjHGqzEf3IhW5OJdHiiC2fUpdzoSd2WBKuokqGkCqielIqEo+8Y436IZHhUMd sRcfh6icBxHf1XlUmQylkxwlt0JaSgApYOrdUTSmRIiLq6IAv1fh6bn2KKUO1TXG xjAlUjxac4b2eAObaC1hmFWIGMqRuyzx0ZR0G/FsTSPIzxj7eCqx5bwTlflmFzpl eV34xDwtI0d5EYiNgvs3CO1aQr/DV5X0JfpK4ZwxKFu9aEcAMM2Jk3sWziW58Rbj VksRSmbnNk2e0D2LL/VyrkivQQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEm5OrGS 5mErMiF4rtccasaEhE+0MB8GA1UdIwQYMBaAFLXTOnoypQgtM2trBbeWXzB0cKJ2 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGMTQ0Ni8yQTFGRjU2RUM1 MzUxMUVDOEU1QTAzMTNDNEY5QUUwMi90ZE02ZWpLbENDMHphMnNGdDVaZk1IUndv blkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RkTTZlaktsQ0MwemEyc0Z0NVpmTUhSd29uWS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjE0NDYvMkExRkY1NkVDNTM1MTFFQzhFNUEwMzEzQzRGOUFFMDIvRDZBMzUwMDhD NTM4MTFFQ0I0RUFGRDFBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnFdAwDQYJKoZIhvcNAQELBQADggEBAKuovAgGAlcfaK9V JWuOTqzCFPkonZ7M6S3IZiVrUmF2XH1aWuyf/VC+jJRgTr5CHfMQ6TjaNTd2X+5H Xd7cLpoPns8IPZ8gNy8qauQwmWwW7ra3uB8Oyvye8JUybP61lLOFJsH/0CIdIDTp tYc8Sspq1AZXvR648dKY9wGhm9V7Nek3Pu+3TfFUJirce0MPZVnrGSU4/CZdguB8 zXOkU1kYIo2NPj9UL29lCeQEjeJ/1sjxH2FCPIniu2wXHQdVggWgM1z9GDxuBTcF wAeP9HivJw0VWrguhTByfcu6ZYjYSXZs853+7YstMyfsPyXNrBRliD9MI4lrijpV 3rWH0xg= -----END CERTIFICATE-----Generated at Tue Apr 23 18:34:00 2024 by rpki-client on console-fra.rpki-client.org