$ rpki-client -vvf rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/60B707FA1AEA11EE92BEA24CC4F9AE02.roa File: 60B707FA1AEA11EE92BEA24CC4F9AE02.roa (raw, json) Hash identifier: HITqvsOV8NXEevbID5wWbEGFWpToE66JO9d/dCgPkiY= Subject key identifier: 19:D3:EC:1D:A1:7C:CF:F7:72:6B:6E:D8:D6:3D:DE:30:ED:6F:27:EE Certificate issuer: /CN=A91F4957/serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F Certificate serial: 8C Authority key identifier: BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/60B707FA1AEA11EE92BEA24CC4F9AE02.roa Signing time: Tue 19 Mar 2024 06:38:19 +0000 ROA not before: Tue 19 Mar 2024 06:38:19 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 132342 IP address blocks: 103.13.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 140 (0x8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F4957/serialNumber=BF2D1B39D3C2E9AE0AA8FAB94BAC540CC526524F Validity Not Before: Mar 19 06:38:19 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65f932db-9bc0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:3c:45:39:d5:b2:cf:59:02:dd:a4:3c:9e:9b: 0b:6a:12:76:92:8b:f7:9b:97:91:4b:34:dd:d9:32: 45:8a:36:98:b6:b4:ef:96:25:07:dc:94:c4:7f:e4: 68:2f:95:d5:50:8f:a5:03:ee:d4:f8:b4:c0:88:e1: ed:dc:1a:cc:c8:a0:69:6c:ee:a3:5a:cd:ff:dd:af: 62:68:b9:6a:c4:0a:00:8c:09:e0:3e:bf:97:10:68: c9:84:ce:fa:08:f5:93:4a:4a:7e:61:60:5e:28:6e: 16:c4:09:b6:42:c0:fe:19:ce:4d:f2:af:00:ab:d0: 8b:14:dc:36:18:00:3e:f1:d4:ed:2f:0c:64:87:24: d6:37:84:67:41:02:5c:ac:fe:af:87:bf:24:db:d7: 9f:4e:ce:c5:ef:d6:f6:da:a4:2d:18:39:a1:2d:16: 94:3e:de:88:db:46:90:ed:2d:dc:a8:61:26:5e:01: 50:66:d5:34:d2:19:05:d2:75:0d:3b:69:bf:38:f2: b9:0f:42:af:6f:03:ad:c9:d5:ff:5d:36:90:7e:0e: 5b:65:c9:01:99:f0:4d:92:0c:70:4f:80:71:68:df: 54:5d:e4:43:5f:a9:df:3a:f3:ce:64:ca:85:30:1d: 3e:f7:f1:97:87:62:e9:38:60:45:3e:f7:cc:5c:3f: f0:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:D3:EC:1D:A1:7C:CF:F7:72:6B:6E:D8:D6:3D:DE:30:ED:6F:27:EE X509v3 Authority Key Identifier: keyid:BF:2D:1B:39:D3:C2:E9:AE:0A:A8:FA:B9:4B:AC:54:0C:C5:26:52:4F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/vy0bOdPC6a4KqPq5S6xUDMUmUk8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vy0bOdPC6a4KqPq5S6xUDMUmUk8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91F4957/571B22101AE711EE8DD4B949C4F9AE02/60B707FA1AEA11EE92BEA24CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.176.0/23 Signature Algorithm: sha256WithRSAEncryption 83:73:96:ba:84:af:70:54:8b:46:5e:9a:55:1c:3c:98:8e:a8: 41:71:78:65:f1:34:39:c5:8e:6d:d3:4b:e6:f0:22:59:16:08: 5d:a0:5b:0d:07:54:e9:49:6e:e2:77:c2:5f:e8:6f:9b:7d:6c: 2e:f6:3f:db:23:41:df:c5:d2:b8:8f:5b:3b:a4:28:31:28:70: 46:39:bd:0c:af:b4:cc:f1:e2:99:c8:09:86:13:4f:75:c1:50: 8d:9d:dc:77:40:81:78:52:85:d8:8f:bb:33:45:76:f8:72:84: 62:0f:ca:18:e1:b1:34:f2:2c:65:63:0f:5b:80:5e:8c:4e:e3: 3d:33:2d:14:78:1f:65:f7:e5:a8:36:f0:eb:45:88:2f:a6:84: 1e:cc:8f:3f:18:2b:95:f1:39:90:ba:66:d2:db:b8:86:c6:d6: c1:4f:7d:b7:9f:d3:a7:ab:30:71:52:41:3d:d9:22:a5:d3:56: d6:46:aa:71:aa:82:ad:3a:f5:b4:d3:78:5b:f3:9c:f7:22:f2: 9d:36:1f:ec:6f:40:eb:8f:a1:2d:20:91:90:34:db:0b:5e:60: fc:6b:06:b1:4a:6e:e0:32:29:4b:2a:e7:f5:b4:c8:50:f8:87: 20:4f:a3:71:86:9a:98:13:35:b4:37:00:0a:ae:0b:37:ab:d6: 54:c5:f2:76 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RjQ5NTcxMTAvBgNVBAUTKEJGMkQxQjM5RDNDMkU5QUUwQUE4RkFCOTRCQUM1NDBD QzUyNjUyNEYwHhcNMjQwMzE5MDYzODE5WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWY5MzJkYi05YmMwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA4DxFOdWyz1kC3aQ8npsLahJ2kov3m5eRSzTd2TJFijaYtrTvliUH3JTEf+Ro L5XVUI+lA+7U+LTAiOHt3BrMyKBpbO6jWs3/3a9iaLlqxAoAjAngPr+XEGjJhM76 CPWTSkp+YWBeKG4WxAm2QsD+Gc5N8q8Aq9CLFNw2GAA+8dTtLwxkhyTWN4RnQQJc rP6vh78k29efTs7F79b22qQtGDmhLRaUPt6I20aQ7S3cqGEmXgFQZtU00hkF0nUN O2m/OPK5D0KvbwOtydX/XTaQfg5bZckBmfBNkgxwT4BxaN9UXeRDX6nfOvPOZMqF MB0+9/GXh2LpOGBFPvfMXD/wwwIDAQABo4IClTCCApEwHQYDVR0OBBYEFBnT7B2h fM/3cmtu2NY93jDtbyfuMB8GA1UdIwQYMBaAFL8tGznTwumuCqj6uUusVAzFJlJP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGNDk1Ny81NzFCMjIxMDFB RTcxMUVFOERENEI5NDlDNEY5QUUwMi92eTBiT2RQQzZhNEtxUHE1UzZ4VURNVW1V azguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3Z5MGJPZFBDNmE0S3FQcTVTNnhVRE1VbVVrOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RjQ5NTcvNTcxQjIyMTAxQUU3MTFFRThERDRCOTQ5QzRGOUFFMDIvNjBCNzA3RkEx QUVBMTFFRTkyQkVBMjRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnDbAwDQYJKoZIhvcNAQELBQADggEBAINzlrqEr3BUi0Ze mlUcPJiOqEFxeGXxNDnFjm3TS+bwIlkWCF2gWw0HVOlJbuJ3wl/ob5t9bC72P9sj Qd/F0riPWzukKDEocEY5vQyvtMzx4pnICYYTT3XBUI2d3HdAgXhShdiPuzNFdvhy hGIPyhjhsTTyLGVjD1uAXoxO4z0zLRR4H2X35ag28OtFiC+mhB7Mjz8YK5XxOZC6 ZtLbuIbG1sFPfbef06erMHFSQT3ZIqXTVtZGqnGqgq069bTTeFvznPci8p02H+xv QOuPoS0gkZA02wteYPxrBrFKbuAyKUsq5/W0yFD4hyBPo3GGmpgTNbQ3AAquCzer 1lTF8nY= -----END CERTIFICATE-----Generated at Fri Jun 7 08:57:16 2024 by rpki-client on console-fra.rpki-client.org