$ rpki-client -vvf rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/D9EEB222DBFC11EC82E85E69C4F9AE02.roa File: D9EEB222DBFC11EC82E85E69C4F9AE02.roa (raw, json) Hash identifier: IM38OEcY+pvCX+wnXvhRbSuzND147HKpkLnhoMrBbCU= Subject key identifier: FE:BD:EB:CE:71:B1:CB:90:19:FB:E7:02:C5:B0:17:53:B0:CD:B3:0E Certificate issuer: /CN=A91FB0D0/serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7 Certificate serial: 023E Authority key identifier: 4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/D9EEB222DBFC11EC82E85E69C4F9AE02.roa Signing time: Fri 31 May 2024 05:01:19 +0000 ROA not before: Fri 31 May 2024 05:01:19 +0000 ROA not after: Wed 30 Jul 2025 00:00:00 +0000 asID: 149832 IP address blocks: 103.187.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 30 Nov 2024 01:07:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 574 (0x23e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FB0D0/serialNumber=4B3C6956B044900100858C0DE50EB9A462B08CC7 Validity Not Before: May 31 05:01:19 2024 GMT Not After : Jul 30 00:00:00 2025 GMT Subject: CN=6659599f-21ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:26:b5:1a:4b:89:81:47:cf:14:48:2c:c6:2d: 6d:b4:d5:20:81:df:e3:ae:05:b3:98:3e:35:4b:33: cc:be:a0:70:9b:3f:40:19:aa:32:77:ee:55:2a:26: b3:2b:ca:92:e4:1a:db:a4:82:05:94:c1:47:d3:ad: af:34:01:04:48:4c:35:81:8f:e1:71:c7:20:e8:a4: c0:23:6a:dc:59:5e:f0:45:45:b0:b3:25:30:70:41: 8d:08:17:27:ec:87:ac:2c:ea:88:1f:9f:a9:b1:a0: 2d:45:af:8a:f1:73:e8:8e:37:52:e5:0a:a6:4c:b2: c4:02:b6:80:97:b0:42:1e:f5:60:33:7c:26:54:fd: ad:ff:5f:cd:e9:6b:10:35:0f:e2:da:c1:b6:2a:c6: db:63:5d:04:ab:7f:4e:21:bf:4d:37:6c:13:93:db: 23:b1:d5:27:2d:65:87:52:4d:34:de:52:0a:93:ff: 14:f1:f9:61:e8:d0:09:f9:92:7b:4f:7c:1a:5f:c6: db:32:24:50:5f:26:6f:fc:b1:a7:67:a3:d6:e5:b1: 7a:48:cb:d0:08:e9:c2:ca:ab:3d:0e:6b:e9:fc:ca: 66:16:55:90:a1:7b:dc:cc:5f:f4:3e:66:a6:9a:14: 72:0b:26:cb:7b:29:fa:3e:5b:6d:f0:e5:15:bb:f7: 8b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:BD:EB:CE:71:B1:CB:90:19:FB:E7:02:C5:B0:17:53:B0:CD:B3:0E X509v3 Authority Key Identifier: keyid:4B:3C:69:56:B0:44:90:01:00:85:8C:0D:E5:0E:B9:A4:62:B0:8C:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/SzxpVrBEkAEAhYwN5Q65pGKwjMc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzxpVrBEkAEAhYwN5Q65pGKwjMc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FB0D0/93FB7F4EDBF611EC8B42F475C4F9AE02/D9EEB222DBFC11EC82E85E69C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.187.136.0/24 Signature Algorithm: sha256WithRSAEncryption 22:82:fc:ff:d8:48:04:f4:1c:71:24:00:90:d6:39:8a:56:3c: c2:a0:3e:6a:54:b0:cb:48:c1:eb:45:5f:95:09:1f:5e:ff:88: 2b:9d:ca:8b:57:c1:ef:f4:0d:5a:0e:6d:28:8e:c8:1e:e9:6a: 4f:6c:09:5e:34:28:15:51:16:c2:f5:d5:de:bf:10:23:e2:33: 5d:f8:19:27:88:c4:6a:4c:58:96:9f:bf:e2:25:b2:e1:0b:31: e5:38:c3:66:32:a2:25:3c:52:88:20:73:ed:d8:e3:d6:73:4a: 16:33:d3:46:8f:0e:d8:97:ca:b4:5f:00:49:82:8f:9e:6c:30: 71:c0:d6:6e:8d:9e:ce:c2:60:09:fb:15:61:ae:67:33:d0:2e: 52:1d:d1:91:72:f0:67:57:70:ed:d3:bf:a0:b7:83:54:84:2b: b7:8a:91:a1:96:7c:73:7d:6d:f9:1e:80:b8:e5:26:20:83:ff: 54:8b:af:60:30:83:7a:07:86:b5:2b:44:7f:7c:1b:62:4e:c6: 0d:99:0b:79:1f:1b:2d:f1:2e:68:f8:9b:73:b0:a0:2f:92:78: b8:c7:df:b7:fa:0c:c8:70:2c:62:b2:16:7b:a1:f3:2b:5a:b2: df:35:58:90:ce:7c:36:2b:9f:69:63:fd:49:b8:50:d6:3d:1a: d5:ee:29:46 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAj4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkIwRDAxMTAvBgNVBAUTKDRCM0M2OTU2QjA0NDkwMDEwMDg1OEMwREU1MEVCOUE0 NjJCMDhDQzcwHhcNMjQwNTMxMDUwMTE5WhcNMjUwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjU5NTk5Zi0yMWFiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8Ca1GkuJgUfPFEgsxi1ttNUggd/jrgWzmD41SzPMvqBwmz9AGaoyd+5VKiaz K8qS5BrbpIIFlMFH062vNAEESEw1gY/hcccg6KTAI2rcWV7wRUWwsyUwcEGNCBcn 7IesLOqIH5+psaAtRa+K8XPojjdS5QqmTLLEAraAl7BCHvVgM3wmVP2t/1/N6WsQ NQ/i2sG2KsbbY10Eq39OIb9NN2wTk9sjsdUnLWWHUk003lIKk/8U8flh6NAJ+ZJ7 T3waX8bbMiRQXyZv/LGnZ6PW5bF6SMvQCOnCyqs9Dmvp/MpmFlWQoXvczF/0Pmam mhRyCybLeyn6Pltt8OUVu/eLpwIDAQABo4IClTCCApEwHQYDVR0OBBYEFP69685x scuQGfvnAsWwF1OwzbMOMB8GA1UdIwQYMBaAFEs8aVawRJABAIWMDeUOuaRisIzH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGQjBEMC85M0ZCN0Y0RURC RjYxMUVDOEI0MkY0NzVDNEY5QUUwMi9TenhwVnJCRWtBRUFoWXdONVE2NXBHS3dq TWMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1N6eHBWckJFa0FFQWhZd041UTY1cEdLd2pNYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkIwRDAvOTNGQjdGNEVEQkY2MTFFQzhCNDJGNDc1QzRGOUFFMDIvRDlFRUIyMjJE QkZDMTFFQzgyRTg1RTY5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnu4gwDQYJKoZIhvcNAQELBQADggEBACKC/P/YSAT0HHEk AJDWOYpWPMKgPmpUsMtIwetFX5UJH17/iCudyotXwe/0DVoObSiOyB7pak9sCV40 KBVRFsL11d6/ECPiM134GSeIxGpMWJafv+IlsuELMeU4w2YyoiU8Uoggc+3Y49Zz ShYz00aPDtiXyrRfAEmCj55sMHHA1m6Nns7CYAn7FWGuZzPQLlId0ZFy8GdXcO3T v6C3g1SEK7eKkaGWfHN9bfkegLjlJiCD/1SLr2Awg3oHhrUrRH98G2JOxg2ZC3kf Gy3xLmj4m3OwoC+SeLjH37f6DMhwLGKyFnuh8ytast81WJDOfDYrn2lj/Um4UNY9 GtXuKUY= -----END CERTIFICATE-----Generated at Sat Nov 23 03:58:59 2024 by rpki-client on console-ams.rpki-client.org