$ rpki-client -vvf rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/D8D34E92100411EE9849087AC4F9AE02.roa File: D8D34E92100411EE9849087AC4F9AE02.roa (raw, json) Hash identifier: Lsp36uN6r4N8/1l9UkZLjN+RdaoTsddxUG/MhDgoNk0= Subject key identifier: 71:0F:79:23:7D:06:B6:E0:AF:46:29:C9:B4:58:06:4E:CB:40:F3:11 Certificate issuer: /CN=A91FDCF0/serialNumber=39D09B4A5360808205A9D6914719E0B989CF560B Certificate serial: 168A Authority key identifier: 39:D0:9B:4A:53:60:80:82:05:A9:D6:91:47:19:E0:B9:89:CF:56:0B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdCbSlNggIIFqdaRRxnguYnPVgs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/D8D34E92100411EE9849087AC4F9AE02.roa Signing time: Thu 04 Jan 2024 17:14:31 +0000 ROA not before: Thu 04 Jan 2024 17:14:31 +0000 ROA not after: Mon 31 Mar 2025 00:00:00 +0000 asID: 132111 IP address blocks: 103.13.75.0/24 maxlen: 24 103.26.170.0/23 maxlen: 24 103.28.162.0/24 maxlen: 24 103.230.124.0/22 maxlen: 24 113.11.188.0/23 maxlen: 24 113.11.190.0/23 maxlen: 24 2001:df0:272::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/OdCbSlNggIIFqdaRRxnguYnPVgs.crl rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/OdCbSlNggIIFqdaRRxnguYnPVgs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdCbSlNggIIFqdaRRxnguYnPVgs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 17:10:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5770 (0x168a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FDCF0/serialNumber=39D09B4A5360808205A9D6914719E0B989CF560B Validity Not Before: Jan 4 17:14:31 2024 GMT Not After : Mar 31 00:00:00 2025 GMT Subject: CN=6596e777-0aca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3e:f2:0f:32:66:36:17:c6:08:e0:5d:af:5b: 94:39:fe:9d:18:a9:f6:55:2e:4d:63:7d:3c:e3:d3: ef:f4:44:1c:62:85:88:96:5c:2c:63:75:67:44:dc: b0:05:e7:7e:b1:44:71:63:f9:61:53:f4:41:3e:fc: 50:cd:95:8a:5f:a4:e9:7c:da:77:dc:75:20:7d:14: 13:35:e7:9c:d5:74:cc:39:56:ec:a7:9a:b6:51:d5: 65:9e:e8:3a:3a:d5:3a:00:a2:36:26:dc:57:4c:04: 9b:9e:26:28:a9:0a:b4:cb:49:67:61:fb:fe:2b:1d: 49:f1:13:15:ff:c2:ce:83:ba:ec:a0:42:2b:af:ec: 1d:da:07:b0:64:3d:2b:5e:a5:98:8f:7a:22:11:43: 3c:2d:a0:4d:d2:30:44:d1:b1:00:ad:a2:0b:50:81: 27:ae:58:2b:a3:37:17:e1:d1:cf:19:d9:4d:f1:fc: f7:56:15:ec:51:e5:8a:b5:b0:5e:ff:78:53:97:73: a2:5e:ad:5b:cd:db:8e:c2:33:07:1b:da:2d:30:41: 54:f3:e1:5c:00:87:fa:13:36:a6:5d:76:8d:ce:3b: 43:cd:b6:b8:0e:a6:40:a9:3b:72:b7:59:7c:9f:ec: 2b:8b:bf:04:7a:5a:62:55:0e:20:9e:5c:55:8b:02: c8:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:0F:79:23:7D:06:B6:E0:AF:46:29:C9:B4:58:06:4E:CB:40:F3:11 X509v3 Authority Key Identifier: keyid:39:D0:9B:4A:53:60:80:82:05:A9:D6:91:47:19:E0:B9:89:CF:56:0B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/OdCbSlNggIIFqdaRRxnguYnPVgs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OdCbSlNggIIFqdaRRxnguYnPVgs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FDCF0/3127B018CEAE11E789784825C4F9AE02/D8D34E92100411EE9849087AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.75.0/24 103.26.170.0/23 103.28.162.0/24 103.230.124.0/22 113.11.188.0/22 IPv6: 2001:df0:272::/48 Signature Algorithm: sha256WithRSAEncryption 67:b6:a6:e3:fd:d0:c7:84:a3:93:b7:89:8b:04:53:ce:ba:3c: 40:44:8a:82:a3:ba:60:54:5b:ee:f3:84:3f:e0:78:03:6a:f6: 4a:50:a0:2c:5c:b0:f7:bd:7f:80:3f:61:d1:1f:64:3c:ba:d8: 67:69:f2:d7:8c:c0:a6:0d:84:8f:02:e7:6b:24:52:7c:c1:b1: e9:b5:6f:d8:c6:02:90:b1:e4:00:4a:d8:c0:f1:cd:10:eb:13: 20:77:9b:0d:31:27:b7:72:94:fa:96:4c:a9:db:05:9c:63:01: 9e:8f:12:9c:b8:ba:93:3f:44:95:93:02:6d:fc:ed:55:51:e8: de:1f:d8:03:e3:27:b4:18:95:9b:07:19:e1:61:10:38:e6:39: 65:fd:bd:ce:c0:3f:43:1f:92:06:ac:41:11:21:30:ec:0c:ca: a3:67:2d:7a:84:82:6d:12:9e:23:6e:ff:57:2e:ce:c9:65:42: a8:27:1c:0a:3d:09:2f:e7:3a:85:88:bf:66:98:a8:6f:d3:87: 78:99:f6:f8:79:69:11:8d:e1:36:b0:be:48:ee:e4:4f:a8:fe: d4:79:d5:87:3b:ae:bb:44:32:8e:a2:37:15:27:fc:4f:e3:c2: 77:90:74:f9:62:d4:3a:f6:d5:ce:12:0b:56:02:08:bc:55:fe: c5:80:93:74 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgICFoowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkRDRjAxMTAvBgNVBAUTKDM5RDA5QjRBNTM2MDgwODIwNUE5RDY5MTQ3MTlFMEI5 ODlDRjU2MEIwHhcNMjQwMTA0MTcxNDMxWhcNMjUwMzMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTk2ZTc3Ny0wYWNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyj7yDzJmNhfGCOBdr1uUOf6dGKn2VS5NY30849Pv9EQcYoWIllwsY3VnRNyw Bed+sURxY/lhU/RBPvxQzZWKX6TpfNp33HUgfRQTNeec1XTMOVbsp5q2UdVlnug6 OtU6AKI2JtxXTASbniYoqQq0y0lnYfv+Kx1J8RMV/8LOg7rsoEIrr+wd2gewZD0r XqWYj3oiEUM8LaBN0jBE0bEAraILUIEnrlgrozcX4dHPGdlN8fz3VhXsUeWKtbBe /3hTl3OiXq1bzduOwjMHG9otMEFU8+FcAIf6EzamXXaNzjtDzba4DqZAqTtyt1l8 n+wri78EelpiVQ4gnlxViwLIawIDAQABo4ICvjCCArowHQYDVR0OBBYEFHEPeSN9 Brbgr0YpybRYBk7LQPMRMB8GA1UdIwQYMBaAFDnQm0pTYICCBanWkUcZ4LmJz1YL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRENGMC8zMTI3QjAxOENF QUUxMUU3ODk3ODQ4MjVDNEY5QUUwMi9PZENiU2xOZ2dJSUZxZGFSUnhuZ3VZblBW Z3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL09kQ2JTbE5nZ0lJRnFkYVJSeG5ndVluUFZncy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkRDRjAvMzEyN0IwMThDRUFFMTFFNzg5Nzg0ODI1QzRGOUFFMDIvRDhEMzRFOTIx MDA0MTFFRTk4NDkwODdBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwSAYIKwYBBQUHAQcBAf8E OTA3MCQEAgABMB4DBABnDUsDBAFnGqoDBABnHKIDBAJn5nwDBAJxC7wwDwQCAAIw CQMHACABDfACcjANBgkqhkiG9w0BAQsFAAOCAQEAZ7am4/3Qx4Sjk7eJiwRTzro8 QESKgqO6YFRb7vOEP+B4A2r2SlCgLFyw971/gD9h0R9kPLrYZ2ny14zApg2EjwLn ayRSfMGx6bVv2MYCkLHkAErYwPHNEOsTIHebDTEnt3KU+pZMqdsFnGMBno8SnLi6 kz9ElZMCbfztVVHo3h/YA+MntBiVmwcZ4WEQOOY5Zf29zsA/Qx+SBqxBESEw7AzK o2cteoSCbRKeI27/Vy7OyWVCqCccCj0JL+c6hYi/Zpiob9OHeJn2+HlpEY3hNrC+ SO7kT6j+1HnVhzuuu0QyjqI3FSf8T+PCd5B0+WLUOvbVzhILVgIIvFX+xYCTdA== -----END CERTIFICATE-----Generated at Sun Jun 2 17:59:47 2024 by rpki-client on console-fra.rpki-client.org