$ rpki-client -vvf rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/004C5F7EEE7011EDAA7EBB38C4F9AE02.roa File: 004C5F7EEE7011EDAA7EBB38C4F9AE02.roa (raw, json) Hash identifier: wuA3iShW2pNUAEzwE136YDNG0zc9gEfmAoYRC7hXq7E= Subject key identifier: 84:D2:51:09:F7:A2:0F:11:50:11:A4:B2:AB:BE:75:04:98:48:41:0F Certificate issuer: /CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Certificate serial: BE Authority key identifier: DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/004C5F7EEE7011EDAA7EBB38C4F9AE02.roa Signing time: Tue 23 Apr 2024 06:39:39 +0000 ROA not before: Tue 23 Apr 2024 06:39:39 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 151189 IP address blocks: 103.158.236.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:33:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FEFBB/serialNumber=DA75AB0FB3AA875AFADF5A38F852BDCC1DD826F7 Validity Not Before: Apr 23 06:39:39 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=662757aa-e834 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3f:4c:d3:5f:28:c9:87:17:87:55:8e:23:4a: 32:b8:e2:ca:01:5f:13:6d:c0:15:0b:b2:ef:d9:60: cb:76:41:ea:bd:bd:7b:32:67:f8:59:6e:b7:6a:99: 61:ec:d4:3b:b9:b2:b3:29:54:68:2c:58:fe:8c:65: fe:3f:df:53:c5:06:98:5d:9e:62:e6:b5:6e:aa:4a: c0:21:bd:54:ea:a8:34:e3:cb:91:47:68:69:5f:0a: ba:d0:e2:5f:0e:b5:f9:60:dd:d7:96:4b:f2:28:91: 78:8c:94:02:13:77:46:96:d0:b3:6b:58:0d:3d:db: 96:31:82:1e:ff:c6:d6:1f:dd:69:a6:b8:a4:45:75: a1:fb:69:e7:a9:97:b1:91:01:dd:a8:fb:0b:e5:28: 98:de:0f:13:7e:df:b7:20:fb:e0:d6:7d:33:c8:a8: ba:1b:1b:c0:e9:88:77:29:13:77:9f:bc:cd:a3:3d: f0:33:55:d6:96:58:cd:d9:a2:7a:62:a8:a8:99:b3: 2b:43:73:4e:a9:af:80:50:85:9b:05:9a:d4:a9:30: cd:8d:34:4b:c0:24:e7:ce:67:25:59:0d:20:4f:79: 68:8f:2f:b6:02:88:ba:f3:d0:7a:1b:87:05:86:33: 05:b9:a8:c2:39:74:c0:30:1a:9f:57:82:f0:15:f2: 53:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:D2:51:09:F7:A2:0F:11:50:11:A4:B2:AB:BE:75:04:98:48:41:0F X509v3 Authority Key Identifier: keyid:DA:75:AB:0F:B3:AA:87:5A:FA:DF:5A:38:F8:52:BD:CC:1D:D8:26:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/2nWrD7Oqh1r631o4-FK9zB3YJvc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nWrD7Oqh1r631o4-FK9zB3YJvc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FEFBB/D896B5C8EA6A11EDB5B6B55EC4F9AE02/004C5F7EEE7011EDAA7EBB38C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.158.236.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:64:f8:af:31:e7:b3:2b:e6:40:c4:b8:5b:6f:90:fb:51:4d: 04:09:36:2a:41:e8:8e:97:02:d2:e9:7a:eb:26:5f:ae:d3:6c: 3a:a8:a4:ff:60:eb:4e:b9:d3:85:65:79:a4:9d:a7:95:a3:27: 64:d2:b7:92:38:35:73:8b:8e:48:af:51:e9:da:24:46:e9:90: b5:dc:9f:8d:4f:80:3b:2d:9d:97:89:78:9c:42:74:ae:c2:fd: ca:67:03:d2:e3:76:ed:2e:36:82:d8:1a:bb:06:cc:d5:67:d8: cf:56:8b:bc:15:19:24:95:75:92:e0:94:28:37:6c:12:1a:34: 34:9c:cf:58:47:3a:6b:db:64:f0:83:2f:3b:94:eb:c6:09:5b: 7d:50:b3:06:63:79:9d:02:89:1a:aa:1b:a6:08:ad:00:dc:94: b6:dd:1e:d9:e1:3d:39:e6:d6:42:9e:06:23:de:e9:81:6f:da: ca:b4:81:e7:ea:53:05:86:45:cb:7b:1b:7b:9a:28:b5:41:c1: d7:76:f5:db:14:63:e5:fc:3d:df:6a:af:56:59:cd:06:96:8a: 2b:f6:bd:13:42:cc:33:b9:6f:a3:54:19:bc:b4:3d:ea:91:a7: d9:2f:d8:36:ee:4a:48:c3:d1:a9:f7:5e:7d:46:6c:2a:80:03: e2:ac:0b:7d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkVGQkIxMTAvBgNVBAUTKERBNzVBQjBGQjNBQTg3NUFGQURGNUEzOEY4NTJCREND MUREODI2RjcwHhcNMjQwNDIzMDYzOTM5WhcNMjUwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjI3NTdhYS1lODM0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1z9M018oyYcXh1WOI0oyuOLKAV8TbcAVC7Lv2WDLdkHqvb17Mmf4WW63aplh 7NQ7ubKzKVRoLFj+jGX+P99TxQaYXZ5i5rVuqkrAIb1U6qg048uRR2hpXwq60OJf DrX5YN3XlkvyKJF4jJQCE3dGltCza1gNPduWMYIe/8bWH91pprikRXWh+2nnqZex kQHdqPsL5SiY3g8Tft+3IPvg1n0zyKi6GxvA6Yh3KRN3n7zNoz3wM1XWlljN2aJ6 YqiombMrQ3NOqa+AUIWbBZrUqTDNjTRLwCTnzmclWQ0gT3lojy+2Aoi689B6G4cF hjMFuajCOXTAMBqfV4LwFfJTZQIDAQABo4IClTCCApEwHQYDVR0OBBYEFITSUQn3 og8RUBGksqu+dQSYSEEPMB8GA1UdIwQYMBaAFNp1qw+zqoda+t9aOPhSvcwd2Cb3 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRUZCQi9EODk2QjVDOEVB NkExMUVEQjVCNkI1NUVDNEY5QUUwMi8ybldyRDdPcWgxcjYzMW80LUZLOXpCM1lK dmMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJuV3JEN09xaDFyNjMxbzQtRks5ekIzWUp2Yy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkVGQkIvRDg5NkI1QzhFQTZBMTFFREI1QjZCNTVFQzRGOUFFMDIvMDA0QzVGN0VF RTcwMTFFREFBN0VCQjM4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnnuwwDQYJKoZIhvcNAQELBQADggEBABpk+K8x57Mr5kDE uFtvkPtRTQQJNipB6I6XAtLpeusmX67TbDqopP9g606504VleaSdp5WjJ2TSt5I4 NXOLjkivUenaJEbpkLXcn41PgDstnZeJeJxCdK7C/cpnA9Ljdu0uNoLYGrsGzNVn 2M9Wi7wVGSSVdZLglCg3bBIaNDScz1hHOmvbZPCDLzuU68YJW31QswZjeZ0CiRqq G6YIrQDclLbdHtnhPTnm1kKeBiPe6YFv2sq0gefqUwWGRct7G3uaKLVBwdd29dsU Y+X8Pd9qr1ZZzQaWiiv2vRNCzDO5b6NUGby0PeqRp9kv2DbuSkjD0an3Xn1GbCqA A+KsC30= -----END CERTIFICATE-----Generated at Tue May 21 07:17:39 2024 by rpki-client on console-ams.rpki-client.org