$ rpki-client -vvf rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/97F937E440BC11EAA2B89432C4F9AE02.roa File: 97F937E440BC11EAA2B89432C4F9AE02.roa (raw, json) Hash identifier: h4w3R++k5N2fKCBL4XYVOAI91zAPSdTO27DUBoN7QB0= Subject key identifier: 13:5A:91:97:CC:F5:08:21:BA:29:AF:60:14:55:CD:34:26:C3:75:2A Certificate issuer: /CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Certificate serial: 1041 Authority key identifier: E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/97F937E440BC11EAA2B89432C4F9AE02.roa Signing time: Sat 02 Mar 2024 17:56:46 +0000 ROA not before: Sat 02 Mar 2024 17:56:46 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 138536 IP address blocks: 103.132.92.0/22 maxlen: 24 180.210.160.0/20 maxlen: 24 180.210.176.0/20 maxlen: 24 2404:34c0::/32 maxlen: 32 2404:34c0::/48 maxlen: 48 2404:34c0:1::/48 maxlen: 48 2404:34c0:2::/48 maxlen: 48 2404:34c0:3::/48 maxlen: 48 2404:34c0:100::/48 maxlen: 48 2404:34c0:101::/48 maxlen: 48 2404:34c0:8000::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4161 (0x1041) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FF634/serialNumber=E3D3B4788273CE45929B09983ABF64B5D44D1F08 Validity Not Before: Mar 2 17:56:46 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=65e3685e-30b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:9a:01:81:36:79:17:3a:53:30:a3:49:6c:cc: e5:a7:f8:66:af:be:02:38:9f:36:1f:ed:1f:bc:9e: ea:d2:bf:f3:03:17:18:eb:90:bc:67:b7:9e:19:f5: 0c:95:08:d6:11:89:71:17:32:47:d3:ce:36:56:9e: a8:0c:07:f8:18:d7:62:d8:bf:79:c9:28:81:d6:27: c6:b6:b7:6c:f8:e2:63:51:5b:74:86:c3:86:a4:1e: ed:ec:76:13:2e:a2:93:12:a2:36:41:a1:bb:0f:27: 7f:1e:dc:10:57:8d:0a:ca:2f:3e:bf:dd:9a:43:52: ff:67:7d:2c:e4:1d:a5:f9:a9:e9:86:4d:c2:18:7f: 82:78:27:a6:86:9c:e2:70:fb:c9:5a:8a:6c:2d:5e: 30:18:3d:ae:ff:78:e1:7f:0f:27:7f:bf:f6:30:cb: cf:82:c6:b1:41:2b:7b:21:78:1b:07:99:22:97:3d: 02:3c:03:d9:ee:80:dc:ed:2e:ca:14:42:a9:2b:f2: dc:4c:76:68:90:80:59:0b:f4:1b:81:c0:57:5a:87: 3c:7a:27:c3:a0:f5:f8:8b:3b:78:fb:de:08:39:b3: a3:e5:2a:f6:b7:ae:2e:34:89:fe:ad:fd:8f:06:70: 13:45:6a:6f:b4:70:e9:40:f8:ae:b8:fe:f2:73:c0: 7e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:5A:91:97:CC:F5:08:21:BA:29:AF:60:14:55:CD:34:26:C3:75:2A X509v3 Authority Key Identifier: keyid:E3:D3:B4:78:82:73:CE:45:92:9B:09:98:3A:BF:64:B5:D4:4D:1F:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/49O0eIJzzkWSmwmYOr9ktdRNHwg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/49O0eIJzzkWSmwmYOr9ktdRNHwg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FF634/1327A73E172911E98DD18E23C4F9AE02/97F937E440BC11EAA2B89432C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.132.92.0/22 180.210.160.0/19 IPv6: 2404:34c0::/32 Signature Algorithm: sha256WithRSAEncryption 32:16:8b:4d:3f:de:e2:62:f7:d8:72:e3:00:d3:fd:a9:58:7a: d0:a2:2e:e2:88:dc:ad:a2:4a:4b:cf:93:1d:04:ef:8c:f8:87: 5f:86:d9:3e:2f:18:e2:92:7b:2f:cd:08:c2:9c:6a:fc:bf:30: e8:5b:a1:db:eb:37:c8:0f:34:34:60:64:90:8c:c9:8a:15:bf: 32:38:ea:41:4f:6d:3c:3e:a4:5c:09:ee:8a:55:ba:ef:76:4b: 10:80:c3:66:c6:f7:18:3d:7c:7d:65:9b:88:36:f2:eb:a0:cb: 44:bb:cd:b2:ad:87:36:d0:97:01:67:fd:24:4e:d2:92:27:69: 8d:2c:2a:17:3a:82:72:c8:58:c3:d2:81:e8:b1:bf:e0:58:30: 3b:ae:8f:ba:4b:6b:c5:67:0a:64:d9:e3:9a:0d:cf:df:b1:4a: 62:35:1c:c9:cc:03:ee:d7:a4:65:4b:65:2f:00:37:e5:95:82: 78:38:5a:c6:c0:0e:54:e9:91:20:cf:b5:35:88:75:24:5e:a5: cf:8b:b3:4f:ff:5e:8a:58:55:e4:95:a5:04:06:27:d1:9b:ba: 4f:c4:a3:27:31:d2:e7:d4:16:1a:2d:a0:c7:42:03:a4:c9:6c: 20:67:43:2b:a8:b2:da:b4:8a:97:f8:20:8c:56:c8:69:d2:3b: c7:cf:80:a6 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICEEEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RkY2MzQxMTAvBgNVBAUTKEUzRDNCNDc4ODI3M0NFNDU5MjlCMDk5ODNBQkY2NEI1 RDQ0RDFGMDgwHhcNMjQwMzAyMTc1NjQ2WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUzNjg1ZS0zMGI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqZoBgTZ5FzpTMKNJbMzlp/hmr74COJ82H+0fvJ7q0r/zAxcY65C8Z7eeGfUM lQjWEYlxFzJH0842Vp6oDAf4GNdi2L95ySiB1ifGtrds+OJjUVt0hsOGpB7t7HYT LqKTEqI2QaG7Dyd/HtwQV40Kyi8+v92aQ1L/Z30s5B2l+anphk3CGH+CeCemhpzi cPvJWopsLV4wGD2u/3jhfw8nf7/2MMvPgsaxQSt7IXgbB5kilz0CPAPZ7oDc7S7K FEKpK/LcTHZokIBZC/QbgcBXWoc8eifDoPX4izt4+94IObOj5Sr2t64uNIn+rf2P BnATRWpvtHDpQPiuuP7yc8B+/wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFBNakZfM 9QghuimvYBRVzTQmw3UqMB8GA1UdIwQYMBaAFOPTtHiCc85FkpsJmDq/ZLXUTR8I MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFGRjYzNC8xMzI3QTczRTE3 MjkxMUU5OEREMThFMjNDNEY5QUUwMi80OU8wZUlKenprV1Ntd21ZT3I5a3RkUk5I d2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzQ5TzBlSUp6emtXU213bVlPcjlrdGRSTkh3Zy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RkY2MzQvMTMyN0E3M0UxNzI5MTFFOThERDE4RTIzQzRGOUFFMDIvOTdGOTM3RTQ0 MEJDMTFFQUEyQjg5NDMyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnhFwDBAW00qAwDQQCAAIwBwMFACQENMAwDQYJKoZIhvcN AQELBQADggEBADIWi00/3uJi99hy4wDT/alYetCiLuKI3K2iSkvPkx0E74z4h1+G 2T4vGOKSey/NCMKcavy/MOhbodvrN8gPNDRgZJCMyYoVvzI46kFPbTw+pFwJ7opV uu92SxCAw2bG9xg9fH1lm4g28uugy0S7zbKthzbQlwFn/SRO0pInaY0sKhc6gnLI WMPSgeixv+BYMDuuj7pLa8VnCmTZ45oNz9+xSmI1HMnMA+7XpGVLZS8AN+WVgng4 WsbADlTpkSDPtTWIdSRepc+Ls0//XopYVeSVpQQGJ9Gbuk/Eoycx0ufUFhotoMdC A6TJbCBnQyuostq0ipf4IIxWyGnSO8fPgKY= -----END CERTIFICATE-----Generated at Sat May 18 19:15:27 2024 by rpki-client on console-ams.rpki-client.org