$ rpki-client -vvf rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/C6088BAA053211EF81CC9417C4F9AE02.roa File: C6088BAA053211EF81CC9417C4F9AE02.roa (raw, json) Hash identifier: QBg54lHYPd3DsxaVVe+4vsRiJXgzNm26m1Do0p5Kr+M= Subject key identifier: 8E:29:EF:EC:EF:5A:C1:A5:D6:AF:65:3D:A8:CB:46:BC:A6:A7:97:E3 Certificate issuer: /CN=A91229A5/serialNumber=56F928C72A5728C17A9825109BBBB7210313BBCA Certificate serial: 60 Authority key identifier: 56:F9:28:C7:2A:57:28:C1:7A:98:25:10:9B:BB:B7:21:03:13:BB:CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VvkoxypXKMF6mCUQm7u3IQMTu8o.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/C6088BAA053211EF81CC9417C4F9AE02.roa Signing time: Sun 28 Apr 2024 07:42:53 +0000 ROA not before: Sun 28 Apr 2024 07:42:53 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 61414 IP address blocks: 103.93.76.0/22 maxlen: 22 103.93.76.0/24 maxlen: 24 103.93.77.0/24 maxlen: 24 103.93.78.0/24 maxlen: 24 103.93.79.0/24 maxlen: 24 103.225.68.0/23 maxlen: 23 123.253.108.0/24 maxlen: 24 123.253.109.0/24 maxlen: 24 123.253.110.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/VvkoxypXKMF6mCUQm7u3IQMTu8o.crl rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/VvkoxypXKMF6mCUQm7u3IQMTu8o.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VvkoxypXKMF6mCUQm7u3IQMTu8o.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:55:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96 (0x60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91229A5/serialNumber=56F928C72A5728C17A9825109BBBB7210313BBCA Validity Not Before: Apr 28 07:42:53 2024 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=662dfdfd-fba2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f7:99:84:98:40:fc:60:57:03:e4:64:31:b5: 1e:ad:1f:31:aa:80:a5:49:01:e5:1b:db:f0:b5:68: ad:1d:3e:0b:11:d6:ae:15:9f:58:2c:88:16:1e:28: be:a6:40:d9:ed:dd:cf:cf:5c:79:95:60:34:7e:93: 27:3d:cb:cd:26:ee:39:6d:9c:5a:2e:09:ff:1f:d9: 19:11:a2:12:2e:15:f2:38:32:4b:59:88:3f:a8:a8: 47:26:c2:87:c2:34:c1:f1:c9:c8:c4:d4:4f:77:5f: 64:75:e0:a5:e7:a2:81:ae:37:26:9b:7a:c8:a3:00: 36:d1:78:46:be:ec:8f:55:94:b2:6f:08:f2:bb:42: e9:88:36:9a:11:05:91:d4:5d:13:06:99:ed:80:53: 90:dc:e9:a7:55:b4:66:51:46:b6:4d:74:01:1a:fd: 5d:3b:13:b3:c1:df:25:92:d7:8a:f2:73:6e:23:52: a3:fe:39:97:4d:7f:30:07:f2:90:7c:e7:98:c7:44: 69:72:05:c5:d6:62:f5:fd:bc:1c:79:0e:1f:f1:89: 0e:38:00:bf:19:a4:69:48:fc:61:7a:0b:4f:2d:9e: 36:78:6b:3d:74:c3:a4:25:97:b5:9c:88:22:db:5c: 03:3d:ea:e8:a8:cd:09:ea:a2:bc:fd:af:d2:c7:c8: df:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:29:EF:EC:EF:5A:C1:A5:D6:AF:65:3D:A8:CB:46:BC:A6:A7:97:E3 X509v3 Authority Key Identifier: keyid:56:F9:28:C7:2A:57:28:C1:7A:98:25:10:9B:BB:B7:21:03:13:BB:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/VvkoxypXKMF6mCUQm7u3IQMTu8o.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VvkoxypXKMF6mCUQm7u3IQMTu8o.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91229A5/E29E73607A1311EEABA15069C4F9AE02/C6088BAA053211EF81CC9417C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.93.76.0/22 103.225.68.0/23 123.253.108.0-123.253.110.255 Signature Algorithm: sha256WithRSAEncryption 9d:44:6c:43:6b:c1:58:78:1f:30:c0:76:c7:2d:b0:fa:b4:75: df:38:8c:dd:58:d5:2d:f5:de:c8:a5:61:aa:79:23:14:30:0a: cb:8b:00:e1:8f:ee:58:36:d7:57:e0:13:9b:cf:3b:21:37:8f: d0:18:fa:8b:2e:a6:49:b1:c1:e0:cf:53:8f:f2:82:e9:ec:7b: e7:24:92:65:2d:27:1f:f3:e9:e4:55:26:0b:e3:42:70:b9:e2: 45:79:e6:b0:47:8e:2b:51:9f:91:40:70:70:d7:3c:31:ba:2c: d1:21:c2:29:60:ec:b7:8b:dd:26:1d:63:c6:6a:8d:aa:37:d7: a3:f4:df:07:b0:3a:1a:38:47:25:97:15:86:f3:e6:c0:d4:d9: e9:78:8f:a2:d4:66:2f:16:cd:0b:92:98:37:86:6b:ef:d3:4f: 05:d6:b9:35:42:b2:ec:97:ef:ad:c9:a5:e0:f4:69:59:f6:1c: 6b:dd:da:fc:9a:f6:65:22:39:c2:d1:b9:7d:e4:c9:a5:48:35: 25:15:91:44:9c:60:9d:e1:c3:d1:fc:1b:e6:a6:f2:b3:28:1d: bb:2b:bb:c5:4c:e8:98:c5:17:bf:d8:1c:33:4b:bc:d2:d5:b1: e1:2d:70:a1:d2:45:e3:f5:7c:d2:01:5e:d6:74:b3:08:04:14: 0e:84:79:ad -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIBYDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTEy MjlBNTExMC8GA1UEBRMoNTZGOTI4QzcyQTU3MjhDMTdBOTgyNTEwOUJCQkI3MjEw MzEzQkJDQTAeFw0yNDA0MjgwNzQyNTNaFw0yNDA4MzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MmRmZGZkLWZiYTIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC95mEmED8YFcD5GQxtR6tHzGqgKVJAeUb2/C1aK0dPgsR1q4Vn1gsiBYeKL6m QNnt3c/PXHmVYDR+kyc9y80m7jltnFouCf8f2RkRohIuFfI4MktZiD+oqEcmwofC NMHxycjE1E93X2R14KXnooGuNyabesijADbReEa+7I9VlLJvCPK7QumINpoRBZHU XRMGme2AU5Dc6adVtGZRRrZNdAEa/V07E7PB3yWS14ryc24jUqP+OZdNfzAH8pB8 55jHRGlyBcXWYvX9vBx5Dh/xiQ44AL8ZpGlI/GF6C08tnjZ4az10w6Qll7WciCLb XAM96uiozQnqorz9r9LHyN8vAgMBAAGjggKpMIICpTAdBgNVHQ4EFgQUjinv7O9a waXWr2U9qMtGvKanl+MwHwYDVR0jBBgwFoAUVvkoxypXKMF6mCUQm7u3IQMTu8ow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTIyOUE1L0UyOUU3MzYwN0Ex MzExRUVBQkExNTA2OUM0RjlBRTAyL1Z2a294eXBYS01GNm1DVVFtN3UzSVFNVHU4 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvVnZrb3h5cFhLTUY2bUNVUW03dTNJUU1UdThvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEy MjlBNS9FMjlFNzM2MDdBMTMxMUVFQUJBMTUwNjlDNEY5QUUwMi9DNjA4OEJBQTA1 MzIxMUVGODFDQzk0MTdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAzBggrBgEFBQcBBwEB/wQk MCIwIAQCAAEwGgMEAmddTAMEAWfhRDAMAwQCe/1sAwQAe/1uMA0GCSqGSIb3DQEB CwUAA4IBAQCdRGxDa8FYeB8wwHbHLbD6tHXfOIzdWNUt9d7IpWGqeSMUMArLiwDh j+5YNtdX4BObzzshN4/QGPqLLqZJscHgz1OP8oLp7HvnJJJlLScf8+nkVSYL40Jw ueJFeeawR44rUZ+RQHBw1zwxuizRIcIpYOy3i90mHWPGao2qN9ej9N8HsDoaOEcl lxWG8+bA1NnpeI+i1GYvFs0Lkpg3hmvv008F1rk1QrLsl++tyaXg9GlZ9hxr3dr8 mvZlIjnC0bl95MmlSDUlFZFEnGCd4cPR/BvmpvKzKB27K7vFTOiYxRe/2BwzS7zS 1bHhLXCh0kXj9XzSAV7WdLMIBBQOhHmt -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:26 2024 by rpki-client on console-fra.rpki-client.org