$ rpki-client -vvf rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/69C96612D0F411EC8DAD6D11C4F9AE02.roa File: 69C96612D0F411EC8DAD6D11C4F9AE02.roa (raw, json) Hash identifier: 61S7heZRsqu8mkCun8FK0ca769SJshI/tiEmIGXQbBg= Subject key identifier: DE:A6:58:94:FC:08:B2:11:C5:83:E2:B1:F1:07:43:F9:FC:18:3A:1F Certificate issuer: /CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Certificate serial: 01EF Authority key identifier: 2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/69C96612D0F411EC8DAD6D11C4F9AE02.roa Signing time: Thu 21 Sep 2023 02:44:11 +0000 ROA not before: Thu 21 Sep 2023 02:44:11 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 134416 IP address blocks: 103.42.97.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 495 (0x1ef) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91346B1/serialNumber=2F3EF5B9013714E3174C6700AE04824E2F05C230 Validity Not Before: Sep 21 02:44:11 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=650badfa-c3ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3f:8a:ed:00:b3:64:9f:3c:a7:16:bf:88:bf: b1:19:9d:36:59:62:9b:c7:77:45:cc:e6:17:37:f4: 5f:ba:13:86:8f:1f:88:d9:28:31:47:37:b9:16:6e: 16:b7:8b:8b:7e:6e:6e:d8:f7:8d:0b:7f:55:3d:ad: 7d:aa:4a:74:cd:c2:7e:ed:00:ff:e6:55:f1:ec:1f: 30:0e:08:b6:98:15:9b:18:ef:23:de:a0:a4:48:4d: 2e:29:dc:5e:ff:8d:77:85:90:13:d2:08:52:ed:e0: 29:23:97:f0:41:db:b4:45:89:8b:f0:00:82:fa:9c: 38:b5:41:c1:54:1f:27:8e:39:35:02:5f:44:e5:0b: cb:3e:ef:fd:95:e1:cd:46:a7:d6:3c:ec:f0:bc:65: 16:44:02:30:ca:6c:8b:2f:84:f3:48:31:63:3c:b4: 41:a6:99:a2:06:ee:1e:61:76:fe:6f:a3:8e:52:8f: 6e:6c:67:c9:22:79:48:b2:9c:41:3d:68:d9:88:5d: d9:c4:3c:73:76:5e:74:cf:03:09:3d:36:f5:8d:df: 3c:57:af:3c:18:fd:16:1f:dc:0d:64:b2:aa:ba:96: 66:67:67:d6:3a:00:6c:3e:e5:d6:ab:3e:82:30:1c: 36:03:6a:4e:54:11:9e:e0:80:69:14:2d:87:d7:aa: a2:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:A6:58:94:FC:08:B2:11:C5:83:E2:B1:F1:07:43:F9:FC:18:3A:1F X509v3 Authority Key Identifier: keyid:2F:3E:F5:B9:01:37:14:E3:17:4C:67:00:AE:04:82:4E:2F:05:C2:30 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/Lz71uQE3FOMXTGcArgSCTi8FwjA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Lz71uQE3FOMXTGcArgSCTi8FwjA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91346B1/9A0ECE10D0F011EC8ECDBF63C4F9AE02/69C96612D0F411EC8DAD6D11C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.42.97.0/24 Signature Algorithm: sha256WithRSAEncryption 37:b3:d6:11:95:5c:e3:38:e9:b9:02:b8:be:a4:33:98:ac:aa: 93:f1:1b:1a:c3:90:35:48:c4:24:80:e9:ad:38:9f:fb:43:22: b5:54:61:36:64:c0:46:bc:a9:62:0c:4d:85:ea:48:39:da:a7: 83:0d:b8:bf:ac:6b:7b:ef:2d:93:6f:65:b1:61:b1:9e:98:f2: b6:a3:48:21:c0:d9:44:4b:3c:1e:b7:55:c9:ce:0e:d5:fa:e3: cb:04:68:43:b0:91:0b:fa:2b:37:8d:a0:4b:3e:69:02:35:0d: b2:09:31:0e:e9:3f:5e:8c:fd:05:73:e8:3b:ca:f0:50:6e:31: 81:ec:3e:f9:8a:a6:3e:c1:99:b8:5e:8a:c8:f3:5d:69:ce:14: a2:7f:06:d6:a6:6c:58:5c:9b:87:cc:b0:96:5a:11:c6:06:aa: 78:03:3a:57:ef:ff:8a:7a:9e:a2:8f:f0:c2:f7:a2:29:af:9a: 8b:6f:b5:fe:81:a2:d7:93:a8:86:f7:35:da:2f:a8:85:87:8a: 3a:04:fa:ba:bf:d0:25:ba:9f:5d:76:05:05:03:e9:d5:1a:85: 96:cc:ae:08:ad:e9:27:e6:de:03:b8:fb:ef:3c:5d:68:bb:1a: a3:7f:1b:c5:42:1e:56:15:6d:25:44:a3:f1:83:b0:42:44:92: a0:db:15:a5 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAe8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MzQ2QjExMTAvBgNVBAUTKDJGM0VGNUI5MDEzNzE0RTMxNzRDNjcwMEFFMDQ4MjRF MkYwNUMyMzAwHhcNMjMwOTIxMDI0NDExWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTBiYWRmYS1jM2NhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuD+K7QCzZJ88pxa/iL+xGZ02WWKbx3dFzOYXN/RfuhOGjx+I2SgxRze5Fm4W t4uLfm5u2PeNC39VPa19qkp0zcJ+7QD/5lXx7B8wDgi2mBWbGO8j3qCkSE0uKdxe /413hZAT0ghS7eApI5fwQdu0RYmL8ACC+pw4tUHBVB8njjk1Al9E5QvLPu/9leHN RqfWPOzwvGUWRAIwymyLL4TzSDFjPLRBppmiBu4eYXb+b6OOUo9ubGfJInlIspxB PWjZiF3ZxDxzdl50zwMJPTb1jd88V688GP0WH9wNZLKqupZmZ2fWOgBsPuXWqz6C MBw2A2pOVBGe4IBpFC2H16qigQIDAQABo4IClTCCApEwHQYDVR0OBBYEFN6mWJT8 CLIRxYPisfEHQ/n8GDofMB8GA1UdIwQYMBaAFC8+9bkBNxTjF0xnAK4Egk4vBcIw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzNDZCMS85QTBFQ0UxMEQw RjAxMUVDOEVDREJGNjNDNEY5QUUwMi9MejcxdVFFM0ZPTVhUR2NBcmdTQ1RpOEZ3 akEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0x6NzF1UUUzRk9NWFRHY0FyZ1NDVGk4RndqQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MzQ2QjEvOUEwRUNFMTBEMEYwMTFFQzhFQ0RCRjYzQzRGOUFFMDIvNjlDOTY2MTJE MEY0MTFFQzhEQUQ2RDExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnKmEwDQYJKoZIhvcNAQELBQADggEBADez1hGVXOM46bkC uL6kM5isqpPxGxrDkDVIxCSA6a04n/tDIrVUYTZkwEa8qWIMTYXqSDnap4MNuL+s a3vvLZNvZbFhsZ6Y8rajSCHA2URLPB63VcnODtX648sEaEOwkQv6KzeNoEs+aQI1 DbIJMQ7pP16M/QVz6DvK8FBuMYHsPvmKpj7BmbheisjzXWnOFKJ/BtambFhcm4fM sJZaEcYGqngDOlfv/4p6nqKP8ML3oimvmotvtf6BoteTqIb3NdovqIWHijoE+rq/ 0CW6n112BQUD6dUahZbMrgit6Sfm3gO4++88XWi7GqN/G8VCHlYVbSVEo/GDsEJE kqDbFaU= -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:41 2024 by rpki-client on console-fra.rpki-client.org