$ rpki-client -vvf rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/216EE802F87A11EDAAE56C0DC4F9AE02.roa File: 216EE802F87A11EDAAE56C0DC4F9AE02.roa (raw, json) Hash identifier: bF4oIEsqaesAJIzVUuYmDxttBkiZzRqh9BQ2ghEW980= Subject key identifier: C7:58:74:49:33:B4:8B:0A:E7:AB:0A:A8:45:95:76:DD:2F:45:B8:36 Certificate issuer: /CN=A91472E2/serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Certificate serial: 013B Authority key identifier: C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/216EE802F87A11EDAAE56C0DC4F9AE02.roa Signing time: Thu 17 Aug 2023 03:23:32 +0000 ROA not before: Thu 17 Aug 2023 03:23:32 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 150137 IP address blocks: 103.90.13.0/24 maxlen: 24 103.191.181.0/24 maxlen: 24 2001:df1:940::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:42:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 315 (0x13b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91472E2/serialNumber=C65FFCFB2CFCD9BCD68DAEB0697D316CF35B23F0 Validity Not Before: Aug 17 03:23:32 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64dd92b4-42d5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:9a:dd:11:88:54:5b:18:c8:30:f7:17:d2:d6: 30:46:1c:4c:03:90:92:87:2f:3f:79:eb:6a:5e:45: 9d:e7:4c:69:84:dc:08:77:4d:b0:1c:ad:52:2d:b9: ed:da:ab:86:77:af:9a:82:bf:f3:28:6a:8c:93:d5: 08:9d:14:49:5f:26:de:47:5c:d0:eb:1d:e0:22:2a: 59:a0:b0:98:eb:dd:44:eb:64:06:f9:6d:07:99:a0: 56:ff:f0:16:ae:41:4e:fa:87:6c:b4:95:8d:09:f0: 9f:c8:10:ac:04:71:27:9b:d6:9c:b1:75:e8:70:e0: 3d:ef:df:71:5e:77:cf:18:d0:fb:24:39:01:7e:ba: 65:b6:75:f6:be:38:72:7b:03:3f:40:e2:53:1d:a6: 62:f4:cb:fc:be:56:2a:e1:32:26:90:fa:ab:9a:11: bf:19:14:3d:2f:07:9c:63:2c:97:2b:34:7e:1f:89: 97:ee:97:5e:0d:66:40:c8:a3:68:2f:fe:0d:8a:03: 58:79:a4:48:6c:4f:bc:0c:c5:6b:2e:da:2e:75:89: 85:bd:22:c2:22:42:54:09:22:0c:5b:7a:95:9c:35: 63:c7:66:7a:36:27:e7:26:d9:86:2d:92:ea:09:30: 6a:96:23:9a:9c:9d:30:d0:d1:a0:7b:8d:c2:f9:07: bf:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:58:74:49:33:B4:8B:0A:E7:AB:0A:A8:45:95:76:DD:2F:45:B8:36 X509v3 Authority Key Identifier: keyid:C6:5F:FC:FB:2C:FC:D9:BC:D6:8D:AE:B0:69:7D:31:6C:F3:5B:23:F0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/xl_8-yz82bzWja6waX0xbPNbI_A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/xl_8-yz82bzWja6waX0xbPNbI_A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91472E2/2F19535C0CB211ED95CEC95CC4F9AE02/216EE802F87A11EDAAE56C0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.90.13.0/24 103.191.181.0/24 IPv6: 2001:df1:940::/48 Signature Algorithm: sha256WithRSAEncryption 72:c8:c1:84:89:16:0d:02:90:37:01:8d:cd:f5:4c:06:c1:de: ac:21:26:ed:44:c9:1e:94:c3:f2:e6:73:da:7a:e5:81:ba:ac: 72:2d:47:cb:06:11:2c:16:70:0a:e5:48:49:9e:3a:59:1c:b7: 63:da:e3:38:46:e1:23:db:b1:e5:df:b8:3e:ea:ae:6e:cd:0b: 1b:fb:7a:bb:68:eb:ca:43:a2:2b:6e:aa:63:6f:a3:4b:04:5d: e3:cb:4e:04:1e:30:ce:40:9d:0f:ef:f5:3b:45:e2:b7:d7:1b: ef:a5:16:d3:fb:48:ba:2c:4f:0d:5e:ef:dc:ae:ca:30:be:61: d7:50:cb:96:e5:5d:8c:1e:f8:78:c6:e3:07:62:cf:9a:52:5a: ca:78:69:f0:96:64:b3:58:a8:dc:47:f4:6c:b1:ff:94:21:3a: 9f:12:1d:92:8a:77:90:07:f4:c2:ff:85:20:a4:f0:19:f6:9b: b8:c1:4a:15:25:e4:ce:f2:f0:53:5c:07:3c:e7:eb:3c:c0:6b: c5:9a:f6:b6:a7:ad:b1:1e:08:2b:3e:f1:63:c4:21:9f:b6:76: 2a:55:40:fb:90:9b:04:b4:83:61:3c:a1:dc:bc:24:c0:47:85: bb:4e:f5:d4:61:78:9c:28:1a:fa:64:05:38:62:8f:bb:cd:11: 04:74:10:ad -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICATswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDcyRTIxMTAvBgNVBAUTKEM2NUZGQ0ZCMkNGQ0Q5QkNENjhEQUVCMDY5N0QzMTZD RjM1QjIzRjAwHhcNMjMwODE3MDMyMzMyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGRkOTJiNC00MmQ1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAs5rdEYhUWxjIMPcX0tYwRhxMA5CShy8/eetqXkWd50xphNwId02wHK1SLbnt 2quGd6+agr/zKGqMk9UInRRJXybeR1zQ6x3gIipZoLCY691E62QG+W0HmaBW//AW rkFO+odstJWNCfCfyBCsBHEnm9acsXXocOA9799xXnfPGND7JDkBfrpltnX2vjhy ewM/QOJTHaZi9Mv8vlYq4TImkPqrmhG/GRQ9LwecYyyXKzR+H4mX7pdeDWZAyKNo L/4NigNYeaRIbE+8DMVrLtoudYmFvSLCIkJUCSIMW3qVnDVjx2Z6NifnJtmGLZLq CTBqliOanJ0w0NGge43C+Qe/CwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFMdYdEkz tIsK56sKqEWVdt0vRbg2MB8GA1UdIwQYMBaAFMZf/Pss/Nm81o2usGl9MWzzWyPw MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzJFMi8yRjE5NTM1QzBD QjIxMUVEOTVDRUM5NUNDNEY5QUUwMi94bF84LXl6ODJieldqYTZ3YVgweGJQTmJJ X0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3hsXzgteXo4MmJ6V2phNndhWDB4YlBOYklfQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDcyRTIvMkYxOTUzNUMwQ0IyMTFFRDk1Q0VDOTVDQzRGOUFFMDIvMjE2RUU4MDJG ODdBMTFFREFBRTU2QzBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnWg0DBABnv7UwDwQCAAIwCQMHACABDfEJQDANBgkqhkiG 9w0BAQsFAAOCAQEAcsjBhIkWDQKQNwGNzfVMBsHerCEm7UTJHpTD8uZz2nrlgbqs ci1HywYRLBZwCuVISZ46WRy3Y9rjOEbhI9ux5d+4Puqubs0LG/t6u2jrykOiK26q Y2+jSwRd48tOBB4wzkCdD+/1O0Xit9cb76UW0/tIuixPDV7v3K7KML5h11DLluVd jB74eMbjB2LPmlJaynhp8JZks1io3Ef0bLH/lCE6nxIdkop3kAf0wv+FIKTwGfab uMFKFSXkzvLwU1wHPOfrPMBrxZr2tqetsR4IKz7xY8Qhn7Z2KlVA+5CbBLSDYTyh 3LwkwEeFu0711GF4nCga+mQFOGKPu80RBHQQrQ== -----END CERTIFICATE-----Generated at Sat Jun 1 06:27:36 2024 by rpki-client on console-fra.rpki-client.org