$ rpki-client -vvf rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/6AA1772E2A9D11EEA9539254C4F9AE02.roa File: 6AA1772E2A9D11EEA9539254C4F9AE02.roa (raw, json) Hash identifier: tKCmRZYtL0BV34USb1C7Reme5eZarfRor10ZiTaG6E8= Subject key identifier: 59:E4:BA:7F:CE:FE:15:FD:1A:10:FF:0A:57:8B:41:22:1F:5F:B0:F2 Certificate issuer: /CN=A91776C9/serialNumber=9B94CE6E35550A7425BB44162DF37CBFBE053C25 Certificate serial: 18 Authority key identifier: 9B:94:CE:6E:35:55:0A:74:25:BB:44:16:2D:F3:7C:BF:BE:05:3C:25 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5TObjVVCnQlu0QWLfN8v74FPCU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/6AA1772E2A9D11EEA9539254C4F9AE02.roa Signing time: Fri 01 Sep 2023 05:35:34 +0000 ROA not before: Fri 01 Sep 2023 05:35:34 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 17823 IP address blocks: 103.155.66.0/24 maxlen: 24 103.206.25.0/24 maxlen: 24 2001:df4:b880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/m5TObjVVCnQlu0QWLfN8v74FPCU.crl rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/m5TObjVVCnQlu0QWLfN8v74FPCU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5TObjVVCnQlu0QWLfN8v74FPCU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24 (0x18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91776C9/serialNumber=9B94CE6E35550A7425BB44162DF37CBFBE053C25 Validity Not Before: Sep 1 05:35:34 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=64f17826-97e7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:e8:85:98:64:2a:63:aa:55:bd:61:42:b7:76: c8:a1:bc:6c:4a:cc:c5:8f:2b:8f:f5:8a:80:97:8e: 74:03:b6:2c:64:b4:2b:08:86:bf:58:56:b2:c8:38: 1b:32:60:62:91:0b:99:67:71:6c:31:8d:2c:97:d7: c3:05:88:7a:78:53:58:b2:b1:bd:28:4c:ff:64:ba: a7:c9:1b:05:a2:fb:55:ef:c0:9c:04:d5:10:b7:04: cb:4e:f5:27:99:32:b2:89:1e:28:5b:df:8a:b8:26: 80:a8:29:ee:cc:d9:04:f4:b9:69:70:07:e7:ba:a4: 6e:c7:48:15:b0:ec:aa:aa:a5:34:b3:96:fb:58:33: fc:76:71:a0:f8:38:6e:ce:df:a7:67:16:9d:c5:c1: 5b:74:3b:80:dd:b0:10:ea:4a:5a:28:6c:cf:75:ae: 1d:da:3e:9e:cb:a9:25:19:6c:7b:75:13:df:62:d1: 3e:b1:00:7b:78:99:2b:bc:58:20:96:28:03:c2:bc: dd:b1:a5:5b:5e:a9:b7:71:a7:e1:ab:a2:2f:2a:93: 24:c9:70:b9:a0:82:74:ca:8f:3e:b8:3d:a3:27:25: 98:f4:bc:18:e3:9f:b4:7d:f1:74:9f:c3:00:46:e0: 8b:96:0b:ef:b2:4c:3c:6d:ae:c6:87:eb:5e:73:43: 10:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:E4:BA:7F:CE:FE:15:FD:1A:10:FF:0A:57:8B:41:22:1F:5F:B0:F2 X509v3 Authority Key Identifier: keyid:9B:94:CE:6E:35:55:0A:74:25:BB:44:16:2D:F3:7C:BF:BE:05:3C:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/m5TObjVVCnQlu0QWLfN8v74FPCU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/m5TObjVVCnQlu0QWLfN8v74FPCU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91776C9/18C3C7682A9D11EEAAB5C953C4F9AE02/6AA1772E2A9D11EEA9539254C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.155.66.0/24 103.206.25.0/24 IPv6: 2001:df4:b880::/48 Signature Algorithm: sha256WithRSAEncryption 8f:71:7f:c0:a0:ad:58:da:3c:87:1a:ff:9a:94:50:dd:80:5b: 2b:fb:1d:b5:89:3b:79:dd:4c:bd:63:2e:dc:45:40:56:37:84: 6b:36:5c:b7:84:84:c7:fd:58:0c:54:e4:39:54:44:48:c1:36: 41:06:77:9b:62:ea:1c:6d:c9:8e:02:3f:4e:2e:1a:31:aa:f6: 69:e1:57:f1:c0:a2:1b:41:4f:ba:6d:9a:d4:ad:ad:28:e2:aa: e7:16:f3:a6:69:5f:41:b4:b3:7a:ee:79:7f:3f:4b:72:dd:d9: 9b:0d:34:dd:c6:bb:b6:01:a5:52:be:c2:b1:4a:c5:a4:69:f1: 13:07:22:fb:8c:4e:19:6a:51:52:66:e9:c5:c5:35:ed:95:70: ca:6c:a9:83:3a:5e:5e:d4:27:5b:ca:da:13:20:c3:c6:6c:ec: 46:b2:14:c9:f3:e6:b5:f5:3a:9e:6e:5c:e1:f7:ee:85:11:51: fe:bc:b2:58:f3:08:5c:69:d9:49:f7:f7:85:b3:34:f2:3e:99: 04:c2:eb:7d:3e:04:4a:79:8e:dd:82:40:08:de:9a:29:0d:44: 0a:f3:f2:4d:92:f8:b5:62:24:b7:5c:0e:0b:da:77:0f:e8:65: 7d:33:a1:40:4d:fd:85:7d:44:88:98:d5:47:e9:97:13:5b:50: 62:73:47:23 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIBGDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE3 NzZDOTExMC8GA1UEBRMoOUI5NENFNkUzNTU1MEE3NDI1QkI0NDE2MkRGMzdDQkZC RTA1M0MyNTAeFw0yMzA5MDEwNTM1MzRaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZjE3ODI2LTk3ZTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCz6IWYZCpjqlW9YUK3dsihvGxKzMWPK4/1ioCXjnQDtixktCsIhr9YVrLIOBsy YGKRC5lncWwxjSyX18MFiHp4U1iysb0oTP9kuqfJGwWi+1XvwJwE1RC3BMtO9SeZ MrKJHihb34q4JoCoKe7M2QT0uWlwB+e6pG7HSBWw7KqqpTSzlvtYM/x2caD4OG7O 36dnFp3FwVt0O4DdsBDqSloobM91rh3aPp7LqSUZbHt1E99i0T6xAHt4mSu8WCCW KAPCvN2xpVteqbdxp+Groi8qkyTJcLmggnTKjz64PaMnJZj0vBjjn7R98XSfwwBG 4IuWC++yTDxtrsaH615zQxBVAgMBAAGjggKsMIICqDAdBgNVHQ4EFgQUWeS6f87+ Ff0aEP8KV4tBIh9fsPIwHwYDVR0jBBgwFoAUm5TObjVVCnQlu0QWLfN8v74FPCUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTc3NkM5LzE4QzNDNzY4MkE5 RDExRUVBQUI1Qzk1M0M0RjlBRTAyL201VE9ialZWQ25RbHUwUVdMZk44djc0RlBD VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvbTVUT2JqVlZDblFsdTBRV0xmTjh2NzRGUENVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3 NzZDOS8xOEMzQzc2ODJBOUQxMUVFQUFCNUM5NTNDNEY5QUUwMi82QUExNzcyRTJB OUQxMUVFQTk1MzkyNTRDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA2BggrBgEFBQcBBwEB/wQn MCUwEgQCAAEwDAMEAGebQgMEAGfOGTAPBAIAAjAJAwcAIAEN9LiAMA0GCSqGSIb3 DQEBCwUAA4IBAQCPcX/AoK1Y2jyHGv+alFDdgFsr+x21iTt53Uy9Yy7cRUBWN4Rr Nly3hITH/VgMVOQ5VERIwTZBBnebYuocbcmOAj9OLhoxqvZp4VfxwKIbQU+6bZrU ra0o4qrnFvOmaV9BtLN67nl/P0ty3dmbDTTdxru2AaVSvsKxSsWkafETByL7jE4Z alFSZunFxTXtlXDKbKmDOl5e1CdbytoTIMPGbOxGshTJ8+a19Tqeblzh9+6FEVH+ vLJY8whcadlJ9/eFszTyPpkEwut9PgRKeY7dgkAI3popDUQK8/JNkvi1YiS3XA4L 2ncP6GV9M6FATf2FfUSImNVH6ZcTW1Bic0cj -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:33 2024 by rpki-client on console-fra.rpki-client.org