$ rpki-client -vvf rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/1C174EBCFC7011EE96142B1BC4F9AE02.roa File: 1C174EBCFC7011EE96142B1BC4F9AE02.roa (raw, json) Hash identifier: 8kO5Y6mBbR8uiBBtuQEnY7XxsIn44iqMDq9T/sqgPbc= Subject key identifier: 07:F5:D6:4B:BE:15:DD:8F:0B:CE:25:DF:A7:2F:5E:01:65:FA:1F:D8 Certificate issuer: /CN=A91878E2/serialNumber=0EDB4A37270BF494184A46E6023148FED6E33A1E Certificate serial: 02 Authority key identifier: 0E:DB:4A:37:27:0B:F4:94:18:4A:46:E6:02:31:48:FE:D6:E3:3A:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DttKNycL9JQYSkbmAjFI_tbjOh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/1C174EBCFC7011EE96142B1BC4F9AE02.roa Signing time: Wed 17 Apr 2024 04:08:14 +0000 ROA not before: Wed 17 Apr 2024 04:08:14 +0000 ROA not after: Sun 02 Mar 2025 00:00:00 +0000 asID: 133393 IP address blocks: 103.217.96.0/24 maxlen: 24 103.217.97.0/24 maxlen: 24 103.238.194.0/24 maxlen: 24 103.253.116.0/24 maxlen: 24 139.5.120.0/24 maxlen: 24 139.5.121.0/24 maxlen: 24 139.5.122.0/24 maxlen: 24 139.5.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/DttKNycL9JQYSkbmAjFI_tbjOh4.crl rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/DttKNycL9JQYSkbmAjFI_tbjOh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DttKNycL9JQYSkbmAjFI_tbjOh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 07:27:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91878E2/serialNumber=0EDB4A37270BF494184A46E6023148FED6E33A1E Validity Not Before: Apr 17 04:08:14 2024 GMT Not After : Mar 2 00:00:00 2025 GMT Subject: CN=661f4b2d-7fde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c4:9b:e3:72:cc:32:93:38:0b:83:83:16:b3: d6:76:30:39:df:7a:e5:49:d5:2c:07:5f:2c:73:58: 5f:2a:3b:38:2c:61:2c:13:8c:17:a9:93:4a:a2:a8: 49:5a:ad:f0:69:38:42:a2:23:91:17:dd:01:14:71: e2:77:fd:9c:dc:2e:77:f8:10:b9:a3:94:ed:44:40: 00:2c:90:2c:07:05:70:64:83:e6:6c:0a:62:a4:83: 2e:f1:50:49:d2:f1:b6:48:a4:32:20:df:5c:b3:a2: 20:e8:46:53:6c:1b:a9:70:a8:c9:8c:38:21:7f:f7: c6:9b:d2:18:e5:ed:f7:7b:97:c9:82:64:05:77:3c: 15:44:3d:fc:eb:b4:55:ac:d4:3a:a3:e2:d6:86:3e: 5e:5f:4b:cb:f3:72:41:ec:fb:be:61:21:69:13:63: e6:cb:5c:bf:9f:4f:bb:90:28:06:13:73:c1:fa:72: 94:6f:55:30:a9:c3:c9:d4:2c:4a:23:65:ad:a3:d9: dd:12:6f:99:e9:0f:c9:1c:15:91:31:f7:3d:ce:51: 7b:13:12:68:bb:4e:63:7e:f7:62:1b:d2:cb:18:01: 62:e3:25:d9:81:05:9d:b1:32:f8:2f:15:f4:23:1e: 1e:02:7d:5a:21:6d:7a:8f:02:32:ca:31:c0:01:b7: 4c:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F5:D6:4B:BE:15:DD:8F:0B:CE:25:DF:A7:2F:5E:01:65:FA:1F:D8 X509v3 Authority Key Identifier: keyid:0E:DB:4A:37:27:0B:F4:94:18:4A:46:E6:02:31:48:FE:D6:E3:3A:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/DttKNycL9JQYSkbmAjFI_tbjOh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DttKNycL9JQYSkbmAjFI_tbjOh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91878E2/AF32083EFC6811EE9961DD5DC4F9AE02/1C174EBCFC7011EE96142B1BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.217.96.0/23 103.238.194.0/24 103.253.116.0/24 139.5.120.0/22 Signature Algorithm: sha256WithRSAEncryption 42:07:5e:9b:9f:c0:70:2a:77:c4:51:53:c7:85:f2:a7:57:5e: 15:c6:ae:96:69:60:31:68:bf:ab:ef:7f:2d:52:82:4b:63:79: ca:8b:ff:f3:42:73:7a:05:2c:20:aa:c9:db:35:78:a1:7b:94: d8:98:b1:fe:c8:4c:18:5d:91:49:a7:11:08:35:e8:06:69:27: 93:b1:54:e2:bb:3a:ea:dc:e4:02:85:d7:ed:d4:01:6d:5b:a2: fd:86:50:f5:91:d2:43:ce:9a:6e:d2:71:e7:b9:a0:92:6a:0a: 01:8d:c5:31:65:4c:7a:95:56:b6:b3:92:7e:a3:e3:e2:39:b8: 26:6a:8e:88:ee:0d:0f:3a:c3:c8:68:d1:c3:75:07:62:09:8a: f1:26:af:f2:d3:1c:1b:c1:3a:81:4e:95:94:c1:b7:c3:b5:3f: 37:32:01:72:b7:06:1a:c2:28:60:76:90:38:3b:a2:06:f5:b2: 5b:cb:8c:7e:5f:52:d0:4f:c5:22:78:9f:8a:95:04:06:3e:77: a7:d2:1a:23:ae:95:8e:e8:37:3c:99:32:3d:9b:55:c3:d5:83: fd:df:2c:3b:95:1f:ac:c5:09:40:91:34:61:c3:d9:2b:8b:ed: e1:40:0c:45:66:6e:31:f1:a2:ff:be:c7:84:79:9b:ea:5b:43: b7:25:93:ae -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 NzhFMjExMC8GA1UEBRMoMEVEQjRBMzcyNzBCRjQ5NDE4NEE0NkU2MDIzMTQ4RkVE NkUzM0ExRTAeFw0yNDA0MTcwNDA4MTRaFw0yNTAzMDIwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MWY0YjJkLTdmZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDBxJvjcswykzgLg4MWs9Z2MDnfeuVJ1SwHXyxzWF8qOzgsYSwTjBepk0qiqEla rfBpOEKiI5EX3QEUceJ3/ZzcLnf4ELmjlO1EQAAskCwHBXBkg+ZsCmKkgy7xUEnS 8bZIpDIg31yzoiDoRlNsG6lwqMmMOCF/98ab0hjl7fd7l8mCZAV3PBVEPfzrtFWs 1Dqj4taGPl5fS8vzckHs+75hIWkTY+bLXL+fT7uQKAYTc8H6cpRvVTCpw8nULEoj Za2j2d0Sb5npD8kcFZEx9z3OUXsTEmi7TmN+92Ib0ssYAWLjJdmBBZ2xMvgvFfQj Hh4CfVohbXqPAjLKMcABt0yBAgMBAAGjggKnMIICozAdBgNVHQ4EFgQUB/XWS74V 3Y8LziXfpy9eAWX6H9gwHwYDVR0jBBgwFoAUDttKNycL9JQYSkbmAjFI/tbjOh4w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTg3OEUyL0FGMzIwODNFRkM2 ODExRUU5OTYxREQ1REM0RjlBRTAyL0R0dEtOeWNMOUpRWVNrYm1BakZJX3Riak9o NC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRHR0S055Y0w5SlFZU2tibUFqRklfdGJqT2g0LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4 NzhFMi9BRjMyMDgzRUZDNjgxMUVFOTk2MURENURDNEY5QUUwMi8xQzE3NEVCQ0ZD NzAxMUVFOTYxNDJCMUJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAxBggrBgEFBQcBBwEB/wQi MCAwHgQCAAEwGAMEAWfZYAMEAGfuwgMEAGf9dAMEAosFeDANBgkqhkiG9w0BAQsF AAOCAQEAQgdem5/AcCp3xFFTx4Xyp1deFcaulmlgMWi/q+9/LVKCS2N5yov/80Jz egUsIKrJ2zV4oXuU2Jix/shMGF2RSacRCDXoBmknk7FU4rs66tzkAoXX7dQBbVui /YZQ9ZHSQ86abtJx57mgkmoKAY3FMWVMepVWtrOSfqPj4jm4JmqOiO4NDzrDyGjR w3UHYgmK8Sav8tMcG8E6gU6VlMG3w7U/NzIBcrcGGsIoYHaQODuiBvWyW8uMfl9S 0E/FInifipUEBj53p9IaI66Vjug3PJkyPZtVw9WD/d8sO5UfrMUJQJE0YcPZK4vt 4UAMRWZuMfGi/77HhHmb6ltDtyWTrg== -----END CERTIFICATE-----Generated at Fri May 31 10:42:22 2024 by rpki-client on console-fra.rpki-client.org