$ rpki-client -vvf rpki.apnic.net/member_repository/A91895D8/4F314C403ADC11E9B1D30C12C4F9AE02/566988C8717411E9AF629E4BC4F9AE02.roa File: 566988C8717411E9AF629E4BC4F9AE02.roa (raw, json) Hash identifier: kZNsTGvoEOhaAd9fWpiAJpT4CZK46pJYlf39TmWz/O8= Subject key identifier: 90:E6:8E:3D:73:7A:00:FB:90:99:6A:52:AB:0D:25:49:EB:BB:AB:22 Certificate issuer: /CN=A91895D8/serialNumber=9FBA9FAFC1A67D451A2F59B9EE23242EA9DD4572 Certificate serial: 0F18 Authority key identifier: 9F:BA:9F:AF:C1:A6:7D:45:1A:2F:59:B9:EE:23:24:2E:A9:DD:45:72 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n7qfr8GmfUUaL1m57iMkLqndRXI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91895D8/4F314C403ADC11E9B1D30C12C4F9AE02/566988C8717411E9AF629E4BC4F9AE02.roa Signing time: Tue 10 Oct 2023 18:05:42 +0000 ROA not before: Tue 10 Oct 2023 18:05:42 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 132344 IP address blocks: 103.13.32.0/22 maxlen: 24 103.71.248.0/22 maxlen: 24 2406:b380::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91895D8/4F314C403ADC11E9B1D30C12C4F9AE02/n7qfr8GmfUUaL1m57iMkLqndRXI.crl rsync://rpki.apnic.net/member_repository/A91895D8/4F314C403ADC11E9B1D30C12C4F9AE02/n7qfr8GmfUUaL1m57iMkLqndRXI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n7qfr8GmfUUaL1m57iMkLqndRXI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 17:53:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3864 (0xf18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91895D8/serialNumber=9FBA9FAFC1A67D451A2F59B9EE23242EA9DD4572 Validity Not Before: Oct 10 18:05:42 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65259276-19ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a5:c3:0b:54:e4:10:27:77:c9:b0:6f:07:46: cb:a8:79:e2:6a:2b:bb:b5:3c:52:81:00:ca:93:14: b2:5f:7b:31:70:b2:db:16:4b:b2:b5:0a:49:54:d2: 80:61:b3:b0:5c:89:24:ac:93:35:fc:49:0c:63:c5: 4b:19:79:88:46:3a:3a:28:fa:73:5c:ba:41:3e:db: d2:43:89:c0:7f:04:e4:a5:6f:04:e9:e3:05:f7:13: 40:1c:3b:10:bb:2f:bd:15:58:1f:f5:d5:f8:35:8e: 07:35:7c:7c:2e:d5:fb:a5:12:9a:ad:5a:b6:43:8b: 2d:30:43:73:a0:de:fe:24:5b:18:5d:d6:d6:69:32: ab:05:a4:89:fb:59:23:58:10:b3:3c:4f:61:60:52: 2a:e7:f1:dd:a4:31:4a:fb:39:1e:3c:2a:c9:90:34: 55:5b:64:8d:8a:b9:3d:9d:28:aa:77:cc:46:d8:36: 27:1d:82:0c:6a:b8:20:16:ad:5f:c6:a2:c6:dc:c6: 3e:a6:81:74:0d:44:02:7c:6b:15:cf:45:5c:72:ed: 32:3f:40:99:35:4c:4a:95:60:df:10:f0:3a:61:f1: e5:5d:f4:66:8c:0f:a4:08:4a:5b:00:1d:4a:4a:a7: 4b:f6:b3:ff:56:bb:b4:43:0a:90:6d:f3:8c:62:bb: 71:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:E6:8E:3D:73:7A:00:FB:90:99:6A:52:AB:0D:25:49:EB:BB:AB:22 X509v3 Authority Key Identifier: keyid:9F:BA:9F:AF:C1:A6:7D:45:1A:2F:59:B9:EE:23:24:2E:A9:DD:45:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91895D8/4F314C403ADC11E9B1D30C12C4F9AE02/n7qfr8GmfUUaL1m57iMkLqndRXI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/n7qfr8GmfUUaL1m57iMkLqndRXI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91895D8/4F314C403ADC11E9B1D30C12C4F9AE02/566988C8717411E9AF629E4BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.13.32.0/22 103.71.248.0/22 IPv6: 2406:b380::/32 Signature Algorithm: sha256WithRSAEncryption 6f:93:5f:dd:6f:b8:81:2d:62:de:0f:f8:a0:ca:fe:4e:c1:35: a6:cf:58:69:68:e4:ea:89:9d:f0:57:93:c4:8a:17:54:25:eb: 35:d0:cf:ab:5b:f5:57:84:8b:8d:52:54:51:42:e3:a8:66:2a: 2a:55:e6:a9:b6:0a:a5:2d:ef:e7:15:c9:89:1e:52:f5:42:e5: 16:ce:53:d9:98:f4:f6:f7:3e:3b:1d:10:67:2e:bd:3b:3a:f3: e6:e1:aa:ba:93:33:5d:0e:86:1d:35:e9:b9:08:05:c6:92:97: 17:7f:19:2a:2e:c2:3a:2b:e4:f7:b3:05:d7:a5:25:9b:8f:6b: fc:9b:f9:21:cd:09:7b:0a:fc:a0:bc:65:77:66:c8:12:c8:8a: 7e:59:39:8e:78:ed:90:37:7b:2f:9e:c1:b5:32:5e:b6:ca:ac: 99:d8:11:c4:0b:46:7e:72:d6:42:fe:6e:88:f3:1b:4b:9f:8a: 03:5b:12:f4:56:38:63:3d:54:f0:b6:f3:22:e2:71:66:ac:a2: 2b:fc:be:70:0a:ae:bd:26:16:74:79:62:b0:af:ce:0d:ae:8d: 36:de:85:ba:fb:10:49:72:cc:e5:d0:f0:dd:f1:c3:13:5a:6d: da:b1:65:bf:ae:70:bb:46:c4:7f:00:b0:a4:c8:3c:34:8f:8a: 26:51:00:e8 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICDxgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODk1RDgxMTAvBgNVBAUTKDlGQkE5RkFGQzFBNjdENDUxQTJGNTlCOUVFMjMyNDJF QTlERDQ1NzIwHhcNMjMxMDEwMTgwNTQyWhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTI1OTI3Ni0xOWVmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzKXDC1TkECd3ybBvB0bLqHniaiu7tTxSgQDKkxSyX3sxcLLbFkuytQpJVNKA YbOwXIkkrJM1/EkMY8VLGXmIRjo6KPpzXLpBPtvSQ4nAfwTkpW8E6eMF9xNAHDsQ uy+9FVgf9dX4NY4HNXx8LtX7pRKarVq2Q4stMENzoN7+JFsYXdbWaTKrBaSJ+1kj WBCzPE9hYFIq5/HdpDFK+zkePCrJkDRVW2SNirk9nSiqd8xG2DYnHYIMarggFq1f xqLG3MY+poF0DUQCfGsVz0Vccu0yP0CZNUxKlWDfEPA6YfHlXfRmjA+kCEpbAB1K SqdL9rP/Vru0QwqQbfOMYrtxWwIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFJDmjj1z egD7kJlqUqsNJUnru6siMB8GA1UdIwQYMBaAFJ+6n6/Bpn1FGi9Zue4jJC6p3UVy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4OTVEOC80RjMxNEM0MDNB REMxMUU5QjFEMzBDMTJDNEY5QUUwMi9uN3FmcjhHbWZVVWFMMW01N2lNa0xxbmRS WEkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL243cWZyOEdtZlVVYUwxbTU3aU1rTHFuZFJYSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODk1RDgvNEYzMTRDNDAzQURDMTFFOUIxRDMwQzEyQzRGOUFFMDIvNTY2OTg4Qzg3 MTc0MTFFOUFGNjI5RTRCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnDSADBAJnR/gwDQQCAAIwBwMFACQGs4AwDQYJKoZIhvcN AQELBQADggEBAG+TX91vuIEtYt4P+KDK/k7BNabPWGlo5OqJnfBXk8SKF1Ql6zXQ z6tb9VeEi41SVFFC46hmKipV5qm2CqUt7+cVyYkeUvVC5RbOU9mY9Pb3PjsdEGcu vTs68+bhqrqTM10Ohh016bkIBcaSlxd/GSouwjor5PezBdelJZuPa/yb+SHNCXsK /KC8ZXdmyBLIin5ZOY547ZA3ey+ewbUyXrbKrJnYEcQLRn5y1kL+bojzG0ufigNb EvRWOGM9VPC28yLicWasoiv8vnAKrr0mFnR5YrCvzg2ujTbehbr7EElyzOXQ8N3x wxNabdqxZb+ucLtGxH8AsKTIPDSPiiZRAOg= -----END CERTIFICATE-----Generated at Fri Jun 14 18:52:11 2024 by rpki-client on console-fra.rpki-client.org