$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/EAF3AA12222A11EE9FF85B26C4F9AE02.roa File: EAF3AA12222A11EE9FF85B26C4F9AE02.roa (raw, json) Hash identifier: 3cMaQ9zMnG8es4ygN0Q7y4co1Wiz8F8bF24OVfdgaJE= Subject key identifier: B9:74:4D:46:B6:38:CD:E2:60:B9:99:8E:84:7E:93:07:44:91:97:56 Certificate issuer: /CN=A91A1ABC/serialNumber=21D7B872105481ED82A9E6223B25406BB7522F23 Certificate serial: 1E Authority key identifier: 21:D7:B8:72:10:54:81:ED:82:A9:E6:22:3B:25:40:6B:B7:52:2F:23 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ide4chBUge2CqeYiOyVAa7dSLyM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/EAF3AA12222A11EE9FF85B26C4F9AE02.roa Signing time: Wed 23 Aug 2023 05:24:45 +0000 ROA not before: Wed 23 Aug 2023 05:24:45 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140630 IP address blocks: 103.97.156.0/24 maxlen: 24 103.97.157.0/24 maxlen: 24 103.97.158.0/24 maxlen: 24 103.97.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/Ide4chBUge2CqeYiOyVAa7dSLyM.crl rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/Ide4chBUge2CqeYiOyVAa7dSLyM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ide4chBUge2CqeYiOyVAa7dSLyM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Jul 2024 03:21:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30 (0x1e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1ABC/serialNumber=21D7B872105481ED82A9E6223B25406BB7522F23 Validity Not Before: Aug 23 05:24:45 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e5981d-4f91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f3:96:45:18:84:ca:87:78:12:2e:3c:00:e5: 87:02:cd:cf:09:ca:78:c1:a5:c9:50:aa:72:2c:a3: ed:59:28:7e:cb:8c:26:3b:55:91:9e:30:8b:b6:d8: 16:d0:76:3d:71:0b:ca:ae:54:2e:4a:c5:ec:e0:da: 14:f8:2b:e6:e5:b9:58:c2:0c:91:34:af:d7:54:b8: 28:cd:16:25:83:03:3e:8f:09:fe:c8:83:19:66:01: ee:0b:3d:63:11:50:f2:bb:ad:6d:b4:d5:92:85:94: 1b:65:c7:14:9a:c9:f9:d4:92:b4:60:3e:65:4d:d8: 34:60:52:8a:8d:b7:f8:e3:5d:18:7a:c5:f8:ee:06: e0:40:c9:3f:ab:6a:7f:ae:4b:d5:27:39:b9:f4:d5: a8:ca:3d:81:39:ff:55:37:d5:74:9f:f8:18:45:f1: 4e:0c:be:47:52:99:42:08:08:9f:eb:28:a0:e9:54: 54:11:6e:05:f7:60:68:db:50:14:d0:4e:28:38:60: 0f:ba:3e:75:97:aa:cc:3b:39:ad:82:ad:aa:d2:ce: 5c:78:32:2a:66:2c:3c:cb:27:6f:f2:ee:d3:f0:ed: cf:2c:3a:6e:e1:75:1e:8f:28:c3:4c:40:d1:25:2d: 41:a0:9f:9c:31:53:0d:10:72:c0:b1:e5:59:c3:8c: f6:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:74:4D:46:B6:38:CD:E2:60:B9:99:8E:84:7E:93:07:44:91:97:56 X509v3 Authority Key Identifier: keyid:21:D7:B8:72:10:54:81:ED:82:A9:E6:22:3B:25:40:6B:B7:52:2F:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/Ide4chBUge2CqeYiOyVAa7dSLyM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ide4chBUge2CqeYiOyVAa7dSLyM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1ABC/E30BF5DA222911EE8444C621C4F9AE02/EAF3AA12222A11EE9FF85B26C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.97.156.0/22 Signature Algorithm: sha256WithRSAEncryption da:ee:c6:98:05:f4:9d:37:ca:03:63:b6:e5:1b:a4:21:47:e1: 90:8d:bc:73:d1:6c:df:b0:5d:7f:0e:01:32:8c:16:b0:5f:5f: 91:be:ef:14:2e:4e:3f:aa:d0:3b:d8:a2:f6:68:45:96:2a:33: 95:99:3b:a0:02:81:58:37:bf:d4:f1:4f:f1:dd:ca:e2:e8:8b: 9e:44:6c:fc:06:f2:7a:b8:f1:09:86:b7:a0:db:92:59:b5:9f: 32:5e:ef:0e:e6:6d:ae:f1:de:7d:70:f1:bf:16:96:4c:46:50: 90:1c:66:dd:fd:14:41:11:60:65:a8:27:9d:9c:3a:e5:e9:c8: 91:64:5e:20:eb:4c:b4:1c:35:a0:61:25:45:b6:c9:82:89:38: 7d:98:43:8a:85:70:e3:b1:8e:46:8d:9d:c5:4a:2b:db:2a:25: 77:5f:15:57:d5:8e:a1:76:37:e8:17:78:26:1f:c9:1d:df:4e: dd:b6:ce:98:c9:70:12:8c:03:07:0a:7c:06:da:66:b4:e5:e6: 24:05:0a:2a:e2:33:14:12:67:de:76:ad:d1:70:ff:52:a1:40: f6:28:99:62:9d:5a:45:aa:0d:19:26:28:84:da:d0:e3:39:2f: 15:82:02:0a:52:7f:f1:d7:b9:90:eb:d5:cb:79:c5:4b:6d:46: d8:5a:29:77 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBHjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MUFCQzExMC8GA1UEBRMoMjFEN0I4NzIxMDU0ODFFRDgyQTlFNjIyM0IyNTQwNkJC NzUyMkYyMzAeFw0yMzA4MjMwNTI0NDVaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY0ZTU5ODFkLTRmOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDC85ZFGITKh3gSLjwA5YcCzc8JynjBpclQqnIso+1ZKH7LjCY7VZGeMIu22BbQ dj1xC8quVC5Kxezg2hT4K+bluVjCDJE0r9dUuCjNFiWDAz6PCf7IgxlmAe4LPWMR UPK7rW201ZKFlBtlxxSayfnUkrRgPmVN2DRgUoqNt/jjXRh6xfjuBuBAyT+ran+u S9UnObn01ajKPYE5/1U31XSf+BhF8U4MvkdSmUIICJ/rKKDpVFQRbgX3YGjbUBTQ Tig4YA+6PnWXqsw7Oa2CrarSzlx4MipmLDzLJ2/y7tPw7c8sOm7hdR6PKMNMQNEl LUGgn5wxUw0QcsCx5VnDjPbfAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUuXRNRrY4 zeJguZmOhH6TB0SRl1YwHwYDVR0jBBgwFoAUIde4chBUge2CqeYiOyVAa7dSLyMw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExQUJDL0UzMEJGNURBMjIy OTExRUU4NDQ0QzYyMUM0RjlBRTAyL0lkZTRjaEJVZ2UyQ3FlWWlPeVZBYTdkU0x5 TS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvSWRlNGNoQlVnZTJDcWVZaU95VkFhN2RTTHlNLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MUFCQy9FMzBCRjVEQTIyMjkxMUVFODQ0NEM2MjFDNEY5QUUwMi9FQUYzQUExMjIy MkExMUVFOUZGODVCMjZDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmdhnDANBgkqhkiG9w0BAQsFAAOCAQEA2u7GmAX0nTfKA2O2 5RukIUfhkI28c9Fs37Bdfw4BMowWsF9fkb7vFC5OP6rQO9ii9mhFliozlZk7oAKB WDe/1PFP8d3K4uiLnkRs/AbyerjxCYa3oNuSWbWfMl7vDuZtrvHefXDxvxaWTEZQ kBxm3f0UQRFgZagnnZw65enIkWReIOtMtBw1oGElRbbJgok4fZhDioVw47GORo2d xUor2yold18VV9WOoXY36Bd4Jh/JHd9O3bbOmMlwEowDBwp8BtpmtOXmJAUKKuIz FBJn3nat0XD/UqFA9iiZYp1aRaoNGSYohNrQ4zkvFYICClJ/8de5kOvVy3nFS21G 2Fopdw== -----END CERTIFICATE-----Generated at Sat Jun 29 06:49:25 2024 by rpki-client on console-fra.rpki-client.org