$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/05C5F1D847D311EE96B1C77EC4F9AE02.roa File: 05C5F1D847D311EE96B1C77EC4F9AE02.roa (raw, json) Hash identifier: l73qWnaIZPvIfHJhfXyQp9bRoSWNWk7GjKOwjCaeKDo= Subject key identifier: 15:23:62:77:C5:A8:E1:52:CA:B5:54:0C:3A:7C:99:F4:CE:CF:C4:40 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3EF0 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/05C5F1D847D311EE96B1C77EC4F9AE02.roa Signing time: Tue 12 Sep 2023 02:43:20 +0000 ROA not before: Tue 12 Sep 2023 02:43:20 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 150880 IP address blocks: 103.20.96.0/23 maxlen: 23 2401:2b20::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16112 (0x3ef0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:43:20 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffd048-54aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ae:9c:59:ab:f9:1a:e7:78:e4:ee:32:59:5c: 94:b5:a9:7b:4f:fe:1d:e2:17:6c:62:a5:a3:84:db: 6d:63:2f:a8:a7:fe:94:c4:05:b3:10:99:87:82:19: 7d:7d:9c:de:02:b1:75:49:e2:5d:59:20:85:51:c6: 33:fb:8c:3d:4d:77:28:be:75:99:e6:41:99:e1:b5: 60:1b:78:80:3c:be:77:2d:e8:d7:5b:6c:31:37:fc: 73:26:45:11:cb:2d:01:31:b9:ec:3d:4c:2e:68:c4: b0:b9:e2:53:ba:4c:a5:83:23:87:d7:76:9d:83:4e: 95:54:a7:da:be:8a:d4:0e:cc:cd:6d:55:56:1a:e6: 6b:ff:63:e3:66:f7:e2:c6:49:5c:51:a7:6e:76:27: c1:f2:20:fe:1e:01:ad:46:04:6d:51:6f:4f:94:97: a9:1d:f0:75:e1:46:38:d8:a4:de:cd:d1:5f:7f:68: c2:5e:da:c1:e2:42:39:29:b1:5f:84:aa:10:1c:af: 77:01:5b:c5:6b:eb:49:a7:47:84:0e:44:7c:d1:c3: 4d:f5:8a:2c:e1:31:e4:1e:24:00:a1:a8:17:49:02: c9:60:f4:d8:4b:41:01:e5:14:54:af:ca:de:f6:e7: b8:2d:ef:d5:60:d8:1c:bd:e0:63:0c:bf:3c:bf:01: 54:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:23:62:77:C5:A8:E1:52:CA:B5:54:0C:3A:7C:99:F4:CE:CF:C4:40 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/05C5F1D847D311EE96B1C77EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.20.96.0/23 IPv6: 2401:2b20::/48 Signature Algorithm: sha256WithRSAEncryption 62:ec:4f:db:05:63:b4:01:a1:89:6b:af:1f:36:ac:3c:65:46: c2:71:32:f0:c0:01:c9:f7:9f:39:96:f4:a8:eb:56:5c:08:30: 65:15:c4:36:ad:1e:5d:47:b2:87:40:dc:bb:d3:11:2d:ad:fe: ac:76:e8:28:23:53:a7:87:aa:16:ea:b1:0d:00:c8:90:4d:db: 73:f0:3b:b7:4d:c2:14:f0:d3:3c:7f:0e:27:1a:e6:4a:bb:74: f4:a1:ae:68:27:52:a7:97:c0:16:d6:73:f3:de:6a:d3:38:a1: 15:9a:be:2d:f4:8d:e1:7a:0a:fc:0d:b9:d9:fb:b0:54:2f:13: 4a:d2:62:07:d6:96:a4:38:7e:ca:c3:f7:09:bc:14:b8:61:f9: 02:c2:e4:27:ab:13:37:51:50:77:d4:4e:84:ad:f9:67:6b:c5: e8:40:86:f4:9b:af:40:ea:50:5b:17:44:26:1d:8a:46:7b:2f: 72:1d:09:6d:1b:fb:6d:f2:2f:dc:4f:ca:95:68:57:5b:99:95: be:9c:ff:9f:15:d8:ad:d8:0b:e8:cb:95:66:39:e0:3c:8a:a7: 00:84:b7:01:6b:e3:90:2f:71:6e:b3:8b:32:ed:9e:88:c8:8a: ae:99:17:aa:44:8d:1a:47:0a:48:39:17:2e:62:50:af:72:80: 1c:d2:1f:28 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICPvAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MzIwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmZDA0OC01NGFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAvq6cWav5Gud45O4yWVyUtal7T/4d4hdsYqWjhNttYy+op/6UxAWzEJmHghl9 fZzeArF1SeJdWSCFUcYz+4w9TXcovnWZ5kGZ4bVgG3iAPL53LejXW2wxN/xzJkUR yy0BMbnsPUwuaMSwueJTukylgyOH13adg06VVKfavorUDszNbVVWGuZr/2PjZvfi xklcUadudifB8iD+HgGtRgRtUW9PlJepHfB14UY42KTezdFff2jCXtrB4kI5KbFf hKoQHK93AVvFa+tJp0eEDkR80cNN9Yos4THkHiQAoagXSQLJYPTYS0EB5RRUr8re 9ue4Le/VYNgcveBjDL88vwFUsQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBUjYnfF qOFSyrVUDDp8mfTOz8RAMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMDVDNUYxRDg0 N0QzMTFFRTk2QjFDNzdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnFGAwDwQCAAIwCQMHACQBKyAAADANBgkqhkiG9w0BAQsF AAOCAQEAYuxP2wVjtAGhiWuvHzasPGVGwnEy8MAByfefOZb0qOtWXAgwZRXENq0e XUeyh0Dcu9MRLa3+rHboKCNTp4eqFuqxDQDIkE3bc/A7t03CFPDTPH8OJxrmSrt0 9KGuaCdSp5fAFtZz895q0zihFZq+LfSN4XoK/A252fuwVC8TStJiB9aWpDh+ysP3 CbwUuGH5AsLkJ6sTN1FQd9ROhK35Z2vF6ECG9JuvQOpQWxdEJh2KRnsvch0JbRv7 bfIv3E/KlWhXW5mVvpz/nxXYrdgL6MuVZjngPIqnAIS3AWvjkC9xbrOLMu2eiMiK rpkXqkSNGkcKSDkXLmJQr3KAHNIfKA== -----END CERTIFICATE-----Generated at Fri May 31 15:08:33 2024 by rpki-client on console-fra.rpki-client.org