$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa File: 0ED0913840C211EEB6B1731BC4F9AE02.roa (raw, json) Hash identifier: vMIN0VfRCeDpcVZZawps9hhb9LwHBUFqaUnh6EqMOfw= Subject key identifier: 81:36:21:DB:EF:FC:A8:D1:84:08:10:F4:9C:A0:2A:28:3F:A5:68:B4 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4012 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa Signing time: Fri 27 Oct 2023 09:06:11 +0000 ROA not before: Fri 27 Oct 2023 09:06:11 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135932 IP address blocks: 103.70.12.0/23 maxlen: 23 103.140.249.0/24 maxlen: 24 103.147.122.0/24 maxlen: 24 103.155.160.0/24 maxlen: 24 103.155.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Jun 2024 02:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16402 (0x4012) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Oct 27 09:06:11 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=653b7d83-7cd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:9f:89:d8:6a:a8:3e:49:ad:65:f5:ae:1c:20: c2:42:b2:95:92:5d:03:30:68:bc:02:44:a2:55:32: a5:dc:50:ec:a8:5d:01:f7:89:ac:ad:2b:0a:45:3d: 1f:31:4a:0d:cd:29:69:ca:53:e3:19:73:07:a4:21: 58:c0:87:e3:52:67:c8:91:bf:d9:c3:93:2d:70:fc: 9a:c5:3a:48:0b:ec:e6:20:55:ed:b1:1c:8e:f9:16: 0c:ee:5a:99:7a:69:de:1a:76:f9:96:0a:56:e3:a6: 82:91:8e:1a:ce:03:4e:88:e4:c7:ab:e9:c2:d8:26: b5:fc:ec:13:be:26:6e:be:e2:52:6d:5a:73:bf:ab: 25:51:ab:32:89:f8:55:de:4d:e4:d0:cd:22:10:8f: 2b:33:0e:d7:89:07:22:45:07:d4:3b:d0:b4:11:58: 5a:2b:06:f5:96:47:ed:a1:f8:5b:1a:30:b6:a0:74: 6c:e4:3f:b0:32:82:2c:06:2e:9a:2e:c7:ef:3f:0d: 09:17:b1:df:d8:7f:6f:74:a4:3d:68:85:af:99:5e: eb:f2:36:2b:94:f6:8b:32:21:8d:97:19:31:a0:e9: 4d:04:24:3e:f4:62:11:b6:dc:f8:a5:4b:8b:79:62: 41:2f:68:1c:39:6a:e4:37:20:af:1e:d8:2e:b3:6f: 21:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:36:21:DB:EF:FC:A8:D1:84:08:10:F4:9C:A0:2A:28:3F:A5:68:B4 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/0ED0913840C211EEB6B1731BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.12.0/23 103.140.249.0/24 103.147.122.0/24 103.155.160.0/23 Signature Algorithm: sha256WithRSAEncryption 27:09:4b:9a:e4:d5:7c:0a:dd:32:7e:c7:95:5f:71:29:3c:fc: bc:41:04:0a:3e:a1:ff:d7:f6:d2:ec:ec:3c:46:8c:ff:e2:c6: 3f:d1:fc:f7:cd:51:dd:b8:f4:91:b8:fb:f1:54:bb:77:0d:6b: fb:db:b0:f5:9f:f5:72:45:a6:77:81:50:31:32:e4:f9:19:da: 62:3b:e9:f8:93:9b:71:5e:e1:ed:b5:6b:27:32:58:41:36:cf: d4:38:5e:b5:40:bb:d5:a9:20:e5:6d:75:bc:1a:2a:f8:3a:bd: 8e:ea:91:33:65:45:3a:ad:e7:74:a6:54:81:92:38:75:e4:35: 0f:8b:2d:d2:9c:38:35:d7:b9:b8:69:9a:fe:63:91:1d:ef:62: 77:f9:74:2d:aa:18:d0:da:f5:87:c4:8a:51:86:3d:19:bc:e6: 8c:ac:7a:7b:a0:a1:83:c9:1c:96:5d:44:00:0b:43:94:d7:68: f4:91:63:81:95:23:91:b4:f9:c6:44:8b:56:49:4c:bb:f0:18: cd:b0:2b:8b:e8:02:90:6f:1f:e8:8f:f0:c5:a6:35:c8:dc:4f: 37:f9:13:5f:89:a9:09:09:1f:95:12:66:6b:fe:70:b4:43:ba: aa:e2:a5:3a:02:59:e1:d6:d8:09:22:11:9e:ca:57:84:28:8e: a3:2c:4e:2e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgICQBIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMxMDI3MDkwNjExWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTNiN2Q4My03Y2Q0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAp5+J2GqoPkmtZfWuHCDCQrKVkl0DMGi8AkSiVTKl3FDsqF0B94msrSsKRT0f MUoNzSlpylPjGXMHpCFYwIfjUmfIkb/Zw5MtcPyaxTpIC+zmIFXtsRyO+RYM7lqZ emneGnb5lgpW46aCkY4azgNOiOTHq+nC2Ca1/OwTviZuvuJSbVpzv6slUasyifhV 3k3k0M0iEI8rMw7XiQciRQfUO9C0EVhaKwb1lkftofhbGjC2oHRs5D+wMoIsBi6a LsfvPw0JF7Hf2H9vdKQ9aIWvmV7r8jYrlPaLMiGNlxkxoOlNBCQ+9GIRttz4pUuL eWJBL2gcOWrkNyCvHtgus28hXwIDAQABo4ICpzCCAqMwHQYDVR0OBBYEFIE2Idvv /KjRhAgQ9JygKig/pWi0MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMEVEMDkxMzg0 MEMyMTFFRUI2QjE3MzFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMQYIKwYBBQUHAQcBAf8E IjAgMB4EAgABMBgDBAFnRgwDBABnjPkDBABnk3oDBAFnm6AwDQYJKoZIhvcNAQEL BQADggEBACcJS5rk1XwK3TJ+x5VfcSk8/LxBBAo+of/X9tLs7DxGjP/ixj/R/PfN Ud249JG4+/FUu3cNa/vbsPWf9XJFpneBUDEy5PkZ2mI76fiTm3Fe4e21aycyWEE2 z9Q4XrVAu9WpIOVtdbwaKvg6vY7qkTNlRTqt53SmVIGSOHXkNQ+LLdKcODXXubhp mv5jkR3vYnf5dC2qGNDa9YfEilGGPRm85oysenugoYPJHJZdRAALQ5TXaPSRY4GV I5G0+cZEi1ZJTLvwGM2wK4voApBvH+iP8MWmNcjcTzf5E1+JqQkJH5USZmv+cLRD uqripToCWeHW2AkiEZ7KV4QojqMsTi4= -----END CERTIFICATE-----Generated at Sat Jun 15 05:33:24 2024 by rpki-client on console-fra.rpki-client.org