$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1E23F7046EFB11EDB184D40DC4F9AE02.roa File: 1E23F7046EFB11EDB184D40DC4F9AE02.roa (raw, json) Hash identifier: r2xNSwtbjsgmtzaN4cy0MmdyueKo9nGrJdCjnGvts5Q= Subject key identifier: 27:FB:06:51:7D:E5:24:73:8F:2B:2C:6B:C6:15:E0:F8:E8:9E:EE:5C Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4219 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1E23F7046EFB11EDB184D40DC4F9AE02.roa Signing time: Thu 29 Feb 2024 09:23:29 +0000 ROA not before: Thu 29 Feb 2024 09:23:29 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 149132 IP address blocks: 103.186.64.0/23 maxlen: 23 2400:6ea0::/48 maxlen: 48 2401:8260::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16921 (0x4219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Feb 29 09:23:29 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65e04d10-19f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:11:88:1e:56:e8:2b:dd:72:01:46:e2:0a:d1: 2e:8b:1e:c7:32:c9:0f:91:4f:b8:da:d8:1b:22:b7: 73:73:15:88:da:28:bf:c9:35:bf:f5:7e:f5:68:18: 31:79:5c:5c:f8:e3:51:77:2a:80:5b:90:32:c9:83: 74:c9:45:8f:bd:27:85:54:3d:fe:34:97:d4:3e:c2: 39:e9:e3:09:a2:b7:8d:f8:18:cb:43:54:65:95:49: 3e:7f:d3:7d:0d:3b:cc:15:0b:16:1a:71:60:e1:1f: b4:1a:83:5d:95:4d:9f:86:41:5c:c9:74:48:23:8d: 0f:4c:5c:37:05:a9:4b:2e:1b:9b:90:ee:35:6f:fb: 30:af:a3:41:ad:1e:8a:a0:11:cb:02:47:b4:fd:cc: f4:71:e6:d6:aa:f2:8c:29:80:c5:61:6d:7d:9d:25: 4f:18:bd:fe:4a:97:4d:87:bc:5a:04:40:33:f4:79: 66:62:cc:16:52:0d:d4:10:ee:51:19:3e:b6:bd:7f: 9a:78:4b:d7:48:89:04:20:83:79:58:f6:4e:1b:02: 79:a7:99:ec:d8:1b:26:ee:60:82:5f:19:cd:d8:aa: e5:62:29:0b:a5:2e:f5:00:73:0d:1a:6d:e7:c0:ac: 88:89:b9:a7:00:8d:30:9c:67:14:37:e4:61:c5:bf: 4d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:FB:06:51:7D:E5:24:73:8F:2B:2C:6B:C6:15:E0:F8:E8:9E:EE:5C X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/1E23F7046EFB11EDB184D40DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.186.64.0/23 IPv6: 2400:6ea0::/48 2401:8260::/48 Signature Algorithm: sha256WithRSAEncryption 95:bb:ad:e7:22:6e:63:00:74:f8:44:0d:cc:62:42:a0:bf:3f: cf:1d:9d:0a:0c:ba:33:7b:1d:c7:36:7c:cf:23:47:04:a8:b2: a6:bb:dc:46:93:e1:72:23:0a:c5:05:1a:34:06:89:03:1d:87: a3:a8:f5:0c:84:f1:e0:3d:16:c2:ec:c6:1c:f8:b3:54:9d:b0: e6:9b:0a:e3:48:89:2d:35:22:c5:ac:24:11:7a:e8:32:d3:0d: d9:3e:85:e6:d6:98:e6:c6:cc:b4:a9:f5:e9:cd:5c:b4:a4:9c: 16:16:9d:45:2b:3d:0a:96:ea:9c:14:3b:1b:56:71:01:1d:7e: e3:51:11:f5:9f:4f:09:0b:c1:1e:5c:c3:ff:d7:15:df:e0:27: 09:6b:56:ca:ca:a0:15:b6:6c:49:f4:9d:e0:17:1e:72:31:29: 1e:cd:27:a3:33:5b:50:1c:f5:a0:c2:9d:a3:50:ca:10:c6:53: fe:09:05:90:74:26:88:76:63:34:52:c4:bc:66:fc:60:03:1a: 8d:ea:ee:ea:53:3c:75:12:d4:6e:33:10:7d:a4:b4:1e:66:50: 3e:05:23:e7:45:e2:c9:21:6f:8c:07:fd:69:18:20:ab:72:a5: d0:c2:97:38:59:3c:e8:23:01:59:c2:85:9d:11:ba:a2:e9:9d: 71:4c:49:19 -----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgICQhkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwMjI5MDkyMzI5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUwNGQxMC0xOWYwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmBGIHlboK91yAUbiCtEuix7HMskPkU+42tgbIrdzcxWI2ii/yTW/9X71aBgx eVxc+ONRdyqAW5AyyYN0yUWPvSeFVD3+NJfUPsI56eMJoreN+BjLQ1RllUk+f9N9 DTvMFQsWGnFg4R+0GoNdlU2fhkFcyXRII40PTFw3BalLLhubkO41b/swr6NBrR6K oBHLAke0/cz0cebWqvKMKYDFYW19nSVPGL3+SpdNh7xaBEAz9HlmYswWUg3UEO5R GT62vX+aeEvXSIkEIIN5WPZOGwJ5p5ns2Bsm7mCCXxnN2KrlYikLpS71AHMNGm3n wKyIibmnAI0wnGcUN+Rhxb9N2wIDAQABo4ICrzCCAqswHQYDVR0OBBYEFCf7BlF9 5SRzjyssa8YV4Pjonu5cMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvMUUyM0Y3MDQ2 RUZCMTFFREIxODRENDBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOQYIKwYBBQUHAQcBAf8E KjAoMAwEAgABMAYDBAFnukAwGAQCAAIwEgMHACQAbqAAAAMHACQBgmAAADANBgkq hkiG9w0BAQsFAAOCAQEAlbut5yJuYwB0+EQNzGJCoL8/zx2dCgy6M3sdxzZ8zyNH BKiyprvcRpPhciMKxQUaNAaJAx2Ho6j1DITx4D0WwuzGHPizVJ2w5psK40iJLTUi xawkEXroMtMN2T6F5taY5sbMtKn16c1ctKScFhadRSs9CpbqnBQ7G1ZxAR1+41ER 9Z9PCQvBHlzD/9cV3+AnCWtWysqgFbZsSfSd4BcecjEpHs0nozNbUBz1oMKdo1DK EMZT/gkFkHQmiHZjNFLEvGb8YAMajeru6lM8dRLUbjMQfaS0HmZQPgUj50XiySFv jAf9aRggq3Kl0MKXOFk86CMBWcKFnRG6oumdcUxJGQ== -----END CERTIFICATE-----Generated at Fri May 31 15:08:33 2024 by rpki-client on console-fra.rpki-client.org