$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3C50B390F40D11EA8F33167EC4F9AE02.roa File: 3C50B390F40D11EA8F33167EC4F9AE02.roa (raw, json) Hash identifier: Y8QMF+sXdIx3Hm0PXHUzcHKMq8PKUSv/C0P0kcJrWTY= Subject key identifier: 10:6A:03:E6:A3:53:52:80:F8:F4:CA:38:5E:5C:B2:F4:B6:95:20:07 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3E42 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3C50B390F40D11EA8F33167EC4F9AE02.roa Signing time: Tue 12 Sep 2023 02:40:47 +0000 ROA not before: Tue 12 Sep 2023 02:40:47 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 131365 IP address blocks: 103.9.84.0/22 maxlen: 24 2001:df0:3780::/48 maxlen: 48 2001:df0:3781::/48 maxlen: 48 2001:df0:3782::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15938 (0x3e42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:40:47 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffcfaf-1d90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:91:b0:3b:06:c4:b2:03:bd:7e:c3:a0:70:63: 06:73:af:fb:9d:89:9f:d4:70:1e:ef:89:d0:c9:a8: bd:81:30:d9:a8:ab:d1:76:bb:34:75:8d:1b:5d:56: fa:ce:f3:eb:21:9f:d9:4b:50:a4:81:02:f6:7e:bc: ee:80:3e:dc:50:cf:b1:14:e8:13:eb:de:96:1a:d4: 96:a0:47:89:75:2e:75:a4:72:55:37:bf:cb:ea:32: 7e:97:f9:16:04:ba:fb:c3:ad:49:93:05:03:ea:bb: 01:cb:25:b0:6b:80:c9:fd:32:7b:4d:ee:43:56:d1: 45:46:54:d2:4c:68:62:28:63:f8:5e:2b:8b:68:43: 20:f1:31:5b:31:79:29:a2:60:41:da:36:03:1d:5c: d4:49:08:09:72:99:f8:e0:1d:f1:dc:27:af:1b:14: dd:c3:01:ba:bd:61:e8:bc:e9:4e:12:f0:ba:29:87: 28:2d:89:c4:3b:ef:85:6a:c6:3e:69:5b:4d:d0:ff: cb:06:46:7c:93:ef:ab:6d:d7:1a:17:56:be:30:31: d1:1f:44:96:72:98:a9:a7:73:67:42:11:7b:96:b4: 18:da:c8:d9:d9:ce:0f:00:c8:66:91:a0:9a:dc:56: 11:3a:e4:1f:25:d4:0b:9b:8b:ca:cb:82:54:ab:83: 5c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:6A:03:E6:A3:53:52:80:F8:F4:CA:38:5E:5C:B2:F4:B6:95:20:07 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/3C50B390F40D11EA8F33167EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.9.84.0/22 IPv6: 2001:df0:3780::-2001:df0:3782:ffff:ffff:ffff:ffff:ffff Signature Algorithm: sha256WithRSAEncryption a5:b6:3f:48:00:46:e6:eb:6f:05:56:50:40:d9:58:95:db:36: 92:0e:d5:e3:3b:d1:4d:ab:d9:6d:3f:95:3e:25:8e:48:83:78: 3a:f1:49:8c:6b:58:89:5d:0f:b2:60:7c:5e:60:13:28:ca:b2: 1e:7f:be:eb:d9:63:46:27:94:98:5b:75:65:d9:6a:16:be:7f: 2c:88:a4:02:88:52:7a:42:db:db:9e:9f:16:ee:34:e5:0f:84: fc:ac:13:06:9b:9b:e6:f8:3b:76:8d:89:36:b0:60:23:32:88: 85:58:7a:50:51:fe:ea:fd:62:0e:58:0c:09:54:76:02:40:a5: ca:b0:29:6f:5e:a3:44:70:ac:28:b5:b2:9e:9b:8b:00:1b:56: ce:13:a0:09:55:bf:14:d3:b8:17:73:a7:63:f5:f3:57:ae:fd: 84:87:34:dd:78:19:25:c7:65:03:9f:10:5f:f7:a0:98:ea:b8: 96:f5:84:da:a0:9b:32:f4:30:64:26:3e:db:22:80:62:ca:af: fb:4e:03:60:e0:f5:aa:1b:df:5f:49:54:db:04:5f:b4:0a:a6: 10:8e:2b:d6:57:f7:b4:e6:21:98:f8:15:d3:72:e2:57:2a:16: e7:cb:4d:df:6a:9f:31:93:fc:87:96:8d:36:27:77:e5:55:6d: a8:6c:af:95 -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgICPkIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MDQ3WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmY2ZhZi0xZDkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAnpGwOwbEsgO9fsOgcGMGc6/7nYmf1HAe74nQyai9gTDZqKvRdrs0dY0bXVb6 zvPrIZ/ZS1CkgQL2frzugD7cUM+xFOgT696WGtSWoEeJdS51pHJVN7/L6jJ+l/kW BLr7w61JkwUD6rsByyWwa4DJ/TJ7Te5DVtFFRlTSTGhiKGP4XiuLaEMg8TFbMXkp omBB2jYDHVzUSQgJcpn44B3x3CevGxTdwwG6vWHovOlOEvC6KYcoLYnEO++FasY+ aVtN0P/LBkZ8k++rbdcaF1a+MDHRH0SWcpipp3NnQhF7lrQY2sjZ2c4PAMhmkaCa 3FYROuQfJdQLm4vKy4JUq4Nc9QIDAQABo4ICsTCCAq0wHQYDVR0OBBYEFBBqA+aj U1KA+PTKOF5csvS2lSAHMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvM0M1MEIzOTBG NDBEMTFFQThGMzMxNjdFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOwYIKwYBBQUHAQcBAf8E LDAqMAwEAgABMAYDBAJnCVQwGgQCAAIwFDASAwcHIAEN8DeAAwcAIAEN8DeCMA0G CSqGSIb3DQEBCwUAA4IBAQCltj9IAEbm628FVlBA2ViV2zaSDtXjO9FNq9ltP5U+ JY5Ig3g68UmMa1iJXQ+yYHxeYBMoyrIef77r2WNGJ5SYW3Vl2WoWvn8siKQCiFJ6 Qtvbnp8W7jTlD4T8rBMGm5vm+Dt2jYk2sGAjMoiFWHpQUf7q/WIOWAwJVHYCQKXK sClvXqNEcKwotbKem4sAG1bOE6AJVb8U07gXc6dj9fNXrv2EhzTdeBklx2UDnxBf 96CY6riW9YTaoJsy9DBkJj7bIoBiyq/7TgNg4PWqG99fSVTbBF+0CqYQjivWV/e0 5iGY+BXTcuJXKhbny03fap8xk/yHlo02J3flVW2obK+V -----END CERTIFICATE-----Generated at Fri May 31 15:08:33 2024 by rpki-client on console-fra.rpki-client.org