$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/834040BA2F5011EDB527A61BC4F9AE02.roa File: 834040BA2F5011EDB527A61BC4F9AE02.roa (raw, json) Hash identifier: rTY2miVMNKS+XFhtI03UMf9besnSSWuu8EQBI+yZ1cE= Subject key identifier: 04:45:45:84:68:EE:1E:DB:4F:13:EF:79:B3:65:1B:9A:4C:6E:31:2F Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3EC2 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/834040BA2F5011EDB527A61BC4F9AE02.roa Signing time: Tue 12 Sep 2023 02:42:41 +0000 ROA not before: Tue 12 Sep 2023 02:42:41 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 149129 IP address blocks: 103.1.200.0/22 maxlen: 24 2001:df4:da00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 02:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16066 (0x3ec2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:42:41 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffd020-8f14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:da:0c:33:bc:59:f8:ef:86:1c:ee:f6:65:f0: f6:89:59:dd:f5:f5:ce:9e:30:46:eb:4e:0f:f9:dd: 83:68:5c:15:4c:bd:d5:d1:01:e6:65:84:7b:99:1e: 78:56:1c:69:c9:68:88:25:cb:82:a7:22:1c:36:75: 76:c3:6b:c1:a2:be:59:9d:0d:40:a5:44:b6:47:12: 0c:1c:48:94:13:c5:ad:33:ef:7f:ba:b5:1c:8b:59: 70:1c:c8:4b:a4:f7:da:4d:a4:82:fe:22:51:ae:8e: e1:d7:c1:a1:af:41:3f:6d:ec:ff:e5:97:65:d5:8d: 26:a1:10:3a:9a:e4:c5:fc:3c:9a:d7:c5:84:d4:04: 65:a7:45:80:95:37:f3:d4:db:19:96:d9:60:42:77: 2a:25:14:05:d4:bb:ec:92:ab:5f:a2:11:31:11:0a: a1:3f:cf:c2:83:09:a2:62:ab:2e:4b:6a:3c:fd:c5: 24:0b:0d:73:39:10:18:dd:1e:f1:f2:6f:08:cf:5f: d6:43:5f:92:cc:a0:08:e5:32:07:7a:92:c0:d2:d0: e7:9d:36:26:11:b4:bc:47:56:6a:0d:8d:22:7b:bc: d9:a4:82:b9:55:5d:08:84:1f:ce:03:58:c3:4e:67: cd:ea:b0:18:16:0a:87:32:cc:3a:69:cc:ee:d5:86: 4f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:45:45:84:68:EE:1E:DB:4F:13:EF:79:B3:65:1B:9A:4C:6E:31:2F X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/834040BA2F5011EDB527A61BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.1.200.0/22 IPv6: 2001:df4:da00::/48 Signature Algorithm: sha256WithRSAEncryption 40:84:6a:8e:c9:00:18:ba:ff:ef:5c:cc:74:9e:26:67:f8:24: 42:eb:20:5c:c2:60:60:d8:bd:71:db:0f:69:c6:82:e7:98:ea: 79:1a:b6:0b:9b:10:e1:e4:16:b3:56:80:4f:38:72:8b:f4:d7: 0f:b5:33:85:94:ed:a8:49:56:42:e4:3f:33:0b:4b:fa:44:17: 9e:33:ba:e8:7b:bb:9d:30:df:2e:e1:fd:d1:97:db:a3:10:2f: de:b7:bf:53:c8:bf:80:d1:67:f2:5d:24:a9:83:68:ee:20:f3: 7c:b8:0a:ad:30:1d:9d:e0:70:69:05:11:7a:77:02:c0:eb:b7: bb:f8:3d:ba:b1:f3:46:ce:db:b3:49:35:f3:b1:7c:45:c6:e9: fb:39:c9:90:ea:31:ba:9f:ad:c9:e3:09:4f:86:e1:0a:e0:13: 23:1b:a1:09:61:86:af:9c:94:03:1d:3e:9f:92:bd:48:af:97: a4:ea:fa:3f:37:07:b1:96:3a:74:b8:5b:90:d5:db:3a:5f:c4: 5e:ec:6a:0b:33:2f:ec:d0:f2:bb:59:59:0c:d4:37:fe:cb:69: 50:e7:d1:d7:07:c1:2b:21:c9:8d:d5:d9:1f:08:32:17:ab:27: ea:01:81:9e:70:15:37:20:08:85:51:d5:c7:af:c8:aa:5f:a0: 61:71:99:c5 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICPsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MjQxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmZDAyMC04ZjE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmdoMM7xZ+O+GHO72ZfD2iVnd9fXOnjBG604P+d2DaFwVTL3V0QHmZYR7mR54 VhxpyWiIJcuCpyIcNnV2w2vBor5ZnQ1ApUS2RxIMHEiUE8WtM+9/urUci1lwHMhL pPfaTaSC/iJRro7h18Ghr0E/bez/5Zdl1Y0moRA6muTF/Dya18WE1ARlp0WAlTfz 1NsZltlgQncqJRQF1LvskqtfohExEQqhP8/CgwmiYqsuS2o8/cUkCw1zORAY3R7x 8m8Iz1/WQ1+SzKAI5TIHepLA0tDnnTYmEbS8R1ZqDY0ie7zZpIK5VV0IhB/OA1jD TmfN6rAYFgqHMsw6aczu1YZP8wIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFARFRYRo 7h7bTxPvebNlG5pMbjEvMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvODM0MDQwQkEy RjUwMTFFREI1MjdBNjFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAJnAcgwDwQCAAIwCQMHACABDfTaADANBgkqhkiG9w0BAQsF AAOCAQEAQIRqjskAGLr/71zMdJ4mZ/gkQusgXMJgYNi9cdsPacaC55jqeRq2C5sQ 4eQWs1aATzhyi/TXD7UzhZTtqElWQuQ/MwtL+kQXnjO66Hu7nTDfLuH90ZfboxAv 3re/U8i/gNFn8l0kqYNo7iDzfLgKrTAdneBwaQURencCwOu3u/g9urHzRs7bs0k1 87F8Rcbp+znJkOoxup+tyeMJT4bhCuATIxuhCWGGr5yUAx0+n5K9SK+XpOr6PzcH sZY6dLhbkNXbOl/EXuxqCzMv7NDyu1lZDNQ3/stpUOfR1wfBKyHJjdXZHwgyF6sn 6gGBnnAVNyAIhVHVx6/Iql+gYXGZxQ== -----END CERTIFICATE-----Generated at Fri Jun 14 04:11:24 2024 by rpki-client on console-fra.rpki-client.org