$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A7FED16E3BA511EB93223B41C4F9AE02.roa File: A7FED16E3BA511EB93223B41C4F9AE02.roa (raw, json) Hash identifier: sDGXdXrPtrZWObbLZVfEJSeuc9TmZYbWNtsQ30rTJak= Subject key identifier: 65:11:FC:61:77:B5:EE:CD:B0:64:AC:5B:4B:82:D8:1F:B6:5A:03:4B Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3E7D Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A7FED16E3BA511EB93223B41C4F9AE02.roa Signing time: Tue 12 Sep 2023 02:41:40 +0000 ROA not before: Tue 12 Sep 2023 02:41:40 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135952 IP address blocks: 103.131.78.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15997 (0x3e7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:41:40 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffcfe4-2314 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:35:61:25:75:97:b8:8b:90:04:64:dd:42:cd: af:10:d3:c8:7b:34:41:5d:34:26:05:a1:1d:9f:b8: 98:bc:97:bd:e6:cf:42:7a:90:a3:68:30:39:0f:27: 2b:d4:20:e7:4e:c7:f0:a8:26:69:70:20:81:d0:35: 6b:7e:2c:85:4c:6e:92:1f:9a:92:9e:57:bd:dd:3c: a5:07:8f:9b:0b:4d:01:e5:e4:50:92:1a:bb:4d:e9: 7f:1d:73:9d:5a:0d:07:db:3b:16:eb:b8:17:bb:c8: 23:a8:e9:d7:2a:94:3d:f3:45:5d:e5:ec:22:87:60: e1:db:02:e5:fd:d3:da:95:03:ff:d3:24:ba:e9:bc: 35:ec:e9:d4:77:33:e4:04:95:ca:13:37:71:9a:ab: b0:3f:90:65:c9:cf:3e:d4:ed:86:12:22:45:97:b3: 99:c8:bd:7a:54:40:c2:db:f7:29:66:01:4d:4c:68: 1b:25:db:f6:12:95:d7:90:d3:7a:00:92:ac:b6:27: 55:03:5f:89:4e:e9:25:44:10:2e:9d:24:18:6c:ec: f3:57:79:81:b8:ac:bd:ce:1a:f0:ea:b6:a9:fc:15: 0c:b9:a4:6d:fc:8c:e7:b7:dc:7e:5c:87:72:05:20: 8a:64:a1:41:6a:ae:f5:4b:31:f7:a1:30:69:ab:f2: 99:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:11:FC:61:77:B5:EE:CD:B0:64:AC:5B:4B:82:D8:1F:B6:5A:03:4B X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/A7FED16E3BA511EB93223B41C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.131.78.0/23 Signature Algorithm: sha256WithRSAEncryption b7:a3:94:a7:fc:0a:48:9c:06:78:7d:b7:08:40:a3:03:12:41: b3:39:b9:f5:36:46:92:d1:d7:f4:db:c4:76:2e:ef:7e:1c:c4: df:8e:d2:98:94:46:38:a5:4a:aa:97:7f:56:7c:79:00:fe:42: a1:2f:ed:7a:f7:e1:5e:b6:a0:57:de:95:b2:5e:2e:0d:ff:fc: 9f:f5:ef:f9:b0:53:88:b2:a1:2f:ff:c3:04:12:63:c2:9f:c1: 3f:08:74:42:96:47:99:5f:8d:e3:a7:5f:94:0c:3d:16:f4:0e: 83:f5:de:e4:7c:61:77:7e:d8:fe:9a:93:cb:22:e4:ec:01:ea: 8a:3c:8c:3c:57:29:62:00:db:76:6f:c8:4c:20:60:a3:49:c8: bd:3b:67:e0:68:53:40:a7:a4:d5:24:25:50:21:cf:be:f9:1b: 16:1f:b3:ad:79:77:36:f8:59:b7:28:9f:2c:ca:d5:05:9d:ea: 1b:3f:d2:1e:5d:64:c4:4f:e1:3e:8d:01:8a:11:7e:43:f8:bf: 2c:76:e6:84:1c:3d:18:8e:76:b6:20:2e:c3:39:62:23:a7:5d: 8e:e7:47:69:3f:d5:82:78:c0:c1:b4:64:5b:41:41:a5:97:7a: 04:16:cd:d2:12:e7:7f:1e:b2:29:58:23:c4:a2:cc:fb:b4:22: 62:0b:a5:18 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICPn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MTQwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmY2ZlNC0yMzE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0jVhJXWXuIuQBGTdQs2vENPIezRBXTQmBaEdn7iYvJe95s9CepCjaDA5Dycr 1CDnTsfwqCZpcCCB0DVrfiyFTG6SH5qSnle93TylB4+bC00B5eRQkhq7Tel/HXOd Wg0H2zsW67gXu8gjqOnXKpQ980Vd5ewih2Dh2wLl/dPalQP/0yS66bw17OnUdzPk BJXKEzdxmquwP5Blyc8+1O2GEiJFl7OZyL16VEDC2/cpZgFNTGgbJdv2EpXXkNN6 AJKstidVA1+JTuklRBAunSQYbOzzV3mBuKy9zhrw6rap/BUMuaRt/Iznt9x+XIdy BSCKZKFBaq71SzH3oTBpq/KZHQIDAQABo4IClTCCApEwHQYDVR0OBBYEFGUR/GF3 te7NsGSsW0uC2B+2WgNLMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQTdGRUQxNkUz QkE1MTFFQjkzMjIzQjQxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFng04wDQYJKoZIhvcNAQELBQADggEBALejlKf8CkicBnh9 twhAowMSQbM5ufU2RpLR1/TbxHYu734cxN+O0piURjilSqqXf1Z8eQD+QqEv7Xr3 4V62oFfelbJeLg3//J/17/mwU4iyoS//wwQSY8KfwT8IdEKWR5lfjeOnX5QMPRb0 DoP13uR8YXd+2P6ak8si5OwB6oo8jDxXKWIA23ZvyEwgYKNJyL07Z+BoU0CnpNUk JVAhz775GxYfs615dzb4WbconyzK1QWd6hs/0h5dZMRP4T6NAYoRfkP4vyx25oQc PRiOdrYgLsM5YiOnXY7nR2k/1YJ4wMG0ZFtBQaWXegQWzdIS538esilYI8SizPu0 ImILpRg= -----END CERTIFICATE-----Generated at Fri May 31 15:08:33 2024 by rpki-client on console-fra.rpki-client.org