$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AB836E64987711EC929A7B2AC4F9AE02.roa File: AB836E64987711EC929A7B2AC4F9AE02.roa (raw, json) Hash identifier: VzCv6Ddk4kzI6k2UCVpPLeqF1iFBDQmqhKhZbIH4+/s= Subject key identifier: 84:3F:6A:A2:CB:95:E3:D3:B7:A8:22:33:A0:79:6D:1A:C2:6E:45:FC Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4222 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AB836E64987711EC929A7B2AC4F9AE02.roa Signing time: Tue 05 Mar 2024 07:25:05 +0000 ROA not before: Tue 05 Mar 2024 07:25:05 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 56155 IP address blocks: 103.108.136.0/22 maxlen: 24 103.199.4.0/22 maxlen: 24 2001:df4:2900::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16930 (0x4222) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Mar 5 07:25:05 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65e6c8d1-e901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1b:41:4e:ad:6a:37:f1:68:a5:50:9d:f1:50: 90:20:34:2a:d6:8a:e2:9f:36:a3:67:be:8f:e9:88: f1:f7:70:48:9e:e8:53:29:9f:41:c7:46:bb:3b:03: cc:36:09:88:13:3c:97:3c:42:7e:a1:a9:bc:a6:30: b4:43:ac:43:02:24:ad:38:2b:49:f2:98:1f:06:f4: 1c:b1:cf:af:30:85:dc:2b:7f:f2:64:21:00:69:cd: ae:5a:62:06:1d:37:df:01:59:14:cf:32:7f:d0:f2: bb:58:36:64:16:3c:b4:4f:a3:52:d0:59:87:14:11: 60:05:32:4d:76:53:cd:68:e0:be:68:56:19:93:65: d6:e9:42:df:d8:9f:05:91:3c:5a:60:0b:ad:b3:21: 35:11:ec:9f:62:db:22:ca:0c:fc:a5:91:de:76:4d: ae:93:d2:07:ad:b9:a5:fd:26:02:9b:9b:41:1b:20: 7a:7a:47:2d:9e:18:c8:a3:aa:5d:ab:cf:b8:a8:c3: c0:57:74:63:8d:f0:3c:96:4b:73:0f:5d:47:37:bf: 0a:bb:66:24:53:bf:26:35:e5:7b:db:8e:30:9b:08: e4:b9:17:36:a8:2e:a4:ae:cd:c7:93:71:dd:c9:a3: c9:8b:5d:c2:a7:2b:a7:e3:69:27:47:58:ec:6c:b1: d9:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:3F:6A:A2:CB:95:E3:D3:B7:A8:22:33:A0:79:6D:1A:C2:6E:45:FC X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/AB836E64987711EC929A7B2AC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.136.0/22 103.199.4.0/22 IPv6: 2001:df4:2900::/48 Signature Algorithm: sha256WithRSAEncryption 5b:59:ff:43:20:4e:d4:e3:85:c2:53:a1:8f:43:fc:ac:bd:9b: eb:4d:3f:25:b0:6b:39:9e:59:7b:4b:d0:93:19:b7:2d:4c:1f: c2:f2:4c:a0:bc:bc:4d:98:1c:47:c2:1d:52:a3:f9:87:70:e1: d4:06:12:57:1a:66:1b:42:e0:02:47:f2:b6:7f:0e:00:0d:34: a5:88:fc:97:cd:d7:71:75:93:07:fd:e3:a1:c8:cc:73:92:70: 9f:c7:cb:b9:38:79:a0:79:8d:8d:87:7b:a1:40:6e:81:d9:0d: e3:e1:5e:c0:f6:24:f9:9d:fc:8b:f7:4d:f8:1d:33:9b:87:db: 61:3a:4e:a3:ca:85:15:4c:f3:06:e5:0c:ff:fe:c0:8c:20:90: 6b:e1:24:7f:05:4c:4e:e1:20:3d:1a:59:ad:ef:a8:4b:6f:9d: f1:83:b2:95:49:59:86:ba:22:9f:e1:00:95:df:aa:9c:b8:49: de:94:14:85:a8:af:32:10:93:61:fe:43:57:af:e4:80:f9:5d: 35:48:06:5e:fb:bf:62:9f:3d:0d:2a:99:8f:86:67:91:32:8f: 57:6d:e4:15:02:c7:52:eb:67:06:63:e3:35:5b:62:ad:19:36: 0e:57:19:ad:e2:90:d0:eb:b5:00:a5:72:68:35:1f:65:54:08: 1b:e4:c8:59 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICQiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwMzA1MDcyNTA1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWU2YzhkMS1lOTAxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqBtBTq1qN/FopVCd8VCQIDQq1orinzajZ76P6Yjx93BInuhTKZ9Bx0a7OwPM NgmIEzyXPEJ+oam8pjC0Q6xDAiStOCtJ8pgfBvQcsc+vMIXcK3/yZCEAac2uWmIG HTffAVkUzzJ/0PK7WDZkFjy0T6NS0FmHFBFgBTJNdlPNaOC+aFYZk2XW6ULf2J8F kTxaYAutsyE1EeyfYtsiygz8pZHedk2uk9IHrbml/SYCm5tBGyB6ekctnhjIo6pd q8+4qMPAV3RjjfA8lktzD11HN78Ku2YkU78mNeV7244wmwjkuRc2qC6krs3Hk3Hd yaPJi13Cpyun42knR1jsbLHZ7QIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFIQ/aqLL lePTt6giM6B5bRrCbkX8MB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQUI4MzZFNjQ5 ODc3MTFFQzkyOUE3QjJBQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBAJnbIgDBAJnxwQwDwQCAAIwCQMHACABDfQpADANBgkqhkiG 9w0BAQsFAAOCAQEAW1n/QyBO1OOFwlOhj0P8rL2b600/JbBrOZ5Ze0vQkxm3LUwf wvJMoLy8TZgcR8IdUqP5h3Dh1AYSVxpmG0LgAkfytn8OAA00pYj8l83XcXWTB/3j ocjMc5Jwn8fLuTh5oHmNjYd7oUBugdkN4+FewPYk+Z38i/dN+B0zm4fbYTpOo8qF FUzzBuUM//7AjCCQa+EkfwVMTuEgPRpZre+oS2+d8YOylUlZhroin+EAld+qnLhJ 3pQUhaivMhCTYf5DV6/kgPldNUgGXvu/Yp89DSqZj4ZnkTKPV23kFQLHUutnBmPj NVtirRk2DlcZreKQ0Ou1AKVyaDUfZVQIG+TIWQ== -----END CERTIFICATE-----Generated at Fri May 31 15:08:33 2024 by rpki-client on console-fra.rpki-client.org