$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C889D8ACD57B11EE8A138764C4F9AE02.roa File: C889D8ACD57B11EE8A138764C4F9AE02.roa (raw, json) Hash identifier: dNuQ3dHNRSQAg/0Pmuf/50h0jkgn7IG7C7McCKpl0SU= Subject key identifier: 18:69:3D:6C:C6:DB:38:3A:65:66:90:C5:36:E5:58:65:37:E0:72:C0 Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 4213 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C889D8ACD57B11EE8A138764C4F9AE02.roa Signing time: Tue 27 Feb 2024 14:23:32 +0000 ROA not before: Tue 27 Feb 2024 14:23:32 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 131422 IP address blocks: 103.61.120.0/23 maxlen: 24 2001:df1:e5c0::/47 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16915 (0x4213) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Feb 27 14:23:32 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65ddf063-2c0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e6:4e:72:1d:90:dc:30:97:89:76:9a:ac:b2: 88:44:4b:a9:f2:ac:44:af:ff:0f:96:21:1b:f2:42: 60:91:0a:af:e4:57:d8:d8:46:58:a6:20:c9:5d:f4: 9a:1f:7e:13:13:79:3c:db:2b:ed:30:1f:50:b0:71: 89:83:2c:8f:35:06:ca:67:40:fa:7a:a0:8c:d6:04: c7:66:a9:fd:63:dc:03:b1:34:4e:63:6b:fb:50:ac: e6:0e:38:d6:36:d5:83:fe:9a:4c:f8:a2:15:9b:bf: b9:85:0b:e9:5a:e6:e4:5d:19:34:4c:51:a5:89:75: 1e:1f:e6:2d:91:5a:0f:28:02:7d:ee:1f:e5:07:6e: 26:4b:5f:f1:f0:4f:a0:3e:22:f7:ab:b7:a6:25:f0: f5:d5:28:66:dd:6c:da:e4:9a:a1:75:eb:de:27:09: 36:17:d3:8f:8c:ee:91:0d:b3:d4:13:99:b6:87:ed: b7:a4:c7:dc:0c:d4:ee:a6:d6:d8:f7:eb:31:ac:6f: e6:9a:42:8b:b6:7e:5b:6f:47:cd:1b:45:43:5d:b3: cd:5a:a4:97:68:06:f2:c0:b7:eb:c5:5a:91:e0:39: 9c:d0:a6:b0:b2:19:14:f7:02:a0:48:35:69:bc:b5: 9b:f0:18:12:bc:68:56:eb:62:da:74:0b:e2:ca:8b: 35:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:69:3D:6C:C6:DB:38:3A:65:66:90:C5:36:E5:58:65:37:E0:72:C0 X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/C889D8ACD57B11EE8A138764C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.61.120.0/23 IPv6: 2001:df1:e5c0::/47 Signature Algorithm: sha256WithRSAEncryption 11:83:40:78:44:4d:6c:8d:42:93:0e:92:93:24:95:13:22:2c: c6:87:31:04:f7:8e:a4:d2:b7:dd:fb:9b:33:bf:6b:4a:7d:9f: 15:34:99:19:8e:55:15:15:4c:90:90:a8:ba:f3:f7:73:b0:b7: 41:79:cd:43:1c:09:8e:61:ef:99:22:a2:ec:12:55:44:29:07: 32:04:89:f1:f5:a9:c0:33:dc:5c:4c:fc:fb:a1:d8:77:43:5e: 62:10:42:13:22:8c:1e:09:8e:f8:82:dd:ac:d6:3e:70:4a:e4: 4c:df:f3:e3:0f:20:32:ec:0d:9d:2a:f9:2e:2f:f3:cc:3e:c1: 61:de:6e:69:1a:5c:b0:ee:b8:f6:33:68:95:eb:4b:26:a2:94: 60:63:fb:57:f3:ee:50:f4:d7:37:30:f6:b4:06:26:68:ba:f3: 56:9c:0c:df:09:6f:09:cd:84:5d:b1:93:4f:ec:30:1a:d1:3f: 0a:65:5e:17:85:67:15:c0:06:a2:69:21:45:25:f9:b3:bd:12: 8c:03:4d:b8:b0:08:9a:1f:3c:5f:c1:10:d0:e5:ff:f7:64:bb: 97:bf:10:e0:ef:45:74:58:e6:d1:a6:eb:9e:df:ad:f1:fb:9d: ba:71:b1:e1:2e:fc:ad:03:f9:b8:b9:2c:fd:8d:3f:fa:77:fe: f6:e3:3b:83 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICQhMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjQwMjI3MTQyMzMyWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWRkZjA2My0yYzBhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3+ZOch2Q3DCXiXaarLKIREup8qxEr/8PliEb8kJgkQqv5FfY2EZYpiDJXfSa H34TE3k82yvtMB9QsHGJgyyPNQbKZ0D6eqCM1gTHZqn9Y9wDsTROY2v7UKzmDjjW NtWD/ppM+KIVm7+5hQvpWubkXRk0TFGliXUeH+YtkVoPKAJ97h/lB24mS1/x8E+g PiL3q7emJfD11Shm3Wza5JqhdeveJwk2F9OPjO6RDbPUE5m2h+23pMfcDNTuptbY 9+sxrG/mmkKLtn5bb0fNG0VDXbPNWqSXaAbywLfrxVqR4Dmc0KawshkU9wKgSDVp vLWb8BgSvGhW62LadAviyos1QQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFBhpPWzG 2zg6ZWaQxTblWGU34HLAMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQzg4OUQ4QUNE NTdCMTFFRThBMTM4NzY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnPXgwDwQCAAIwCQMHASABDfHlwDANBgkqhkiG9w0BAQsF AAOCAQEAEYNAeERNbI1Ckw6SkySVEyIsxocxBPeOpNK33fubM79rSn2fFTSZGY5V FRVMkJCouvP3c7C3QXnNQxwJjmHvmSKi7BJVRCkHMgSJ8fWpwDPcXEz8+6HYd0Ne YhBCEyKMHgmO+ILdrNY+cErkTN/z4w8gMuwNnSr5Li/zzD7BYd5uaRpcsO649jNo letLJqKUYGP7V/PuUPTXNzD2tAYmaLrzVpwM3wlvCc2EXbGTT+wwGtE/CmVeF4Vn FcAGomkhRSX5s70SjANNuLAImh88X8EQ0OX/92S7l78Q4O9FdFjm0abrnt+t8fud unGx4S78rQP5uLks/Y0/+nf+9uM7gw== -----END CERTIFICATE-----Generated at Fri May 31 15:08:33 2024 by rpki-client on console-fra.rpki-client.org