$ rpki-client -vvf rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CD748A00A03111ECADA0802DC4F9AE02.roa File: CD748A00A03111ECADA0802DC4F9AE02.roa (raw, json) Hash identifier: 71nc/AEBoK9VdywFkrGnYEEGo+oMusjALLdDXlQdkhE= Subject key identifier: B4:D8:E4:4A:03:8A:0D:C2:56:0F:78:93:34:D9:01:A5:A7:23:58:2B Certificate issuer: /CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Certificate serial: 3E70 Authority key identifier: 16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CD748A00A03111ECADA0802DC4F9AE02.roa Signing time: Tue 12 Sep 2023 02:41:29 +0000 ROA not before: Tue 12 Sep 2023 02:41:29 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 135926 IP address blocks: 103.100.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 14:26:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15984 (0x3e70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A560A/serialNumber=167C3B221775FEC05039468150CE814756AC6F0A Validity Not Before: Sep 12 02:41:29 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64ffcfd9-9d3c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:51:fa:83:64:02:3c:2a:5f:ad:a7:d6:03:88: 9b:cb:71:78:6e:dc:0f:74:08:15:7d:87:48:a8:1e: 46:e5:75:57:e3:bd:aa:a9:be:3a:e6:76:07:4d:84: 46:3d:ea:7d:dc:26:a4:0f:29:d8:24:c6:19:94:b7: bf:94:98:ae:2d:3d:82:a2:e1:12:63:11:ec:0c:6b: 3a:0a:82:d5:75:68:64:fa:12:1d:59:b6:1c:20:6a: 8e:06:98:28:41:58:a0:f5:76:60:1d:7c:92:2b:d7: 3e:14:3e:80:28:0f:0c:02:30:52:aa:81:83:85:8c: e1:9b:51:a9:96:fe:1c:4d:9b:33:65:60:03:34:ad: 7d:d0:ac:17:29:0a:35:96:a5:de:a2:2c:ed:1c:3e: 7d:ff:84:75:e9:5f:25:f4:b2:75:bf:95:b8:f5:af: 42:94:c6:7e:2f:24:b3:2a:a9:25:79:41:34:9d:76: 45:a6:40:ee:68:20:1b:55:5c:02:e3:be:55:5e:ed: 39:c0:e2:0b:fe:e8:89:77:06:f0:fd:03:aa:ff:54: bf:26:af:2f:60:7e:3c:9c:2d:67:2a:ef:ba:d9:4d: e1:b4:01:ee:07:b0:9b:0f:99:2a:6d:56:c3:7d:cf: 72:80:d2:bc:a6:4b:f9:88:55:09:a6:6c:24:7f:8f: c1:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:D8:E4:4A:03:8A:0D:C2:56:0F:78:93:34:D9:01:A5:A7:23:58:2B X509v3 Authority Key Identifier: keyid:16:7C:3B:22:17:75:FE:C0:50:39:46:81:50:CE:81:47:56:AC:6F:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Fnw7Ihd1_sBQOUaBUM6BR1asbwo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A560A/AAEB191A1D8A11E2A387D0E408B02CD2/CD748A00A03111ECADA0802DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.100.228.0/22 Signature Algorithm: sha256WithRSAEncryption 01:11:de:df:54:47:45:97:e2:b6:a5:44:5d:82:c2:86:82:a2: fe:c9:59:90:52:08:09:2d:09:31:94:66:4d:33:24:e0:9c:c0: 11:d9:10:32:1e:74:0b:69:85:f2:64:fb:03:70:6e:85:88:c1: 7a:1a:52:43:af:ed:00:29:20:f9:19:36:e8:fc:40:94:93:a2: 4d:c5:f3:88:52:f3:b5:43:26:f7:02:5a:4d:3e:ac:f0:b1:a4: 98:87:30:08:d6:8b:3d:ea:ca:ec:ee:0c:3b:a4:5f:3a:b7:b2: f7:c4:ad:1c:d8:b9:5d:e5:29:ee:a5:08:fb:68:f1:f2:d7:0c: 79:fa:c8:d2:ac:f4:3d:29:c2:0f:02:9c:a4:7e:a1:b6:6f:51: 91:f6:ec:cb:c6:a9:59:c5:1d:37:fe:36:a4:2c:a7:0e:11:6a: e9:90:79:fb:64:e0:a8:45:9f:aa:3c:d1:c1:a9:05:0a:be:a4: 23:62:6d:3f:b3:29:ee:f6:34:21:58:d2:2b:4b:03:c4:dc:68: b2:a5:82:7b:1b:8b:47:13:56:6f:db:5e:23:5a:d2:e9:ab:f7: 6e:1a:85:ef:a8:20:8c:0d:53:b7:f9:a9:86:22:fa:20:1a:cf: a1:e0:c2:bf:3b:bb:f5:c8:29:e3:38:02:f9:9a:cb:8f:50:7f: ad:31:6e:cf -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICPnAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2MEExMTAvBgNVBAUTKDE2N0MzQjIyMTc3NUZFQzA1MDM5NDY4MTUwQ0U4MTQ3 NTZBQzZGMEEwHhcNMjMwOTEyMDI0MTI5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGZmY2ZkOS05ZDNjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFH6g2QCPCpfrafWA4iby3F4btwPdAgVfYdIqB5G5XVX472qqb465nYHTYRG Pep93CakDynYJMYZlLe/lJiuLT2CouESYxHsDGs6CoLVdWhk+hIdWbYcIGqOBpgo QVig9XZgHXySK9c+FD6AKA8MAjBSqoGDhYzhm1Gplv4cTZszZWADNK190KwXKQo1 lqXeoiztHD59/4R16V8l9LJ1v5W49a9ClMZ+LySzKqkleUE0nXZFpkDuaCAbVVwC 475VXu05wOIL/uiJdwbw/QOq/1S/Jq8vYH48nC1nKu+62U3htAHuB7CbD5kqbVbD fc9ygNK8pkv5iFUJpmwkf4/BLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFLTY5EoD ig3CVg94kzTZAaWnI1grMB8GA1UdIwQYMBaAFBZ8OyIXdf7AUDlGgVDOgUdWrG8K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTYwQS9BQUVCMTkxQTFE OEExMUUyQTM4N0QwRTQwOEIwMkNEMi9Gbnc3SWhkMV9zQlFPVWFCVU02QlIxYXNi d28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZudzdJaGQxX3NCUU9VYUJVTTZCUjFhc2J3by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2MEEvQUFFQjE5MUExRDhBMTFFMkEzODdEMEU0MDhCMDJDRDIvQ0Q3NDhBMDBB MDMxMTFFQ0FEQTA4MDJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnZOQwDQYJKoZIhvcNAQELBQADggEBAAER3t9UR0WX4ral RF2CwoaCov7JWZBSCAktCTGUZk0zJOCcwBHZEDIedAtphfJk+wNwboWIwXoaUkOv 7QApIPkZNuj8QJSTok3F84hS87VDJvcCWk0+rPCxpJiHMAjWiz3qyuzuDDukXzq3 svfErRzYuV3lKe6lCPto8fLXDHn6yNKs9D0pwg8CnKR+obZvUZH27MvGqVnFHTf+ NqQspw4RaumQeftk4KhFn6o80cGpBQq+pCNibT+zKe72NCFY0itLA8TcaLKlgnsb i0cTVm/bXiNa0umr924ahe+oIIwNU7f5qYYi+iAaz6Hgwr87u/XIKeM4Avmay49Q f60xbs8= -----END CERTIFICATE-----Generated at Fri May 31 15:08:33 2024 by rpki-client on console-fra.rpki-client.org