$ rpki-client -vvf rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/2157C3E011C211EA93417583C4F9AE02.roa File: 2157C3E011C211EA93417583C4F9AE02.roa (raw, json) Hash identifier: Agt7qFKaveD009UAD5O5bHgphy+vK1cT/ZCv6Xwa+Sc= Subject key identifier: FF:57:A5:89:1F:46:5E:D1:61:07:11:B4:DB:56:EF:0D:0F:86:AF:9F Certificate issuer: /CN=A91A56E7/serialNumber=347636F0E98AF824826B1BCF96F3C776D812F55B Certificate serial: 0A90 Authority key identifier: 34:76:36:F0:E9:8A:F8:24:82:6B:1B:CF:96:F3:C7:76:D8:12:F5:5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHY28OmK-CSCaxvPlvPHdtgS9Vs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/2157C3E011C211EA93417583C4F9AE02.roa Signing time: Tue 06 Jun 2023 21:01:08 +0000 ROA not before: Tue 06 Jun 2023 21:01:08 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 139197 IP address blocks: 103.139.164.0/23 maxlen: 23 103.139.164.0/24 maxlen: 24 103.139.165.0/24 maxlen: 24 2001:df0:8580::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/NHY28OmK-CSCaxvPlvPHdtgS9Vs.crl rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/NHY28OmK-CSCaxvPlvPHdtgS9Vs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHY28OmK-CSCaxvPlvPHdtgS9Vs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:21:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2704 (0xa90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A56E7/serialNumber=347636F0E98AF824826B1BCF96F3C776D812F55B Validity Not Before: Jun 6 21:01:08 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=647f9e94-276f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:f2:a3:1f:60:0b:ad:77:84:31:32:fd:04:dc: 90:c0:a2:2a:fb:e2:d2:b0:9f:16:95:f7:f1:a6:90: 64:db:06:86:ef:5f:75:8f:27:55:b1:f1:97:41:c6: 7e:e0:55:34:cd:cc:42:7c:77:81:8c:05:30:a0:1c: f3:0c:e7:35:14:29:f4:b7:6e:c8:74:0d:90:66:f4: 25:32:f9:51:32:2c:1a:3d:48:07:08:71:f1:65:04: 54:6a:3d:50:87:70:d0:71:fe:dd:40:17:c9:30:af: 1f:6e:74:f7:c7:f7:55:d0:4c:18:d4:0f:c3:40:5b: 19:ba:36:07:58:42:da:95:43:cd:f6:d5:b6:e2:fd: d8:53:a4:af:de:bf:b9:56:4d:41:90:e3:88:df:1c: 3e:8b:8a:f1:37:de:c2:a8:77:01:e3:37:21:2b:42: 1b:c7:20:e9:0b:d3:ba:4b:97:af:55:da:11:59:1d: 43:55:d2:83:8b:2d:e4:58:76:f6:09:91:c1:d2:10: e8:26:f9:58:72:e3:fa:d6:5e:c6:a6:76:c6:e0:83: 0b:ab:ea:03:93:5f:43:5f:15:80:d9:fa:2b:a7:84: 6f:9a:87:63:6d:f4:17:37:3d:6f:7b:eb:88:b6:31: 85:e3:ca:5f:ee:da:eb:3c:68:fd:4e:f5:7f:8c:7a: 3e:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:57:A5:89:1F:46:5E:D1:61:07:11:B4:DB:56:EF:0D:0F:86:AF:9F X509v3 Authority Key Identifier: keyid:34:76:36:F0:E9:8A:F8:24:82:6B:1B:CF:96:F3:C7:76:D8:12:F5:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/NHY28OmK-CSCaxvPlvPHdtgS9Vs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NHY28OmK-CSCaxvPlvPHdtgS9Vs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A56E7/7860F8BA11C111EA858EE682C4F9AE02/2157C3E011C211EA93417583C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.139.164.0/23 IPv6: 2001:df0:8580::/48 Signature Algorithm: sha256WithRSAEncryption 9e:a9:78:1b:35:f9:1a:af:fe:c0:a4:b7:d8:d3:ac:ec:a8:48: b1:0a:84:35:d4:b7:a7:e5:dc:4d:b3:3c:5d:8e:01:7d:e1:ca: 5d:7d:84:30:60:f0:b1:ac:6c:2f:eb:94:fa:54:21:34:e8:cc: da:a7:3c:f9:f7:fc:f2:3e:48:00:19:55:90:2c:6b:fb:30:08: 8e:10:3c:c0:4d:b6:ba:cc:e7:60:af:90:29:18:e3:01:a2:4d: bc:d7:22:58:20:79:46:47:a0:9e:ae:53:ff:5d:f1:fc:c4:05: 6d:ca:b6:f9:ae:78:dc:58:cd:5e:82:73:53:51:e4:21:53:67: fc:cf:b9:ef:d2:7e:35:8c:48:7a:bb:6e:6f:e7:b8:66:a8:e5: 33:f9:32:dc:0b:b1:0e:19:cb:81:3d:ce:0f:74:e0:0e:12:cd: 07:ee:95:1b:8e:c5:20:3c:14:af:75:ec:bd:7f:b4:d3:12:b2: 31:47:9d:c5:f6:31:a7:2c:ca:84:1b:91:75:0d:3e:0b:a6:9a: d3:07:c2:1d:8e:1d:40:12:49:35:d9:96:d8:4b:be:dd:22:07: d1:d8:84:6a:a1:8f:cb:6c:23:58:61:fc:dc:95:7d:bd:73:33: 06:47:49:4b:78:6f:0d:41:49:88:c8:c5:e8:de:f0:6b:8a:b5: bf:21:25:db -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICCpAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTU2RTcxMTAvBgNVBAUTKDM0NzYzNkYwRTk4QUY4MjQ4MjZCMUJDRjk2RjNDNzc2 RDgxMkY1NUIwHhcNMjMwNjA2MjEwMTA4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdmOWU5NC0yNzZmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA8fKjH2ALrXeEMTL9BNyQwKIq++LSsJ8WlffxppBk2waG7191jydVsfGXQcZ+ 4FU0zcxCfHeBjAUwoBzzDOc1FCn0t27IdA2QZvQlMvlRMiwaPUgHCHHxZQRUaj1Q h3DQcf7dQBfJMK8fbnT3x/dV0EwY1A/DQFsZujYHWELalUPN9tW24v3YU6Sv3r+5 Vk1BkOOI3xw+i4rxN97CqHcB4zchK0IbxyDpC9O6S5evVdoRWR1DVdKDiy3kWHb2 CZHB0hDoJvlYcuP61l7GpnbG4IMLq+oDk19DXxWA2forp4RvmodjbfQXNz1ve+uI tjGF48pf7trrPGj9TvV/jHo+HQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFP9XpYkf Rl7RYQcRtNtW7w0Phq+fMB8GA1UdIwQYMBaAFDR2NvDpivgkgmsbz5bzx3bYEvVb MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNTZFNy83ODYwRjhCQTEx QzExMUVBODU4RUU2ODJDNEY5QUUwMi9OSFkyOE9tSy1DU0NheHZQbHZQSGR0Z1M5 VnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL05IWTI4T21LLUNTQ2F4dlBsdlBIZHRnUzlWcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTU2RTcvNzg2MEY4QkExMUMxMTFFQTg1OEVFNjgyQzRGOUFFMDIvMjE1N0MzRTAx MUMyMTFFQTkzNDE3NTgzQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFni6QwDwQCAAIwCQMHACABDfCFgDANBgkqhkiG9w0BAQsF AAOCAQEAnql4GzX5Gq/+wKS32NOs7KhIsQqENdS3p+XcTbM8XY4BfeHKXX2EMGDw saxsL+uU+lQhNOjM2qc8+ff88j5IABlVkCxr+zAIjhA8wE22usznYK+QKRjjAaJN vNciWCB5Rkegnq5T/13x/MQFbcq2+a543FjNXoJzU1HkIVNn/M+579J+NYxIertu b+e4ZqjlM/ky3AuxDhnLgT3OD3TgDhLNB+6VG47FIDwUr3XsvX+00xKyMUedxfYx pyzKhBuRdQ0+C6aa0wfCHY4dQBJJNdmW2Eu+3SIH0diEaqGPy2wjWGH83JV9vXMz BkdJS3hvDUFJiMjF6N7wa4q1vyEl2w== -----END CERTIFICATE-----Generated at Fri May 31 22:13:09 2024 by rpki-client on console-fra.rpki-client.org