$ rpki-client -vvf rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/F287261014C311EE89C2C021C4F9AE02.roa File: F287261014C311EE89C2C021C4F9AE02.roa (raw, json) Hash identifier: rRCqSYERULgOs2MmSeKHJDDd81Ml4dvZaVdHvC51O/A= Subject key identifier: F3:CF:7E:B4:84:12:6D:1E:2C:35:83:D8:84:FD:30:3B:0E:16:13:F5 Certificate issuer: /CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Certificate serial: 02 Authority key identifier: DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/F287261014C311EE89C2C021C4F9AE02.roa Signing time: Tue 27 Jun 2023 08:23:52 +0000 ROA not before: Tue 27 Jun 2023 08:23:52 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 151421 IP address blocks: 103.228.10.0/23 maxlen: 23 103.228.10.0/24 maxlen: 24 103.228.11.0/24 maxlen: 24 2001:df2:9cc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2 (0x2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A5CC3/serialNumber=DE55A369AED918698C2D63C32EF61BDBC5980596 Validity Not Before: Jun 27 08:23:52 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=649a9c97-5b57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7c:97:69:f1:8a:f0:9d:e9:6c:2f:2e:0e:af: 2e:44:47:5c:49:dc:1a:b7:1e:d7:14:36:6c:2f:e1: 80:cb:d1:f2:67:4f:24:e8:6d:43:67:dc:06:c8:30: cc:a5:54:b0:16:a4:50:d1:83:83:59:2b:b2:10:b2: 40:75:51:b2:de:59:62:a6:7c:b4:0c:a8:7e:d3:b1: 41:aa:53:f7:dd:63:2b:31:9f:2c:ae:ba:8c:37:1f: 08:69:ca:05:51:61:2d:72:e8:74:de:57:a5:73:d9: bd:49:94:58:8a:81:15:42:ca:2b:02:28:04:b0:bf: 7f:df:46:d8:a2:db:53:f6:4d:40:7e:7f:d2:56:0a: 28:ed:10:29:79:cb:41:c7:57:9b:20:bb:2a:16:e0: 1e:4c:7b:61:7f:d2:39:88:58:c6:13:49:06:b4:87: 72:79:c0:f8:d6:4f:b3:ed:03:ba:f7:75:70:7e:0c: 0b:53:72:75:7d:dd:54:73:b6:c1:d8:1d:96:85:cd: fe:52:71:78:ed:94:c5:85:dc:f2:cb:a3:62:74:43: cb:80:7e:ed:79:5e:00:91:be:a2:ad:ac:52:4d:e8: b2:85:2a:8d:0b:fc:68:3e:7c:af:6c:51:94:53:6f: c1:70:ce:6c:d0:fd:4b:da:1e:76:75:6d:3f:69:a9: ee:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:CF:7E:B4:84:12:6D:1E:2C:35:83:D8:84:FD:30:3B:0E:16:13:F5 X509v3 Authority Key Identifier: keyid:DE:55:A3:69:AE:D9:18:69:8C:2D:63:C3:2E:F6:1B:DB:C5:98:05:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/3lWjaa7ZGGmMLWPDLvYb28WYBZY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3lWjaa7ZGGmMLWPDLvYb28WYBZY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A5CC3/6416D83814C011EE96EA5421C4F9AE02/F287261014C311EE89C2C021C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.228.10.0/23 IPv6: 2001:df2:9cc0::/48 Signature Algorithm: sha256WithRSAEncryption 8b:b4:91:f9:c9:ce:ea:66:d8:a4:24:3d:71:c9:46:8f:7d:b8: 6a:0b:e0:1b:29:17:9a:68:69:e5:17:41:a5:0f:5c:bd:db:00: 5b:ad:45:24:dd:d2:8d:6f:89:16:3d:e4:f9:a8:fa:44:db:b6: ed:dc:49:f4:31:fe:c6:91:7a:ac:4d:2d:cb:d8:61:7a:ee:b0: bd:07:00:91:5f:a9:be:e6:7e:df:ea:c9:21:a3:59:2b:a4:65: 81:67:7d:44:ce:60:1e:09:a1:8b:9f:c8:58:1f:e3:c8:d2:ff: 30:c8:aa:32:0c:59:4b:84:1b:f6:d1:fb:ca:b9:c3:a3:9d:fe: cf:e8:4b:2d:18:df:b9:cb:26:ba:05:17:6a:ce:08:26:85:30: 8d:78:6f:f1:be:6e:44:fa:ce:fe:7b:de:a2:91:b1:0b:65:76: 3b:31:75:29:91:c2:8a:ab:f7:b6:48:e4:72:50:af:94:c5:3a: 1e:54:98:3c:c8:f2:78:33:49:6c:df:38:5a:3a:e9:8d:2d:c5: 3e:66:55:55:a6:93:38:ef:57:62:8c:e4:09:c9:6b:e8:3a:02: 5b:c0:f1:6a:9b:78:12:b6:38:30:8a:56:ea:ca:92:20:8b:a7: 93:1a:f8:80:cc:e9:8c:31:8a:e7:20:ff:b5:37:47:cc:3c:d4: 7b:e1:92:40 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBAjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB NUNDMzExMC8GA1UEBRMoREU1NUEzNjlBRUQ5MTg2OThDMkQ2M0MzMkVGNjFCREJD NTk4MDU5NjAeFw0yMzA2MjcwODIzNTJaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY0OWE5Yzk3LTViNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5fJdp8YrwnelsLy4Ory5ER1xJ3Bq3HtcUNmwv4YDL0fJnTyTobUNn3AbIMMyl VLAWpFDRg4NZK7IQskB1UbLeWWKmfLQMqH7TsUGqU/fdYysxnyyuuow3HwhpygVR YS1y6HTeV6Vz2b1JlFiKgRVCyisCKASwv3/fRtii21P2TUB+f9JWCijtECl5y0HH V5sguyoW4B5Me2F/0jmIWMYTSQa0h3J5wPjWT7PtA7r3dXB+DAtTcnV93VRztsHY HZaFzf5ScXjtlMWF3PLLo2J0Q8uAfu15XgCRvqKtrFJN6LKFKo0L/Gg+fK9sUZRT b8FwzmzQ/UvaHnZ1bT9pqe4FAgMBAAGjggKmMIICojAdBgNVHQ4EFgQU889+tIQS bR4sNYPYhP0wOw4WE/UwHwYDVR0jBBgwFoAU3lWjaa7ZGGmMLWPDLvYb28WYBZYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUE1Q0MzLzY0MTZEODM4MTRD MDExRUU5NkVBNTQyMUM0RjlBRTAyLzNsV2phYTdaR0dtTUxXUERMdlliMjhXWUJa WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvM2xXamFhN1pHR21NTFdQREx2WWIyOFdZQlpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB NUNDMy82NDE2RDgzODE0QzAxMUVFOTZFQTU0MjFDNEY5QUUwMi9GMjg3MjYxMDE0 QzMxMUVFODlDMkMwMjFDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAWfkCjAPBAIAAjAJAwcAIAEN8pzAMA0GCSqGSIb3DQEBCwUA A4IBAQCLtJH5yc7qZtikJD1xyUaPfbhqC+AbKReaaGnlF0GlD1y92wBbrUUk3dKN b4kWPeT5qPpE27bt3En0Mf7GkXqsTS3L2GF67rC9BwCRX6m+5n7f6skho1krpGWB Z31EzmAeCaGLn8hYH+PI0v8wyKoyDFlLhBv20fvKucOjnf7P6EstGN+5yya6BRdq zggmhTCNeG/xvm5E+s7+e96ikbELZXY7MXUpkcKKq/e2SORyUK+UxToeVJg8yPJ4 M0ls3zhaOumNLcU+ZlVVppM471dijOQJyWvoOgJbwPFqm3gStjgwilbqypIgi6eT GviAzOmMMYrnIP+1N0fMPNR74ZJA -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:36 2024 by rpki-client on console-fra.rpki-client.org