$ rpki-client -vvf rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/933DE524C2B811EEAA1FD486C4F9AE02.roa File: 933DE524C2B811EEAA1FD486C4F9AE02.roa (raw, json) Hash identifier: 2GlVu577o2llhms9wg8+q+wgKYwWcUxJby+SuZ4mHN8= Subject key identifier: 9A:63:88:A3:E4:E0:9F:62:FE:00:1F:46:F6:43:97:BD:AB:E9:75:98 Certificate issuer: /CN=A91A8405/serialNumber=2D9ED3D26E635F7CFFE4BBF52087150B7A42188F Certificate serial: 0A8C Authority key identifier: 2D:9E:D3:D2:6E:63:5F:7C:FF:E4:BB:F5:20:87:15:0B:7A:42:18:8F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/933DE524C2B811EEAA1FD486C4F9AE02.roa Signing time: Sat 03 Feb 2024 17:23:39 +0000 ROA not before: Sat 03 Feb 2024 17:23:39 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 139841 IP address blocks: 103.112.204.0/24 maxlen: 24 103.112.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.crl rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 20:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2700 (0xa8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A8405/serialNumber=2D9ED3D26E635F7CFFE4BBF52087150B7A42188F Validity Not Before: Feb 3 17:23:39 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=65be769b-466a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:c6:16:ee:07:73:c2:b8:d7:e7:da:78:89:27: 8f:85:ad:d2:8e:ef:cc:14:55:43:ef:24:41:19:77: ef:8e:5c:82:0c:41:8b:0d:f4:d1:80:fd:2f:1c:6e: f4:89:e1:d6:0a:fa:32:ae:00:d0:48:fe:2e:c9:73: b3:6b:ce:fc:f3:a2:9c:7f:ae:9e:cd:07:a7:e9:22: 7f:46:6a:f7:c7:23:64:1b:1c:10:e1:0c:72:fa:29: 8c:fa:f8:38:8f:30:cf:36:16:14:dd:0c:06:b7:7d: 99:d3:92:2a:9c:ab:cc:fe:c7:bd:7d:e2:74:31:23: 38:50:80:c7:7c:76:bd:94:21:4a:2f:d0:ee:7c:9d: 01:3d:68:e6:7a:7e:02:4e:da:7d:57:c3:e7:b7:ea: f5:3b:8e:ef:ce:75:b5:9e:d7:a1:7c:54:d1:e1:88: 20:4a:e7:d3:9b:8d:3e:9d:f9:c1:ea:6e:a6:35:9d: 99:3b:88:b2:3c:90:10:51:ad:99:3c:54:61:3d:f4: 75:14:ca:0f:15:3b:5a:44:52:e7:79:77:c8:de:24: 2d:f9:75:ad:ac:26:3a:2e:63:cc:d8:e4:e9:ba:77: fb:67:45:46:85:ee:e7:21:e5:78:07:d2:bb:9e:18: 9f:ce:f1:fd:4c:7d:cd:8f:1e:7f:9a:43:4a:c5:76: 2e:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:63:88:A3:E4:E0:9F:62:FE:00:1F:46:F6:43:97:BD:AB:E9:75:98 X509v3 Authority Key Identifier: keyid:2D:9E:D3:D2:6E:63:5F:7C:FF:E4:BB:F5:20:87:15:0B:7A:42:18:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LZ7T0m5jX3z_5Lv1IIcVC3pCGI8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A8405/F9C19696321211EA93633A59C4F9AE02/933DE524C2B811EEAA1FD486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.112.204.0/24 103.112.207.0/24 Signature Algorithm: sha256WithRSAEncryption 72:72:fa:d3:e5:67:d3:b9:53:43:9a:56:f4:58:62:6c:8e:c0: d3:65:cf:b9:f4:ad:fe:ab:9f:49:5c:6a:76:18:d6:e9:4a:fc: d5:4b:bd:ac:20:fe:47:c5:1e:b1:04:5f:a1:37:93:62:ff:bb: cc:e4:30:86:26:ad:d0:31:70:4e:2f:1b:2e:d1:25:c8:f2:fb: e3:f1:e6:8b:51:e8:93:be:32:0e:8c:13:da:4f:d6:59:ce:b2: de:df:4b:6d:eb:29:28:ba:dc:dd:d6:21:60:9c:95:be:a9:97: bb:5a:7a:c2:e7:28:ed:a6:5e:25:63:2b:ea:0d:83:53:14:ed: 07:c7:81:ad:6e:96:a2:19:fe:25:9c:ed:44:03:62:3a:85:02: 5e:8f:83:f4:e8:62:70:5e:32:2b:cf:fa:01:03:bb:5f:5e:aa: 0e:fc:bd:da:60:3d:fb:62:f7:9a:27:36:0a:db:33:dd:55:ef: 12:14:6c:33:89:3c:9c:1a:68:ac:b5:4c:57:91:67:cb:55:2f: 19:5d:4a:93:aa:92:ea:e0:75:70:72:55:67:2c:e2:19:a7:2d: b5:2c:b4:9b:ae:7f:92:10:7e:19:5f:f2:52:65:32:7a:e4:d2: 7c:73:61:5b:13:44:75:3e:63:a5:9f:b8:2f:4d:2a:80:00:bc: 5b:39:80:82 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCowwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTg0MDUxMTAvBgNVBAUTKDJEOUVEM0QyNkU2MzVGN0NGRkU0QkJGNTIwODcxNTBC N0E0MjE4OEYwHhcNMjQwMjAzMTcyMzM5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJlNzY5Yi00NjZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA28YW7gdzwrjX59p4iSePha3Sju/MFFVD7yRBGXfvjlyCDEGLDfTRgP0vHG70 ieHWCvoyrgDQSP4uyXOza87886Kcf66ezQen6SJ/Rmr3xyNkGxwQ4Qxy+imM+vg4 jzDPNhYU3QwGt32Z05IqnKvM/se9feJ0MSM4UIDHfHa9lCFKL9DufJ0BPWjmen4C Ttp9V8Pnt+r1O47vznW1ntehfFTR4YggSufTm40+nfnB6m6mNZ2ZO4iyPJAQUa2Z PFRhPfR1FMoPFTtaRFLneXfI3iQt+XWtrCY6LmPM2OTpunf7Z0VGhe7nIeV4B9K7 nhifzvH9TH3Njx5/mkNKxXYu6wIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJpjiKPk 4J9i/gAfRvZDl72r6XWYMB8GA1UdIwQYMBaAFC2e09JuY198/+S79SCHFQt6QhiP MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBODQwNS9GOUMxOTY5NjMy MTIxMUVBOTM2MzNBNTlDNEY5QUUwMi9MWjdUMG01algzel81THYxSUljVkMzcENH STguY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0xaN1QwbTVqWDN6XzVMdjFJSWNWQzNwQ0dJOC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTg0MDUvRjlDMTk2OTYzMjEyMTFFQTkzNjMzQTU5QzRGOUFFMDIvOTMzREU1MjRD MkI4MTFFRUFBMUZENDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABncMwDBABncM8wDQYJKoZIhvcNAQELBQADggEBAHJy+tPl Z9O5U0OaVvRYYmyOwNNlz7n0rf6rn0lcanYY1ulK/NVLvawg/kfFHrEEX6E3k2L/ u8zkMIYmrdAxcE4vGy7RJcjy++Px5otR6JO+Mg6ME9pP1lnOst7fS23rKSi63N3W IWCclb6pl7taesLnKO2mXiVjK+oNg1MU7QfHga1ulqIZ/iWc7UQDYjqFAl6Pg/To YnBeMivP+gEDu19eqg78vdpgPfti95onNgrbM91V7xIUbDOJPJwaaKy1TFeRZ8tV LxldSpOqkurgdXByVWcs4hmnLbUstJuuf5IQfhlf8lJlMnrk0nxzYVsTRHU+Y6Wf uC9NKoAAvFs5gII= -----END CERTIFICATE-----Generated at Wed Jun 12 22:38:27 2024 by rpki-client on console-fra.rpki-client.org