$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/C2065F2CA5F311E8B54BF03DC4F9AE02.roa File: C2065F2CA5F311E8B54BF03DC4F9AE02.roa (raw, json) Hash identifier: 7mRhmh8fi74+etfwvojRqEzMxuKL5HPByMUbIPOY1Yg= Subject key identifier: 64:3D:91:4C:23:D6:DF:CA:12:36:A3:74:5D:66:4E:98:44:72:B9:E4 Certificate issuer: /CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Certificate serial: 11DF Authority key identifier: BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/C2065F2CA5F311E8B54BF03DC4F9AE02.roa Signing time: Fri 14 Jul 2023 17:34:19 +0000 ROA not before: Fri 14 Jul 2023 17:34:19 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 137925 IP address blocks: 103.117.80.0/24 maxlen: 24 2001:df5:a300::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 17:22:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4575 (0x11df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF406/serialNumber=BC710D05633C5E11B0744B71AEBB88AE2B2446E3 Validity Not Before: Jul 14 17:34:19 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b1871b-13a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:fe:3b:6d:d5:e8:21:28:2f:cd:d7:06:14:cd: 03:0c:40:43:c7:e7:14:e1:26:17:00:15:c6:88:97: ba:14:6b:73:ea:27:8b:0d:43:43:a8:49:26:b8:26: 01:2e:aa:04:11:41:60:30:7d:5d:a8:e5:de:08:9f: 8c:94:66:04:03:85:71:7d:8c:90:61:38:e3:e7:d9: 54:d5:03:70:01:5b:65:be:0e:62:b6:08:77:b6:46: 0d:b8:c4:4c:91:fd:33:1a:4a:06:8b:98:29:5c:d5: a0:88:84:0a:48:c4:4e:56:fc:56:0e:ef:7e:c5:1a: af:3c:71:d2:29:e8:d1:43:c4:af:f5:1a:30:db:76: 83:64:a1:c1:b3:25:b3:f6:ae:be:4c:b8:f2:42:85: d7:71:0f:98:90:27:aa:09:dc:58:28:08:e8:24:99: f7:d3:23:62:9a:9b:2c:89:6c:d9:19:ac:c1:a1:ca: 94:f4:55:66:26:2e:ce:93:62:c1:92:00:ef:88:7e: ef:7b:1e:95:91:70:7e:8d:7b:0b:36:16:ad:f3:0e: d2:0b:0f:94:39:2f:20:44:b1:6a:02:41:b4:5c:e7: 28:5a:8e:32:a9:d8:c5:c1:52:57:68:24:60:fa:ab: 31:55:e1:8f:67:c5:df:69:c7:88:29:a4:29:15:1d: 51:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:3D:91:4C:23:D6:DF:CA:12:36:A3:74:5D:66:4E:98:44:72:B9:E4 X509v3 Authority Key Identifier: keyid:BC:71:0D:05:63:3C:5E:11:B0:74:4B:71:AE:BB:88:AE:2B:24:46:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/vHENBWM8XhGwdEtxrruIriskRuM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vHENBWM8XhGwdEtxrruIriskRuM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF406/3F670C0CA5F211E897A7503AC4F9AE02/C2065F2CA5F311E8B54BF03DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.117.80.0/24 IPv6: 2001:df5:a300::/48 Signature Algorithm: sha256WithRSAEncryption 8a:41:35:b7:fd:5a:f7:b9:18:e8:e3:2b:02:fe:02:9e:ff:1a: bd:17:47:a9:fb:ab:08:f8:5b:95:7a:b5:31:bf:21:4b:cd:db: 61:5c:03:ab:a0:b1:b4:e9:c2:67:d7:80:2f:5d:53:2a:71:23: d3:f9:5e:73:c6:64:bc:3c:8a:b8:22:6c:6c:39:15:57:08:80: 38:4e:d1:d6:1a:88:9e:36:e8:95:dc:e2:da:05:2a:b8:da:4d: b8:fe:1e:ce:58:45:b1:eb:13:0b:20:a1:35:41:05:16:33:9b: 03:c0:25:20:04:e6:07:1d:7c:9a:9a:22:ed:13:85:16:41:72: 0b:82:07:7a:31:0f:ae:ec:3c:14:ac:28:e5:fa:c9:73:28:b9: 21:0b:bf:b6:85:90:15:32:46:ba:89:ba:9d:78:6e:31:c1:a7: 9b:6d:10:f2:ec:07:5c:38:08:5e:4f:f7:f7:9a:25:ed:37:92: 81:50:69:77:f7:24:c3:71:09:1f:f4:2d:7d:01:7b:43:3d:5e: 9a:89:08:36:66:3f:d1:a2:93:02:3e:bf:31:6c:55:d3:e2:b8: 7e:1e:e6:76:68:ee:0e:b2:c2:67:6c:c7:e1:e3:d3:ca:7e:c1: b2:aa:dc:61:f1:70:46:bc:3a:a8:cb:c2:85:f0:b9:b4:86:75: 84:30:e2:2c -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICEd8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY0MDYxMTAvBgNVBAUTKEJDNzEwRDA1NjMzQzVFMTFCMDc0NEI3MUFFQkI4OEFF MkIyNDQ2RTMwHhcNMjMwNzE0MTczNDE5WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGIxODcxYi0xM2E2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApv47bdXoISgvzdcGFM0DDEBDx+cU4SYXABXGiJe6FGtz6ieLDUNDqEkmuCYB LqoEEUFgMH1dqOXeCJ+MlGYEA4VxfYyQYTjj59lU1QNwAVtlvg5itgh3tkYNuMRM kf0zGkoGi5gpXNWgiIQKSMROVvxWDu9+xRqvPHHSKejRQ8Sv9Row23aDZKHBsyWz 9q6+TLjyQoXXcQ+YkCeqCdxYKAjoJJn30yNimpssiWzZGazBocqU9FVmJi7Ok2LB kgDviH7vex6VkXB+jXsLNhat8w7SCw+UOS8gRLFqAkG0XOcoWo4yqdjFwVJXaCRg +qsxVeGPZ8XfaceIKaQpFR1RbQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFGQ9kUwj 1t/KEjajdF1mTphEcrnkMB8GA1UdIwQYMBaAFLxxDQVjPF4RsHRLca67iK4rJEbj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjQwNi8zRjY3MEMwQ0E1 RjIxMUU4OTdBNzUwM0FDNEY5QUUwMi92SEVOQldNOFhoR3dkRXR4cnJ1SXJpc2tS dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3ZIRU5CV004WGhHd2RFdHhycnVJcmlza1J1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUY0MDYvM0Y2NzBDMENBNUYyMTFFODk3QTc1MDNBQzRGOUFFMDIvQzIwNjVGMkNB NUYzMTFFOEI1NEJGMDNEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABndVAwDwQCAAIwCQMHACABDfWjADANBgkqhkiG9w0BAQsF AAOCAQEAikE1t/1a97kY6OMrAv4Cnv8avRdHqfurCPhblXq1Mb8hS83bYVwDq6Cx tOnCZ9eAL11TKnEj0/lec8ZkvDyKuCJsbDkVVwiAOE7R1hqInjboldzi2gUquNpN uP4ezlhFsesTCyChNUEFFjObA8AlIATmBx18mpoi7ROFFkFyC4IHejEPruw8FKwo 5frJcyi5IQu/toWQFTJGuom6nXhuMcGnm20Q8uwHXDgIXk/395ol7TeSgVBpd/ck w3EJH/QtfQF7Qz1emokINmY/0aKTAj6/MWxV0+K4fh7mdmjuDrLCZ2zH4ePTyn7B sqrcYfFwRrw6qMvChfC5tIZ1hDDiLA== -----END CERTIFICATE-----Generated at Thu Jun 6 18:48:19 2024 by rpki-client on console-fra.rpki-client.org