$ rpki-client -vvf rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/AB3814CEC85411EDAE5D9322C4F9AE02.roa File: AB3814CEC85411EDAE5D9322C4F9AE02.roa (raw, json) Hash identifier: QMKlw404SwFkrsAAz5C3eXeVSgmruqWCgQQAVZe9gyA= Subject key identifier: AB:14:5C:CA:B0:A9:6D:64:AD:18:B0:C7:CC:14:49:D5:8F:A8:7E:5C Certificate issuer: /CN=A91AF83D/serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Certificate serial: 86 Authority key identifier: 7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/AB3814CEC85411EDAE5D9322C4F9AE02.roa Signing time: Sun 03 Dec 2023 05:35:50 +0000 ROA not before: Sun 03 Dec 2023 05:35:50 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 141359 IP address blocks: 103.174.227.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:16:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 134 (0x86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AF83D/serialNumber=7FB16E40FA3CA77FCE24C4C9A4645683C39E8A11 Validity Not Before: Dec 3 05:35:50 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=656c13b6-2f24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:08:1f:7b:d1:6f:58:bd:8e:7e:99:a6:67:98: a8:ed:4a:9d:f6:31:0a:3d:e4:06:4a:e9:58:cb:5a: a2:d9:e2:93:ce:ae:c1:97:29:55:63:4a:9b:a3:dc: bb:80:02:1f:65:44:27:c1:9b:f6:a6:a1:08:69:a9: 80:a1:c2:46:10:22:c4:25:e8:61:bb:2f:49:a3:fd: 4a:1a:e3:cf:f3:5d:f4:dc:c2:68:85:e8:ad:43:b2: 3b:06:59:6e:4e:0b:7f:06:4f:8a:10:df:b2:3a:f5: 82:7a:0e:02:f8:f7:58:d6:63:8a:a5:a2:2b:cc:ab: 5d:11:18:ff:82:39:79:e0:a9:dc:28:62:c9:73:ea: cd:78:46:a8:46:26:0e:81:67:19:5d:11:6a:52:a2: e3:80:66:43:9c:bc:77:1a:b4:57:07:9c:77:28:d7: 69:1b:84:6b:41:a9:00:0d:76:e3:09:17:dc:d6:9c: 9d:97:a2:0a:99:2e:cf:e5:5e:1e:00:46:16:6e:db: 7e:32:67:e1:b5:52:25:3f:cf:20:bb:63:99:aa:7b: a8:4c:49:10:94:3b:dc:e6:f1:00:de:2c:dd:4b:ca: 63:a6:40:9a:18:a8:a3:e5:a5:1a:0e:cb:52:e1:5f: 58:67:65:79:01:87:16:0d:ce:aa:c4:47:66:28:1b: 7d:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:14:5C:CA:B0:A9:6D:64:AD:18:B0:C7:CC:14:49:D5:8F:A8:7E:5C X509v3 Authority Key Identifier: keyid:7F:B1:6E:40:FA:3C:A7:7F:CE:24:C4:C9:A4:64:56:83:C3:9E:8A:11 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/f7FuQPo8p3_OJMTJpGRWg8OeihE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/f7FuQPo8p3_OJMTJpGRWg8OeihE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AF83D/A3D52FB8C85011EDAF5BBA87C4F9AE02/AB3814CEC85411EDAE5D9322C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.174.227.0/24 Signature Algorithm: sha256WithRSAEncryption 72:4c:d9:77:6a:86:47:6e:db:4e:ba:cb:af:8b:de:11:45:61: d5:18:67:62:93:3b:cf:34:77:3d:67:08:a6:9f:c7:59:ad:a8: 1b:bf:87:54:7a:94:d4:2e:65:d0:f5:10:d8:0e:3f:30:20:b1: b2:f0:09:9f:75:00:ba:48:1f:94:39:b6:13:ab:d1:3e:52:4a: 21:a0:fa:20:76:c1:ce:a8:0b:79:80:f1:cc:92:06:4d:67:e3: da:d9:1a:b0:53:cf:bf:83:0e:c3:9e:71:72:c3:5a:da:62:0c: 98:44:be:fa:0d:c0:68:3d:ea:4d:17:85:a5:7b:21:4a:9b:df: 94:a1:01:f3:1b:9a:0d:a7:6a:c4:fc:e7:13:f7:7f:a0:8c:af: dc:bd:82:3f:dd:82:c3:ca:34:38:c4:3a:7f:7a:a3:d8:ce:a4: db:67:f5:7a:85:15:2f:b5:09:89:6c:b1:22:18:4e:f5:91:05: 7b:cc:1e:24:c9:8b:ff:f1:fc:12:99:8c:14:7a:a5:f7:eb:07: 67:0a:93:e4:73:73:31:d6:5e:b2:de:b7:aa:d0:70:47:72:9f: fc:6a:a2:42:bd:ec:9e:d0:66:80:42:7d:08:bd:c1:a6:b5:a5: 4c:16:cd:0c:28:31:32:42:75:6d:cf:ae:bc:1e:dd:6a:e4:f2: 79:cd:b4:a7 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUY4M0QxMTAvBgNVBAUTKDdGQjE2RTQwRkEzQ0E3N0ZDRTI0QzRDOUE0NjQ1Njgz QzM5RThBMTEwHhcNMjMxMjAzMDUzNTUwWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTZjMTNiNi0yZjI0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1Agfe9FvWL2OfpmmZ5io7Uqd9jEKPeQGSulYy1qi2eKTzq7BlylVY0qbo9y7 gAIfZUQnwZv2pqEIaamAocJGECLEJehhuy9Jo/1KGuPP81303MJoheitQ7I7Bllu Tgt/Bk+KEN+yOvWCeg4C+PdY1mOKpaIrzKtdERj/gjl54KncKGLJc+rNeEaoRiYO gWcZXRFqUqLjgGZDnLx3GrRXB5x3KNdpG4RrQakADXbjCRfc1pydl6IKmS7P5V4e AEYWbtt+MmfhtVIlP88gu2OZqnuoTEkQlDvc5vEA3izdS8pjpkCaGKij5aUaDstS 4V9YZ2V5AYcWDc6qxEdmKBt99wIDAQABo4IClTCCApEwHQYDVR0OBBYEFKsUXMqw qW1krRiwx8wUSdWPqH5cMB8GA1UdIwQYMBaAFH+xbkD6PKd/ziTEyaRkVoPDnooR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRjgzRC9BM0Q1MkZCOEM4 NTAxMUVEQUY1QkJBODdDNEY5QUUwMi9mN0Z1UVBvOHAzX09KTVRKcEdSV2c4T2Vp aEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2Y3RnVRUG84cDNfT0pNVEpwR1JXZzhPZWloRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUY4M0QvQTNENTJGQjhDODUwMTFFREFGNUJCQTg3QzRGOUFFMDIvQUIzODE0Q0VD ODU0MTFFREFFNUQ5MzIyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnruMwDQYJKoZIhvcNAQELBQADggEBAHJM2Xdqhkdu2066 y6+L3hFFYdUYZ2KTO880dz1nCKafx1mtqBu/h1R6lNQuZdD1ENgOPzAgsbLwCZ91 ALpIH5Q5thOr0T5SSiGg+iB2wc6oC3mA8cySBk1n49rZGrBTz7+DDsOecXLDWtpi DJhEvvoNwGg96k0XhaV7IUqb35ShAfMbmg2nasT85xP3f6CMr9y9gj/dgsPKNDjE On96o9jOpNtn9XqFFS+1CYlssSIYTvWRBXvMHiTJi//x/BKZjBR6pffrB2cKk+Rz czHWXrLet6rQcEdyn/xqokK97J7QZoBCfQi9waa1pUwWzQwoMTJCdW3Prrwe3Wrk 8nnNtKc= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:36 2024 by rpki-client on console-fra.rpki-client.org