$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/D240E2EE814D11EBB1CE367FC4F9AE02.roa File: D240E2EE814D11EBB1CE367FC4F9AE02.roa (raw, json) Hash identifier: s8OCSBLifuS9TRRZxsTR6TnHRfdGmipWnBCw9rF6/XU= Subject key identifier: 87:41:BE:56:7B:A7:36:1C:FC:24:2E:07:23:53:D8:BD:AC:B7:90:EB Certificate issuer: /CN=A91B2131/serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Certificate serial: 04FE Authority key identifier: 14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/D240E2EE814D11EBB1CE367FC4F9AE02.roa Signing time: Fri 09 Jun 2023 01:37:56 +0000 ROA not before: Fri 09 Jun 2023 01:37:56 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 138002 IP address blocks: 103.115.233.0/24 maxlen: 24 2001:df5:3f00::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 00:39:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1278 (0x4fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2131/serialNumber=1407E31C87E1162459D83C3AEB488C975A9C23F1 Validity Not Before: Jun 9 01:37:56 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64828274-286d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5e:8a:1f:e4:96:9a:ca:34:5f:b2:be:9b:9e: 8f:c6:ce:df:18:b1:6f:6a:f2:c0:93:b1:cc:8a:55: 58:fa:73:39:fc:e6:ca:75:b2:1f:9e:af:f5:36:85: 4f:3b:2c:5f:18:c6:d0:3a:9e:86:23:5a:73:fa:9a: 4b:a6:52:8a:c5:d1:dc:81:71:e7:a4:b9:ac:22:f3: a2:e1:d2:57:fe:b0:b7:33:d4:17:f4:5d:39:bd:a6: e1:3e:29:1c:33:ee:75:61:5f:fb:06:a9:45:5d:36: de:6c:99:29:ac:af:fa:25:7c:a2:78:22:14:3b:52: 9e:e3:fb:e9:82:3b:1a:45:d0:2f:c6:58:41:3e:44: a6:e9:d6:c2:8b:da:31:ac:7c:cb:6e:16:09:36:25: 4d:08:64:51:b2:5c:7c:b6:7b:09:ed:78:cf:c1:d0: 5d:d9:43:e3:b6:95:13:e8:11:7c:0c:1a:b6:7b:9a: 63:49:2f:09:a1:0b:8e:b8:b2:58:85:43:0f:4b:dc: 85:7e:e3:27:b6:11:aa:3d:6e:4b:21:a4:ba:35:6c: 83:f2:6b:b5:07:89:b2:42:da:5c:71:54:96:d3:1c: 2d:d7:20:c1:bd:da:4f:94:42:9b:be:12:00:b0:44: 2a:b0:a1:df:c6:c2:8b:52:9b:2f:0c:87:e7:00:5c: ff:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:41:BE:56:7B:A7:36:1C:FC:24:2E:07:23:53:D8:BD:AC:B7:90:EB X509v3 Authority Key Identifier: keyid:14:07:E3:1C:87:E1:16:24:59:D8:3C:3A:EB:48:8C:97:5A:9C:23:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/FAfjHIfhFiRZ2Dw660iMl1qcI_E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FAfjHIfhFiRZ2Dw660iMl1qcI_E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2131/BE4A6CD07D7211EB8CB63665C4F9AE02/D240E2EE814D11EBB1CE367FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.233.0/24 IPv6: 2001:df5:3f00::/48 Signature Algorithm: sha256WithRSAEncryption c5:f8:a6:e7:86:72:d3:04:b0:5d:4e:97:e9:86:ec:04:4a:ed: 13:aa:65:9b:71:e9:c3:d4:9d:c7:9c:0c:db:72:94:88:5a:21: 6c:39:69:15:e4:c4:f2:46:89:1c:07:8e:bb:84:f6:5a:54:ee: 83:02:91:90:6c:cf:15:d2:cb:1b:ee:bd:27:fe:e7:c2:48:14: ac:51:15:c3:99:18:c6:f5:dc:c1:6e:72:b2:94:99:70:28:ad: 1d:cb:06:42:19:19:71:4d:fd:7d:3a:5c:2a:2d:54:6b:5e:6c: 68:bb:d8:bc:57:c4:4f:9d:38:2f:a7:ad:b1:52:23:83:83:1a: 5f:89:c3:b8:d1:e7:af:0f:55:a5:aa:87:bf:c2:24:8b:5e:0c: 1a:97:2b:09:2d:3f:68:e9:df:98:e7:6d:5e:82:33:fe:68:cd: 4d:87:b2:52:a5:e9:7d:a9:c8:e1:bd:c3:8d:3d:28:ce:ac:2c: e1:d7:9f:ab:43:51:fa:b2:42:8e:2c:13:43:0a:38:ba:19:c8: 80:1b:6b:4b:cc:9f:72:15:01:75:c0:e1:26:95:8d:e4:7b:1f: 18:18:62:41:c0:44:c2:af:01:8a:c6:f2:04:01:96:35:22:62: 9e:4c:52:47:b4:e4:1c:ae:e6:ae:d2:f0:52:f2:40:92:ee:0c: 98:00:61:b0 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBP4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjIxMzExMTAvBgNVBAUTKDE0MDdFMzFDODdFMTE2MjQ1OUQ4M0MzQUVCNDg4Qzk3 NUE5QzIzRjEwHhcNMjMwNjA5MDEzNzU2WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgyODI3NC0yODZkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAx16KH+SWmso0X7K+m56Pxs7fGLFvavLAk7HMilVY+nM5/ObKdbIfnq/1NoVP OyxfGMbQOp6GI1pz+ppLplKKxdHcgXHnpLmsIvOi4dJX/rC3M9QX9F05vabhPikc M+51YV/7BqlFXTbebJkprK/6JXyieCIUO1Ke4/vpgjsaRdAvxlhBPkSm6dbCi9ox rHzLbhYJNiVNCGRRslx8tnsJ7XjPwdBd2UPjtpUT6BF8DBq2e5pjSS8JoQuOuLJY hUMPS9yFfuMnthGqPW5LIaS6NWyD8mu1B4myQtpccVSW0xwt1yDBvdpPlEKbvhIA sEQqsKHfxsKLUpsvDIfnAFz/rQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFIdBvlZ7 pzYc/CQuByNT2L2st5DrMB8GA1UdIwQYMBaAFBQH4xyH4RYkWdg8OutIjJdanCPx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMjEzMS9CRTRBNkNEMDdE NzIxMUVCOENCNjM2NjVDNEY5QUUwMi9GQWZqSElmaEZpUloyRHc2NjBpTWwxcWNJ X0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZBZmpISWZoRmlSWjJEdzY2MGlNbDFxY0lfRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjIxMzEvQkU0QTZDRDA3RDcyMTFFQjhDQjYzNjY1QzRGOUFFMDIvRDI0MEUyRUU4 MTREMTFFQkIxQ0UzNjdGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnc+kwDwQCAAIwCQMHACABDfU/ADANBgkqhkiG9w0BAQsF AAOCAQEAxfim54Zy0wSwXU6X6YbsBErtE6plm3Hpw9Sdx5wM23KUiFohbDlpFeTE 8kaJHAeOu4T2WlTugwKRkGzPFdLLG+69J/7nwkgUrFEVw5kYxvXcwW5yspSZcCit HcsGQhkZcU39fTpcKi1Ua15saLvYvFfET504L6etsVIjg4MaX4nDuNHnrw9VpaqH v8Iki14MGpcrCS0/aOnfmOdtXoIz/mjNTYeyUqXpfanI4b3DjT0ozqws4defq0NR +rJCjiwTQwo4uhnIgBtrS8yfchUBdcDhJpWN5HsfGBhiQcBEwq8BisbyBAGWNSJi nkxSR7TkHK7mrtLwUvJAku4MmABhsA== -----END CERTIFICATE-----Generated at Sat Jun 1 01:41:46 2024 by rpki-client on console-fra.rpki-client.org