$ rpki-client -vvf rpki.apnic.net/member_repository/A91B5073/43F16264339511E9BFB1C21AC4F9AE02/2FF45F2A3A7E11EDA75E2E49C4F9AE02.roa File: 2FF45F2A3A7E11EDA75E2E49C4F9AE02.roa (raw, json) Hash identifier: Cfo5eHFqFHymPEFxBsPivlJKda+i/j/nkyQNRr+wROs= Subject key identifier: 46:97:C6:7F:AC:57:D0:1F:7A:1D:3F:70:C7:BA:DC:B3:58:45:CB:6A Certificate issuer: /CN=A91B5073/serialNumber=17817CB8289231B4707E9D5B406D58AFF79D1E01 Certificate serial: 07F2 Authority key identifier: 17:81:7C:B8:28:92:31:B4:70:7E:9D:5B:40:6D:58:AF:F7:9D:1E:01 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F4F8uCiSMbRwfp1bQG1Yr_edHgE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B5073/43F16264339511E9BFB1C21AC4F9AE02/2FF45F2A3A7E11EDA75E2E49C4F9AE02.roa Signing time: Sun 12 May 2024 18:26:48 +0000 ROA not before: Sun 12 May 2024 18:26:48 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 149311 IP address blocks: 103.134.201.0/24 maxlen: 24 103.134.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B5073/43F16264339511E9BFB1C21AC4F9AE02/F4F8uCiSMbRwfp1bQG1Yr_edHgE.crl rsync://rpki.apnic.net/member_repository/A91B5073/43F16264339511E9BFB1C21AC4F9AE02/F4F8uCiSMbRwfp1bQG1Yr_edHgE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F4F8uCiSMbRwfp1bQG1Yr_edHgE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Jul 2024 17:52:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2034 (0x7f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B5073/serialNumber=17817CB8289231B4707E9D5B406D58AFF79D1E01 Validity Not Before: May 12 18:26:48 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=664109e8-7b0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ed:c0:40:60:64:ba:db:86:b9:4b:25:20:56: a1:aa:2b:dc:18:db:05:da:1f:57:64:8e:c3:4a:00: 2a:59:58:c6:e2:4f:a5:1d:06:a3:53:c1:4f:01:46: 13:a1:1f:49:58:a2:76:27:a5:1b:94:33:95:0e:63: 2d:56:31:89:68:91:f9:04:b3:92:8d:9c:cb:a4:d9: c3:d7:42:0c:2a:92:3f:10:99:90:b1:1a:75:af:38: 4e:43:87:83:c7:e5:fd:d5:e9:ba:1e:80:f3:1f:89: 1c:44:06:0c:fa:02:67:1b:b6:bc:6a:02:da:87:b8: 74:76:3d:60:de:80:e1:89:ab:8d:82:f1:08:09:55: 73:3b:63:8f:c2:7d:8d:71:1d:eb:df:a9:c9:d4:49: 54:e5:6b:07:a0:20:3c:07:9c:fb:ae:36:cb:c0:fb: fb:8f:8e:73:ec:88:66:73:39:3b:fc:85:90:f3:aa: 24:a1:ef:36:cf:8e:e8:c0:1f:68:11:e0:10:6b:b9: f1:78:f9:84:fb:47:ac:d9:9a:7b:bf:8e:da:89:05: 89:92:e3:98:73:70:14:26:32:a7:6b:34:58:34:4b: a6:af:c7:fe:c6:ab:38:f5:b5:82:10:aa:1d:3f:62: 88:0f:85:40:35:09:ad:dd:8e:fb:46:e6:d5:4f:26: 3d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:97:C6:7F:AC:57:D0:1F:7A:1D:3F:70:C7:BA:DC:B3:58:45:CB:6A X509v3 Authority Key Identifier: keyid:17:81:7C:B8:28:92:31:B4:70:7E:9D:5B:40:6D:58:AF:F7:9D:1E:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B5073/43F16264339511E9BFB1C21AC4F9AE02/F4F8uCiSMbRwfp1bQG1Yr_edHgE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/F4F8uCiSMbRwfp1bQG1Yr_edHgE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B5073/43F16264339511E9BFB1C21AC4F9AE02/2FF45F2A3A7E11EDA75E2E49C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.134.201.0/24 103.134.203.0/24 Signature Algorithm: sha256WithRSAEncryption 11:61:93:bb:dd:b0:84:ed:09:3c:a6:de:e6:79:1d:e7:71:38: 2b:ff:ab:fe:1c:f1:a9:d6:7d:e9:ef:06:ff:5e:75:37:e6:e5: 6a:8f:82:9a:a5:7c:49:f9:e3:1b:41:0d:de:58:d1:a7:43:5b: 02:06:93:e4:c6:8a:be:3e:f9:22:9c:df:0e:f3:7e:d9:ab:64: 4d:2d:b5:76:6c:45:9c:65:61:f6:55:fe:73:c6:06:4d:11:e5: 49:40:b1:3c:09:84:ca:78:53:96:01:bb:f8:88:87:dd:56:5f: 2e:a0:28:a2:55:99:c7:c0:6d:b1:74:b4:e8:88:51:35:3c:0d: 20:79:9b:05:6a:57:73:5f:92:e0:5d:14:70:5e:56:c7:c3:9e: 29:78:21:7b:6d:e5:0e:a7:5f:a8:af:b8:29:f2:01:56:67:c0: 72:32:ed:1a:e3:09:79:31:b5:9b:32:cc:b8:6e:f5:55:d2:ce: 1a:a4:ca:20:fc:19:ec:fe:f9:67:30:a2:a6:61:f7:31:d8:32: 61:7d:41:29:4f:2c:14:5c:f4:e5:56:0a:6e:db:0f:07:c4:bc: 48:e7:1a:72:59:c2:8c:ef:85:30:19:5d:a9:89:87:ed:9b:8b: fd:dc:ed:35:c9:ad:d4:ba:b8:af:1c:a2:b9:fb:e7:c5:34:47: e2:2f:6d:15 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICB/IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjUwNzMxMTAvBgNVBAUTKDE3ODE3Q0I4Mjg5MjMxQjQ3MDdFOUQ1QjQwNkQ1OEFG Rjc5RDFFMDEwHhcNMjQwNTEyMTgyNjQ4WhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NjQxMDllOC03YjBmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1O3AQGBkutuGuUslIFahqivcGNsF2h9XZI7DSgAqWVjG4k+lHQajU8FPAUYT oR9JWKJ2J6UblDOVDmMtVjGJaJH5BLOSjZzLpNnD10IMKpI/EJmQsRp1rzhOQ4eD x+X91em6HoDzH4kcRAYM+gJnG7a8agLah7h0dj1g3oDhiauNgvEICVVzO2OPwn2N cR3r36nJ1ElU5WsHoCA8B5z7rjbLwPv7j45z7Ihmczk7/IWQ86okoe82z47owB9o EeAQa7nxePmE+0es2Zp7v47aiQWJkuOYc3AUJjKnazRYNEumr8f+xqs49bWCEKod P2KID4VANQmt3Y77RubVTyY9LQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFEaXxn+s V9Afeh0/cMe63LNYRctqMB8GA1UdIwQYMBaAFBeBfLgokjG0cH6dW0BtWK/3nR4B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTA3My80M0YxNjI2NDMz OTUxMUU5QkZCMUMyMUFDNEY5QUUwMi9GNEY4dUNpU01iUndmcDFiUUcxWXJfZWRI Z0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0Y0Rjh1Q2lTTWJSd2ZwMWJRRzFZcl9lZEhnRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjUwNzMvNDNGMTYyNjQzMzk1MTFFOUJGQjFDMjFBQzRGOUFFMDIvMkZGNDVGMkEz QTdFMTFFREE3NUUyRTQ5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnhskDBABnhsswDQYJKoZIhvcNAQELBQADggEBABFhk7vd sITtCTym3uZ5HedxOCv/q/4c8anWfenvBv9edTfm5WqPgpqlfEn54xtBDd5Y0adD WwIGk+TGir4++SKc3w7zftmrZE0ttXZsRZxlYfZV/nPGBk0R5UlAsTwJhMp4U5YB u/iIh91WXy6gKKJVmcfAbbF0tOiIUTU8DSB5mwVqV3NfkuBdFHBeVsfDnil4IXtt 5Q6nX6ivuCnyAVZnwHIy7RrjCXkxtZsyzLhu9VXSzhqkyiD8Gez++WcwoqZh9zHY MmF9QSlPLBRc9OVWCm7bDwfEvEjnGnJZwozvhTAZXamJh+2bi/3c7TXJrdS6uK8c orn758U0R+IvbRU= -----END CERTIFICATE-----Generated at Wed Jun 26 20:06:52 2024 by rpki-client on console-fra.rpki-client.org