$ rpki-client -vvf rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/FD02F648C0DD11EE93560678C4F9AE02.roa File: FD02F648C0DD11EE93560678C4F9AE02.roa (raw, json) Hash identifier: QOcxCXaE5l3rLTsAPbmde9U5cqBVyell/5zMPhTwNWs= Subject key identifier: 0D:D9:00:98:9C:CC:F6:FC:39:D8:7A:78:0F:05:C8:26:06:A6:18:64 Certificate issuer: /CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Certificate serial: 84 Authority key identifier: E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/FD02F648C0DD11EE93560678C4F9AE02.roa Signing time: Thu 01 Feb 2024 08:43:36 +0000 ROA not before: Thu 01 Feb 2024 08:43:36 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 25198 IP address blocks: 103.237.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 07:43:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 132 (0x84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B59E5/serialNumber=E47BF70254532697D20D0D3110F625370D65FA83 Validity Not Before: Feb 1 08:43:36 2024 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65bb59b8-919d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d7:77:0d:3a:f3:92:93:2e:d7:af:22:89:b5: 82:c4:fd:97:f5:e1:a3:7b:5b:d9:e2:0c:60:27:9b: 06:10:7e:4e:6c:42:d1:83:74:91:71:f7:ae:fd:08: b5:e6:23:be:7f:bf:8a:d9:14:a8:6f:11:74:47:0a: c2:24:f7:37:bb:3d:3d:5e:b5:a6:6f:ea:69:9f:39: 04:ab:e3:0c:77:7f:89:7f:4c:1a:de:83:d7:06:97: 9e:f9:90:a1:69:01:f8:3f:28:85:f6:18:10:00:90: df:85:25:de:24:96:69:3e:c8:23:bd:61:0d:a1:33: a6:5f:07:ca:12:e7:e6:be:74:e5:16:7e:3e:99:9f: 8f:92:92:01:3a:a8:f0:f6:46:59:9e:11:1d:b4:e4: 39:20:92:3e:25:0c:7f:87:f9:15:ce:37:55:98:0f: 28:19:a0:ad:57:2e:a5:0c:5f:53:f2:ac:9e:c7:aa: a5:7d:1f:70:bf:0e:a1:62:db:4d:6e:1e:69:fc:96: 29:75:b4:96:ae:64:7e:d3:22:de:80:3b:18:b0:0c: bf:2f:bf:4b:f6:c7:a6:63:10:4c:e9:3c:f1:f5:6a: f5:6d:22:30:13:54:d9:50:ac:59:38:35:f4:5c:fe: 0c:12:63:b2:a5:68:cf:52:c5:57:fc:9c:67:f6:c7: f5:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:D9:00:98:9C:CC:F6:FC:39:D8:7A:78:0F:05:C8:26:06:A6:18:64 X509v3 Authority Key Identifier: keyid:E4:7B:F7:02:54:53:26:97:D2:0D:0D:31:10:F6:25:37:0D:65:FA:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/5Hv3AlRTJpfSDQ0xEPYlNw1l-oM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B59E5/DD9F1F7C3C0111EE91CBE157C4F9AE02/FD02F648C0DD11EE93560678C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.237.114.0/24 Signature Algorithm: sha256WithRSAEncryption 62:b8:1b:4a:2c:fc:db:cc:92:af:08:e8:8e:95:ed:fc:70:41: 18:ad:41:cf:7d:ca:db:8f:2e:9e:98:17:95:42:a5:3b:ae:01: 09:ba:29:5b:a6:75:8e:d6:7d:40:e2:15:f5:7f:74:2b:11:4b: 83:17:13:a1:10:31:61:2f:08:4d:7d:9f:b3:7a:15:d8:2c:55: bf:cf:78:53:44:6b:ed:ca:41:04:4b:7b:57:5b:47:9f:3a:76: 77:10:4a:de:19:8e:19:76:60:fe:dc:23:7b:6e:ac:09:d1:32: fd:87:f4:c6:81:2d:36:91:23:5c:41:40:46:9a:98:b5:16:da: a3:ed:b1:1d:34:6f:da:ac:6b:55:18:7e:73:69:4e:c9:56:a3: 5f:ef:36:90:43:01:0a:48:ec:75:e3:1c:15:ae:46:45:da:9d: 44:1b:af:cc:d9:c6:74:ea:b7:da:78:fc:9a:f2:08:7a:a6:29: 0a:6e:e6:bf:0c:e1:24:95:57:60:d9:75:0d:87:5b:2c:0d:6d: f2:8a:b1:99:9d:d2:34:08:53:3c:52:b5:4e:41:e4:6b:36:9b: 13:fd:d5:35:53:4f:80:70:99:e6:27:19:de:a8:c5:74:a0:5c: 54:37:6d:79:82:b4:04:71:4d:ff:c8:98:95:d3:d6:cb:44:b7: 53:72:66:bd -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAIQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjU5RTUxMTAvBgNVBAUTKEU0N0JGNzAyNTQ1MzI2OTdEMjBEMEQzMTEwRjYyNTM3 MEQ2NUZBODMwHhcNMjQwMjAxMDg0MzM2WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWJiNTliOC05MTlkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAotd3DTrzkpMu168iibWCxP2X9eGje1vZ4gxgJ5sGEH5ObELRg3SRcfeu/Qi1 5iO+f7+K2RSobxF0RwrCJPc3uz09XrWmb+ppnzkEq+MMd3+Jf0wa3oPXBpee+ZCh aQH4PyiF9hgQAJDfhSXeJJZpPsgjvWENoTOmXwfKEufmvnTlFn4+mZ+PkpIBOqjw 9kZZnhEdtOQ5IJI+JQx/h/kVzjdVmA8oGaCtVy6lDF9T8qyex6qlfR9wvw6hYttN bh5p/JYpdbSWrmR+0yLegDsYsAy/L79L9semYxBM6Tzx9Wr1bSIwE1TZUKxZODX0 XP4MEmOypWjPUsVX/Jxn9sf1ewIDAQABo4IClTCCApEwHQYDVR0OBBYEFA3ZAJic zPb8Odh6eA8FyCYGphhkMB8GA1UdIwQYMBaAFOR79wJUUyaX0g0NMRD2JTcNZfqD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCNTlFNS9ERDlGMUY3QzND MDExMUVFOTFDQkUxNTdDNEY5QUUwMi81SHYzQWxSVEpwZlNEUTB4RVBZbE53MWwt b00uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzVIdjNBbFJUSnBmU0RRMHhFUFlsTncxbC1vTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjU5RTUvREQ5RjFGN0MzQzAxMTFFRTkxQ0JFMTU3QzRGOUFFMDIvRkQwMkY2NDhD MEREMTFFRTkzNTYwNjc4QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn7XIwDQYJKoZIhvcNAQELBQADggEBAGK4G0os/NvMkq8I 6I6V7fxwQRitQc99ytuPLp6YF5VCpTuuAQm6KVumdY7WfUDiFfV/dCsRS4MXE6EQ MWEvCE19n7N6FdgsVb/PeFNEa+3KQQRLe1dbR586dncQSt4Zjhl2YP7cI3turAnR Mv2H9MaBLTaRI1xBQEaamLUW2qPtsR00b9qsa1UYfnNpTslWo1/vNpBDAQpI7HXj HBWuRkXanUQbr8zZxnTqt9p4/JryCHqmKQpu5r8M4SSVV2DZdQ2HWywNbfKKsZmd 0jQIUzxStU5B5Gs2mxP91TVTT4BwmeYnGd6oxXSgXFQ3bXmCtARxTf/ImJXT1stE t1NyZr0= -----END CERTIFICATE-----Generated at Sat Jun 1 09:10:37 2024 by rpki-client on console-fra.rpki-client.org