$ rpki-client -vvf rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa File: 6243075E653411EB98060C17C4F9AE02.roa (raw, json) Hash identifier: i+2sMeFnN2Sz1WX3JNBh/RvHxkm1U9RqAe+avTefmTI= Subject key identifier: B8:73:16:70:F7:B3:45:A0:C0:73:D8:87:13:34:15:1D:E3:BA:BB:32 Certificate issuer: /CN=A91B927E/serialNumber=2AC0AB4B5F3BB5B0EF79BD21A649CAFFE7F9C20A Certificate serial: 05D2 Authority key identifier: 2A:C0:AB:4B:5F:3B:B5:B0:EF:79:BD:21:A6:49:CA:FF:E7:F9:C2:0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa Signing time: Thu 16 Nov 2023 20:58:17 +0000 ROA not before: Thu 16 Nov 2023 20:58:17 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 135130 IP address blocks: 103.122.250.0/24 maxlen: 24 103.122.251.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.crl rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 21:36:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1490 (0x5d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B927E/serialNumber=2AC0AB4B5F3BB5B0EF79BD21A649CAFFE7F9C20A Validity Not Before: Nov 16 20:58:17 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65568269-d149 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ce:4e:ca:e6:e4:66:33:ee:fd:ac:b8:e1:e6: b9:33:b1:34:ab:2e:b0:ba:83:40:6b:84:7b:11:c0: 5d:c4:77:ea:cb:38:92:97:04:69:80:4d:b4:8c:20: 31:43:94:ba:69:81:0c:59:87:c3:dc:d0:59:c7:40: dc:be:6a:79:3c:ab:43:c2:e9:48:b4:ee:84:4b:73: 90:22:c1:1f:e0:c7:79:e3:ea:72:7b:ce:70:7b:a7: 2e:86:ac:2e:e8:4e:38:74:d5:16:1c:88:a2:de:3c: 5b:c2:3e:c0:0b:30:0e:0d:0f:80:6b:5b:62:20:27: a5:47:a9:f6:05:a9:08:e7:99:24:a7:97:02:72:2c: 5e:3d:0f:f1:a3:f3:b0:c4:90:26:86:26:d4:5a:c7: df:e8:2a:63:f6:f5:cb:8c:d3:82:3c:86:72:4a:c3: c1:d5:78:4c:64:d7:b9:69:43:41:7d:fa:ed:6b:7e: bf:d0:c0:90:b9:9b:37:9b:d8:04:09:f0:02:75:9b: 06:b4:7b:29:dc:2c:2d:8b:46:03:30:5b:4d:a4:cd: 1d:06:83:6e:ee:e5:46:ad:21:d3:4f:20:fc:e6:f3: 4f:94:a1:da:60:a5:45:a0:0d:2b:74:13:09:3b:1e: 58:68:96:fb:f5:c2:d9:a3:d5:9c:55:7a:2d:9b:a0: 41:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:73:16:70:F7:B3:45:A0:C0:73:D8:87:13:34:15:1D:E3:BA:BB:32 X509v3 Authority Key Identifier: keyid:2A:C0:AB:4B:5F:3B:B5:B0:EF:79:BD:21:A6:49:CA:FF:E7:F9:C2:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/KsCrS187tbDveb0hpknK_-f5wgo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KsCrS187tbDveb0hpknK_-f5wgo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B927E/CCD6ED1C68DF11EA97B15524C4F9AE02/6243075E653411EB98060C17C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.122.250.0/23 Signature Algorithm: sha256WithRSAEncryption a4:1f:32:15:36:16:e6:e5:2d:48:91:a9:0f:ca:97:28:83:2e: 1d:c4:1b:c5:3b:f8:f0:94:2e:2b:f5:c8:63:8d:69:81:4a:ce: 40:e8:42:cf:c3:1b:b6:bd:2a:f0:6f:78:8f:c1:3d:56:42:70: 9c:14:e1:2a:7b:4d:6e:4e:bf:c0:ed:dd:dd:fb:42:d7:52:ad: 30:c3:a1:2f:68:91:4b:00:d9:11:2c:d1:fe:ab:7a:af:17:8c: ed:b4:fa:84:da:95:c0:d5:ea:33:ef:34:e4:e8:eb:d3:c7:b6: 69:f2:d9:e7:49:d0:51:9a:3c:90:8e:77:23:28:e2:13:25:7e: ac:b2:94:d3:0a:1a:fc:88:0b:91:dd:22:e7:cd:15:a0:3b:e5: a0:ac:7b:d1:15:8f:38:26:2d:87:8b:8a:85:41:3f:58:8a:42: 68:16:52:2e:44:3b:c2:09:69:de:4b:96:d7:5d:17:ef:09:c1: b1:56:0a:f4:bb:05:19:d1:eb:40:71:e5:f6:4f:7a:56:38:96: 95:b0:e1:bf:8e:bf:21:49:16:49:4d:63:dc:fe:0b:f0:07:51: 23:35:17:6e:09:87:cb:a3:b8:62:f9:b8:11:4b:56:50:d0:a7: 35:82:b0:af:d9:10:d0:d3:0d:aa:28:80:09:e4:41:f5:58:3c: 7e:54:d5:f2 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBdIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjkyN0UxMTAvBgNVBAUTKDJBQzBBQjRCNUYzQkI1QjBFRjc5QkQyMUE2NDlDQUZG RTdGOUMyMEEwHhcNMjMxMTE2MjA1ODE3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTU2ODI2OS1kMTQ5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwM5OyubkZjPu/ay44ea5M7E0qy6wuoNAa4R7EcBdxHfqyziSlwRpgE20jCAx Q5S6aYEMWYfD3NBZx0Dcvmp5PKtDwulItO6ES3OQIsEf4Md54+pye85we6cuhqwu 6E44dNUWHIii3jxbwj7ACzAODQ+Aa1tiICelR6n2BakI55kkp5cCcixePQ/xo/Ow xJAmhibUWsff6Cpj9vXLjNOCPIZySsPB1XhMZNe5aUNBffrta36/0MCQuZs3m9gE CfACdZsGtHsp3Cwti0YDMFtNpM0dBoNu7uVGrSHTTyD85vNPlKHaYKVFoA0rdBMJ Ox5YaJb79cLZo9WcVXotm6BB9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFLhzFnD3 s0WgwHPYhxM0FR3jursyMB8GA1UdIwQYMBaAFCrAq0tfO7Ww73m9IaZJyv/n+cIK MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCOTI3RS9DQ0Q2RUQxQzY4 REYxMUVBOTdCMTU1MjRDNEY5QUUwMi9Lc0NyUzE4N3RiRHZlYjBocGtuS18tZjV3 Z28uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0tzQ3JTMTg3dGJEdmViMGhwa25LXy1mNXdnby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjkyN0UvQ0NENkVEMUM2OERGMTFFQTk3QjE1NTI0QzRGOUFFMDIvNjI0MzA3NUU2 NTM0MTFFQjk4MDYwQzE3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnevowDQYJKoZIhvcNAQELBQADggEBAKQfMhU2FublLUiR qQ/KlyiDLh3EG8U7+PCULiv1yGONaYFKzkDoQs/DG7a9KvBveI/BPVZCcJwU4Sp7 TW5Ov8Dt3d37QtdSrTDDoS9okUsA2REs0f6req8XjO20+oTalcDV6jPvNOTo69PH tmny2edJ0FGaPJCOdyMo4hMlfqyylNMKGvyIC5HdIufNFaA75aCse9EVjzgmLYeL ioVBP1iKQmgWUi5EO8IJad5LltddF+8JwbFWCvS7BRnR60Bx5fZPelY4lpWw4b+O vyFJFklNY9z+C/AHUSM1F24Jh8ujuGL5uBFLVlDQpzWCsK/ZENDTDaoogAnkQfVY PH5U1fI= -----END CERTIFICATE-----Generated at Fri May 31 22:13:10 2024 by rpki-client on console-fra.rpki-client.org