$ rpki-client -vvf rpki.apnic.net/member_repository/A91BD829/99D7C6A46FEF11EAAF227483C4F9AE02/1D28516E70DA11EA957FDE74C4F9AE02.roa File: 1D28516E70DA11EA957FDE74C4F9AE02.roa (raw, json) Hash identifier: TtnkqXyCfsOgWEJOnfCpcQpq9xJlNo2GEpRLhLgdwcg= Subject key identifier: 40:D4:9A:D1:77:00:52:9E:72:5C:46:91:74:75:C4:85:F1:F2:B3:52 Certificate issuer: /CN=A91BD829/serialNumber=DCCD553552BAF8A65C1A066B3347F793244F575E Certificate serial: 08B3 Authority key identifier: DC:CD:55:35:52:BA:F8:A6:5C:1A:06:6B:33:47:F7:93:24:4F:57:5E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3M1VNVK6-KZcGgZrM0f3kyRPV14.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BD829/99D7C6A46FEF11EAAF227483C4F9AE02/1D28516E70DA11EA957FDE74C4F9AE02.roa Signing time: Fri 26 May 2023 22:03:35 +0000 ROA not before: Fri 26 May 2023 22:03:35 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 58477 IP address blocks: 103.215.72.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BD829/99D7C6A46FEF11EAAF227483C4F9AE02/3M1VNVK6-KZcGgZrM0f3kyRPV14.crl rsync://rpki.apnic.net/member_repository/A91BD829/99D7C6A46FEF11EAAF227483C4F9AE02/3M1VNVK6-KZcGgZrM0f3kyRPV14.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3M1VNVK6-KZcGgZrM0f3kyRPV14.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 13 May 2024 21:09:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2227 (0x8b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BD829/serialNumber=DCCD553552BAF8A65C1A066B3347F793244F575E Validity Not Before: May 26 22:03:35 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64712cb7-d729 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:90:b6:60:4f:74:00:02:d2:01:7b:dc:00:60: d0:40:44:5b:12:df:3f:77:f1:d7:60:81:be:5b:b0: e4:ec:37:47:7d:98:a4:59:d9:e6:72:1f:ab:83:0d: b4:89:86:6e:e8:c4:5b:fc:57:2a:66:29:ef:0e:c4: cf:80:90:1d:40:c1:29:45:63:28:a0:5a:9a:5f:1e: f4:3e:ec:2c:3a:2d:92:67:22:e1:ab:d7:72:05:60: 66:fa:46:ca:a6:1d:92:d0:3e:93:0f:3d:5b:20:75: 24:80:81:b2:46:01:57:f2:da:06:13:24:fe:08:31: 5c:01:9c:f8:26:06:99:b0:4c:48:88:35:4f:45:4b: 33:d1:c4:87:42:17:11:f8:2a:5f:2e:9a:a2:46:1f: bc:9a:e6:c4:31:a9:89:88:dd:99:58:27:45:b3:4f: b3:4c:29:ae:cb:c1:47:73:73:c1:84:de:70:88:32: a4:ec:3d:b9:9b:b0:60:6f:6c:da:9e:f8:80:26:d1: 4b:ef:19:5b:49:f7:91:92:b0:58:42:aa:bc:f7:1e: e4:7f:00:4b:4b:3e:d3:d6:4b:55:bf:01:aa:cd:62: 91:64:6e:04:74:d9:1e:54:38:e5:c2:81:ba:4a:f6: 0e:41:b4:4f:4a:9f:28:5f:6e:d1:fc:e5:41:ca:ec: 12:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D4:9A:D1:77:00:52:9E:72:5C:46:91:74:75:C4:85:F1:F2:B3:52 X509v3 Authority Key Identifier: keyid:DC:CD:55:35:52:BA:F8:A6:5C:1A:06:6B:33:47:F7:93:24:4F:57:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BD829/99D7C6A46FEF11EAAF227483C4F9AE02/3M1VNVK6-KZcGgZrM0f3kyRPV14.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3M1VNVK6-KZcGgZrM0f3kyRPV14.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BD829/99D7C6A46FEF11EAAF227483C4F9AE02/1D28516E70DA11EA957FDE74C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.215.72.0/24 Signature Algorithm: sha256WithRSAEncryption 80:0b:f9:f6:bd:da:9c:24:cb:42:71:d9:57:f1:ba:a0:7a:d3: 8f:6e:4f:e7:d7:92:b5:a5:bb:e6:bd:a0:50:92:de:89:6a:7d: b6:13:aa:18:5d:3c:a0:14:8f:74:4b:8c:c7:49:4b:5e:4b:6c: 2e:d2:45:67:96:04:27:a9:4f:e1:d3:86:dc:c5:84:df:3a:04: 5c:f1:e8:7e:93:f1:70:d7:7b:9d:9e:36:d3:1b:0c:c5:84:bd: 5a:96:12:6c:77:e1:ec:ce:ea:96:e4:ce:a5:4c:a0:53:d9:6f: c8:10:e6:c3:da:ae:71:11:93:aa:de:aa:97:18:71:73:17:c9: 79:36:13:43:a9:a2:63:c8:cf:74:20:83:8c:d1:af:25:af:51: 9d:cc:21:b1:bc:18:dd:16:b1:aa:ab:4c:49:5a:ae:3f:81:95: 90:03:68:39:4b:e4:b3:38:25:d2:24:8e:0f:87:79:89:3a:95: 65:e2:fe:83:eb:9e:86:d5:c8:ff:1d:db:dd:be:75:cf:f2:6c: 2c:6f:55:45:c4:ab:08:5c:73:51:2f:8a:21:2c:d5:66:bb:48: d4:f4:c0:12:8a:49:f2:c3:f8:df:7e:47:0b:8c:86:b8:9f:5f: 39:0d:f5:a9:d3:b5:15:c5:ee:e3:b5:2f:01:49:ac:99:03:98: 3d:8f:3e:f6 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCLMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkQ4MjkxMTAvBgNVBAUTKERDQ0Q1NTM1NTJCQUY4QTY1QzFBMDY2QjMzNDdGNzkz MjQ0RjU3NUUwHhcNMjMwNTI2MjIwMzM1WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxMmNiNy1kNzI5MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqJC2YE90AALSAXvcAGDQQERbEt8/d/HXYIG+W7Dk7DdHfZikWdnmch+rgw20 iYZu6MRb/FcqZinvDsTPgJAdQMEpRWMooFqaXx70PuwsOi2SZyLhq9dyBWBm+kbK ph2S0D6TDz1bIHUkgIGyRgFX8toGEyT+CDFcAZz4JgaZsExIiDVPRUsz0cSHQhcR +CpfLpqiRh+8mubEMamJiN2ZWCdFs0+zTCmuy8FHc3PBhN5wiDKk7D25m7Bgb2za nviAJtFL7xlbSfeRkrBYQqq89x7kfwBLSz7T1ktVvwGqzWKRZG4EdNkeVDjlwoG6 SvYOQbRPSp8oX27R/OVByuwSLQIDAQABo4IClTCCApEwHQYDVR0OBBYEFEDUmtF3 AFKeclxGkXR1xIXx8rNSMB8GA1UdIwQYMBaAFNzNVTVSuvimXBoGazNH95MkT1de MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRDgyOS85OUQ3QzZBNDZG RUYxMUVBQUYyMjc0ODNDNEY5QUUwMi8zTTFWTlZLNi1LWmNHZ1pyTTBmM2t5UlBW MTQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzNNMVZOVks2LUtaY0dnWnJNMGYza3lSUFYxNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkQ4MjkvOTlEN0M2QTQ2RkVGMTFFQUFGMjI3NDgzQzRGOUFFMDIvMUQyODUxNkU3 MERBMTFFQTk1N0ZERTc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABn10gwDQYJKoZIhvcNAQELBQADggEBAIAL+fa92pwky0Jx 2VfxuqB6049uT+fXkrWlu+a9oFCS3olqfbYTqhhdPKAUj3RLjMdJS15LbC7SRWeW BCepT+HThtzFhN86BFzx6H6T8XDXe52eNtMbDMWEvVqWEmx34ezO6pbkzqVMoFPZ b8gQ5sParnERk6reqpcYcXMXyXk2E0OpomPIz3Qgg4zRryWvUZ3MIbG8GN0Wsaqr TElarj+BlZADaDlL5LM4JdIkjg+HeYk6lWXi/oPrnobVyP8d292+dc/ybCxvVUXE qwhcc1EviiEs1Wa7SNT0wBKKSfLD+N9+RwuMhrifXzkN9anTtRXF7uO1LwFJrJkD mD2PPvY= -----END CERTIFICATE-----Generated at Mon May 6 23:05:48 2024 by rpki-client on console-fra.rpki-client.org