$ rpki-client -vvf rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/ED388A1840BB11E9A6718844C4F9AE02.roa File: ED388A1840BB11E9A6718844C4F9AE02.roa (raw, json) Hash identifier: RCSVNIFzc0MxQU2nRucYD4IwsTnamrdTeNXUkUDA6tE= Subject key identifier: A8:1D:14:1A:EA:33:B8:B9:97:11:D4:41:9E:30:09:87:DE:0A:A7:7F Certificate issuer: /CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Certificate serial: 11AC Authority key identifier: EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/ED388A1840BB11E9A6718844C4F9AE02.roa Signing time: Wed 17 Apr 2024 02:21:36 +0000 ROA not before: Wed 17 Apr 2024 02:21:36 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 134451 IP address blocks: 103.60.9.0/24 maxlen: 24 2406:f400:120::/44 maxlen: 44 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4524 (0x11ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BFE6A/serialNumber=EF62F155C1971D504941F571EEDFAC0AFCC52859 Validity Not Before: Apr 17 02:21:36 2024 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=661f3230-0bd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b2:28:7f:62:db:48:47:39:ca:4d:02:7d:37: 0d:cb:98:59:8b:70:b5:54:1e:99:90:b2:19:08:07: 5d:67:57:c2:7a:80:31:d8:51:1b:6f:a4:ad:6c:4b: 17:c2:b5:12:58:26:3b:d9:68:38:bf:d1:b2:4a:27: 42:a2:d0:3d:51:52:c0:f5:d7:68:fb:00:d0:1c:7b: 5c:7b:82:00:76:75:24:be:ed:8c:e5:19:5e:d6:ad: 2a:a0:a7:05:8e:38:b0:00:08:c6:85:f4:31:63:59: a9:b6:f4:95:52:45:8f:d0:a4:65:07:be:92:79:5e: a5:45:2d:fd:55:a1:ca:c5:da:e9:a6:63:ba:af:b8: 53:1e:a9:9d:b3:af:68:71:d7:e1:e4:17:3d:91:b9: 0e:86:73:6a:2b:96:73:7d:c7:90:5a:81:ef:d4:c9: c9:f9:40:ca:8d:31:ea:d0:17:e9:8c:c8:e0:1b:96: 08:eb:8a:26:34:67:bd:29:01:a4:6a:99:73:5a:a8: a0:a0:14:90:6d:ed:d4:69:f1:f7:39:30:13:dd:5e: 5c:ac:5a:c0:f5:35:66:05:87:72:07:dd:9c:c3:9a: 5d:09:db:1f:cc:0e:8f:1e:74:7c:7c:b8:d8:10:6c: c4:c9:c6:69:67:3f:ba:d1:69:bb:75:78:e0:45:86: 22:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:1D:14:1A:EA:33:B8:B9:97:11:D4:41:9E:30:09:87:DE:0A:A7:7F X509v3 Authority Key Identifier: keyid:EF:62:F1:55:C1:97:1D:50:49:41:F5:71:EE:DF:AC:0A:FC:C5:28:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/72LxVcGXHVBJQfVx7t-sCvzFKFk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/72LxVcGXHVBJQfVx7t-sCvzFKFk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BFE6A/1D64328ED38711E8BD70755CC4F9AE02/ED388A1840BB11E9A6718844C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.9.0/24 IPv6: 2406:f400:120::/44 Signature Algorithm: sha256WithRSAEncryption 5d:6a:0e:61:16:03:fc:34:5d:0c:3b:5b:7f:9e:06:a5:cc:e2: a8:aa:62:f8:16:79:ad:dd:61:99:bf:37:32:a3:86:55:23:f4: 3d:31:c2:3c:c9:bd:ed:d7:96:ab:64:69:03:28:67:9c:47:52: 3d:e0:4c:01:d2:9d:b7:6e:a4:dc:83:f5:ac:9c:85:71:03:06: fe:69:49:a6:f1:1d:47:0c:01:6f:3e:e0:44:ed:7d:e1:27:31: a7:8a:16:cc:6b:30:10:c1:fa:b2:90:b4:0a:e2:3a:bc:7b:4d: 3e:8d:c1:c9:fb:40:69:ae:89:6a:3d:2e:bd:c3:0d:ca:72:ab: 70:bc:4d:e4:aa:a3:f0:43:13:61:09:92:3a:48:ea:a8:f4:14: a2:47:14:bf:cc:e5:15:13:3c:5d:36:a2:8b:d1:30:29:82:ab: f5:2b:eb:6f:10:e1:58:fb:b3:2c:e0:51:73:9d:ea:2b:20:30: aa:55:50:bd:07:23:67:a5:56:f6:3a:fe:aa:70:67:b1:eb:d3: 53:cf:d2:6a:f8:2e:ad:9e:a6:03:7d:89:6c:19:68:63:73:f9: 9d:d5:bb:5d:04:fb:53:00:9c:26:84:24:ff:c3:8a:08:eb:00: 00:ed:28:1e:ba:29:59:94:a3:b9:2c:94:6c:24:bc:37:4e:8c: 91:01:1c:25 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICEawwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkZFNkExMTAvBgNVBAUTKEVGNjJGMTU1QzE5NzFENTA0OTQxRjU3MUVFREZBQzBB RkNDNTI4NTkwHhcNMjQwNDE3MDIyMTM2WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjFmMzIzMC0wYmQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAw7Iof2LbSEc5yk0CfTcNy5hZi3C1VB6ZkLIZCAddZ1fCeoAx2FEbb6StbEsX wrUSWCY72Wg4v9GySidCotA9UVLA9ddo+wDQHHtce4IAdnUkvu2M5Rle1q0qoKcF jjiwAAjGhfQxY1mptvSVUkWP0KRlB76SeV6lRS39VaHKxdrppmO6r7hTHqmds69o cdfh5Bc9kbkOhnNqK5ZzfceQWoHv1MnJ+UDKjTHq0BfpjMjgG5YI64omNGe9KQGk aplzWqigoBSQbe3UafH3OTAT3V5crFrA9TVmBYdyB92cw5pdCdsfzA6PHnR8fLjY EGzEycZpZz+60Wm7dXjgRYYitwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFKgdFBrq M7i5lxHUQZ4wCYfeCqd/MB8GA1UdIwQYMBaAFO9i8VXBlx1QSUH1ce7frAr8xShZ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRkU2QS8xRDY0MzI4RUQz ODcxMUU4QkQ3MDc1NUNDNEY5QUUwMi83Mkx4VmNHWEhWQkpRZlZ4N3Qtc0N2ekZL RmsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzcyTHhWY0dYSFZCSlFmVng3dC1zQ3Z6RktGay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkZFNkEvMUQ2NDMyOEVEMzg3MTFFOEJENzA3NTVDQzRGOUFFMDIvRUQzODhBMTg0 MEJCMTFFOUE2NzE4ODQ0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBABnPAkwDwQCAAIwCQMHBCQG9AABIDANBgkqhkiG9w0BAQsF AAOCAQEAXWoOYRYD/DRdDDtbf54GpcziqKpi+BZ5rd1hmb83MqOGVSP0PTHCPMm9 7deWq2RpAyhnnEdSPeBMAdKdt26k3IP1rJyFcQMG/mlJpvEdRwwBbz7gRO194Scx p4oWzGswEMH6spC0CuI6vHtNPo3ByftAaa6Jaj0uvcMNynKrcLxN5Kqj8EMTYQmS OkjqqPQUokcUv8zlFRM8XTaii9EwKYKr9SvrbxDhWPuzLOBRc53qKyAwqlVQvQcj Z6VW9jr+qnBnsevTU8/SavgurZ6mA32JbBloY3P5ndW7XQT7UwCcJoQk/8OKCOsA AO0oHropWZSjuSyUbCS8N06MkQEcJQ== -----END CERTIFICATE-----Generated at Sat May 18 18:12:33 2024 by rpki-client on console-fra.rpki-client.org