$ rpki-client -vvf rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/064042F259F511EDB22E3F2BC4F9AE02.roa File: 064042F259F511EDB22E3F2BC4F9AE02.roa (raw, json) Hash identifier: 2LI3hsctrVmuInQBZ3jfIWPFtGhhM4eQLTl2IYITdCU= Subject key identifier: 53:89:35:39:B2:F2:0B:FB:AB:0F:BE:7A:DC:B0:DE:4D:A5:C2:9A:43 Certificate issuer: /CN=A91C1FA7/serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Certificate serial: CB Authority key identifier: FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/064042F259F511EDB22E3F2BC4F9AE02.roa Signing time: Tue 21 Nov 2023 04:35:32 +0000 ROA not before: Tue 21 Nov 2023 04:35:32 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 150393 IP address blocks: 103.29.182.0/24 maxlen: 24 103.29.183.0/24 maxlen: 24 2001:df1:7840::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 05:53:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 203 (0xcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C1FA7/serialNumber=FF5D132BC66AAA2BBCF65C3E5FE89A0C371D8B3A Validity Not Before: Nov 21 04:35:32 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=655c3394-8c12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a6:a6:69:c5:d2:ad:f5:5f:8d:6b:a3:fe:15: 18:11:7c:be:8b:f8:90:df:fb:16:49:b5:be:0d:0d: d1:1f:38:79:c3:49:0d:ad:31:4c:d8:8a:86:e1:b6: f4:06:41:41:b5:e6:c5:c0:ba:9f:38:a7:f4:a4:44: 16:e4:4d:fc:12:61:9a:69:96:91:3d:27:63:05:9a: 1f:6d:92:36:56:31:59:df:6a:ec:1a:57:7a:76:0b: dc:0a:76:0d:93:88:16:6f:fe:0d:60:ad:83:cc:98: 9e:bc:f0:4e:9f:98:84:13:08:7b:04:57:98:25:4f: c9:1f:ec:74:6a:2f:96:b8:39:cf:85:84:31:78:0d: 17:b6:76:d7:74:81:50:47:0d:cd:89:ce:3f:d8:6b: 51:f0:33:c5:e0:c6:8b:11:f6:ab:37:7d:39:83:62: ff:62:b7:a5:bf:c6:a5:af:6e:35:31:50:92:ba:0a: 79:d2:cb:91:8d:e5:f7:68:89:62:6d:e5:b0:e6:a5: d3:57:8b:32:b6:44:5e:a7:73:df:2c:20:c3:88:45: 0f:46:bc:0d:49:e3:cc:f3:f2:67:ef:96:31:9b:5e: af:3a:b2:29:08:ac:db:27:5c:b8:0c:1f:ce:d6:ab: 31:39:66:eb:72:aa:0c:c2:25:97:d7:04:6b:45:aa: c7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:89:35:39:B2:F2:0B:FB:AB:0F:BE:7A:DC:B0:DE:4D:A5:C2:9A:43 X509v3 Authority Key Identifier: keyid:FF:5D:13:2B:C6:6A:AA:2B:BC:F6:5C:3E:5F:E8:9A:0C:37:1D:8B:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/_10TK8Zqqiu89lw-X-iaDDcdizo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_10TK8Zqqiu89lw-X-iaDDcdizo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C1FA7/2D991CD0599F11EDB967AE39C4F9AE02/064042F259F511EDB22E3F2BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.29.182.0/23 IPv6: 2001:df1:7840::/48 Signature Algorithm: sha256WithRSAEncryption 3f:c9:fc:3b:27:3d:d8:82:fa:28:15:17:8e:63:ff:10:9f:e7: 58:5c:c6:f2:24:9d:a7:be:d0:41:d7:91:6c:9d:a9:79:9b:e2: 2e:dd:16:53:8b:14:b8:c8:7f:b7:38:31:98:a1:05:9e:96:ee: e4:6c:0b:a8:6c:5c:00:75:fb:34:41:c6:2f:8f:20:85:e8:74: fe:3c:f1:f8:7a:91:1d:2b:62:f3:4c:c4:4b:4a:c7:87:7b:41: 21:42:3f:cd:40:cd:86:b4:bf:7f:12:82:be:48:65:83:13:cc: 8c:e1:62:05:05:3f:32:09:cd:ec:59:36:31:81:f0:c7:69:b1: 74:46:bb:aa:e9:8e:f5:69:9f:16:1c:9b:d6:0c:74:89:ed:af: fd:32:b0:f7:fe:75:ff:f7:ea:f7:25:3e:1a:63:67:d2:b8:15: 84:8f:0d:de:9b:af:57:18:f1:0f:5b:9a:bd:3c:96:cb:ed:5f: ae:f2:55:c8:8b:c5:59:10:14:d9:13:ae:74:ca:d8:9e:2d:91: f6:62:d9:da:60:82:b1:1b:dd:f6:5f:16:ea:a5:ed:3f:4a:8c: 8c:16:40:cd:37:57:24:48:76:7d:a2:af:76:ac:1c:32:5f:df: 64:7e:91:17:81:a6:af:19:f9:67:1b:14:c7:1d:2d:69:71:dd: 66:5e:1d:3b -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAMswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzFGQTcxMTAvBgNVBAUTKEZGNUQxMzJCQzY2QUFBMkJCQ0Y2NUMzRTVGRTg5QTBD MzcxRDhCM0EwHhcNMjMxMTIxMDQzNTMyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTVjMzM5NC04YzEyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAt6amacXSrfVfjWuj/hUYEXy+i/iQ3/sWSbW+DQ3RHzh5w0kNrTFM2IqG4bb0 BkFBtebFwLqfOKf0pEQW5E38EmGaaZaRPSdjBZofbZI2VjFZ32rsGld6dgvcCnYN k4gWb/4NYK2DzJievPBOn5iEEwh7BFeYJU/JH+x0ai+WuDnPhYQxeA0XtnbXdIFQ Rw3Nic4/2GtR8DPF4MaLEfarN305g2L/Yrelv8alr241MVCSugp50suRjeX3aIli beWw5qXTV4sytkRep3PfLCDDiEUPRrwNSePM8/Jn75Yxm16vOrIpCKzbJ1y4DB/O 1qsxOWbrcqoMwiWX1wRrRarH/QIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFFOJNTmy 8gv7qw++etyw3k2lwppDMB8GA1UdIwQYMBaAFP9dEyvGaqorvPZcPl/omgw3HYs6 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDMUZBNy8yRDk5MUNEMDU5 OUYxMUVEQjk2N0FFMzlDNEY5QUUwMi9fMTBUSzhacXFpdTg5bHctWC1pYUREY2Rp em8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL18xMFRLOFpxcWl1ODlsdy1YLWlhRERjZGl6by5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzFGQTcvMkQ5OTFDRDA1OTlGMTFFREI5NjdBRTM5QzRGOUFFMDIvMDY0MDQyRjI1 OUY1MTFFREIyMkUzRjJCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnHbYwDwQCAAIwCQMHACABDfF4QDANBgkqhkiG9w0BAQsF AAOCAQEAP8n8Oyc92IL6KBUXjmP/EJ/nWFzG8iSdp77QQdeRbJ2peZviLt0WU4sU uMh/tzgxmKEFnpbu5GwLqGxcAHX7NEHGL48gheh0/jzx+HqRHSti80zES0rHh3tB IUI/zUDNhrS/fxKCvkhlgxPMjOFiBQU/MgnN7Fk2MYHwx2mxdEa7qumO9WmfFhyb 1gx0ie2v/TKw9/51//fq9yU+GmNn0rgVhI8N3puvVxjxD1uavTyWy+1frvJVyIvF WRAU2ROudMrYni2R9mLZ2mCCsRvd9l8W6qXtP0qMjBZAzTdXJEh2faKvdqwcMl/f ZH6RF4Gmrxn5ZxsUxx0taXHdZl4dOw== -----END CERTIFICATE-----Generated at Sat Jun 1 07:09:21 2024 by rpki-client on console-fra.rpki-client.org