$ rpki-client -vvf rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/D2039A56AABC11EEA0370F2CC4F9AE02.roa File: D2039A56AABC11EEA0370F2CC4F9AE02.roa (raw, json) Hash identifier: V5P8MqryTvl9uPbcl4kRoIx/Fd4WpfSFp93LMG/SR30= Subject key identifier: 76:C1:D2:B4:71:64:37:12:5B:96:FF:6D:E8:4C:21:2E:97:BC:DD:D3 Certificate issuer: /CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Certificate serial: 089C Authority key identifier: 6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/D2039A56AABC11EEA0370F2CC4F9AE02.roa Signing time: Sat 16 Nov 2024 20:39:02 +0000 ROA not before: Sat 16 Nov 2024 20:39:02 +0000 ROA not after: Sat 31 Jan 2026 00:00:00 +0000 asID: 55342 IP address blocks: 103.157.184.0/23 maxlen: 23 2406:2940::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 19:56:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2204 (0x89c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CAFC4/serialNumber=6F13F551009F248A6D987436004E85795156927B Validity Not Before: Nov 16 20:39:02 2024 GMT Not After : Jan 31 00:00:00 2026 GMT Subject: CN=673902e6-b866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7a:dd:ee:e8:c0:58:a2:1a:4a:45:6a:2c:5b: 32:fb:bb:1d:eb:52:2f:84:ae:01:1a:83:b4:a2:80: eb:3f:f7:75:c5:ae:b2:a2:3c:07:0e:de:b3:93:0f: 03:09:5f:92:b6:9c:55:00:6a:5d:38:d0:f5:96:32: 61:c6:5f:9e:48:a6:9f:34:b5:bf:49:d9:d8:f3:b5: 9f:17:6d:b4:93:08:30:f3:33:35:26:41:6c:b8:ee: df:dc:70:7f:da:1e:0e:a5:c9:37:e6:a1:0e:75:a3: 50:f2:6b:19:72:c1:ae:3e:68:42:30:5f:11:ab:16: 96:2a:af:e2:f2:de:d0:dd:19:d1:40:93:cf:bd:e4: ad:5c:14:da:17:ee:da:a8:81:2b:f3:fc:d4:49:fa: 16:60:15:c1:a5:d9:ea:e2:26:fb:4c:e1:40:0a:e0: 2f:70:d5:70:81:d3:b9:e6:2c:84:32:2e:3c:78:05: a2:30:9a:82:45:76:72:12:8f:47:09:9a:e4:20:bb: 19:72:f6:1d:52:22:02:91:a2:85:b9:55:15:0e:44: 79:e0:fd:1b:09:fa:bd:ba:77:00:07:c9:06:ea:89: 20:12:7a:df:56:37:42:ae:ff:45:c3:94:f8:f2:85: b3:18:ce:00:4c:c6:fd:4c:a4:3a:6b:85:f5:a2:8d: 35:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:C1:D2:B4:71:64:37:12:5B:96:FF:6D:E8:4C:21:2E:97:BC:DD:D3 X509v3 Authority Key Identifier: keyid:6F:13:F5:51:00:9F:24:8A:6D:98:74:36:00:4E:85:79:51:56:92:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/bxP1UQCfJIptmHQ2AE6FeVFWkns.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bxP1UQCfJIptmHQ2AE6FeVFWkns.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CAFC4/BC6062DCAF8A11EA8542D85FC4F9AE02/D2039A56AABC11EEA0370F2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.157.184.0/23 IPv6: 2406:2940::/32 Signature Algorithm: sha256WithRSAEncryption 52:de:83:3e:25:4f:f1:ad:63:22:d8:7d:08:5e:83:68:13:9f: 37:60:d7:36:fc:dd:04:9e:86:42:8d:02:9d:93:22:7e:7b:b4: 93:e7:82:1f:b8:49:e8:fd:74:16:33:b1:12:15:d9:ae:0d:38: 6b:42:09:ec:0f:bb:7d:70:96:59:37:57:33:e3:77:f4:1e:bc: 84:dd:7a:13:88:d0:38:b0:c4:7a:53:a5:94:42:0f:be:a9:65: 97:d7:81:3e:52:5b:7f:cf:56:ff:e9:8a:9f:ac:01:84:a0:d1: 32:7a:cb:f9:8a:b1:76:1d:8e:4b:7f:9c:e6:ff:ae:77:81:64: d3:da:70:fc:d0:fb:09:4f:82:11:cc:79:0e:c3:2e:87:6f:8e: fe:74:4f:a8:c1:d9:e2:45:41:64:6e:0d:ae:b5:5c:46:c7:41: fb:6d:d6:29:ce:1f:63:74:74:ae:41:96:45:27:57:c4:03:ff: 54:40:9f:4c:b1:a9:f2:a2:0e:8a:d8:85:d9:f5:d7:fa:3d:0f: 4d:cf:3b:04:54:32:65:32:44:83:d1:95:a2:e1:5b:a1:2e:73: 55:0d:99:5a:ad:e1:95:33:f3:45:17:bb:7b:7e:50:c5:5c:66: ac:39:e5:a5:7d:5b:c3:4e:13:cf:11:d3:86:57:c3:cc:9a:3f: a1:56:34:75 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCJwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FGQzQxMTAvBgNVBAUTKDZGMTNGNTUxMDA5RjI0OEE2RDk4NzQzNjAwNEU4NTc5 NTE1NjkyN0IwHhcNMjQxMTE2MjAzOTAyWhcNMjYwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NzM5MDJlNi1iODY2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHrd7ujAWKIaSkVqLFsy+7sd61IvhK4BGoO0ooDrP/d1xa6yojwHDt6zkw8D CV+StpxVAGpdOND1ljJhxl+eSKafNLW/SdnY87WfF220kwgw8zM1JkFsuO7f3HB/ 2h4Opck35qEOdaNQ8msZcsGuPmhCMF8RqxaWKq/i8t7Q3RnRQJPPveStXBTaF+7a qIEr8/zUSfoWYBXBpdnq4ib7TOFACuAvcNVwgdO55iyEMi48eAWiMJqCRXZyEo9H CZrkILsZcvYdUiICkaKFuVUVDkR54P0bCfq9uncAB8kG6okgEnrfVjdCrv9Fw5T4 8oWzGM4ATMb9TKQ6a4X1oo01/wIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFHbB0rRx ZDcSW5b/behMIS6XvN3TMB8GA1UdIwQYMBaAFG8T9VEAnySKbZh0NgBOhXlRVpJ7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUZDNC9CQzYwNjJEQ0FG OEExMUVBODU0MkQ4NUZDNEY5QUUwMi9ieFAxVVFDZkpJcHRtSFEyQUU2RmVWRldr bnMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2J4UDFVUUNmSklwdG1IUTJBRTZGZVZGV2tucy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0FGQzQvQkM2MDYyRENBRjhBMTFFQTg1NDJEODVGQzRGOUFFMDIvRDIwMzlBNTZB QUJDMTFFRUEwMzcwRjJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnnbgwDQQCAAIwBwMFACQGKUAwDQYJKoZIhvcNAQELBQAD ggEBAFLegz4lT/GtYyLYfQheg2gTnzdg1zb83QSehkKNAp2TIn57tJPngh+4Sej9 dBYzsRIV2a4NOGtCCewPu31wllk3VzPjd/QevITdehOI0DiwxHpTpZRCD76pZZfX gT5SW3/PVv/pip+sAYSg0TJ6y/mKsXYdjkt/nOb/rneBZNPacPzQ+wlPghHMeQ7D Lodvjv50T6jB2eJFQWRuDa61XEbHQftt1inOH2N0dK5BlkUnV8QD/1RAn0yxqfKi DorYhdn11/o9D03POwRUMmUyRIPRlaLhW6Euc1UNmVqt4ZUz80UXu3t+UMVcZqw5 5aV9W8NOE88R04ZXw8yaP6FWNHU= -----END CERTIFICATE-----Generated at Fri Nov 22 21:05:33 2024 by rpki-client on console-fra.rpki-client.org