$ rpki-client -vvf rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa File: 722D43AC7A5A11EABD77E486C4F9AE02.roa (raw, json) Hash identifier: zA6+1X0fVmCnltWGuy3IUb+2nHf8OZf++70yiDC873M= Subject key identifier: 71:04:EB:28:DE:39:4F:47:2A:FE:64:C8:87:A4:4A:0F:97:F1:2F:EA Certificate issuer: /CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Certificate serial: 089B Authority key identifier: 13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa Signing time: Mon 10 Jul 2023 20:37:15 +0000 ROA not before: Mon 10 Jul 2023 20:37:15 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 135642 IP address blocks: 103.140.143.0/24 maxlen: 24 103.178.53.0/24 maxlen: 24 2001:df0:c480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 21 Jun 2024 21:29:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2203 (0x89b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CE9D6/serialNumber=136741BD9E870F06ECE5CB355B8C7571CC96BA74 Validity Not Before: Jul 10 20:37:15 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64ac6bfa-eeb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b5:19:d5:a6:5a:9d:61:74:4d:dd:cd:69:12: 96:25:05:4a:19:df:16:cb:e9:49:f2:ff:ab:cd:a3: 23:5b:69:a4:de:fa:de:ce:02:c7:ca:2d:0f:8a:18: 89:b3:e5:eb:12:17:78:4b:ab:4b:16:58:aa:93:aa: 98:fc:20:2e:9c:b1:4f:bd:22:49:a6:38:52:0d:92: 0b:da:5a:3e:16:8d:b7:7c:5e:8e:6e:13:80:e7:1f: 1e:28:36:6c:11:38:9b:ca:7f:d7:a4:ea:bc:3a:96: c1:20:1a:71:9a:fc:24:b5:8c:89:ad:86:96:f5:e0: 96:95:3b:bb:cf:16:5a:0e:c1:d5:f2:48:dd:55:71: 43:43:5d:98:3f:57:86:c2:a1:bb:b0:d7:4d:19:2d: c8:5f:41:b5:f1:7d:73:b5:18:32:dc:cc:12:fc:2d: 73:12:22:7b:bb:e3:0e:ba:f6:bd:00:56:69:51:a9: ca:bf:fa:52:03:98:70:28:1e:dd:39:09:34:9b:47: 52:d9:6a:cc:6f:8c:4c:e4:15:b3:7f:fc:86:a5:e9: e4:3d:d1:ef:a2:93:7e:2f:5d:ef:df:d9:79:db:9c: 2f:e9:10:9a:ac:31:b3:39:f7:f5:19:c2:ff:49:ec: 79:17:0a:72:83:e5:b1:f8:54:39:f3:2b:1e:7c:f6: c8:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:04:EB:28:DE:39:4F:47:2A:FE:64:C8:87:A4:4A:0F:97:F1:2F:EA X509v3 Authority Key Identifier: keyid:13:67:41:BD:9E:87:0F:06:EC:E5:CB:35:5B:8C:75:71:CC:96:BA:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/E2dBvZ6HDwbs5cs1W4x1ccyWunQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CE9D6/9E66F5127A5511EABFBE947AC4F9AE02/722D43AC7A5A11EABD77E486C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.140.143.0/24 103.178.53.0/24 IPv6: 2001:df0:c480::/48 Signature Algorithm: sha256WithRSAEncryption 67:14:35:1b:c2:61:dc:a0:7c:8c:24:87:fd:5d:c4:f2:ce:cd: 4e:f4:a6:9c:59:e7:2b:32:82:e3:a3:ac:23:cf:54:d3:36:fe: 73:a1:74:86:b5:90:c7:3c:18:08:20:68:cb:d4:de:4f:4f:b0: c3:a3:45:11:10:85:bb:89:1b:71:33:f1:c7:80:5d:8e:05:17: 61:37:f2:d4:ad:34:7d:49:89:14:22:bf:56:e4:b2:e0:cc:c8: ae:54:bf:e7:9b:9a:19:13:f8:28:cb:09:f8:da:12:64:ec:49: 7e:c5:a0:0b:75:cb:b2:03:c1:14:d3:5d:b9:ae:d9:4e:13:be: 99:fd:1b:21:17:c8:b1:c1:b1:cd:a0:c8:70:e2:9e:27:c8:82: 81:e5:bd:35:db:4c:bc:47:e1:f9:3f:a1:99:9b:ac:ec:d6:79: 3d:f4:db:a0:64:65:b6:c5:5f:fc:7f:25:d0:60:b7:19:f8:fb: e7:bc:da:0f:44:65:76:a5:85:00:bb:c4:20:5f:32:1f:2e:41: 7b:c8:95:c2:09:93:5b:05:67:fb:1d:50:b6:bf:26:f7:b3:26: 7f:8a:b7:5a:e9:13:46:17:6c:79:5e:4c:c2:94:4a:f7:30:b5: 46:69:0c:bd:a2:85:15:d2:c6:9c:ee:ef:05:22:be:1e:b2:4e: 44:af:49:ae -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICCJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0U5RDYxMTAvBgNVBAUTKDEzNjc0MUJEOUU4NzBGMDZFQ0U1Q0IzNTVCOEM3NTcx Q0M5NkJBNzQwHhcNMjMwNzEwMjAzNzE1WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGFjNmJmYS1lZWI3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqLUZ1aZanWF0Td3NaRKWJQVKGd8Wy+lJ8v+rzaMjW2mk3vrezgLHyi0PihiJ s+XrEhd4S6tLFliqk6qY/CAunLFPvSJJpjhSDZIL2lo+Fo23fF6ObhOA5x8eKDZs ETibyn/XpOq8OpbBIBpxmvwktYyJrYaW9eCWlTu7zxZaDsHV8kjdVXFDQ12YP1eG wqG7sNdNGS3IX0G18X1ztRgy3MwS/C1zEiJ7u+MOuva9AFZpUanKv/pSA5hwKB7d OQk0m0dS2WrMb4xM5BWzf/yGpenkPdHvopN+L13v39l525wv6RCarDGzOff1GcL/ Sex5Fwpyg+Wx+FQ58ysefPbI3wIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFHEE6yje OU9HKv5kyIekSg+X8S/qMB8GA1UdIwQYMBaAFBNnQb2ehw8G7OXLNVuMdXHMlrp0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDRTlENi85RTY2RjUxMjdB NTUxMUVBQkZCRTk0N0FDNEY5QUUwMi9FMmRCdlo2SER3YnM1Y3MxVzR4MWNjeVd1 blEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0UyZEJ2WjZIRHdiczVjczFXNHgxY2N5V3VuUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Q0U5RDYvOUU2NkY1MTI3QTU1MTFFQUJGQkU5NDdBQzRGOUFFMDIvNzIyRDQzQUM3 QTVBMTFFQUJENzdFNDg2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnjI8DBABnsjUwDwQCAAIwCQMHACABDfDEgDANBgkqhkiG 9w0BAQsFAAOCAQEAZxQ1G8Jh3KB8jCSH/V3E8s7NTvSmnFnnKzKC46OsI89U0zb+ c6F0hrWQxzwYCCBoy9TeT0+ww6NFERCFu4kbcTPxx4BdjgUXYTfy1K00fUmJFCK/ VuSy4MzIrlS/55uaGRP4KMsJ+NoSZOxJfsWgC3XLsgPBFNNdua7ZThO+mf0bIRfI scGxzaDIcOKeJ8iCgeW9NdtMvEfh+T+hmZus7NZ5PfTboGRltsVf/H8l0GC3Gfj7 57zaD0RldqWFALvEIF8yHy5Be8iVwgmTWwVn+x1Qtr8m97Mmf4q3WukTRhdseV5M wpRK9zC1RmkMvaKFFdLGnO7vBSK+HrJORK9Jrg== -----END CERTIFICATE-----Generated at Fri Jun 14 22:37:18 2024 by rpki-client on console-fra.rpki-client.org