$ rpki-client -vvf rpki.apnic.net/member_repository/A91D6C2E/818FDA46934011EE843F8374C4F9AE02/5FB99B82934511EE87C1BE7EC4F9AE02.roa File: 5FB99B82934511EE87C1BE7EC4F9AE02.roa (raw, json) Hash identifier: jdKNkbE0ibPB2nvtmodu1J/dZdyn7ruEv14OUToJSQ8= Subject key identifier: 44:61:06:F9:89:73:FF:11:0E:61:84:BF:6A:3E:B5:8E:87:E9:9B:3C Certificate issuer: /CN=A91D6C2E/serialNumber=E8B08ADCF49C60CBAD91D1ED6D37BD8443ADBD4C Certificate serial: 55 Authority key identifier: E8:B0:8A:DC:F4:9C:60:CB:AD:91:D1:ED:6D:37:BD:84:43:AD:BD:4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6LCK3PScYMutkdHtbTe9hEOtvUw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D6C2E/818FDA46934011EE843F8374C4F9AE02/5FB99B82934511EE87C1BE7EC4F9AE02.roa Signing time: Sun 05 May 2024 08:10:11 +0000 ROA not before: Sun 05 May 2024 08:10:11 +0000 ROA not after: Tue 01 Jul 2025 00:00:00 +0000 asID: 149828 IP address blocks: 103.185.230.0/24 maxlen: 24 2001:df0:9dc0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D6C2E/818FDA46934011EE843F8374C4F9AE02/6LCK3PScYMutkdHtbTe9hEOtvUw.crl rsync://rpki.apnic.net/member_repository/A91D6C2E/818FDA46934011EE843F8374C4F9AE02/6LCK3PScYMutkdHtbTe9hEOtvUw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6LCK3PScYMutkdHtbTe9hEOtvUw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 85 (0x55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D6C2E/serialNumber=E8B08ADCF49C60CBAD91D1ED6D37BD8443ADBD4C Validity Not Before: May 5 08:10:11 2024 GMT Not After : Jul 1 00:00:00 2025 GMT Subject: CN=66373ee2-051d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:81:26:59:22:f2:b2:d1:d3:69:44:a7:62:89: 0a:b8:69:1c:26:f0:d8:e3:f2:2e:25:9c:5b:5e:d6: 7c:0f:f5:65:9c:a1:7e:d6:ab:c0:45:fd:b4:6f:50: 54:16:fa:98:98:e6:71:ed:07:67:88:fa:e3:b3:a5: d2:fb:ac:e5:64:ce:c9:6a:b1:6e:81:d3:96:91:ed: 98:af:8e:1c:43:c3:21:41:fa:d0:8e:f3:31:c3:11: c2:52:9e:32:cf:8a:b9:ab:22:36:38:a6:05:57:ab: 8e:be:74:2e:d6:68:3a:bb:6e:8d:ca:10:1b:71:18: d5:2d:e2:35:8f:4e:ab:65:d9:27:80:a8:e4:7c:c7: 45:7c:f2:54:3e:8e:77:cf:58:ed:d0:0e:22:a6:71: 6d:cf:62:09:3f:c7:ca:5f:bc:ec:26:fc:1c:2b:b2: c8:d0:ff:cc:18:34:9b:ab:c0:12:ff:66:13:50:35: 4c:1e:74:dc:08:11:cc:f7:47:88:bd:9e:3e:e8:a1: f5:47:0e:40:94:40:b8:4a:80:77:bf:0d:e9:10:c8: a8:88:fe:88:47:5b:9b:2c:df:5f:14:a9:54:8c:7d: e6:f4:9a:a1:5f:c2:59:d4:9a:42:84:c2:63:4b:6d: 90:a0:ad:96:3e:46:1b:1a:68:b4:2e:52:c8:8a:af: 02:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:61:06:F9:89:73:FF:11:0E:61:84:BF:6A:3E:B5:8E:87:E9:9B:3C X509v3 Authority Key Identifier: keyid:E8:B0:8A:DC:F4:9C:60:CB:AD:91:D1:ED:6D:37:BD:84:43:AD:BD:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D6C2E/818FDA46934011EE843F8374C4F9AE02/6LCK3PScYMutkdHtbTe9hEOtvUw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6LCK3PScYMutkdHtbTe9hEOtvUw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D6C2E/818FDA46934011EE843F8374C4F9AE02/5FB99B82934511EE87C1BE7EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.185.230.0/24 IPv6: 2001:df0:9dc0::/48 Signature Algorithm: sha256WithRSAEncryption a3:1e:6d:31:80:c5:1d:2d:d4:55:99:97:25:eb:dc:1e:86:3e: 35:bc:73:d6:6a:8d:7a:42:ed:66:e6:c8:9d:7b:e8:4f:4a:1a: 92:04:56:bb:c9:2d:2e:64:ef:e9:ac:ed:f6:75:02:fb:52:4c: 5a:46:54:47:75:26:8e:0b:87:3e:01:00:17:d6:be:f4:a9:b6: d4:25:93:39:18:63:b0:11:de:c0:20:40:52:d2:01:92:b5:38: 31:fb:ce:2a:6f:5b:ca:50:f8:90:d7:34:c7:b2:33:3d:ae:a0: b3:82:bf:81:18:d9:46:29:46:a0:da:41:71:75:7c:40:d0:f9: 2c:ae:b5:49:42:ba:ef:88:02:a3:58:62:1a:42:c7:0a:34:b6: 3a:61:19:cb:84:bc:16:64:ce:e2:15:33:a5:7b:f4:6d:41:1a: 3c:47:2f:72:b8:b5:80:ce:72:42:f4:41:73:c7:b4:f6:09:37: 25:68:94:5b:84:5e:ac:19:1a:b7:21:68:04:03:7e:2f:41:38: 9d:6e:88:b1:3e:26:61:af:07:2b:8b:b7:84:f4:89:fb:f3:77: 0c:84:ca:ff:d5:3c:68:06:7b:ac:ac:02:5a:1b:62:5c:01:24: 57:fc:20:8f:1a:58:83:45:be:92:a1:da:c1:5a:d9:fc:3b:8f: a9:ca:e3:ab -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBVTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFE NkMyRTExMC8GA1UEBRMoRThCMDhBRENGNDlDNjBDQkFEOTFEMUVENkQzN0JEODQ0 M0FEQkQ0QzAeFw0yNDA1MDUwODEwMTFaFw0yNTA3MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MzczZWUyLTA1MWQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCdgSZZIvKy0dNpRKdiiQq4aRwm8Njj8i4lnFte1nwP9WWcoX7Wq8BF/bRvUFQW +piY5nHtB2eI+uOzpdL7rOVkzslqsW6B05aR7ZivjhxDwyFB+tCO8zHDEcJSnjLP irmrIjY4pgVXq46+dC7WaDq7bo3KEBtxGNUt4jWPTqtl2SeAqOR8x0V88lQ+jnfP WO3QDiKmcW3PYgk/x8pfvOwm/BwrssjQ/8wYNJurwBL/ZhNQNUwedNwIEcz3R4i9 nj7oofVHDkCUQLhKgHe/DekQyKiI/ohHW5ss318UqVSMfeb0mqFfwlnUmkKEwmNL bZCgrZY+RhsaaLQuUsiKrwL/AgMBAAGjggKmMIICojAdBgNVHQ4EFgQURGEG+Ylz /xEOYYS/aj61jofpmzwwHwYDVR0jBBgwFoAU6LCK3PScYMutkdHtbTe9hEOtvUww DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUQ2QzJFLzgxOEZEQTQ2OTM0 MDExRUU4NDNGODM3NEM0RjlBRTAyLzZMQ0szUFNjWU11dGtkSHRiVGU5aEVPdHZV dy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNkxDSzNQU2NZTXV0a2RIdGJUZTloRU90dlV3LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFE NkMyRS84MThGREE0NjkzNDAxMUVFODQzRjgzNzRDNEY5QUUwMi81RkI5OUI4Mjkz NDUxMUVFODdDMUJFN0VDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGe55jAPBAIAAjAJAwcAIAEN8J3AMA0GCSqGSIb3DQEBCwUA A4IBAQCjHm0xgMUdLdRVmZcl69wehj41vHPWao16Qu1m5side+hPShqSBFa7yS0u ZO/prO32dQL7UkxaRlRHdSaOC4c+AQAX1r70qbbUJZM5GGOwEd7AIEBS0gGStTgx +84qb1vKUPiQ1zTHsjM9rqCzgr+BGNlGKUag2kFxdXxA0PksrrVJQrrviAKjWGIa QscKNLY6YRnLhLwWZM7iFTOle/RtQRo8Ry9yuLWAznJC9EFzx7T2CTclaJRbhF6s GRq3IWgEA34vQTidboixPiZhrwcri7eE9In783cMhMr/1TxoBnusrAJaG2JcASRX /CCPGliDRb6SodrBWtn8O4+pyuOr -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:32 2024 by rpki-client on console-fra.rpki-client.org