$ rpki-client -vvf rpki.apnic.net/member_repository/A91D921D/6E3ECEE806DB11EA95293C63C4F9AE02/45E6E5BA06DC11EA9B939B64C4F9AE02.roa File: 45E6E5BA06DC11EA9B939B64C4F9AE02.roa (raw, json) Hash identifier: pgs8om6xi1TP39xxFw8N3NgLddKie/UkUnHR6yP+VBo= Subject key identifier: 2B:F8:89:EA:2D:13:D1:3C:66:C3:08:50:1A:BE:97:D0:CD:61:C3:4A Certificate issuer: /CN=A91D921D/serialNumber=CCDCC78C9644756B32B033A21E0F00C44FD22F81 Certificate serial: 0AC9 Authority key identifier: CC:DC:C7:8C:96:44:75:6B:32:B0:33:A2:1E:0F:00:C4:4F:D2:2F:81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNzHjJZEdWsysDOiHg8AxE_SL4E.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D921D/6E3ECEE806DB11EA95293C63C4F9AE02/45E6E5BA06DC11EA9B939B64C4F9AE02.roa Signing time: Thu 08 Jun 2023 20:30:40 +0000 ROA not before: Thu 08 Jun 2023 20:30:39 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 137579 IP address blocks: 103.114.20.0/22 maxlen: 24 2402:c8c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D921D/6E3ECEE806DB11EA95293C63C4F9AE02/zNzHjJZEdWsysDOiHg8AxE_SL4E.crl rsync://rpki.apnic.net/member_repository/A91D921D/6E3ECEE806DB11EA95293C63C4F9AE02/zNzHjJZEdWsysDOiHg8AxE_SL4E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNzHjJZEdWsysDOiHg8AxE_SL4E.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 20:06:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2761 (0xac9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D921D/serialNumber=CCDCC78C9644756B32B033A21E0F00C44FD22F81 Validity Not Before: Jun 8 20:30:39 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=64823a6f-8822 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cd:ff:7f:28:80:86:89:d0:24:31:cd:a6:ab: 20:48:5d:ad:3d:c5:ef:16:58:b7:ac:f2:a0:39:a6: 1c:7e:2f:fc:0e:ba:1b:fe:f0:69:76:f1:f0:8d:9f: f3:03:e2:c5:c9:44:4a:de:91:41:b7:97:a7:dd:42: 6f:29:91:26:b1:eb:dc:4a:a2:cf:fb:b8:85:a7:78: 0e:6d:6e:22:86:68:e2:c1:b7:d6:8f:39:75:e3:20: 33:e6:5e:45:de:7b:32:75:a9:8a:7d:e5:32:79:2c: 0c:8a:69:70:e3:f4:c2:99:28:39:0e:11:e0:5c:1b: 39:af:8a:41:05:ee:9d:af:08:a0:f0:03:40:7d:34: 00:a8:a8:e6:fb:64:12:7a:43:f1:e6:d1:33:bf:38: 24:93:f9:1c:92:08:56:81:22:67:e3:d5:b9:c5:db: f6:30:9a:c2:f3:5c:8d:d1:50:ff:f3:ff:ad:b9:23: d6:88:29:6c:c0:1b:c7:c5:8a:76:7b:e1:52:c9:52: 26:e0:d9:2c:a1:64:db:63:56:47:0c:7b:25:97:f4: 55:11:57:b2:f3:b9:75:03:a7:78:6c:a5:31:bd:3c: bb:1a:be:6b:2c:1b:8e:fb:73:8c:f5:ac:2c:46:91: fb:8a:86:13:13:ff:1c:52:77:d1:4b:ea:40:5a:f7: ca:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:F8:89:EA:2D:13:D1:3C:66:C3:08:50:1A:BE:97:D0:CD:61:C3:4A X509v3 Authority Key Identifier: keyid:CC:DC:C7:8C:96:44:75:6B:32:B0:33:A2:1E:0F:00:C4:4F:D2:2F:81 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D921D/6E3ECEE806DB11EA95293C63C4F9AE02/zNzHjJZEdWsysDOiHg8AxE_SL4E.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zNzHjJZEdWsysDOiHg8AxE_SL4E.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D921D/6E3ECEE806DB11EA95293C63C4F9AE02/45E6E5BA06DC11EA9B939B64C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.114.20.0/22 IPv6: 2402:c8c0::/32 Signature Algorithm: sha256WithRSAEncryption 76:8c:72:3a:e7:6c:20:e0:ff:f7:7a:92:7c:dd:4d:7d:e4:17: 95:1e:8f:9e:4d:f4:93:21:1e:1c:98:1c:5b:bb:9b:61:a9:39: ca:b3:e4:34:dc:25:f6:6b:0d:9f:68:d8:e2:d5:35:8f:97:2e: 91:2c:3d:c3:b1:ee:d5:18:13:69:35:36:a9:b2:9f:c7:28:28: 91:b7:0c:05:56:8f:8c:9c:c1:66:9d:5e:a2:9e:6e:f2:66:0e: f3:97:45:74:57:5b:9c:60:ff:14:e4:04:85:72:2d:90:73:83: 47:41:71:53:2b:28:65:83:81:08:d1:01:c6:13:d7:45:90:8a: 5d:a8:10:08:4f:2f:c0:7e:2e:58:fb:e4:84:e9:b7:43:ea:d9: 5c:77:57:41:84:19:d4:56:19:c8:dd:8b:68:5e:07:7a:fe:75: d6:7f:f0:fc:ea:eb:c0:d9:e4:f4:6a:99:7f:ae:f2:d7:18:8d: e0:07:de:4e:84:e5:c8:8f:37:aa:23:9a:09:30:eb:3b:6d:58: 04:4c:a3:fe:3a:6f:eb:6c:b7:12:98:a5:a5:18:f8:02:97:ee: 29:5f:62:30:32:9a:c5:de:1b:2c:0a:97:83:71:8d:70:c8:c5: b0:d5:31:61:b6:b5:78:8e:7c:de:fa:48:4f:77:c1:ff:d9:ae: 7f:21:ee:19 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCskwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDkyMUQxMTAvBgNVBAUTKENDRENDNzhDOTY0NDc1NkIzMkIwMzNBMjFFMEYwMEM0 NEZEMjJGODEwHhcNMjMwNjA4MjAzMDM5WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDgyM2E2Zi04ODIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyc3/fyiAhonQJDHNpqsgSF2tPcXvFli3rPKgOaYcfi/8Drob/vBpdvHwjZ/z A+LFyURK3pFBt5en3UJvKZEmsevcSqLP+7iFp3gObW4ihmjiwbfWjzl14yAz5l5F 3nsydamKfeUyeSwMimlw4/TCmSg5DhHgXBs5r4pBBe6drwig8ANAfTQAqKjm+2QS ekPx5tEzvzgkk/kckghWgSJn49W5xdv2MJrC81yN0VD/8/+tuSPWiClswBvHxYp2 e+FSyVIm4NksoWTbY1ZHDHsll/RVEVey87l1A6d4bKUxvTy7Gr5rLBuO+3OM9aws RpH7ioYTE/8cUnfRS+pAWvfKLQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCv4ieot E9E8ZsMIUBq+l9DNYcNKMB8GA1UdIwQYMBaAFMzcx4yWRHVrMrAzoh4PAMRP0i+B MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTIxRC82RTNFQ0VFODA2 REIxMUVBOTUyOTNDNjNDNEY5QUUwMi96TnpIakpaRWRXc3lzRE9pSGc4QXhFX1NM NEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3pOekhqSlpFZFdzeXNET2lIZzhBeEVfU0w0RS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDkyMUQvNkUzRUNFRTgwNkRCMTFFQTk1MjkzQzYzQzRGOUFFMDIvNDVFNkU1QkEw NkRDMTFFQTlCOTM5QjY0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnchQwDQQCAAIwBwMFACQCyMAwDQYJKoZIhvcNAQELBQAD ggEBAHaMcjrnbCDg//d6knzdTX3kF5Uej55N9JMhHhyYHFu7m2GpOcqz5DTcJfZr DZ9o2OLVNY+XLpEsPcOx7tUYE2k1Nqmyn8coKJG3DAVWj4ycwWadXqKebvJmDvOX RXRXW5xg/xTkBIVyLZBzg0dBcVMrKGWDgQjRAcYT10WQil2oEAhPL8B+Llj75ITp t0Pq2Vx3V0GEGdRWGcjdi2heB3r+ddZ/8Pzq68DZ5PRqmX+u8tcYjeAH3k6E5ciP N6ojmgkw6zttWARMo/46b+tstxKYpaUY+AKX7ilfYjAymsXeGywKl4NxjXDIxbDV MWG2tXiOfN76SE93wf/Zrn8h7hk= -----END CERTIFICATE-----Generated at Fri May 31 22:13:11 2024 by rpki-client on console-fra.rpki-client.org