$ rpki-client -vvf rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/F75AEA8A13F111EB950DBC4EC4F9AE02.roa File: F75AEA8A13F111EB950DBC4EC4F9AE02.roa (raw, json) Hash identifier: 5SAa1n9kSmNTQaTvQplTwtDSKI+YYm+JK8fxQjwGZI0= Subject key identifier: C6:2F:4D:01:64:4D:30:64:CF:98:B7:BE:16:A7:EE:D3:CA:54:CB:C4 Certificate issuer: /CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Certificate serial: 0625 Authority key identifier: 80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/F75AEA8A13F111EB950DBC4EC4F9AE02.roa Signing time: Mon 31 Jul 2023 22:59:54 +0000 ROA not before: Mon 31 Jul 2023 22:59:54 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 55720 IP address blocks: 103.60.108.0/24 maxlen: 24 103.60.109.0/24 maxlen: 24 103.60.110.0/24 maxlen: 24 103.60.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 22:27:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1573 (0x625) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D959F/serialNumber=808401723C2E418456AF9A0FB25F8C321C4970CB Validity Not Before: Jul 31 22:59:54 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64c83cea-10d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:23:26:b4:16:c0:12:4b:81:00:e6:23:5e:c4: 94:34:08:f0:e5:91:c9:90:b3:e8:da:fe:a9:e8:40: 72:4d:e5:b7:1c:fa:ab:e9:0a:b7:69:be:ec:55:7a: 8e:a5:9a:cb:be:5b:13:9b:07:54:ac:72:44:a3:94: ac:bf:01:ac:9d:27:54:48:1a:61:bd:3a:55:61:93: 11:bd:52:c0:e1:ab:77:c9:b2:a9:d1:cc:91:33:f7: 62:7e:57:90:1e:cd:f8:dd:45:5f:31:88:9f:2c:8d: 5c:14:56:84:89:5b:49:9d:c7:a5:13:a6:0a:18:72: 66:51:14:02:46:50:d9:9b:12:1e:2f:f7:b2:e0:a3: 88:fe:3d:54:1b:30:ab:49:d8:b8:e8:78:3e:92:ac: ec:87:64:63:ed:55:5e:ac:ee:55:b2:c1:11:7e:97: a8:a7:0a:7a:af:a0:de:28:cb:1e:dc:66:fc:7f:a0: a6:eb:2b:e1:bc:83:ce:9f:5c:7f:0b:60:ee:49:62: b9:f0:0a:97:5b:6d:0c:36:d7:ca:89:77:d7:8b:0f: 0d:cf:e9:64:74:33:99:2a:8e:02:f7:97:59:32:05: f9:2b:bb:35:db:1b:26:9e:51:d3:63:4d:fd:34:5f: 3c:b5:9c:f4:5e:a5:cb:18:bb:f2:6e:bc:73:da:0e: d3:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:2F:4D:01:64:4D:30:64:CF:98:B7:BE:16:A7:EE:D3:CA:54:CB:C4 X509v3 Authority Key Identifier: keyid:80:84:01:72:3C:2E:41:84:56:AF:9A:0F:B2:5F:8C:32:1C:49:70:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/gIQBcjwuQYRWr5oPsl-MMhxJcMs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gIQBcjwuQYRWr5oPsl-MMhxJcMs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D959F/068100EA13F111EB974D974EC4F9AE02/F75AEA8A13F111EB950DBC4EC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.60.108.0/22 Signature Algorithm: sha256WithRSAEncryption 74:3b:93:f6:12:ec:9e:6f:51:e0:bb:e9:d4:10:aa:8b:29:03: 19:69:db:a5:94:9f:85:41:69:a2:e5:9c:d1:00:78:ed:ac:88: 87:cd:f4:60:ae:84:83:72:15:aa:5b:75:b7:46:38:aa:33:8c: ce:a6:9f:7c:40:44:c2:83:89:8f:53:3b:de:e6:4d:71:e0:12: eb:ba:be:ad:eb:e7:e7:7d:9e:b1:ef:a8:a5:88:d9:1c:33:ea: c5:30:7a:dd:93:6a:63:fe:7b:87:61:70:ad:53:ac:6c:c9:99: 4d:5a:40:85:54:2a:ba:d3:c8:9e:99:85:c7:39:49:0b:8d:d2: 30:92:26:ce:5b:60:5e:17:2f:08:a3:84:fb:8f:2d:32:95:7c: 30:27:5f:30:84:95:6a:bc:b9:2f:a9:2a:b7:3a:93:61:58:ca: 8e:b6:a0:70:f0:e2:75:ad:69:fa:cb:78:15:78:61:86:0e:6b: 7f:27:08:f7:64:42:a0:6a:a4:98:50:54:3c:42:89:51:00:a6: 03:11:0c:a8:15:59:b3:61:02:30:98:6a:4f:00:92:6b:08:42: d4:d8:cc:8b:10:16:b0:1f:77:56:ff:05:71:8d:f6:71:2f:14: 9b:80:98:45:ca:d6:89:b5:44:31:18:43:96:21:93:e2:d7:6e: a6:0c:03:82 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDk1OUYxMTAvBgNVBAUTKDgwODQwMTcyM0MyRTQxODQ1NkFGOUEwRkIyNUY4QzMy MUM0OTcwQ0IwHhcNMjMwNzMxMjI1OTU0WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGM4M2NlYS0xMGQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqCMmtBbAEkuBAOYjXsSUNAjw5ZHJkLPo2v6p6EByTeW3HPqr6Qq3ab7sVXqO pZrLvlsTmwdUrHJEo5SsvwGsnSdUSBphvTpVYZMRvVLA4at3ybKp0cyRM/difleQ Hs343UVfMYifLI1cFFaEiVtJncelE6YKGHJmURQCRlDZmxIeL/ey4KOI/j1UGzCr Sdi46Hg+kqzsh2Rj7VVerO5VssERfpeopwp6r6DeKMse3Gb8f6Cm6yvhvIPOn1x/ C2DuSWK58AqXW20MNtfKiXfXiw8Nz+lkdDOZKo4C95dZMgX5K7s12xsmnlHTY039 NF88tZz0XqXLGLvybrxz2g7T5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFMYvTQFk TTBkz5i3vhan7tPKVMvEMB8GA1UdIwQYMBaAFICEAXI8LkGEVq+aD7JfjDIcSXDL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEOTU5Ri8wNjgxMDBFQTEz RjExMUVCOTc0RDk3NEVDNEY5QUUwMi9nSVFCY2p3dVFZUldyNW9Qc2wtTU1oeEpj TXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2dJUUJjand1UVlSV3I1b1BzbC1NTWh4SmNNcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDk1OUYvMDY4MTAwRUExM0YxMTFFQjk3NEQ5NzRFQzRGOUFFMDIvRjc1QUVBOEEx M0YxMTFFQjk1MERCQzRFQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnPGwwDQYJKoZIhvcNAQELBQADggEBAHQ7k/YS7J5vUeC7 6dQQqospAxlp26WUn4VBaaLlnNEAeO2siIfN9GCuhINyFapbdbdGOKozjM6mn3xA RMKDiY9TO97mTXHgEuu6vq3r5+d9nrHvqKWI2Rwz6sUwet2TamP+e4dhcK1TrGzJ mU1aQIVUKrrTyJ6Zhcc5SQuN0jCSJs5bYF4XLwijhPuPLTKVfDAnXzCElWq8uS+p Krc6k2FYyo62oHDw4nWtafrLeBV4YYYOa38nCPdkQqBqpJhQVDxCiVEApgMRDKgV WbNhAjCYak8AkmsIQtTYzIsQFrAfd1b/BXGN9nEvFJuAmEXK1om1RDEYQ5Yhk+LX bqYMA4I= -----END CERTIFICATE-----Generated at Thu Jun 13 00:18:49 2024 by rpki-client on console-fra.rpki-client.org