$ rpki-client -vvf rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/B20CAEB4012511EDBB5C141DC4F9AE02.roa File: B20CAEB4012511EDBB5C141DC4F9AE02.roa (raw, json) Hash identifier: cuOqxBsuCJ+odz8Cr7DRwP5HxHPgD/rbEN+ufKPJ6IE= Subject key identifier: 5D:70:60:D0:F8:DF:23:EA:F5:00:D7:F2:C3:98:79:A0:6A:0B:4B:4C Certificate issuer: /CN=A91DB63B/serialNumber=5EF72F9BE4E3A28DE3569E76DE2D2225DBF3FD8A Certificate serial: 07E2 Authority key identifier: 5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/B20CAEB4012511EDBB5C141DC4F9AE02.roa Signing time: Wed 30 Aug 2023 21:28:20 +0000 ROA not before: Wed 30 Aug 2023 21:28:19 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 38084 IP address blocks: 103.108.168.0/22 maxlen: 24 210.48.208.0/21 maxlen: 24 2406:7600::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.crl rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 13 Jun 2024 21:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2018 (0x7e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DB63B/serialNumber=5EF72F9BE4E3A28DE3569E76DE2D2225DBF3FD8A Validity Not Before: Aug 30 21:28:19 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64efb473-c207 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a4:9c:30:13:b3:17:6e:9d:ac:ba:aa:11:b0: 03:60:38:3e:63:e1:5c:ab:6e:92:86:05:65:a8:85: 0c:5f:bb:9d:af:6e:49:7d:4c:66:5d:89:5d:a6:44: 50:a5:83:10:3a:c8:0f:48:fa:25:be:0f:b7:ab:f4: 04:cd:58:e9:4b:ea:df:02:89:01:4a:e0:48:16:30: 3c:0a:21:5a:a3:56:62:c1:60:3a:bc:a6:7c:d2:3f: 44:02:9f:4a:88:a4:c8:08:75:cf:64:eb:f8:a5:15: be:e6:e1:f9:da:fd:2f:d4:fd:48:e0:ec:ed:31:3c: ae:15:56:d8:70:22:d7:cb:2f:c8:88:6a:69:c7:2d: 1d:f0:81:b7:5a:93:de:fd:d7:85:a5:60:26:47:e4: 5a:f4:7c:97:af:30:a4:71:87:b4:48:d0:46:65:e0: 78:c1:7c:15:91:25:fc:ca:18:4e:51:fd:c2:e4:ce: bd:59:8d:0b:50:04:76:2b:e8:2a:68:a9:8e:00:d7: 0e:3a:34:f2:1a:08:6b:5a:53:e5:3b:db:80:ab:a1: ee:d8:f8:5c:8d:b5:7c:68:02:48:cb:16:64:3d:05: 92:2b:02:bc:86:d3:52:fc:c6:85:d8:1b:da:fe:fe: e5:52:6b:b3:bf:1f:a6:7e:bb:4d:d8:45:d4:c3:46: 53:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:70:60:D0:F8:DF:23:EA:F5:00:D7:F2:C3:98:79:A0:6A:0B:4B:4C X509v3 Authority Key Identifier: keyid:5E:F7:2F:9B:E4:E3:A2:8D:E3:56:9E:76:DE:2D:22:25:DB:F3:FD:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Xvcvm-Tjoo3jVp523i0iJdvz_Yo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DB63B/2E2CEA169F4611EA988D0B65C4F9AE02/B20CAEB4012511EDBB5C141DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.108.168.0/22 210.48.208.0/21 IPv6: 2406:7600::/32 Signature Algorithm: sha256WithRSAEncryption 07:b8:8a:ed:88:ba:2a:e7:c7:0b:0f:3c:0b:a5:68:87:f9:08: 47:de:81:9d:69:40:1a:b7:dd:7e:91:9f:2c:3d:ea:7a:55:de: 74:e6:0a:fb:b5:4d:0a:ad:4f:f9:ec:f4:24:58:58:aa:3c:03: 2c:ff:43:a5:9e:7f:f4:e5:2e:0f:37:46:d1:41:02:b2:d4:05: 4e:fa:80:5c:71:a9:a4:9e:f6:f6:8d:c3:66:b4:b3:7d:68:ce: a7:b0:67:47:87:94:67:6c:3d:41:e5:49:dc:4a:d1:5d:1a:ac: 66:95:32:39:79:ee:3f:73:e8:0c:d7:19:48:50:40:82:4b:e9: 4f:5d:95:fe:3c:74:38:55:a7:ae:d4:9f:91:78:bd:f3:87:7d: 24:ad:a0:c0:d8:5a:71:4e:c6:01:2d:37:40:55:53:02:ef:80: 78:69:79:78:ff:b4:f2:2b:b8:42:c5:25:25:7d:0e:13:8f:ed: 16:24:2b:b6:e1:de:95:0f:b4:7e:e5:cf:02:16:3a:e2:ab:f0: 6d:00:7f:a1:44:9e:92:37:e8:59:6b:b8:b3:78:a0:d6:78:69: 9d:ee:4b:d0:40:a0:0a:13:94:b7:3e:5b:44:35:ea:f9:28:a9: f4:a0:89:de:41:ce:e6:8f:08:bb:0f:2c:a8:0b:73:42:47:e2: 04:00:94:a9 -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICB+IwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx REI2M0IxMTAvBgNVBAUTKDVFRjcyRjlCRTRFM0EyOERFMzU2OUU3NkRFMkQyMjI1 REJGM0ZEOEEwHhcNMjMwODMwMjEyODE5WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGVmYjQ3My1jMjA3MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwKScMBOzF26drLqqEbADYDg+Y+Fcq26ShgVlqIUMX7udr25JfUxmXYldpkRQ pYMQOsgPSPolvg+3q/QEzVjpS+rfAokBSuBIFjA8CiFao1ZiwWA6vKZ80j9EAp9K iKTICHXPZOv4pRW+5uH52v0v1P1I4OztMTyuFVbYcCLXyy/IiGppxy0d8IG3WpPe /deFpWAmR+Ra9HyXrzCkcYe0SNBGZeB4wXwVkSX8yhhOUf3C5M69WY0LUAR2K+gq aKmOANcOOjTyGghrWlPlO9uAq6Hu2PhcjbV8aAJIyxZkPQWSKwK8htNS/MaF2Bva /v7lUmuzvx+mfrtN2EXUw0ZTfQIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFF1wYND4 3yPq9QDX8sOYeaBqC0tMMB8GA1UdIwQYMBaAFF73L5vk46KN41aedt4tIiXb8/2K MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQjYzQi8yRTJDRUExNjlG NDYxMUVBOTg4RDBCNjVDNEY5QUUwMi9YdmN2bS1Uam9vM2pWcDUyM2kwaUpkdnpf WW8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1h2Y3ZtLVRqb28zalZwNTIzaTBpSmR2el9Zby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx REI2M0IvMkUyQ0VBMTY5RjQ2MTFFQTk4OEQwQjY1QzRGOUFFMDIvQjIwQ0FFQjQw MTI1MTFFREJCNUMxNDFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnbKgDBAPSMNAwDQQCAAIwBwMFACQGdgAwDQYJKoZIhvcN AQELBQADggEBAAe4iu2IuirnxwsPPAulaIf5CEfegZ1pQBq33X6Rnyw96npV3nTm Cvu1TQqtT/ns9CRYWKo8Ayz/Q6Wef/TlLg83RtFBArLUBU76gFxxqaSe9vaNw2a0 s31ozqewZ0eHlGdsPUHlSdxK0V0arGaVMjl57j9z6AzXGUhQQIJL6U9dlf48dDhV p67Un5F4vfOHfSStoMDYWnFOxgEtN0BVUwLvgHhpeXj/tPIruELFJSV9DhOP7RYk K7bh3pUPtH7lzwIWOuKr8G0Af6FEnpI36FlruLN4oNZ4aZ3uS9BAoAoTlLc+W0Q1 6vkoqfSgid5BzuaPCLsPLKgLc0JH4gQAlKk= -----END CERTIFICATE-----Generated at Thu Jun 6 22:35:28 2024 by rpki-client on console-fra.rpki-client.org