$ rpki-client -vvf rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/64A7FFE2F74811E8A07B9609C4F9AE02.roa File: 64A7FFE2F74811E8A07B9609C4F9AE02.roa (raw, json) Hash identifier: TFZyvrE3OwmWYaYDSWUoC+64kctGuwQsPRph3ixaWVg= Subject key identifier: 7F:A1:EC:C4:F7:D5:EE:F8:6A:FC:9E:41:EE:BC:71:FF:9D:D2:FD:EF Certificate issuer: /CN=A91DCD09/serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Certificate serial: 18E8 Authority key identifier: 18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/64A7FFE2F74811E8A07B9609C4F9AE02.roa Signing time: Fri 06 Oct 2023 16:54:04 +0000 ROA not before: Fri 06 Oct 2023 16:54:04 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 36351 IP address blocks: 103.241.84.0/24 maxlen: 24 103.241.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 May 2024 16:52:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6376 (0x18e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91DCD09/serialNumber=18F97D098E4EBD0610D54F48D5B3E1AA743A2029 Validity Not Before: Oct 6 16:54:04 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65203bac-ab56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:00:b3:2d:0c:30:95:4e:d9:5c:f1:3d:dc:01: 22:75:9b:4d:9c:54:d8:2b:4c:f9:57:72:2f:ba:11: 04:00:be:0c:83:be:a9:58:94:0d:4d:e9:32:10:43: b2:42:03:c7:5d:89:9d:90:e0:e6:d0:f6:dc:d4:e8: cb:7d:6c:57:22:c1:cf:cd:60:47:71:d5:03:28:df: 87:4f:b7:0e:d2:45:64:3d:5d:01:38:8a:87:21:05: 3f:13:cd:8c:cd:b3:7f:5a:7d:34:9e:fd:e0:05:3f: 1c:f7:cd:93:37:78:36:15:b6:fc:59:38:37:a2:e4: 7a:0b:71:0c:c1:7e:b5:f0:36:e9:9d:70:34:70:9b: a6:62:f6:4d:1f:63:d2:3e:af:33:d9:01:58:3d:4b: 2b:e3:09:ca:1d:d0:c9:f3:8e:0f:93:fc:b2:a3:1f: 07:31:33:42:e3:97:18:75:19:e7:00:be:78:ea:7d: 3b:95:89:e5:7d:2d:e1:d3:0f:b8:62:5b:11:c4:8b: 27:c6:19:45:f8:59:95:9e:a9:90:bd:b8:21:9d:44: 75:14:18:99:09:73:90:46:da:9b:42:29:af:d5:bd: b3:6d:a2:0c:05:ac:ed:98:4a:61:24:21:dc:ff:72: 10:9b:61:47:33:f8:ba:1f:c3:9e:d6:2a:be:90:a5: bb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A1:EC:C4:F7:D5:EE:F8:6A:FC:9E:41:EE:BC:71:FF:9D:D2:FD:EF X509v3 Authority Key Identifier: keyid:18:F9:7D:09:8E:4E:BD:06:10:D5:4F:48:D5:B3:E1:AA:74:3A:20:29 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GPl9CY5OvQYQ1U9I1bPhqnQ6ICk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91DCD09/2F8B8552548511E7B1D84713C4F9AE02/64A7FFE2F74811E8A07B9609C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.241.84.0/24 103.241.87.0/24 Signature Algorithm: sha256WithRSAEncryption 2e:3f:b6:ae:37:0f:29:09:87:48:72:6b:d2:f0:13:da:eb:af: 57:a0:d7:f4:04:b0:56:c1:c0:a6:fe:fa:b9:a4:ec:12:bb:c6: 28:56:83:18:cf:64:93:06:83:58:27:d2:c2:94:98:da:33:e7: 3a:dd:92:d1:74:7f:ca:ba:f4:9c:81:ef:d5:9d:a3:08:7e:94: 21:5e:cd:05:ab:51:ab:a0:77:08:f5:1c:93:8a:4b:2d:82:73: f4:ea:d5:be:d2:2c:e7:34:32:fa:fe:f1:0b:68:33:fb:ee:d4: 25:ce:40:9a:3f:ee:31:c3:1d:9a:65:e5:9c:64:4f:ae:15:43: 62:47:c2:06:3c:b7:ba:f7:c5:35:e9:d4:69:57:e4:27:21:be: 46:84:00:c9:6d:4f:9a:54:da:74:5d:65:ab:46:4b:e2:67:52: fb:98:74:1c:1e:c8:e1:0d:5c:83:94:54:68:8d:b9:54:34:11: 9b:72:c9:0d:50:55:d2:3d:e7:16:a4:0b:06:35:8b:ce:7a:3e: a4:c6:4a:f9:ec:b9:7a:d7:12:99:02:86:4e:d1:7d:cf:2b:88: c1:13:ff:34:91:34:26:af:d9:56:69:0b:c8:83:b6:0f:8e:b3: aa:86:f3:f6:06:a9:1c:70:7c:0c:0c:37:03:de:ee:b3:e6:33: e9:c7:99:75 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICGOgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RENEMDkxMTAvBgNVBAUTKDE4Rjk3RDA5OEU0RUJEMDYxMEQ1NEY0OEQ1QjNFMUFB NzQzQTIwMjkwHhcNMjMxMDA2MTY1NDA0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTIwM2JhYy1hYjU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5wCzLQwwlU7ZXPE93AEidZtNnFTYK0z5V3IvuhEEAL4Mg76pWJQNTekyEEOy QgPHXYmdkODm0Pbc1OjLfWxXIsHPzWBHcdUDKN+HT7cO0kVkPV0BOIqHIQU/E82M zbN/Wn00nv3gBT8c982TN3g2Fbb8WTg3ouR6C3EMwX618DbpnXA0cJumYvZNH2PS Pq8z2QFYPUsr4wnKHdDJ844Pk/yyox8HMTNC45cYdRnnAL546n07lYnlfS3h0w+4 YlsRxIsnxhlF+FmVnqmQvbghnUR1FBiZCXOQRtqbQimv1b2zbaIMBaztmEphJCHc /3IQm2FHM/i6H8Oe1iq+kKW7vQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFH+h7MT3 1e74avyeQe68cf+d0v3vMB8GA1UdIwQYMBaAFBj5fQmOTr0GENVPSNWz4ap0OiAp MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEQ0QwOS8yRjhCODU1MjU0 ODUxMUU3QjFEODQ3MTNDNEY5QUUwMi9HUGw5Q1k1T3ZRWVExVTlJMWJQaHFuUTZJ Q2suY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0dQbDlDWTVPdlFZUTFVOUkxYlBocW5RNklDay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RENEMDkvMkY4Qjg1NTI1NDg1MTFFN0IxRDg0NzEzQzRGOUFFMDIvNjRBN0ZGRTJG NzQ4MTFFOEEwN0I5NjA5QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABn8VQDBABn8VcwDQYJKoZIhvcNAQELBQADggEBAC4/tq43 DykJh0hya9LwE9rrr1eg1/QEsFbBwKb++rmk7BK7xihWgxjPZJMGg1gn0sKUmNoz 5zrdktF0f8q69JyB79Wdowh+lCFezQWrUaugdwj1HJOKSy2Cc/Tq1b7SLOc0Mvr+ 8QtoM/vu1CXOQJo/7jHDHZpl5ZxkT64VQ2JHwgY8t7r3xTXp1GlX5CchvkaEAMlt T5pU2nRdZatGS+JnUvuYdBweyOENXIOUVGiNuVQ0EZtyyQ1QVdI95xakCwY1i856 PqTGSvnsuXrXEpkChk7Rfc8riMET/zSRNCav2VZpC8iDtg+Os6qG8/YGqRxwfAwM NwPe7rPmM+nHmXU= -----END CERTIFICATE-----Generated at Wed Apr 24 18:31:06 2024 by rpki-client on console-fra.rpki-client.org