$ rpki-client -vvf rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/8D9FFB3EEB2911EB9891D01DC4F9AE02.roa File: 8D9FFB3EEB2911EB9891D01DC4F9AE02.roa (raw, json) Hash identifier: ByOmjvPWIUy5MEctlGILb7dfToBlqzQy/wGB/Nqnh4c= Subject key identifier: 23:53:EE:9B:FD:1E:2B:AA:C1:CD:61:09:FE:01:F1:9F:AA:6E:E7:E4 Certificate issuer: /CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Certificate serial: 0B8A Authority key identifier: DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/8D9FFB3EEB2911EB9891D01DC4F9AE02.roa Signing time: Fri 04 Aug 2023 18:55:47 +0000 ROA not before: Fri 04 Aug 2023 18:55:47 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.80.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 19:10:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2954 (0xb8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E70ED/serialNumber=DA3C91F8F155D90B9987C913B24C4F9E5445E9CC Validity Not Before: Aug 4 18:55:47 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64cd49b3-e4bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:e2:b6:9d:3d:2a:d7:05:d0:bf:83:a2:b2:11: f4:42:bd:46:a3:ee:49:2d:e4:42:1d:7b:02:01:8f: 7e:3b:73:4e:fc:02:4e:c4:2c:c7:13:57:59:0b:12: 7d:9a:dc:10:20:95:6e:30:ea:92:4e:d4:c2:21:20: b0:a6:9b:5d:4d:6a:49:a6:96:67:f7:4a:ad:35:33: 05:ec:d9:ad:4b:b7:b7:f3:a8:4f:b9:52:f3:ce:52: fa:bd:c6:af:6b:e8:84:12:ae:08:bf:ef:be:32:25: b5:4f:74:a0:dc:ef:bc:ab:9d:d5:e8:cb:22:fa:be: 57:d1:a3:35:c8:be:b4:ad:02:80:07:1e:1d:17:3c: c1:04:fd:fd:c2:6a:53:b3:0a:29:de:bd:32:34:b0: c4:3c:f8:d3:d3:fb:7e:2a:80:64:ca:57:b1:96:3e: c8:f4:39:de:f7:95:5a:55:22:d7:f8:41:40:2f:62: c2:1d:bb:51:4f:3e:6e:94:74:82:35:00:14:9a:57: c1:db:31:ea:64:8d:d2:1a:84:93:49:67:87:e0:ec: 03:24:c8:c4:81:fe:48:8d:e8:50:67:43:5b:a7:e5: d1:82:84:4d:de:19:18:a6:97:3f:74:18:fa:e1:ba: 51:f2:a3:df:cf:e0:57:c5:29:b8:91:6e:1a:cb:3c: 55:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:53:EE:9B:FD:1E:2B:AA:C1:CD:61:09:FE:01:F1:9F:AA:6E:E7:E4 X509v3 Authority Key Identifier: keyid:DA:3C:91:F8:F1:55:D9:0B:99:87:C9:13:B2:4C:4F:9E:54:45:E9:CC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/2jyR-PFV2QuZh8kTskxPnlRF6cw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2jyR-PFV2QuZh8kTskxPnlRF6cw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E70ED/E6277A3EE9E111E9A5987E1FC4F9AE02/8D9FFB3EEB2911EB9891D01DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.80.6.0/24 Signature Algorithm: sha256WithRSAEncryption a8:c8:b9:37:9d:49:36:43:a3:7a:4e:14:f0:5a:9c:32:c7:f3: 5a:fb:2a:97:3f:ef:e4:72:1a:2a:93:83:ba:20:58:6d:81:4f: 45:1a:e9:50:d3:62:aa:47:4e:91:12:d3:eb:a3:b4:2f:db:fe: 27:03:a4:73:89:2d:84:31:7a:b9:12:e3:b2:e2:86:c7:4c:fa: de:b4:09:2b:0e:90:c7:b8:ae:63:84:c3:c5:1a:f0:46:8c:ff: fc:78:75:f5:42:b7:07:d5:94:c8:0c:37:03:25:1f:01:e7:d9: 0b:29:89:c4:c3:d0:fd:65:0a:ad:7d:51:21:6d:a4:53:23:1a: 28:2d:0f:da:35:d3:66:27:c9:28:82:78:ab:99:07:77:28:69: 36:65:22:0a:6d:39:1e:5f:dc:8e:84:7e:8e:bc:56:bb:41:4f: 22:bf:bd:ae:d8:19:c0:59:c0:bc:5f:2f:ad:e5:77:9b:47:81: ef:05:72:dc:91:1b:33:0a:8c:46:3f:8a:f8:0b:52:41:4b:3e: 5c:93:16:88:be:5f:7d:05:cd:86:4b:da:4b:e0:8d:fa:f1:1b: 2f:af:9f:d8:52:49:49:c3:f0:9a:57:0d:ef:15:c3:6f:25:69: 63:34:ec:5f:b4:2e:98:f3:56:21:ba:9d:10:f0:8e:49:40:15: 77:63:37:79 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICC4owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcwRUQxMTAvBgNVBAUTKERBM0M5MUY4RjE1NUQ5MEI5OTg3QzkxM0IyNEM0RjlF NTQ0NUU5Q0MwHhcNMjMwODA0MTg1NTQ3WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkNDliMy1lNGJjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0uK2nT0q1wXQv4OishH0Qr1Go+5JLeRCHXsCAY9+O3NO/AJOxCzHE1dZCxJ9 mtwQIJVuMOqSTtTCISCwpptdTWpJppZn90qtNTMF7NmtS7e386hPuVLzzlL6vcav a+iEEq4Iv+++MiW1T3Sg3O+8q53V6Msi+r5X0aM1yL60rQKABx4dFzzBBP39wmpT swop3r0yNLDEPPjT0/t+KoBkylexlj7I9Dne95VaVSLX+EFAL2LCHbtRTz5ulHSC NQAUmlfB2zHqZI3SGoSTSWeH4OwDJMjEgf5IjehQZ0Nbp+XRgoRN3hkYppc/dBj6 4bpR8qPfz+BXxSm4kW4ayzxV5QIDAQABo4IClTCCApEwHQYDVR0OBBYEFCNT7pv9 Hiuqwc1hCf4B8Z+qbufkMB8GA1UdIwQYMBaAFNo8kfjxVdkLmYfJE7JMT55URenM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzBFRC9FNjI3N0EzRUU5 RTExMUU5QTU5ODdFMUZDNEY5QUUwMi8yanlSLVBGVjJRdVpoOGtUc2t4UG5sUkY2 Y3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzJqeVItUEZWMlF1Wmg4a1Rza3hQbmxSRjZjdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcwRUQvRTYyNzdBM0VFOUUxMTFFOUE1OTg3RTFGQzRGOUFFMDIvOEQ5RkZCM0VF QjI5MTFFQjk4OTFEMDFEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnUAYwDQYJKoZIhvcNAQELBQADggEBAKjIuTedSTZDo3pO FPBanDLH81r7Kpc/7+RyGiqTg7ogWG2BT0Ua6VDTYqpHTpES0+ujtC/b/icDpHOJ LYQxerkS47LihsdM+t60CSsOkMe4rmOEw8Ua8EaM//x4dfVCtwfVlMgMNwMlHwHn 2QspicTD0P1lCq19USFtpFMjGigtD9o102YnySiCeKuZB3coaTZlIgptOR5f3I6E fo68VrtBTyK/va7YGcBZwLxfL63ld5tHge8FctyRGzMKjEY/ivgLUkFLPlyTFoi+ X30FzYZL2kvgjfrxGy+vn9hSSUnD8JpXDe8Vw28laWM07F+0LpjzViG6nRDwjklA FXdjN3k= -----END CERTIFICATE-----Generated at Sat May 4 20:37:19 2024 by rpki-client on console-fra.rpki-client.org