$ rpki-client -vvf rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/819F3DD6F5E111EC9754EB85C4F9AE02.roa File: 819F3DD6F5E111EC9754EB85C4F9AE02.roa (raw, json) Hash identifier: fgjQSywOQySi33KZcCK0XMHWIUlpuOcHxSki8u97JnY= Subject key identifier: 6D:3D:CE:8D:6F:19:42:BB:C3:9E:0D:D4:CB:FF:BC:23:06:A7:51:76 Certificate issuer: /CN=A91E711B/serialNumber=422F3B078264782E987873D86A744E2861F2A503 Certificate serial: 016D Authority key identifier: 42:2F:3B:07:82:64:78:2E:98:78:73:D8:6A:74:4E:28:61:F2:A5:03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qi87B4JkeC6YeHPYanROKGHypQM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/819F3DD6F5E111EC9754EB85C4F9AE02.roa Signing time: Mon 21 Aug 2023 03:04:21 +0000 ROA not before: Mon 21 Aug 2023 03:04:21 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 21788 IP address blocks: 103.142.30.0/24 maxlen: 24 103.142.31.0/24 maxlen: 24 2001:df1:2880::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/Qi87B4JkeC6YeHPYanROKGHypQM.crl rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/Qi87B4JkeC6YeHPYanROKGHypQM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qi87B4JkeC6YeHPYanROKGHypQM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 04:53:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 365 (0x16d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E711B/serialNumber=422F3B078264782E987873D86A744E2861F2A503 Validity Not Before: Aug 21 03:04:21 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64e2d435-d93a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:42:16:89:4f:30:96:25:28:78:0b:9f:8c:87: 59:b3:06:b5:d8:bf:e2:9b:65:cd:ce:82:db:f7:24: e5:6b:49:19:bb:69:c0:78:1b:14:49:3f:8f:ce:a0: 60:0f:8c:87:89:0e:3f:75:5c:f0:f9:02:43:bd:dc: a8:a6:92:77:7a:6f:8f:ed:4f:9a:8d:ef:3d:c9:ae: 67:25:ad:f4:f2:0e:d8:3e:45:b7:b8:bc:bd:a1:07: 11:d2:b8:33:00:74:3d:62:a5:eb:c8:4b:be:ed:5f: 3b:5a:71:79:6a:83:6c:48:23:46:33:32:ef:50:fd: d7:74:67:92:bc:01:fd:88:96:98:48:49:d9:5e:48: 9b:6f:8e:5f:49:93:fd:bc:01:ea:42:0f:40:9f:ea: c9:57:77:de:6b:d3:5f:e2:0f:ce:8f:11:d3:f7:49: 31:97:87:1a:e2:52:09:68:4a:70:65:4e:46:5e:7c: 02:a0:c5:9e:50:d0:af:7b:8d:33:3a:8a:78:53:c2: 6d:50:68:a1:72:11:e3:e8:fb:ea:9a:6f:93:79:32: 50:05:e4:55:5b:b1:cd:3c:d8:15:b5:b0:1d:da:7a: 04:db:65:77:4f:4d:07:10:3a:dd:f3:57:7f:fb:b6: 50:ed:be:cd:98:8d:df:ae:c4:04:a9:fc:96:fb:3f: 45:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:3D:CE:8D:6F:19:42:BB:C3:9E:0D:D4:CB:FF:BC:23:06:A7:51:76 X509v3 Authority Key Identifier: keyid:42:2F:3B:07:82:64:78:2E:98:78:73:D8:6A:74:4E:28:61:F2:A5:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/Qi87B4JkeC6YeHPYanROKGHypQM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Qi87B4JkeC6YeHPYanROKGHypQM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E711B/505C9738F5DB11EC9D06777BC4F9AE02/819F3DD6F5E111EC9754EB85C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.142.30.0/23 IPv6: 2001:df1:2880::/48 Signature Algorithm: sha256WithRSAEncryption 94:a7:bb:13:01:e6:d2:9b:ef:51:3c:21:31:7d:0f:bd:40:48: d8:4d:7f:67:f0:37:4f:46:6d:7b:39:b8:b4:6d:d0:7f:e0:a8: e4:f7:ca:ef:d0:01:0d:91:51:27:01:14:62:45:b3:02:39:d9: a6:96:51:09:6f:f1:05:6e:a7:f5:a8:d7:26:95:a4:4c:db:78: bd:58:4c:f6:e0:d3:d1:a3:e2:42:6d:6b:f2:d2:00:e2:40:40: be:a4:17:e2:52:0a:36:a7:cc:0a:b8:0f:8f:79:0c:f3:dc:6d: 51:65:ce:ed:8d:77:82:9f:e6:8f:8d:fb:d3:04:12:65:10:8e: 99:ed:30:04:5b:3f:a4:5c:f6:be:85:04:45:57:63:7f:9b:80: 9a:a6:97:62:6e:ab:4d:03:6d:c9:49:91:89:28:61:8e:84:78: 68:e7:ef:cb:c5:7e:8d:36:4f:c2:75:7e:51:5a:98:16:34:a6: 42:04:0f:83:27:8a:b7:e2:c4:bb:b0:b7:ec:17:95:06:2b:20: 03:65:74:68:e2:77:67:77:0b:2b:2f:85:5f:ab:4d:74:e5:de: 7e:08:fa:d6:c0:ce:3b:b3:3e:f4:15:3e:d9:f2:6d:93:af:15: 48:ff:0e:68:3e:6d:92:1d:6a:15:a2:52:24:0f:48:fe:1a:ac: 0a:e1:04:c4 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICAW0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTcxMUIxMTAvBgNVBAUTKDQyMkYzQjA3ODI2NDc4MkU5ODc4NzNEODZBNzQ0RTI4 NjFGMkE1MDMwHhcNMjMwODIxMDMwNDIxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGUyZDQzNS1kOTNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAy0IWiU8wliUoeAufjIdZswa12L/im2XNzoLb9yTla0kZu2nAeBsUST+PzqBg D4yHiQ4/dVzw+QJDvdyoppJ3em+P7U+aje89ya5nJa308g7YPkW3uLy9oQcR0rgz AHQ9YqXryEu+7V87WnF5aoNsSCNGMzLvUP3XdGeSvAH9iJaYSEnZXkibb45fSZP9 vAHqQg9An+rJV3fea9Nf4g/OjxHT90kxl4ca4lIJaEpwZU5GXnwCoMWeUNCve40z Oop4U8JtUGihchHj6Pvqmm+TeTJQBeRVW7HNPNgVtbAd2noE22V3T00HEDrd81d/ +7ZQ7b7NmI3frsQEqfyW+z9FzwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG09zo1v GUK7w54N1Mv/vCMGp1F2MB8GA1UdIwQYMBaAFEIvOweCZHgumHhz2Gp0Tihh8qUD MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFNzExQi81MDVDOTczOEY1 REIxMUVDOUQwNjc3N0JDNEY5QUUwMi9RaTg3QjRKa2VDNlllSFBZYW5ST0tHSHlw UU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1FpODdCNEprZUM2WWVIUFlhblJPS0dIeXBRTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTcxMUIvNTA1Qzk3MzhGNURCMTFFQzlEMDY3NzdCQzRGOUFFMDIvODE5RjNERDZG NUUxMTFFQzk3NTRFQjg1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnjh4wDwQCAAIwCQMHACABDfEogDANBgkqhkiG9w0BAQsF AAOCAQEAlKe7EwHm0pvvUTwhMX0PvUBI2E1/Z/A3T0Ztezm4tG3Qf+Co5PfK79AB DZFRJwEUYkWzAjnZppZRCW/xBW6n9ajXJpWkTNt4vVhM9uDT0aPiQm1r8tIA4kBA vqQX4lIKNqfMCrgPj3kM89xtUWXO7Y13gp/mj4370wQSZRCOme0wBFs/pFz2voUE RVdjf5uAmqaXYm6rTQNtyUmRiShhjoR4aOfvy8V+jTZPwnV+UVqYFjSmQgQPgyeK t+LEu7C37BeVBisgA2V0aOJ3Z3cLKy+FX6tNdOXefgj61sDOO7M+9BU+2fJtk68V SP8OaD5tkh1qFaJSJA9I/hqsCuEExA== -----END CERTIFICATE-----Generated at Sat Jun 1 05:48:44 2024 by rpki-client on console-fra.rpki-client.org