$ rpki-client -vvf rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D421D958881611E78B9B0850C4F9AE02.roa File: D421D958881611E78B9B0850C4F9AE02.roa (raw, json) Hash identifier: ifTj4bmRcP6WlBCwYDTYrnIU+zXFS4bROesTCN1rmbU= Subject key identifier: F1:0E:C5:D3:00:C8:E3:6F:22:35:BC:6D:F0:5B:7D:EF:F2:42:C5:EF Certificate issuer: /CN=A91E892A/serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Certificate serial: 17BC Authority key identifier: 23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D421D958881611E78B9B0850C4F9AE02.roa Signing time: Wed 04 Oct 2023 16:54:07 +0000 ROA not before: Wed 04 Oct 2023 16:54:07 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136926 IP address blocks: 103.99.42.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 17:09:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6076 (0x17bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E892A/serialNumber=23B96037AB8AD237E6326F7ED0F81E318E8A14AB Validity Not Before: Oct 4 16:54:07 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=651d98af-fcbf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:c0:96:87:bf:7b:a6:44:08:79:0c:fa:f6:bd: c3:98:1d:9b:66:65:56:c6:1e:bc:37:e4:43:e5:4d: b6:fc:34:0b:a0:0d:e9:dc:fa:a0:cb:68:28:ed:47: c8:44:6a:bc:b5:f4:08:ee:a6:e5:1e:05:c7:4d:c9: 5a:ce:f9:b1:eb:47:8b:03:6b:67:27:ca:e0:68:13: ba:e2:27:c4:21:7f:1a:bd:48:35:6d:7a:65:55:fe: 7b:2b:49:10:d8:cf:31:7f:3f:dc:26:ec:aa:e4:59: 63:f7:92:63:db:4f:e3:a7:4e:f8:64:c8:ed:60:35: fe:1b:52:fa:26:3d:97:eb:b8:c8:57:70:0a:40:31: a7:f5:df:43:d3:bb:4b:33:0e:b4:ba:2b:e0:0a:71: 3d:e4:6b:e4:79:a2:87:61:5b:d8:74:83:12:b6:89: 8d:05:4d:ee:ff:7f:dd:12:ae:d6:08:90:ed:50:cd: eb:9d:f4:c6:52:bc:37:8e:a0:ed:a1:1f:1a:35:f0: 74:dd:b8:1e:06:b2:76:07:02:3f:1f:65:d3:e2:c4: 97:6f:f6:bf:f6:fb:03:e2:f1:9b:ad:8f:ca:fc:38: 8d:73:19:65:15:13:3a:02:c3:d2:81:27:d5:7f:d4: 1c:27:89:4e:94:8e:9d:dc:d1:81:65:43:cc:be:54: 6d:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:0E:C5:D3:00:C8:E3:6F:22:35:BC:6D:F0:5B:7D:EF:F2:42:C5:EF X509v3 Authority Key Identifier: keyid:23:B9:60:37:AB:8A:D2:37:E6:32:6F:7E:D0:F8:1E:31:8E:8A:14:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/I7lgN6uK0jfmMm9-0PgeMY6KFKs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/I7lgN6uK0jfmMm9-0PgeMY6KFKs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E892A/F810E9A4881511E78BF7D14EC4F9AE02/D421D958881611E78B9B0850C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.99.42.0/24 Signature Algorithm: sha256WithRSAEncryption 50:c1:53:87:c6:dc:a2:0f:d2:56:6d:29:43:65:ff:e7:8a:9b: bb:e1:9b:45:a7:2e:da:77:1f:16:7e:58:bc:c1:7b:c8:20:3e: 0c:bf:65:57:a8:f0:28:80:02:02:4c:23:65:ba:70:2b:1c:68: 18:ac:80:e1:78:a0:1b:2c:7d:4d:df:02:82:da:03:db:9f:0f: bc:dd:74:c8:5d:18:f1:33:36:cc:8b:8f:0d:2e:ff:d7:ae:43: fa:8f:38:7d:c1:ae:00:a8:89:a2:3d:d1:a7:a6:88:58:04:67: 5f:fe:3e:26:9c:03:67:a6:dc:85:ad:ac:8e:b6:e3:20:11:b9: de:26:59:11:62:60:e2:2f:f5:b1:6d:24:aa:d3:f9:41:d2:b9: 1b:13:46:45:b3:b9:37:8b:63:6c:c0:18:d3:85:29:d5:e7:8e: b8:bb:80:99:87:8f:91:45:de:25:3d:37:df:52:e3:a3:b3:25: c4:e9:bd:bc:2c:bf:ac:13:ef:5b:a7:f6:de:ea:05:51:13:8d: 2a:38:1d:01:d3:25:4b:12:f5:05:53:0e:c7:8d:8b:62:91:e3: 75:ce:0d:a6:26:5b:cd:c1:29:48:08:c3:c8:4c:cd:d9:90:bb: 6d:be:77:91:08:1f:ec:b7:ee:32:d2:20:30:73:58:84:80:fd: bf:ac:18:2d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICF7wwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTg5MkExMTAvBgNVBAUTKDIzQjk2MDM3QUI4QUQyMzdFNjMyNkY3RUQwRjgxRTMx OEU4QTE0QUIwHhcNMjMxMDA0MTY1NDA3WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTFkOThhZi1mY2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqMCWh797pkQIeQz69r3DmB2bZmVWxh68N+RD5U22/DQLoA3p3Pqgy2go7UfI RGq8tfQI7qblHgXHTclazvmx60eLA2tnJ8rgaBO64ifEIX8avUg1bXplVf57K0kQ 2M8xfz/cJuyq5Flj95Jj20/jp074ZMjtYDX+G1L6Jj2X67jIV3AKQDGn9d9D07tL Mw60uivgCnE95GvkeaKHYVvYdIMStomNBU3u/3/dEq7WCJDtUM3rnfTGUrw3jqDt oR8aNfB03bgeBrJ2BwI/H2XT4sSXb/a/9vsD4vGbrY/K/DiNcxllFRM6AsPSgSfV f9QcJ4lOlI6d3NGBZUPMvlRtaQIDAQABo4IClTCCApEwHQYDVR0OBBYEFPEOxdMA yONvIjW8bfBbfe/yQsXvMB8GA1UdIwQYMBaAFCO5YDeritI35jJvftD4HjGOihSr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFODkyQS9GODEwRTlBNDg4 MTUxMUU3OEJGN0QxNEVDNEY5QUUwMi9JN2xnTjZ1SzBqZm1NbTktMFBnZU1ZNktG S3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0k3bGdONnVLMGpmbU1tOS0wUGdlTVk2S0ZLcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RTg5MkEvRjgxMEU5QTQ4ODE1MTFFNzhCRjdEMTRFQzRGOUFFMDIvRDQyMUQ5NTg4 ODE2MTFFNzhCOUIwODUwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnYyowDQYJKoZIhvcNAQELBQADggEBAFDBU4fG3KIP0lZt KUNl/+eKm7vhm0WnLtp3HxZ+WLzBe8ggPgy/ZVeo8CiAAgJMI2W6cCscaBisgOF4 oBssfU3fAoLaA9ufD7zddMhdGPEzNsyLjw0u/9euQ/qPOH3BrgCoiaI90aemiFgE Z1/+PiacA2em3IWtrI624yARud4mWRFiYOIv9bFtJKrT+UHSuRsTRkWzuTeLY2zA GNOFKdXnjri7gJmHj5FF3iU9N99S46OzJcTpvbwsv6wT71un9t7qBVETjSo4HQHT JUsS9QVTDseNi2KR43XODaYmW83BKUgIw8hMzdmQu22+d5EIH+y37jLSIDBzWISA /b+sGC0= -----END CERTIFICATE-----Generated at Fri May 31 19:47:54 2024 by rpki-client on console-fra.rpki-client.org