$ rpki-client -vvf rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa File: A38F041873C011EEB1A68245C4F9AE02.roa (raw, json) Hash identifier: 3gJO0VRROU7x0qzNJEOCSuT5XEYFBGwoi9G8E3dV0i0= Subject key identifier: 2C:64:5E:EB:FD:17:77:6F:D8:D6:0D:9B:61:E9:EE:75:7A:98:92:7D Certificate issuer: /CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Certificate serial: 04 Authority key identifier: 48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa Signing time: Thu 26 Oct 2023 05:31:44 +0000 ROA not before: Thu 26 Oct 2023 05:31:44 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 151652 IP address blocks: 103.249.203.0/24 maxlen: 24 2001:df2:ca40::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:52:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4 (0x4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FD2E3/serialNumber=481720A2C8EE6CEC9247776193299C10FEB7CA44 Validity Not Before: Oct 26 05:31:44 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=6539f9c0-f948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:7e:52:8d:b5:f7:d2:2e:fa:50:39:ac:89:23: 76:99:18:09:1f:8e:06:66:34:e5:69:92:80:0e:6f: 07:1b:b4:61:ee:14:08:26:e9:17:eb:60:87:69:76: 95:49:b8:65:71:3d:40:15:3f:97:a9:a0:c2:ac:72: 19:d5:e3:45:31:59:7e:82:84:24:b5:03:13:69:5f: 24:85:c5:fe:b6:96:77:b5:8c:33:cb:81:df:aa:89: f9:be:98:0b:0d:23:9d:0c:36:7b:ad:1e:76:0c:08: a6:e0:50:24:7d:55:ef:d5:f8:ce:2b:28:6e:5c:aa: 9e:63:f8:df:b7:65:c8:9a:84:6b:0c:73:28:6e:1e: b5:90:bb:77:d4:7b:fe:ba:3d:36:e6:7c:c3:17:45: 00:56:27:d8:bc:60:25:d3:f8:27:a4:50:ea:85:d3: b9:3c:08:90:b3:56:a1:b9:15:d3:6d:da:ff:ba:0f: 3f:9f:93:8e:cf:cf:d5:a5:eb:15:a3:29:46:e7:35: 04:a0:ba:8e:b5:b6:39:41:63:01:87:f1:20:f7:9b: d2:2c:7d:e7:28:23:5b:54:7a:d6:c6:82:43:66:70: ed:a5:62:99:9d:9f:5f:bb:f7:61:79:a8:9c:39:e4: 16:90:09:6d:29:f7:37:5d:60:93:c5:2c:c6:09:bb: 05:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:64:5E:EB:FD:17:77:6F:D8:D6:0D:9B:61:E9:EE:75:7A:98:92:7D X509v3 Authority Key Identifier: keyid:48:17:20:A2:C8:EE:6C:EC:92:47:77:61:93:29:9C:10:FE:B7:CA:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/SBcgosjubOySR3dhkymcEP63ykQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SBcgosjubOySR3dhkymcEP63ykQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FD2E3/4F4179A473C011EEB827F444C4F9AE02/A38F041873C011EEB1A68245C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.249.203.0/24 IPv6: 2001:df2:ca40::/48 Signature Algorithm: sha256WithRSAEncryption 02:63:7b:d1:96:b5:20:ee:08:3f:c6:e2:6b:dd:f7:e4:fb:3f: d7:9e:df:2b:ca:c8:c7:fe:79:e9:00:f4:46:9b:27:ad:40:2e: 6b:a0:64:68:3f:d8:c6:7d:2d:eb:cf:1e:8b:87:53:03:95:3c: b8:54:f6:23:06:3c:4a:fb:fb:0f:2c:5c:f0:ee:1f:18:b5:bc: 4a:17:22:c0:db:35:82:4a:b0:ac:15:33:ec:90:94:14:fb:68: c5:cb:7f:e0:92:09:50:ea:31:56:db:f9:b9:ac:68:e5:2e:e2: a6:b7:0d:18:7b:4e:ec:50:9c:bd:92:ad:3d:76:93:21:a6:41: 16:1e:78:52:3b:bc:87:2e:c6:17:eb:c2:b8:45:fb:23:bd:19: ac:5c:ae:2e:f1:73:e4:02:5c:8e:d0:02:04:f8:a1:e7:8d:7b: fa:6a:5f:db:49:f7:8d:f5:12:4d:47:4b:7f:ac:08:29:46:89: 8a:be:16:a8:fc:f0:28:61:bf:af:26:e7:a7:db:c3:68:d7:13: c4:a0:c8:42:1c:a1:1a:e4:54:35:04:89:08:29:5b:c8:62:23: a8:9c:da:51:83:e0:4e:fe:9c:3e:34:1d:bc:d0:6e:8e:e6:8a: 12:f5:66:31:7b:88:e2:8d:f9:82:59:6b:a8:6b:1b:7a:53:3b: 4a:d4:05:f2 -----BEGIN CERTIFICATE----- MIIFgTCCBGmgAwIBAgIBBDANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RDJFMzExMC8GA1UEBRMoNDgxNzIwQTJDOEVFNkNFQzkyNDc3NzYxOTMyOTlDMTBG RUI3Q0E0NDAeFw0yMzEwMjYwNTMxNDRaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MzlmOWMwLWY5NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPflKNtffSLvpQOayJI3aZGAkfjgZmNOVpkoAObwcbtGHuFAgm6RfrYIdpdpVJ uGVxPUAVP5epoMKschnV40UxWX6ChCS1AxNpXySFxf62lne1jDPLgd+qifm+mAsN I50MNnutHnYMCKbgUCR9Ve/V+M4rKG5cqp5j+N+3ZciahGsMcyhuHrWQu3fUe/66 PTbmfMMXRQBWJ9i8YCXT+CekUOqF07k8CJCzVqG5FdNt2v+6Dz+fk47Pz9Wl6xWj KUbnNQSguo61tjlBYwGH8SD3m9IsfecoI1tUetbGgkNmcO2lYpmdn1+792F5qJw5 5BaQCW0p9zddYJPFLMYJuwVrAgMBAAGjggKmMIICojAdBgNVHQ4EFgQULGRe6/0X d2/Y1g2bYenudXqYkn0wHwYDVR0jBBgwFoAUSBcgosjubOySR3dhkymcEP63ykQw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZEMkUzLzRGNDE3OUE0NzND MDExRUVCODI3RjQ0NEM0RjlBRTAyL1NCY2dvc2p1Yk95U1IzZGhreW1jRVA2M3lr US5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvU0JjZ29zanViT3lTUjNkaGt5bWNFUDYzeWtRLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RDJFMy80RjQxNzlBNDczQzAxMUVFQjgyN0Y0NDRDNEY5QUUwMi9BMzhGMDQxODcz QzAxMUVFQjFBNjgyNDVDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAwBggrBgEFBQcBBwEB/wQh MB8wDAQCAAEwBgMEAGf5yzAPBAIAAjAJAwcAIAEN8spAMA0GCSqGSIb3DQEBCwUA A4IBAQACY3vRlrUg7gg/xuJr3ffk+z/Xnt8rysjH/nnpAPRGmyetQC5roGRoP9jG fS3rzx6Lh1MDlTy4VPYjBjxK+/sPLFzw7h8YtbxKFyLA2zWCSrCsFTPskJQU+2jF y3/gkglQ6jFW2/m5rGjlLuKmtw0Ye07sUJy9kq09dpMhpkEWHnhSO7yHLsYX68K4 RfsjvRmsXK4u8XPkAlyO0AIE+KHnjXv6al/bSfeN9RJNR0t/rAgpRomKvhao/PAo Yb+vJuen28No1xPEoMhCHKEa5FQ1BIkIKVvIYiOonNpRg+BO/pw+NB280G6O5ooS 9WYxe4jijfmCWWuoaxt6UztK1AXy -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:34 2024 by rpki-client on console-fra.rpki-client.org