$ rpki-client -vvf rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/41DE7080F25C11EEB13CC667C4F9AE02.roa File: 41DE7080F25C11EEB13CC667C4F9AE02.roa (raw, json) Hash identifier: NjQSyZSwSRiop/YTvD9xs8kOEBuFte/xy5idxprrSuI= Subject key identifier: FC:8A:90:D0:75:54:29:2C:BB:11:0B:08:5C:83:5B:25:5B:79:BD:8F Certificate issuer: /CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496 Certificate serial: 07 Authority key identifier: 0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/41DE7080F25C11EEB13CC667C4F9AE02.roa Signing time: Thu 04 Apr 2024 08:20:55 +0000 ROA not before: Thu 04 Apr 2024 08:20:55 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 17547 IP address blocks: 103.230.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.crl rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 08:57:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7 (0x7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91FE9DC/serialNumber=0F9F7158DBDFFA2A57AE02487C98206B78380496 Validity Not Before: Apr 4 08:20:55 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=660e62e7-9d73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:d2:c7:36:c3:26:16:57:cb:87:87:c7:72:c7: ac:1a:12:2a:48:5e:6a:6d:ff:08:f5:a8:d7:a9:63: b5:77:02:19:9a:32:02:e4:27:49:ae:bb:63:37:7f: b6:5e:e5:eb:53:02:35:6c:b0:68:5f:dd:e6:c7:db: 28:aa:19:df:4d:12:da:73:4a:95:e2:de:d8:8c:fe: ba:bd:49:f6:9b:40:f3:19:f8:ef:8a:c5:eb:3e:ef: de:cf:56:f1:5e:9a:6a:36:47:1d:2d:2f:56:ef:65: 9a:22:9a:57:23:7f:3a:ec:30:8b:7d:c0:78:10:b3: f7:06:b8:c7:8e:c1:0c:1d:9b:05:c7:f2:8e:c3:6a: 0f:c0:4f:58:73:26:fd:16:93:dc:19:21:3b:7e:f4: 8f:f8:16:a4:d7:56:f7:15:85:c6:08:48:d0:20:4c: 3c:76:4f:ae:99:fd:d6:69:99:6d:19:de:6a:f1:9c: c6:23:2d:3c:a8:0f:ac:5f:e2:43:21:f5:6b:bf:6b: 16:ac:ad:c1:f7:63:99:57:a4:43:5f:56:15:cc:8b: 0d:ea:ea:13:0b:36:e7:cf:93:1f:ea:5b:2b:d0:06: 28:98:2c:1d:6f:14:d1:1d:e3:69:d6:e4:2e:9f:68: 22:44:50:0d:84:e5:43:aa:9a:9b:b3:12:32:ba:70: f6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:8A:90:D0:75:54:29:2C:BB:11:0B:08:5C:83:5B:25:5B:79:BD:8F X509v3 Authority Key Identifier: keyid:0F:9F:71:58:DB:DF:FA:2A:57:AE:02:48:7C:98:20:6B:78:38:04:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/D59xWNvf-ipXrgJIfJgga3g4BJY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/D59xWNvf-ipXrgJIfJgga3g4BJY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91FE9DC/6EEC1F5CEFFD11EE90288A72C4F9AE02/41DE7080F25C11EEB13CC667C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.230.92.0/23 Signature Algorithm: sha256WithRSAEncryption 83:e1:02:c4:27:8d:84:ec:c1:22:97:58:03:c7:10:fb:91:58: 39:7f:a7:98:c4:aa:6a:d6:17:07:fe:43:b7:05:4a:ba:b1:9f: 71:2d:6f:da:33:22:6b:d8:5d:c1:87:0f:98:f2:03:e5:6e:7e: 38:01:30:14:5e:12:ee:5c:fe:49:98:83:01:bc:f2:50:c0:01: dd:98:32:6f:b5:0d:ec:c4:9e:fe:61:17:5a:a0:8c:10:f4:f7: 9b:24:4c:da:b4:6c:ec:69:26:9f:5f:db:d8:f1:c2:c4:78:7d: 35:22:87:6b:35:ea:b2:e0:16:76:b5:e1:d1:e0:71:8e:be:12: 29:44:df:12:43:2e:6c:a2:6b:42:ea:25:c4:43:04:fb:05:67: d8:e0:75:75:c1:7d:28:ec:f3:e1:56:f4:ed:9d:c4:bc:3f:3f: ae:4d:a7:64:cd:02:a0:6e:60:88:80:3b:4c:fb:9b:65:80:be: d7:15:dc:dc:55:e4:46:54:39:ad:21:5b:21:3d:e5:5d:d9:fa: 2f:f9:7a:61:48:c4:07:7c:dd:2d:56:fa:66:6d:43:ee:5b:2b: 06:ce:91:3a:5b:ca:ce:b0:88:bf:9e:72:d3:22:a6:1b:1b:8a: 87:f5:e4:be:27:08:30:c9:16:64:9f:43:4c:0f:1a:97:49:13: 7e:c6:22:d8 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBBzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFG RTlEQzExMC8GA1UEBRMoMEY5RjcxNThEQkRGRkEyQTU3QUUwMjQ4N0M5ODIwNkI3 ODM4MDQ5NjAeFw0yNDA0MDQwODIwNTVaFw0yNDA5MzAwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MGU2MmU3LTlkNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCr0sc2wyYWV8uHh8dyx6waEipIXmpt/wj1qNepY7V3AhmaMgLkJ0muu2M3f7Ze 5etTAjVssGhf3ebH2yiqGd9NEtpzSpXi3tiM/rq9SfabQPMZ+O+Kxes+797PVvFe mmo2Rx0tL1bvZZoimlcjfzrsMIt9wHgQs/cGuMeOwQwdmwXH8o7Dag/AT1hzJv0W k9wZITt+9I/4FqTXVvcVhcYISNAgTDx2T66Z/dZpmW0Z3mrxnMYjLTyoD6xf4kMh 9Wu/axasrcH3Y5lXpENfVhXMiw3q6hMLNufPkx/qWyvQBiiYLB1vFNEd42nW5C6f aCJEUA2E5UOqmpuzEjK6cPajAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU/IqQ0HVU KSy7EQsIXINbJVt5vY8wHwYDVR0jBBgwFoAUD59xWNvf+ipXrgJIfJgga3g4BJYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUZFOURDLzZFRUMxRjVDRUZG RDExRUU5MDI4OEE3MkM0RjlBRTAyL0Q1OXhXTnZmLWlwWHJnSklmSmdnYTNnNEJK WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvRDU5eFdOdmYtaXBYcmdKSWZKZ2dhM2c0QkpZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFG RTlEQy82RUVDMUY1Q0VGRkQxMUVFOTAyODhBNzJDNEY5QUUwMi80MURFNzA4MEYy NUMxMUVFQjEzQ0M2NjdDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWfmXDANBgkqhkiG9w0BAQsFAAOCAQEAg+ECxCeNhOzBIpdY A8cQ+5FYOX+nmMSqatYXB/5DtwVKurGfcS1v2jMia9hdwYcPmPID5W5+OAEwFF4S 7lz+SZiDAbzyUMAB3Zgyb7UN7MSe/mEXWqCMEPT3myRM2rRs7Gkmn1/b2PHCxHh9 NSKHazXqsuAWdrXh0eBxjr4SKUTfEkMubKJrQuolxEME+wVn2OB1dcF9KOzz4Vb0 7Z3EvD8/rk2nZM0CoG5giIA7TPubZYC+1xXc3FXkRlQ5rSFbIT3lXdn6L/l6YUjE B3zdLVb6Zm1D7lsrBs6ROlvKzrCIv55y0yKmGxuKh/XkvicIMMkWZJ9DTA8al0kT fsYi2A== -----END CERTIFICATE-----Generated at Sat Jun 1 11:14:34 2024 by rpki-client on console-fra.rpki-client.org