$ rpki-client -vvf rpki.apnic.net/member_repository/A9110795/992969FAE6AE11E7800A7C63C4F9AE02/F439D662AAAE11E8B3984735C4F9AE02.roa File: F439D662AAAE11E8B3984735C4F9AE02.roa (raw, json) Hash identifier: Ewt0Ar7KJkQxN5byhTXePm4DHDfxyfNxCXU+UNcbzV0= Subject key identifier: 5E:54:AB:29:64:4B:4C:BE:4B:A6:0C:98:30:D1:2A:28:F9:BD:67:AB Certificate issuer: /CN=A9110795/serialNumber=870AE59A4B38DAFC6A31ABE329CCF878FDF72A8C Certificate serial: 15A5 Authority key identifier: 87:0A:E5:9A:4B:38:DA:FC:6A:31:AB:E3:29:CC:F8:78:FD:F7:2A:8C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwrlmks42vxqMavjKcz4eP33Kow.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9110795/992969FAE6AE11E7800A7C63C4F9AE02/F439D662AAAE11E8B3984735C4F9AE02.roa Signing time: Mon 08 May 2023 17:54:37 +0000 ROA not before: Mon 08 May 2023 17:54:37 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 138156 IP address blocks: 103.91.206.0/24 maxlen: 24 103.91.207.0/24 maxlen: 24 2401:1240:206::/48 maxlen: 48 2401:1240:207::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9110795/992969FAE6AE11E7800A7C63C4F9AE02/hwrlmks42vxqMavjKcz4eP33Kow.crl rsync://rpki.apnic.net/member_repository/A9110795/992969FAE6AE11E7800A7C63C4F9AE02/hwrlmks42vxqMavjKcz4eP33Kow.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwrlmks42vxqMavjKcz4eP33Kow.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:14:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5541 (0x15a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9110795/serialNumber=870AE59A4B38DAFC6A31ABE329CCF878FDF72A8C Validity Not Before: May 8 17:54:37 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6459375c-8231 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:53:9d:b4:68:96:0d:5a:20:72:74:e6:74:d3: c4:a1:a3:33:98:35:12:e8:71:5a:60:db:75:dc:83: 2a:5c:fb:49:26:5c:32:38:aa:fd:87:12:fa:8d:a5: a7:1c:18:30:a2:61:d3:62:cc:1b:93:f6:6b:90:04: 26:a4:78:a2:3a:56:7e:c2:23:32:91:31:76:05:2c: 8c:76:78:b4:5d:98:d2:97:41:66:5c:be:39:7e:e8: ff:2b:a2:f3:b2:2d:a1:28:f7:e4:cf:74:25:8d:21: 4e:bb:73:d2:2b:cd:e9:62:ee:07:32:7a:e0:7d:02: df:34:cd:4b:a7:a3:07:81:66:a8:ae:bd:17:cd:4d: 82:92:20:7c:ff:f0:04:d1:1f:8d:9a:c2:35:b4:40: 1d:1d:7f:4c:f1:33:37:82:de:03:b0:d8:d8:9f:e7: f3:83:ec:7f:2c:08:e7:51:9b:82:45:83:d9:7c:8e: ad:50:8c:f5:f0:15:19:ea:ec:f9:4a:c1:81:a5:8b: 2b:0d:ed:fe:fa:1a:40:8c:bf:92:6e:d0:e3:41:09: 94:75:51:e6:8f:cf:99:bc:c0:72:f1:89:e9:be:6d: c3:eb:06:82:67:db:2e:b9:cd:f4:5b:3c:d4:d9:b5: 1c:5d:c0:57:8b:f3:ef:d1:59:69:5d:3c:76:ac:65: ab:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:54:AB:29:64:4B:4C:BE:4B:A6:0C:98:30:D1:2A:28:F9:BD:67:AB X509v3 Authority Key Identifier: keyid:87:0A:E5:9A:4B:38:DA:FC:6A:31:AB:E3:29:CC:F8:78:FD:F7:2A:8C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9110795/992969FAE6AE11E7800A7C63C4F9AE02/hwrlmks42vxqMavjKcz4eP33Kow.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hwrlmks42vxqMavjKcz4eP33Kow.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9110795/992969FAE6AE11E7800A7C63C4F9AE02/F439D662AAAE11E8B3984735C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.206.0/23 IPv6: 2401:1240:206::/47 Signature Algorithm: sha256WithRSAEncryption 01:2a:d9:23:91:47:f1:7d:62:2f:3c:6f:42:ed:32:82:75:fe: 0d:38:e6:15:76:20:8c:ec:b4:18:03:b9:82:bc:9c:5d:f2:b1: 85:0d:c2:88:bc:11:75:0b:e5:ed:82:a9:86:35:fb:ab:d0:d7: e2:8b:53:15:15:14:db:62:46:44:2e:68:da:7c:a8:05:aa:32: 12:39:12:9e:99:41:56:81:36:46:12:92:42:d6:ad:f6:18:d8: e6:58:6c:96:7a:3a:7f:06:ad:a5:c0:8d:dc:f2:a0:17:35:be: d2:69:da:35:8b:5d:e4:71:72:03:ad:13:44:63:df:55:f8:d1: f2:ce:fc:75:bc:7c:4c:9d:8b:58:df:6a:6d:e1:f9:c6:5b:67: 68:a2:ed:76:c1:28:30:5e:28:5a:4e:5e:14:81:2d:60:cd:26: 49:77:18:bb:5f:02:c4:d8:a1:30:75:92:31:58:91:eb:6f:5a: cd:55:4b:cb:62:fc:07:2e:f4:b5:c7:60:7c:32:44:4d:34:c0: ef:ce:a1:f0:44:88:bb:3d:f1:49:cd:93:47:4b:eb:44:cd:2f: fc:59:c7:5f:ec:cd:d2:05:e2:d3:89:53:d9:e2:99:28:75:44: 67:24:96:ff:b3:3f:54:1a:c8:4e:9c:1c:8c:a2:c5:8b:67:58: ea:99:aa:5d -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICFaUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTA3OTUxMTAvBgNVBAUTKDg3MEFFNTlBNEIzOERBRkM2QTMxQUJFMzI5Q0NGODc4 RkRGNzJBOEMwHhcNMjMwNTA4MTc1NDM3WhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDU5Mzc1Yy04MjMxMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAwFOdtGiWDVogcnTmdNPEoaMzmDUS6HFaYNt13IMqXPtJJlwyOKr9hxL6jaWn HBgwomHTYswbk/ZrkAQmpHiiOlZ+wiMykTF2BSyMdni0XZjSl0FmXL45fuj/K6Lz si2hKPfkz3QljSFOu3PSK83pYu4HMnrgfQLfNM1Lp6MHgWaorr0XzU2CkiB8//AE 0R+NmsI1tEAdHX9M8TM3gt4DsNjYn+fzg+x/LAjnUZuCRYPZfI6tUIz18BUZ6uz5 SsGBpYsrDe3++hpAjL+SbtDjQQmUdVHmj8+ZvMBy8Ynpvm3D6waCZ9suuc30WzzU 2bUcXcBXi/Pv0VlpXTx2rGWrHQIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFF5Uqylk S0y+S6YMmDDRKij5vWerMB8GA1UdIwQYMBaAFIcK5ZpLONr8ajGr4ynM+Hj99yqM MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMDc5NS85OTI5NjlGQUU2 QUUxMUU3ODAwQTdDNjNDNEY5QUUwMi9od3JsbWtzNDJ2eHFNYXZqS2N6NGVQMzNL b3cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2h3cmxta3M0MnZ4cU1hdmpLY3o0ZVAzM0tvdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTA3OTUvOTkyOTY5RkFFNkFFMTFFNzgwMEE3QzYzQzRGOUFFMDIvRjQzOUQ2NjJB QUFFMTFFOEIzOTg0NzM1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFnW84wDwQCAAIwCQMHASQBEkACBjANBgkqhkiG9w0BAQsF AAOCAQEAASrZI5FH8X1iLzxvQu0ygnX+DTjmFXYgjOy0GAO5grycXfKxhQ3CiLwR dQvl7YKphjX7q9DX4otTFRUU22JGRC5o2nyoBaoyEjkSnplBVoE2RhKSQtat9hjY 5lhslno6fwatpcCN3PKgFzW+0mnaNYtd5HFyA60TRGPfVfjR8s78dbx8TJ2LWN9q beH5xltnaKLtdsEoMF4oWk5eFIEtYM0mSXcYu18CxNihMHWSMViR629azVVLy2L8 By70tcdgfDJETTTA786h8ESIuz3xSc2TR0vrRM0v/FnHX+zN0gXi04lT2eKZKHVE ZySW/7M/VBrITpwcjKLFi2dY6pmqXQ== -----END CERTIFICATE-----Generated at Sat May 4 18:00:10 2024 by rpki-client on console-fra.rpki-client.org