$ rpki-client -vvf rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/603AD1D0AB1211EAB4E7101BC4F9AE02.roa File: 603AD1D0AB1211EAB4E7101BC4F9AE02.roa (raw, json) Hash identifier: ND7Ul8zLTvaUmbHgAkdXQ/wYsLwTRZjkhJ0AhZiHFg8= Subject key identifier: 98:19:7A:99:D0:17:18:79:67:0B:43:96:4A:25:CD:76:B7:31:B4:00 Certificate issuer: /CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Certificate serial: 1018 Authority key identifier: 6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/603AD1D0AB1211EAB4E7101BC4F9AE02.roa Signing time: Sun 04 Jun 2023 18:28:00 +0000 ROA not before: Sun 04 Jun 2023 18:28:00 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 136897 IP address blocks: 103.59.49.0/24 maxlen: 24 103.59.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 17:59:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4120 (0x1018) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91112BC/serialNumber=6FF31B0659A6AE16C7A0A4EE0EE6A22910EC2E00 Validity Not Before: Jun 4 18:28:00 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=647cd7b0-433f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:87:df:26:c9:02:91:4f:dc:60:af:aa:d0:8a: 60:4e:20:ae:d7:88:9a:34:80:0f:eb:67:87:10:68: 1e:e3:81:24:39:df:73:30:d5:a5:ae:5f:a0:36:dd: 34:42:95:e8:a6:a0:09:90:44:5e:b4:ed:ec:5f:6a: 4d:fa:fd:a4:36:28:c6:08:da:02:34:77:ff:1e:b8: 05:08:e7:2b:4d:6d:4d:54:24:7c:4a:23:70:6f:48: 21:c0:27:f6:1f:71:56:4c:d9:9f:6d:4d:4d:85:92: 0a:a2:ba:a2:fb:d3:69:35:84:62:f4:a9:0e:ca:9d: 9d:43:f4:43:a5:97:4c:c9:83:e8:48:a4:d1:dc:d0: 19:27:b9:ce:2b:a7:b8:d5:fe:87:1c:dd:de:13:36: ad:62:05:b1:67:80:06:0e:d3:c0:52:9f:c3:98:f8: 1f:ed:c4:5b:12:3e:ce:2f:d7:a6:bd:27:ed:c5:fc: 49:3e:41:15:bb:52:60:f1:0f:20:a9:06:68:7e:f8: 37:cd:d6:69:44:a9:76:8f:3d:35:1f:18:da:3d:0d: cc:29:f3:bd:63:36:0d:9c:75:6a:0b:4b:ab:20:75: a6:6f:de:ee:63:2a:1a:a6:32:7d:b5:1f:12:32:1d: e3:06:86:75:a8:9f:a5:91:91:f0:32:d5:75:e0:7f: 8c:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:19:7A:99:D0:17:18:79:67:0B:43:96:4A:25:CD:76:B7:31:B4:00 X509v3 Authority Key Identifier: keyid:6F:F3:1B:06:59:A6:AE:16:C7:A0:A4:EE:0E:E6:A2:29:10:EC:2E:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/b_MbBlmmrhbHoKTuDuaiKRDsLgA.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/b_MbBlmmrhbHoKTuDuaiKRDsLgA.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91112BC/EBCF168204F811E9BA502431C4F9AE02/603AD1D0AB1211EAB4E7101BC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.59.49.0/24 103.59.51.0/24 Signature Algorithm: sha256WithRSAEncryption 45:af:72:73:01:cf:26:5e:a7:e8:d1:33:49:9e:68:b7:e4:63: 8e:34:7b:17:6e:ed:63:f6:58:8f:50:25:f3:8f:11:cd:21:42: 83:66:5d:37:eb:6e:91:66:f4:66:50:57:d4:7c:a9:0b:cd:19: ce:65:ae:59:de:e4:81:d6:0d:88:30:d6:39:ce:b8:8a:e3:b6: 69:ff:51:b2:ca:2b:3e:9a:1c:1e:b8:45:75:d9:7d:29:2b:13: 18:a8:90:a1:f4:b0:59:5c:8d:a9:d0:ad:c1:ea:1d:20:8f:d3: 9c:6b:ff:00:19:95:a6:27:96:74:40:52:19:b5:6d:e1:29:bf: 1d:97:54:f3:ce:40:49:d8:d1:15:cc:3e:8e:95:c8:73:3b:3f: 7a:86:df:47:27:99:ea:ea:74:46:83:a2:df:27:a4:cf:e7:89: b9:52:cc:eb:ed:36:5d:7f:fa:ae:da:50:71:a2:de:d1:33:1e: 3c:26:28:39:e7:31:82:05:5f:4f:e2:39:60:f8:e5:cd:5b:38: cf:e0:ee:e0:14:81:4a:33:45:ce:69:94:82:7b:f1:e5:3a:40: b8:92:b1:78:87:ea:6e:19:93:d0:eb:42:67:6e:6f:a3:38:2f: a7:0d:90:73:2a:ed:ed:55:93:59:89:37:23:58:50:19:2b:4b: 1d:65:36:50 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICEBgwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTEyQkMxMTAvBgNVBAUTKDZGRjMxQjA2NTlBNkFFMTZDN0EwQTRFRTBFRTZBMjI5 MTBFQzJFMDAwHhcNMjMwNjA0MTgyODAwWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDdjZDdiMC00MzNmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArYffJskCkU/cYK+q0IpgTiCu14iaNIAP62eHEGge44EkOd9zMNWlrl+gNt00 QpXopqAJkERetO3sX2pN+v2kNijGCNoCNHf/HrgFCOcrTW1NVCR8SiNwb0ghwCf2 H3FWTNmfbU1NhZIKorqi+9NpNYRi9KkOyp2dQ/RDpZdMyYPoSKTR3NAZJ7nOK6e4 1f6HHN3eEzatYgWxZ4AGDtPAUp/DmPgf7cRbEj7OL9emvSftxfxJPkEVu1Jg8Q8g qQZofvg3zdZpRKl2jz01HxjaPQ3MKfO9YzYNnHVqC0urIHWmb97uYyoapjJ9tR8S Mh3jBoZ1qJ+lkZHwMtV14H+MNQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFJgZepnQ Fxh5ZwtDlkolzXa3MbQAMB8GA1UdIwQYMBaAFG/zGwZZpq4Wx6Ck7g7moikQ7C4A MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExMTJCQy9FQkNGMTY4MjA0 RjgxMUU5QkE1MDI0MzFDNEY5QUUwMi9iX01iQmxtbXJoYkhvS1R1RHVhaUtSRHNM Z0EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JfTWJCbG1tcmhiSG9LVHVEdWFpS1JEc0xnQS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MTEyQkMvRUJDRjE2ODIwNEY4MTFFOUJBNTAyNDMxQzRGOUFFMDIvNjAzQUQxRDBB QjEyMTFFQUI0RTcxMDFCQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBABnOzEDBABnOzMwDQYJKoZIhvcNAQELBQADggEBAEWvcnMB zyZep+jRM0meaLfkY440exdu7WP2WI9QJfOPEc0hQoNmXTfrbpFm9GZQV9R8qQvN Gc5lrlne5IHWDYgw1jnOuIrjtmn/UbLKKz6aHB64RXXZfSkrExiokKH0sFlcjanQ rcHqHSCP05xr/wAZlaYnlnRAUhm1beEpvx2XVPPOQEnY0RXMPo6VyHM7P3qG30cn merqdEaDot8npM/niblSzOvtNl1/+q7aUHGi3tEzHjwmKDnnMYIFX0/iOWD45c1b OM/g7uAUgUozRc5plIJ78eU6QLiSsXiH6m4Zk9DrQmdub6M4L6cNkHMq7e1Vk1mJ NyNYUBkrSx1lNlA= -----END CERTIFICATE-----Generated at Mon May 20 19:20:03 2024 by rpki-client on console-fra.rpki-client.org