$ rpki-client -vvf rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/F21C48F48AF811ED89B22845C4F9AE02.roa File: F21C48F48AF811ED89B22845C4F9AE02.roa (raw, json) Hash identifier: CArvcPE38ifomG+FjtoTd8DlLmT4XJnvRD+bnPZCR88= Subject key identifier: 70:AD:67:DA:E3:B0:7F:D4:43:49:9D:EA:64:8A:69:5C:E1:A8:E4:5E Certificate issuer: /CN=A911BFB0/serialNumber=5BACA76A1D3A00E358FFE5318B902498800D826C Certificate serial: A1 Authority key identifier: 5B:AC:A7:6A:1D:3A:00:E3:58:FF:E5:31:8B:90:24:98:80:0D:82:6C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6ynah06AONY_-Uxi5AkmIANgmw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/F21C48F48AF811ED89B22845C4F9AE02.roa Signing time: Tue 31 Oct 2023 03:48:31 +0000 ROA not before: Tue 31 Oct 2023 03:48:31 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 132100 IP address blocks: 103.70.216.0/22 maxlen: 22 103.70.216.0/24 maxlen: 24 103.70.217.0/24 maxlen: 24 103.70.218.0/24 maxlen: 24 103.70.219.0/24 maxlen: 24 182.255.52.0/22 maxlen: 22 182.255.52.0/24 maxlen: 24 182.255.53.0/24 maxlen: 24 182.255.54.0/24 maxlen: 24 182.255.55.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/W6ynah06AONY_-Uxi5AkmIANgmw.crl rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/W6ynah06AONY_-Uxi5AkmIANgmw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6ynah06AONY_-Uxi5AkmIANgmw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 May 2024 18:24:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 161 (0xa1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A911BFB0/serialNumber=5BACA76A1D3A00E358FFE5318B902498800D826C Validity Not Before: Oct 31 03:48:31 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6540790f-1593 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0b:df:a5:bc:20:10:6f:41:d2:fd:1b:86:03: ee:db:c3:ee:c0:01:51:c2:66:93:8c:c7:55:40:0c: 0d:6e:80:13:5c:c9:46:a5:38:80:89:e4:8d:43:20: 60:0c:c2:af:31:16:b7:4e:fa:06:34:8f:c2:c5:5e: 85:19:a9:b1:07:db:0e:c2:2d:94:a0:ba:00:63:70: de:39:07:78:d5:90:7a:00:9d:75:2e:65:21:67:6f: 60:03:6b:ef:d0:d0:7f:d0:48:56:1a:95:49:26:ed: bf:90:90:6a:49:33:a9:66:56:75:d5:c3:2b:a0:ac: 70:53:e7:53:52:f3:91:62:27:b1:5e:ac:21:98:2d: fb:68:6d:86:b7:9c:2f:c1:29:cf:23:94:03:4c:a6: b3:72:b6:fb:41:85:cd:c5:3b:f4:8d:65:2b:41:99: 7a:57:df:c8:20:69:2f:51:59:ef:bc:4f:28:d4:dc: 7a:87:24:ae:dc:32:6c:ff:15:f0:d7:06:7f:79:3a: a6:61:78:77:28:0b:b7:5b:b4:41:b6:09:b4:11:44: 96:4b:da:af:f3:1a:98:66:12:01:6f:73:43:20:82: 97:f3:8d:79:c4:60:b5:8f:f7:98:b0:a8:96:a1:bd: 06:e9:93:1e:66:78:c4:83:4f:ca:8d:90:93:dd:57: 67:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:AD:67:DA:E3:B0:7F:D4:43:49:9D:EA:64:8A:69:5C:E1:A8:E4:5E X509v3 Authority Key Identifier: keyid:5B:AC:A7:6A:1D:3A:00:E3:58:FF:E5:31:8B:90:24:98:80:0D:82:6C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/W6ynah06AONY_-Uxi5AkmIANgmw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W6ynah06AONY_-Uxi5AkmIANgmw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A911BFB0/22C251466CC211E9A0D6AF67C4F9AE02/F21C48F48AF811ED89B22845C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.70.216.0/22 182.255.52.0/22 Signature Algorithm: sha256WithRSAEncryption 93:b4:8d:2d:56:95:e3:34:40:cd:18:45:41:56:0e:12:0a:29: 58:cc:3f:f2:55:49:71:fd:28:e5:66:ba:8f:b6:0a:a9:86:5b: 41:d3:5b:51:54:b2:c8:1f:c3:5b:58:02:5d:37:cf:0c:23:33: 6c:d7:ab:5a:f8:4c:f8:79:61:4f:08:aa:db:81:87:52:e1:47: e8:ac:69:33:12:a0:d8:8b:08:39:6b:d8:14:65:72:b1:7e:e8: 84:f3:e9:a6:80:30:7c:6e:1f:3e:09:bb:3a:74:77:03:da:4b: fd:fa:73:48:cb:d8:43:d9:b7:09:e2:4e:fb:44:21:66:bf:3d: d6:e5:47:38:2c:eb:65:2d:e9:45:be:d5:3b:cd:78:7a:63:ee: e7:ee:b6:ee:f8:4f:30:bb:36:1e:aa:fd:83:ae:9a:bf:04:d6: b5:5e:3a:40:87:2d:ae:91:40:b6:a0:be:88:8c:cd:15:53:54: 9d:46:e4:d3:e5:09:0d:f9:ef:d0:6d:3d:7c:13:28:8d:e2:e4: ef:65:b8:80:0e:87:d7:27:9b:6b:af:0f:cf:1a:cd:84:16:6b: 08:cd:a0:7f:1c:53:e0:f0:f6:82:d0:32:ee:56:ba:f8:7a:15: 99:da:e7:7e:d0:f4:cb:a8:e2:4c:bb:ff:4f:be:ac:b6:2d:67: c2:6a:06:77 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICAKEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MUJGQjAxMTAvBgNVBAUTKDVCQUNBNzZBMUQzQTAwRTM1OEZGRTUzMThCOTAyNDk4 ODAwRDgyNkMwHhcNMjMxMDMxMDM0ODMxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQwNzkwZi0xNTkzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2gvfpbwgEG9B0v0bhgPu28PuwAFRwmaTjMdVQAwNboATXMlGpTiAieSNQyBg DMKvMRa3TvoGNI/CxV6FGamxB9sOwi2UoLoAY3DeOQd41ZB6AJ11LmUhZ29gA2vv 0NB/0EhWGpVJJu2/kJBqSTOpZlZ11cMroKxwU+dTUvORYiexXqwhmC37aG2Gt5wv wSnPI5QDTKazcrb7QYXNxTv0jWUrQZl6V9/IIGkvUVnvvE8o1Nx6hySu3DJs/xXw 1wZ/eTqmYXh3KAu3W7RBtgm0EUSWS9qv8xqYZhIBb3NDIIKX8415xGC1j/eYsKiW ob0G6ZMeZnjEg0/KjZCT3VdnDwIDAQABo4ICmzCCApcwHQYDVR0OBBYEFHCtZ9rj sH/UQ0md6mSKaVzhqOReMB8GA1UdIwQYMBaAFFusp2odOgDjWP/lMYuQJJiADYJs MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExQkZCMC8yMkMyNTE0NjZD QzIxMUU5QTBENkFGNjdDNEY5QUUwMi9XNnluYWgwNkFPTllfLVV4aTVBa21JQU5n bXcuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1c2eW5haDA2QU9OWV8tVXhpNUFrbUlBTmdtdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MUJGQjAvMjJDMjUxNDY2Q0MyMTFFOUEwRDZBRjY3QzRGOUFFMDIvRjIxQzQ4RjQ4 QUY4MTFFRDg5QjIyODQ1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnRtgDBAK2/zQwDQYJKoZIhvcNAQELBQADggEBAJO0jS1W leM0QM0YRUFWDhIKKVjMP/JVSXH9KOVmuo+2CqmGW0HTW1FUssgfw1tYAl03zwwj M2zXq1r4TPh5YU8IqtuBh1LhR+isaTMSoNiLCDlr2BRlcrF+6ITz6aaAMHxuHz4J uzp0dwPaS/36c0jL2EPZtwniTvtEIWa/PdblRzgs62Ut6UW+1TvNeHpj7ufutu74 TzC7Nh6q/YOumr8E1rVeOkCHLa6RQLagvoiMzRVTVJ1G5NPlCQ3579BtPXwTKI3i 5O9luIAOh9cnm2uvD88azYQWawjNoH8cU+Dw9oLQMu5Wuvh6FZna537Q9Muo4ky7 /0++rLYtZ8JqBnc= -----END CERTIFICATE-----Generated at Mon May 20 19:20:03 2024 by rpki-client on console-fra.rpki-client.org