$ rpki-client -vvf rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/1D9DC82A652311EBA8CF3C4CC4F9AE02.roa File: 1D9DC82A652311EBA8CF3C4CC4F9AE02.roa (raw, json) Hash identifier: L9gCg+OrTuiqw6ExvZDK6OLjojljMO3J6dRtRl48yx4= Subject key identifier: 29:D7:76:36:60:CD:69:D4:9C:16:68:5A:04:0A:08:C3:6E:0D:3D:2F Certificate issuer: /CN=A91203DC/serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Certificate serial: 2064 Authority key identifier: 56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/1D9DC82A652311EBA8CF3C4CC4F9AE02.roa Signing time: Fri 24 Nov 2023 16:23:07 +0000 ROA not before: Fri 24 Nov 2023 16:23:07 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 13335 IP address blocks: 103.31.4.0/23 maxlen: 23 2405:b500::/32 maxlen: 32 2405:b500::/34 maxlen: 34 2405:b500:4000::/34 maxlen: 34 2405:b500:8000::/34 maxlen: 34 2405:b500:c000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 May 2024 02:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8292 (0x2064) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91203DC/serialNumber=5646E07A0F6025F1E260F1C4996F9A681B292071 Validity Not Before: Nov 24 16:23:07 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6560cdeb-ead0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:7d:98:2f:e6:9f:4a:84:70:3a:2e:71:ff:cb: 71:3e:f0:f2:f6:a3:80:50:7a:9f:be:ab:5c:0d:84: 9a:3c:3c:c4:15:6f:b5:69:58:0a:4b:e1:d2:43:8c: c6:4e:25:58:50:1e:be:94:99:97:1f:41:34:55:b8: 2f:06:39:3b:79:24:cb:a9:73:e3:80:9f:5b:c3:73: 94:f9:72:df:da:60:3a:ec:1b:36:99:a6:ad:4d:45: ef:d0:fa:a4:07:ee:ec:1f:3f:3d:77:a0:fa:bb:ed: d3:96:9d:63:bb:37:7b:17:83:81:e7:cd:13:1c:c5: c0:74:32:98:35:cc:a6:51:bd:13:c7:4c:08:35:3c: db:8e:b4:44:b4:4d:8f:31:62:3f:7a:62:63:6c:bc: 4c:27:eb:ad:79:a6:a7:ab:de:d8:81:b6:2a:8f:4b: c2:5f:ce:83:a9:3d:d2:a4:3c:68:a0:93:78:f0:b9: 3d:0d:f7:57:33:c3:de:5d:3a:8d:46:8d:98:df:32: ab:ab:bc:04:62:9f:3d:99:bc:39:88:84:25:ff:5c: 43:91:85:a3:42:2d:ef:46:f3:dd:a2:10:a5:3a:00: d6:4f:0b:03:42:93:c1:c8:8b:f7:64:33:5c:92:d7: 6b:0f:67:96:8f:65:51:ee:02:a7:6f:b9:02:7e:53: eb:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:D7:76:36:60:CD:69:D4:9C:16:68:5A:04:0A:08:C3:6E:0D:3D:2F X509v3 Authority Key Identifier: keyid:56:46:E0:7A:0F:60:25:F1:E2:60:F1:C4:99:6F:9A:68:1B:29:20:71 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/Vkbgeg9gJfHiYPHEmW-aaBspIHE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Vkbgeg9gJfHiYPHEmW-aaBspIHE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91203DC/FAD3D6FCDC4911E5A0625F82C4F9AE02/1D9DC82A652311EBA8CF3C4CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.31.4.0/23 IPv6: 2405:b500::/32 Signature Algorithm: sha256WithRSAEncryption 4e:96:a7:bb:a6:6d:a0:da:47:63:72:eb:ae:19:cf:8a:d9:43: 98:23:3d:7b:dc:03:57:85:16:6c:d5:e1:e4:e8:6e:08:f2:24: 08:5f:ed:c6:80:0f:5c:54:5f:a6:8e:cd:22:c2:e2:97:57:d1: c1:18:3e:a1:6c:60:5a:d1:33:95:c3:98:e3:9d:e1:77:98:bf: 3d:0e:47:e1:70:17:01:a4:d7:f8:92:04:01:fc:de:87:9b:b6: 77:c7:57:f4:57:ee:9d:73:18:0e:19:28:dc:6a:d2:ad:ab:5e: cc:90:49:61:68:43:93:fb:85:4f:19:8e:fe:16:6c:f7:d4:06: 08:c0:9b:e2:c7:4c:56:81:d3:66:2d:25:23:75:a4:67:50:be: fa:da:56:c3:41:3e:3b:9d:de:7a:e6:73:a5:32:f5:de:5f:42: 0b:17:11:b5:39:23:75:ad:e1:af:47:30:62:69:1a:43:9d:36: ee:b8:f1:3f:0a:2f:17:28:f7:f5:04:c0:81:c6:0c:97:29:77: a8:9c:83:99:70:15:d6:70:4f:59:b5:92:8e:b3:4a:b3:c4:1d: ab:38:0b:8c:3f:2b:00:8e:08:4b:49:29:2e:b6:10:2d:de:4f: 21:57:bd:bd:e3:53:45:f8:49:ac:07:a5:88:83:59:56:77:c7: 0a:da:5a:cf -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICIGQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MjAzREMxMTAvBgNVBAUTKDU2NDZFMDdBMEY2MDI1RjFFMjYwRjFDNDk5NkY5QTY4 MUIyOTIwNzEwHhcNMjMxMTI0MTYyMzA3WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTYwY2RlYi1lYWQwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAqX2YL+afSoRwOi5x/8txPvDy9qOAUHqfvqtcDYSaPDzEFW+1aVgKS+HSQ4zG TiVYUB6+lJmXH0E0VbgvBjk7eSTLqXPjgJ9bw3OU+XLf2mA67Bs2maatTUXv0Pqk B+7sHz89d6D6u+3Tlp1juzd7F4OB580THMXAdDKYNcymUb0Tx0wINTzbjrREtE2P MWI/emJjbLxMJ+uteaanq97YgbYqj0vCX86DqT3SpDxooJN48Lk9DfdXM8PeXTqN Ro2Y3zKrq7wEYp89mbw5iIQl/1xDkYWjQi3vRvPdohClOgDWTwsDQpPByIv3ZDNc ktdrD2eWj2VR7gKnb7kCflPrBQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFCnXdjZg zWnUnBZoWgQKCMNuDT0vMB8GA1UdIwQYMBaAFFZG4HoPYCXx4mDxxJlvmmgbKSBx MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEyMDNEQy9GQUQzRDZGQ0RD NDkxMUU1QTA2MjVGODJDNEY5QUUwMi9Wa2JnZWc5Z0pmSGlZUEhFbVctYWFCc3BJ SEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZrYmdlZzlnSmZIaVlQSEVtVy1hYUJzcElIRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx MjAzREMvRkFEM0Q2RkNEQzQ5MTFFNUEwNjI1RjgyQzRGOUFFMDIvMUQ5REM4MkE2 NTIzMTFFQkE4Q0YzQzRDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnHwQwDQQCAAIwBwMFACQFtQAwDQYJKoZIhvcNAQELBQAD ggEBAE6Wp7umbaDaR2Ny664Zz4rZQ5gjPXvcA1eFFmzV4eTobgjyJAhf7caAD1xU X6aOzSLC4pdX0cEYPqFsYFrRM5XDmOOd4XeYvz0OR+FwFwGk1/iSBAH83oebtnfH V/RX7p1zGA4ZKNxq0q2rXsyQSWFoQ5P7hU8Zjv4WbPfUBgjAm+LHTFaB02YtJSN1 pGdQvvraVsNBPjud3nrmc6Uy9d5fQgsXEbU5I3Wt4a9HMGJpGkOdNu648T8KLxco 9/UEwIHGDJcpd6icg5lwFdZwT1m1ko6zSrPEHas4C4w/KwCOCEtJKS62EC3eTyFX vb3jU0X4SawHpYiDWVZ3xwraWs8= -----END CERTIFICATE-----Generated at Fri May 10 17:10:21 2024 by rpki-client on console-fra.rpki-client.org