$ rpki-client -vvf rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/19C035C6F3EF11EA82F3C251C4F9AE02.roa File: 19C035C6F3EF11EA82F3C251C4F9AE02.roa (raw, json) Hash identifier: FUGlXdXF81JPx5LHKvaIKbXTVuBi7QATMPLpsYgWq5U= Subject key identifier: 0D:F6:56:23:60:05:4B:2A:AD:F2:AB:ED:03:5D:CF:98:A0:18:65:D8 Certificate issuer: /CN=A91395A9/serialNumber=4CB815D697455BCB302B74D79DAA6AE41BB7B789 Certificate serial: 067D Authority key identifier: 4C:B8:15:D6:97:45:5B:CB:30:2B:74:D7:9D:AA:6A:E4:1B:B7:B7:89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLgV1pdFW8swK3TXnapq5Bu3t4k.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/19C035C6F3EF11EA82F3C251C4F9AE02.roa Signing time: Thu 20 Jul 2023 17:14:18 +0000 ROA not before: Thu 20 Jul 2023 17:14:18 +0000 ROA not after: Sat 31 Aug 2024 00:00:00 +0000 asID: 137854 IP address blocks: 103.115.167.0/24 maxlen: 24 103.125.25.0/24 maxlen: 24 103.125.26.0/23 maxlen: 23 103.125.26.0/24 maxlen: 24 103.125.27.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.crl rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLgV1pdFW8swK3TXnapq5Bu3t4k.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1661 (0x67d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91395A9/serialNumber=4CB815D697455BCB302B74D79DAA6AE41BB7B789 Validity Not Before: Jul 20 17:14:18 2023 GMT Not After : Aug 31 00:00:00 2024 GMT Subject: CN=64b96b6a-12ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d7:e0:6d:de:65:8a:42:dc:65:94:85:5e:59: 05:a2:d1:fe:fa:82:eb:11:c9:1e:4d:f6:bd:9c:d3: 05:80:9e:1e:fe:02:3c:e9:8f:d7:ab:51:ed:d8:ac: 51:55:0d:ba:e3:e4:c8:f5:b0:25:aa:3b:fd:ea:66: ca:1f:04:e3:0f:8a:39:47:fa:69:e6:85:55:0a:32: a2:e3:cb:22:6a:ab:f9:b0:18:f6:13:49:9e:30:56: 4d:f7:d7:f9:11:68:ce:1b:a5:16:17:05:b9:ba:aa: 7b:39:2d:c0:7c:d1:92:c6:6d:2d:f0:43:e0:d3:5e: 3e:53:e3:c9:11:ec:99:18:ae:9c:76:c2:f7:09:51: 88:50:57:50:66:28:de:c3:a1:b8:35:b5:05:33:67: 87:d0:05:bd:d7:38:a8:07:c4:8a:04:b3:b8:53:df: 15:dc:96:b3:4b:8f:99:cb:d0:29:a8:5e:2b:b5:70: 1f:1b:18:71:33:56:b6:21:bc:6f:b6:fd:24:d6:1b: da:08:a7:15:ed:46:33:80:de:2d:a9:67:c3:46:a5: 2f:b9:7c:15:af:68:dc:26:de:7f:7b:2d:a2:eb:ce: 71:7e:8c:9b:83:9d:f8:76:a9:6f:18:05:ae:c8:9e: 14:94:26:66:29:79:c7:28:2a:9e:fa:e0:8b:c5:90: c4:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:F6:56:23:60:05:4B:2A:AD:F2:AB:ED:03:5D:CF:98:A0:18:65:D8 X509v3 Authority Key Identifier: keyid:4C:B8:15:D6:97:45:5B:CB:30:2B:74:D7:9D:AA:6A:E4:1B:B7:B7:89 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLgV1pdFW8swK3TXnapq5Bu3t4k.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/19C035C6F3EF11EA82F3C251C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.115.167.0/24 103.125.25.0-103.125.27.255 Signature Algorithm: sha256WithRSAEncryption 37:70:a5:37:43:25:38:9e:43:63:44:55:5f:e6:35:74:e8:59: 45:04:f9:7a:af:84:b8:d1:51:de:72:1c:59:c1:04:fc:73:f2: 11:73:5e:b7:42:b9:e4:7d:e3:c5:3d:6f:1f:d0:4f:fa:85:37: af:31:a2:44:25:db:c5:e4:54:14:f6:5a:a5:13:26:47:95:f4: 7c:4a:f6:94:c8:43:b5:8e:cc:4a:2c:33:66:67:a7:fb:2c:6b: 5c:a8:ec:c8:15:24:64:2b:86:3f:93:b1:bd:4a:f0:67:72:69: e8:a7:45:55:17:20:d9:9d:2b:4e:fd:b9:b5:eb:8e:93:43:2c: 36:35:2b:85:71:95:70:f8:6d:5b:1b:c8:27:aa:41:4d:6e:43: 4e:60:f7:80:dc:a5:4a:8b:78:66:51:e4:f4:03:8f:c7:da:dd: 86:a8:9c:64:37:51:1b:b2:fb:f0:46:f0:e6:8e:4e:a7:ef:d0: 27:16:54:a1:fe:33:fb:6d:ba:d5:a7:93:bb:4d:7e:aa:6e:a7: 0a:18:a5:8d:49:1d:10:11:0c:11:df:23:09:c6:a4:43:de:d5: 25:c3:f5:ff:21:1b:fe:c8:af:e8:05:9d:cc:38:a4:41:f4:43: ab:bc:f9:11:6b:ee:91:74:3f:bc:6b:ac:c5:82:be:14:cc:69: eb:b0:fd:f6 -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICBn0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Mzk1QTkxMTAvBgNVBAUTKDRDQjgxNUQ2OTc0NTVCQ0IzMDJCNzRENzlEQUE2QUU0 MUJCN0I3ODkwHhcNMjMwNzIwMTcxNDE4WhcNMjQwODMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5NmI2YS0xMmFkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyNfgbd5likLcZZSFXlkFotH++oLrEckeTfa9nNMFgJ4e/gI86Y/Xq1Ht2KxR VQ264+TI9bAlqjv96mbKHwTjD4o5R/pp5oVVCjKi48siaqv5sBj2E0meMFZN99f5 EWjOG6UWFwW5uqp7OS3AfNGSxm0t8EPg014+U+PJEeyZGK6cdsL3CVGIUFdQZije w6G4NbUFM2eH0AW91zioB8SKBLO4U98V3JazS4+Zy9ApqF4rtXAfGxhxM1a2Ibxv tv0k1hvaCKcV7UYzgN4tqWfDRqUvuXwVr2jcJt5/ey2i685xfoybg534dqlvGAWu yJ4UlCZmKXnHKCqe+uCLxZDENwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFA32ViNg BUsqrfKr7QNdz5igGGXYMB8GA1UdIwQYMBaAFEy4FdaXRVvLMCt0152qauQbt7eJ MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzOTVBOS82N0FFREU4QzVE MTkxMUU4OERERTM5M0VDNEY5QUUwMi9UTGdWMXBkRlc4c3dLM1RYbmFwcTVCdTN0 NGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1RMZ1YxcGRGVzhzd0szVFhuYXBxNUJ1M3Q0ay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx Mzk1QTkvNjdBRURFOEM1RDE5MTFFODhEREUzOTNFQzRGOUFFMDIvMTlDMDM1QzZG M0VGMTFFQTgyRjNDMjUxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnc6cwDAMEAGd9GQMEAmd9GDANBgkqhkiG9w0BAQsFAAOC AQEAN3ClN0MlOJ5DY0RVX+Y1dOhZRQT5eq+EuNFR3nIcWcEE/HPyEXNet0K55H3j xT1vH9BP+oU3rzGiRCXbxeRUFPZapRMmR5X0fEr2lMhDtY7MSiwzZmen+yxrXKjs yBUkZCuGP5OxvUrwZ3Jp6KdFVRcg2Z0rTv25teuOk0MsNjUrhXGVcPhtWxvIJ6pB TW5DTmD3gNylSot4ZlHk9AOPx9rdhqicZDdRG7L78Ebw5o5Op+/QJxZUof4z+226 1aeTu01+qm6nChiljUkdEBEMEd8jCcakQ97VJcP1/yEb/siv6AWdzDikQfRDq7z5 EWvukXQ/vGusxYK+FMxp67D99g== -----END CERTIFICATE-----Generated at Sat May 18 18:12:31 2024 by rpki-client on console-fra.rpki-client.org