$ rpki-client -vvf rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/5DCB0A0C410C11EA8A6C412DC4F9AE02.roa File: 5DCB0A0C410C11EA8A6C412DC4F9AE02.roa (raw, json) Hash identifier: DZEkEnTNgplGMbRRw6SaRTBPqyRQF1awLdG5QG2XDnA= Subject key identifier: FD:2E:91:83:09:25:56:F0:B8:F1:FA:26:4B:2C:BC:F0:71:5E:F0:6B Certificate issuer: /CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Certificate serial: 09E1 Authority key identifier: 64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/5DCB0A0C410C11EA8A6C412DC4F9AE02.roa Signing time: Sat 14 Oct 2023 20:08:14 +0000 ROA not before: Sat 14 Oct 2023 20:08:14 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 63844 IP address blocks: 103.41.244.0/23 maxlen: 24 103.77.252.0/23 maxlen: 24 116.206.252.0/22 maxlen: 24 2405:9140::/32 maxlen: 36 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2529 (0x9e1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91408BE/serialNumber=648E4723444171B6ABE16D7DC030E89C06F050DC Validity Not Before: Oct 14 20:08:14 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=652af52e-2590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:04:fa:a8:e3:96:3e:3d:cc:9e:99:f0:18:50: ae:8a:66:7f:25:83:1e:e0:e9:64:5a:80:ec:0b:21: 28:a0:e5:13:74:59:a8:89:34:21:e3:f8:a5:67:95: 4b:65:26:a2:9f:02:fd:24:e8:07:b9:91:55:7e:5a: b7:c9:a7:ec:e8:e2:78:f8:bf:ff:26:e7:68:bf:20: 99:3e:00:1f:b5:69:d5:3a:7f:86:e8:c7:71:df:fa: b7:3b:8b:46:55:7d:8c:0b:33:c9:3b:13:16:f4:ba: 5c:90:b3:d1:c7:06:90:4d:fd:93:0f:36:fb:6a:19: 20:47:36:47:0b:18:9d:2e:60:f0:94:24:ed:39:d7: f5:5a:15:e7:e6:c6:1d:6c:40:85:79:b5:7a:6e:de: b2:67:e5:b0:b8:34:4e:6b:52:b6:ab:78:2e:64:5e: 6d:19:18:de:27:fe:73:ce:b2:dc:e7:fc:90:d7:e2: f4:b9:de:20:36:51:0a:09:41:19:39:38:07:4c:48: 39:88:ed:8f:12:d6:80:14:08:07:70:70:b4:14:4c: b7:eb:05:ed:ca:9b:12:67:59:cd:03:43:dc:21:61: d2:0f:f2:33:3d:a5:eb:db:05:f3:73:29:a8:80:1a: a7:a1:54:b8:b8:00:b0:45:e7:c5:19:f7:6e:92:f6: b6:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:2E:91:83:09:25:56:F0:B8:F1:FA:26:4B:2C:BC:F0:71:5E:F0:6B X509v3 Authority Key Identifier: keyid:64:8E:47:23:44:41:71:B6:AB:E1:6D:7D:C0:30:E8:9C:06:F0:50:DC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/ZI5HI0RBcbar4W19wDDonAbwUNw.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZI5HI0RBcbar4W19wDDonAbwUNw.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91408BE/A2C827EE410B11EAB6954A2CC4F9AE02/5DCB0A0C410C11EA8A6C412DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.41.244.0/23 103.77.252.0/23 116.206.252.0/22 IPv6: 2405:9140::/32 Signature Algorithm: sha256WithRSAEncryption 02:13:48:b7:3e:9f:bc:c1:07:b3:ab:5f:a5:f1:e1:9a:e2:49: de:22:79:9c:2e:58:cf:20:88:d7:b2:d4:8a:4a:4a:b1:2a:53: ce:4f:87:aa:97:10:ff:81:21:68:34:f2:5f:26:39:c2:fb:cf: a8:d1:c4:ad:de:a2:41:6a:03:f5:92:11:e4:e9:e1:21:76:62: b8:89:15:70:b6:8a:70:57:6b:64:1d:18:81:52:e9:a9:b4:e8: 6d:08:be:1b:72:c6:9a:3b:be:dc:32:af:b0:85:10:a5:6e:4d: 14:de:ad:a1:4b:77:8b:c7:98:ea:9c:19:e4:c6:3d:10:a1:81: ec:f0:10:01:28:ef:5e:c5:f3:cd:fe:57:ce:a9:d1:28:a6:02: 1c:ec:12:4a:fb:16:99:dc:aa:c8:ce:64:a2:ec:5d:04:eb:7b: ea:82:07:c7:a1:21:8c:10:91:2f:ff:94:e4:04:1c:2b:60:b3: d5:65:19:fa:c8:5f:02:e4:33:01:d3:4a:ef:29:5d:1e:0d:44: 08:f1:ef:ef:a7:bf:e8:20:bd:28:1b:d5:43:a0:f9:9a:1d:af: ec:63:c9:3e:9e:ee:68:88:e8:ed:d1:08:74:a1:6f:a9:c1:a3: cb:f3:15:69:c6:a7:11:94:72:37:dd:04:32:cb:43:93:f7:08: be:59:be:86 -----BEGIN CERTIFICATE----- MIIFjDCCBHSgAwIBAgICCeEwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDA4QkUxMTAvBgNVBAUTKDY0OEU0NzIzNDQ0MTcxQjZBQkUxNkQ3REMwMzBFODlD MDZGMDUwREMwHhcNMjMxMDE0MjAwODE0WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTJhZjUyZS0yNTkwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAzAT6qOOWPj3MnpnwGFCuimZ/JYMe4OlkWoDsCyEooOUTdFmoiTQh4/ilZ5VL ZSainwL9JOgHuZFVflq3yafs6OJ4+L//JudovyCZPgAftWnVOn+G6Mdx3/q3O4tG VX2MCzPJOxMW9LpckLPRxwaQTf2TDzb7ahkgRzZHCxidLmDwlCTtOdf1WhXn5sYd bECFebV6bt6yZ+WwuDROa1K2q3guZF5tGRjeJ/5zzrLc5/yQ1+L0ud4gNlEKCUEZ OTgHTEg5iO2PEtaAFAgHcHC0FEy36wXtypsSZ1nNA0PcIWHSD/IzPaXr2wXzcymo gBqnoVS4uACwRefFGfdukva2uwIDAQABo4ICsDCCAqwwHQYDVR0OBBYEFP0ukYMJ JVbwuPH6JkssvPBxXvBrMB8GA1UdIwQYMBaAFGSORyNEQXG2q+FtfcAw6JwG8FDc MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0MDhCRS9BMkM4MjdFRTQx MEIxMUVBQjY5NTRBMkNDNEY5QUUwMi9aSTVISTBSQmNiYXI0VzE5d0REb25BYndV TncuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1pJNUhJMFJCY2JhcjRXMTl3RERvbkFid1VOdy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDA4QkUvQTJDODI3RUU0MTBCMTFFQUI2OTU0QTJDQzRGOUFFMDIvNURDQjBBMEM0 MTBDMTFFQThBNkM0MTJEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwOgYIKwYBBQUHAQcBAf8E KzApMBgEAgABMBIDBAFnKfQDBAFnTfwDBAJ0zvwwDQQCAAIwBwMFACQFkUAwDQYJ KoZIhvcNAQELBQADggEBAAITSLc+n7zBB7OrX6Xx4ZriSd4ieZwuWM8giNey1IpK SrEqU85Ph6qXEP+BIWg08l8mOcL7z6jRxK3eokFqA/WSEeTp4SF2YriJFXC2inBX a2QdGIFS6am06G0Ivhtyxpo7vtwyr7CFEKVuTRTeraFLd4vHmOqcGeTGPRChgezw EAEo717F883+V86p0SimAhzsEkr7FpncqsjOZKLsXQTre+qCB8ehIYwQkS//lOQE HCtgs9VlGfrIXwLkMwHTSu8pXR4NRAjx7++nv+ggvSgb1UOg+Zodr+xjyT6e7miI 6O3RCHShb6nBo8vzFWnGpxGUcjfdBDLLQ5P3CL5ZvoY= -----END CERTIFICATE-----Generated at Thu May 16 21:45:26 2024 by rpki-client on console-fra.rpki-client.org