$ rpki-client -vvf rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/1341A108C14C11E888561034C4F9AE02.roa File: 1341A108C14C11E888561034C4F9AE02.roa (raw, json) Hash identifier: sRKv2jZLHDJF+VGmGeV8qdg56uy4Rd/794hd4CefWk0= Subject key identifier: FB:DE:4C:18:CA:39:5C:1A:EC:41:4A:F6:B1:2B:9A:4D:0B:F6:08:1D Certificate issuer: /CN=A91475C0/serialNumber=19CA97F9ECB50C584D1BFBD6B745024139A01522 Certificate serial: 1206 Authority key identifier: 19:CA:97:F9:EC:B5:0C:58:4D:1B:FB:D6:B7:45:02:41:39:A0:15:22 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GcqX-ey1DFhNG_vWt0UCQTmgFSI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/1341A108C14C11E888561034C4F9AE02.roa Signing time: Fri 31 May 2024 18:29:42 +0000 ROA not before: Fri 31 May 2024 18:29:42 +0000 ROA not after: Tue 01 Oct 2024 00:00:00 +0000 asID: 132228 IP address blocks: 103.7.197.0/24 maxlen: 24 103.226.23.0/24 maxlen: 24 2001:df0:410::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/GcqX-ey1DFhNG_vWt0UCQTmgFSI.crl rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/GcqX-ey1DFhNG_vWt0UCQTmgFSI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GcqX-ey1DFhNG_vWt0UCQTmgFSI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 09 Jun 2024 17:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4614 (0x1206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91475C0/serialNumber=19CA97F9ECB50C584D1BFBD6B745024139A01522 Validity Not Before: May 31 18:29:42 2024 GMT Not After : Oct 1 00:00:00 2024 GMT Subject: CN=665a1716-e70e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e7:03:7c:4c:7d:a5:f2:9c:e8:5b:58:49:50: c8:6c:67:2d:61:1f:2b:a9:48:0f:87:9c:6c:5d:3c: 6a:e0:85:7b:86:76:aa:c8:29:d9:3c:84:2b:4c:4d: 4b:df:47:58:1f:b3:c6:5a:dd:94:15:db:43:b3:c7: 18:64:45:73:32:93:0b:de:80:ac:0e:d3:d6:b2:b8: dc:15:7b:27:c5:6a:e6:e1:ac:0a:55:3e:14:e5:f3: 67:bd:fe:ca:9e:c5:f2:38:45:e8:3d:13:59:29:7e: a5:a6:ec:c1:05:df:4c:c5:ba:24:a1:b9:67:ea:5f: 98:ea:4e:57:66:e3:cf:d4:6f:08:99:28:eb:58:77: ae:46:3a:cd:2b:f9:af:a1:cf:c1:7c:6e:b8:86:2e: 3d:6c:ac:57:76:d7:4f:e6:6c:c5:56:b1:54:b9:de: 9d:40:83:47:a9:e3:cc:bf:1e:db:22:e0:33:50:3f: cd:f7:ea:41:84:14:af:f9:0c:da:8c:47:5d:d1:70: 72:25:f0:55:07:9b:f0:a5:90:51:0e:e2:68:8a:9a: ad:4f:ed:23:7e:82:8f:ee:3b:35:9f:dc:74:ce:a8: a6:26:7a:dd:74:68:4f:54:ae:27:f7:a6:86:72:44: 0f:f3:f7:3a:d1:0d:dc:60:ed:27:73:7e:6f:2a:06: 16:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:DE:4C:18:CA:39:5C:1A:EC:41:4A:F6:B1:2B:9A:4D:0B:F6:08:1D X509v3 Authority Key Identifier: keyid:19:CA:97:F9:EC:B5:0C:58:4D:1B:FB:D6:B7:45:02:41:39:A0:15:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/GcqX-ey1DFhNG_vWt0UCQTmgFSI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GcqX-ey1DFhNG_vWt0UCQTmgFSI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91475C0/5A2C12ACC14B11E8B092E732C4F9AE02/1341A108C14C11E888561034C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.7.197.0/24 103.226.23.0/24 IPv6: 2001:df0:410::/48 Signature Algorithm: sha256WithRSAEncryption 63:4a:a6:62:ef:63:af:34:a9:1f:22:50:08:fc:21:ad:cb:36: 7f:93:78:89:14:9d:f6:02:1d:bf:70:55:04:f9:4e:ca:d7:43: 09:09:be:cb:23:3d:92:cf:8c:66:be:46:27:7e:b1:08:d6:1d: c2:b3:35:c5:84:98:67:a0:ad:ca:12:63:92:9c:5f:13:70:c1: 28:84:cf:35:a7:e0:1a:7a:17:aa:7f:33:28:00:61:03:dc:05: b6:1a:c5:df:23:6e:12:6b:68:54:12:55:43:14:5d:fd:26:d9: 53:aa:a7:85:3b:ac:2b:e1:d4:f7:9d:bd:7c:90:ff:c1:9c:5e: ac:b9:a9:0c:60:f6:7e:12:14:7d:ec:2f:79:e0:d1:b3:1e:de: fb:3c:a1:8e:6a:fc:96:fd:51:7a:1c:98:9b:56:97:47:50:b6: 0e:b7:87:a3:88:20:50:0e:b7:64:0c:4d:0e:52:88:81:a8:d7: fa:bd:72:90:1f:1b:cd:e8:97:1f:66:af:19:ea:5e:cd:58:c9: 3f:53:87:09:3f:d9:7e:54:80:9e:ab:cc:13:65:34:13:77:f3: a7:29:62:91:6f:ed:58:de:07:2c:5f:42:6e:53:ae:04:95:ec: 56:c3:33:1f:d1:48:94:16:ab:f5:f3:da:bd:25:bb:df:ff:52: 8d:cc:85:96 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgICEgYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NDc1QzAxMTAvBgNVBAUTKDE5Q0E5N0Y5RUNCNTBDNTg0RDFCRkJENkI3NDUwMjQx MzlBMDE1MjIwHhcNMjQwNTMxMTgyOTQyWhcNMjQxMDAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjVhMTcxNi1lNzBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAo+cDfEx9pfKc6FtYSVDIbGctYR8rqUgPh5xsXTxq4IV7hnaqyCnZPIQrTE1L 30dYH7PGWt2UFdtDs8cYZEVzMpML3oCsDtPWsrjcFXsnxWrm4awKVT4U5fNnvf7K nsXyOEXoPRNZKX6lpuzBBd9Mxbokobln6l+Y6k5XZuPP1G8ImSjrWHeuRjrNK/mv oc/BfG64hi49bKxXdtdP5mzFVrFUud6dQINHqePMvx7bIuAzUD/N9+pBhBSv+Qza jEdd0XByJfBVB5vwpZBRDuJoipqtT+0jfoKP7js1n9x0zqimJnrddGhPVK4n96aG ckQP8/c60Q3cYO0nc35vKgYWWwIDAQABo4ICrDCCAqgwHQYDVR0OBBYEFPveTBjK OVwa7EFK9rErmk0L9ggdMB8GA1UdIwQYMBaAFBnKl/nstQxYTRv71rdFAkE5oBUi MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0NzVDMC81QTJDMTJBQ0Mx NEIxMUU4QjA5MkU3MzJDNEY5QUUwMi9HY3FYLWV5MURGaE5HX3ZXdDBVQ1FUbWdG U0kuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0djcVgtZXkxREZoTkdfdld0MFVDUVRtZ0ZTSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NDc1QzAvNUEyQzEyQUNDMTRCMTFFOEIwOTJFNzMyQzRGOUFFMDIvMTM0MUExMDhD MTRDMTFFODg4NTYxMDM0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNgYIKwYBBQUHAQcBAf8E JzAlMBIEAgABMAwDBABnB8UDBABn4hcwDwQCAAIwCQMHACABDfAEEDANBgkqhkiG 9w0BAQsFAAOCAQEAY0qmYu9jrzSpHyJQCPwhrcs2f5N4iRSd9gIdv3BVBPlOytdD CQm+yyM9ks+MZr5GJ36xCNYdwrM1xYSYZ6CtyhJjkpxfE3DBKITPNafgGnoXqn8z KABhA9wFthrF3yNuEmtoVBJVQxRd/SbZU6qnhTusK+HU9529fJD/wZxerLmpDGD2 fhIUfewveeDRsx7e+zyhjmr8lv1RehyYm1aXR1C2DreHo4ggUA63ZAxNDlKIgajX +r1ykB8bzeiXH2avGepezVjJP1OHCT/ZflSAnqvME2U0E3fzpylikW/tWN4HLF9C blOuBJXsVsMzH9FIlBar9fPavSW73/9SjcyFlg== -----END CERTIFICATE-----Generated at Sun Jun 2 18:46:18 2024 by rpki-client on console-ams.rpki-client.org