$ rpki-client -vvf rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/91A286509F0811ECAE659F82C4F9AE02.roa File: 91A286509F0811ECAE659F82C4F9AE02.roa (raw, json) Hash identifier: f5uc1TcPmjMgDYmNxHJmQijbeYCUJ7Nv/kgPNOiS0l8= Subject key identifier: D6:20:3F:5B:02:F5:BF:71:E1:6E:46:B1:2D:5C:82:55:56:73:44:7A Certificate issuer: /CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Certificate serial: 02C2 Authority key identifier: 0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/91A286509F0811ECAE659F82C4F9AE02.roa Signing time: Sun 17 Sep 2023 02:02:44 +0000 ROA not before: Sun 17 Sep 2023 02:02:44 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 136038 IP address blocks: 103.91.217.0/24 maxlen: 24 103.99.208.0/24 maxlen: 24 103.99.209.0/24 maxlen: 24 103.99.210.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 02:50:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 706 (0x2c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A914E9C1/serialNumber=0A1DE18DFC98E4ACB3FA233368105A73D1D419F3 Validity Not Before: Sep 17 02:02:44 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=65065e44-9f0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:98:38:a3:ed:29:b6:2b:49:31:12:88:3a:59: dd:61:cb:32:c8:87:60:e9:34:ca:d2:ac:1c:7d:25: 33:43:87:54:ed:a9:08:99:19:e9:81:3b:95:65:7f: 39:c6:1f:e0:04:bd:fc:fa:a8:01:49:e6:17:2f:04: 9b:fe:24:e8:63:a1:53:e3:9b:fa:0c:6e:45:7d:d4: d0:70:48:ec:e1:97:60:d9:0a:df:ce:dd:12:97:86: 6d:34:df:60:a5:31:42:bc:f5:b3:65:41:64:9d:bd: 28:e4:e2:84:1f:fc:ad:64:7a:de:20:66:bf:c0:1a: 82:84:8f:8b:76:63:85:58:2f:56:bb:3f:10:6f:15: 4b:bd:9b:19:a7:f6:8b:4d:10:40:6e:88:23:f6:41: 0d:3c:c7:a2:be:fb:43:ad:58:9d:2a:8a:27:d2:19: 83:94:f1:69:7a:17:49:ae:e1:c2:ed:fd:69:ae:e4: f4:dd:6d:d2:97:45:54:cd:d5:81:dd:c5:cc:ac:f6: 19:8f:82:2b:67:e9:25:a2:96:3d:2e:16:cd:50:da: 95:0c:b2:e7:13:7a:71:53:71:51:cd:5c:2f:43:64: 3b:05:b6:93:f1:3e:62:f5:fe:af:1a:1a:47:e7:a3: 7b:e7:61:e3:3e:97:24:0b:26:ec:1f:67:80:f1:11: ef:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:20:3F:5B:02:F5:BF:71:E1:6E:46:B1:2D:5C:82:55:56:73:44:7A X509v3 Authority Key Identifier: keyid:0A:1D:E1:8D:FC:98:E4:AC:B3:FA:23:33:68:10:5A:73:D1:D4:19:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Ch3hjfyY5Kyz-iMzaBBac9HUGfM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A914E9C1/EE702F447AC911EC9DA55B46C4F9AE02/91A286509F0811ECAE659F82C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.217.0/24 103.99.208.0-103.99.210.255 Signature Algorithm: sha256WithRSAEncryption 3f:70:e7:89:9c:df:5f:37:20:98:e1:84:47:c5:40:8e:43:23: 73:50:1f:fa:b7:3e:23:9e:46:6b:47:b4:fe:63:5f:c2:06:7c: 62:12:80:68:e8:3f:cb:9e:04:4e:63:4a:8e:1c:8c:25:17:77: 7d:ea:c3:48:2b:75:e5:bd:29:a2:57:b8:43:e3:c0:a7:89:bb: eb:59:1e:e8:64:d3:f2:a9:14:6e:2d:c4:d1:cf:19:6c:bf:96: eb:6a:7f:2c:a7:cb:04:7b:20:a3:97:f0:88:8f:e0:00:05:77: 92:34:87:94:49:c9:4f:43:01:d0:61:9e:74:ff:94:d7:db:46: 6d:6d:39:92:25:fa:94:c1:53:43:04:a9:8c:4c:5c:67:4e:63: b9:1d:6e:0f:52:99:53:22:5d:81:92:d7:ed:73:e8:6e:7d:9b: 73:7f:88:d0:e6:90:7f:f6:e5:f7:08:ee:d3:e6:18:3d:e9:e8: 8c:52:eb:20:fd:f3:5c:1f:98:ba:5f:35:a0:28:14:55:8f:96: 0a:81:43:c8:8f:98:40:4a:fe:34:c2:46:41:66:51:66:da:d1: 6b:cb:2c:5e:65:2f:d5:12:87:dc:6a:bc:4a:35:ab:bc:af:92: 4d:a4:ef:57:b0:d9:af:ee:0b:5b:5a:de:9c:7e:47:e2:b1:e7: 80:5b:1f:6e -----BEGIN CERTIFICATE----- MIIFfzCCBGegAwIBAgICAsIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NEU5QzExMTAvBgNVBAUTKDBBMURFMThERkM5OEU0QUNCM0ZBMjMzMzY4MTA1QTcz RDFENDE5RjMwHhcNMjMwOTE3MDIwMjQ0WhcNMjQxMjAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTA2NWU0NC05ZjBiMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxJg4o+0ptitJMRKIOlndYcsyyIdg6TTK0qwcfSUzQ4dU7akImRnpgTuVZX85 xh/gBL38+qgBSeYXLwSb/iToY6FT45v6DG5FfdTQcEjs4Zdg2Qrfzt0Sl4ZtNN9g pTFCvPWzZUFknb0o5OKEH/ytZHreIGa/wBqChI+LdmOFWC9Wuz8QbxVLvZsZp/aL TRBAbogj9kENPMeivvtDrVidKoon0hmDlPFpehdJruHC7f1pruT03W3Sl0VUzdWB 3cXMrPYZj4IrZ+klopY9LhbNUNqVDLLnE3pxU3FRzVwvQ2Q7BbaT8T5i9f6vGhpH 56N752HjPpckCybsH2eA8RHvXwIDAQABo4ICozCCAp8wHQYDVR0OBBYEFNYgP1sC 9b9x4W5GsS1cglVWc0R6MB8GA1UdIwQYMBaAFAod4Y38mOSss/ojM2gQWnPR1Bnz MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE0RTlDMS9FRTcwMkY0NDdB QzkxMUVDOURBNTVCNDZDNEY5QUUwMi9DaDNoamZ5WTVLeXotaU16YUJCYWM5SFVH Zk0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NoM2hqZnlZNUt5ei1pTXphQkJhYzlIVUdmTS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NEU5QzEvRUU3MDJGNDQ3QUM5MTFFQzlEQTU1QjQ2QzRGOUFFMDIvOTFBMjg2NTA5 RjA4MTFFQ0FFNjU5RjgyQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLQYIKwYBBQUHAQcBAf8E HjAcMBoEAgABMBQDBABnW9kwDAMEBGdj0AMEAGdj0jANBgkqhkiG9w0BAQsFAAOC AQEAP3DniZzfXzcgmOGER8VAjkMjc1Af+rc+I55Ga0e0/mNfwgZ8YhKAaOg/y54E TmNKjhyMJRd3ferDSCt15b0pole4Q+PAp4m761ke6GTT8qkUbi3E0c8ZbL+W62p/ LKfLBHsgo5fwiI/gAAV3kjSHlEnJT0MB0GGedP+U19tGbW05kiX6lMFTQwSpjExc Z05juR1uD1KZUyJdgZLX7XPobn2bc3+I0OaQf/bl9wju0+YYPenojFLrIP3zXB+Y ul81oCgUVY+WCoFDyI+YQEr+NMJGQWZRZtrRa8ssXmUv1RKH3Gq8SjWrvK+STaTv V7DZr+4LW1renH5H4rHngFsfbg== -----END CERTIFICATE-----Generated at Sun May 19 03:48:51 2024 by rpki-client on console-fra.rpki-client.org