$ rpki-client -vvf rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa File: B65A4FACE18C11ECB1697F55C4F9AE02.roa (raw, json) Hash identifier: rNj9UKePqt1KCwLzyB9+jxKB/s3eAfxg5UiOqql2aqE= Subject key identifier: 6E:8B:EA:6A:44:93:C3:BC:A0:E7:9A:93:E2:5F:79:AF:7B:10:F9:58 Certificate issuer: /CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Certificate serial: 0703 Authority key identifier: 43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa Signing time: Sat 30 Dec 2023 05:24:14 +0000 ROA not before: Sat 30 Dec 2023 05:24:14 +0000 ROA not after: Mon 01 Jul 2024 00:00:00 +0000 asID: 138912 IP address blocks: 103.137.6.0/24 maxlen: 24 103.137.7.0/24 maxlen: 24 2001:df0:19c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1795 (0x703) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91580A1/serialNumber=437FF34EE7BC7050C9C84886AA94CE8CF50C24F9 Validity Not Before: Dec 30 05:24:14 2023 GMT Not After : Jul 1 00:00:00 2024 GMT Subject: CN=658fa97e-67bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:85:5d:ce:13:cd:ec:44:01:cd:9e:41:c7:13: bb:93:27:87:d6:ad:75:ac:f7:96:3c:7a:33:a0:c0: 56:1e:6d:66:84:f4:c7:68:65:a5:9f:c4:51:33:b8: 53:9c:d8:3b:41:c0:d5:78:59:51:2d:b9:ed:28:3d: ba:b1:0d:f1:c9:79:8c:db:aa:f8:73:ef:93:30:cd: 3e:f3:82:9f:1d:0b:5f:d3:31:1c:d6:4c:8f:23:6b: 81:d5:7d:3e:8d:50:13:8d:a9:e6:36:62:c6:97:48: 7e:47:14:0b:d1:a1:ba:f3:70:27:85:33:7e:0d:6b: f7:a1:c0:f2:11:16:93:07:22:4b:9e:ea:f0:f2:c9: bb:a5:84:d6:21:92:b1:53:bc:40:71:08:a0:7b:15: 86:02:0b:e4:16:b3:02:35:fe:75:06:7d:2b:d1:f7: 75:fc:a1:ff:2f:97:a4:df:fd:dd:50:fb:ff:6b:ca: 8d:64:1d:2b:72:af:00:54:3d:dc:1a:b0:57:1c:2d: 75:ef:2d:d2:be:5b:1a:05:a4:da:99:0f:aa:22:ab: ae:43:57:93:ce:db:1d:e3:d1:00:a5:68:ef:60:15: ef:a7:d2:2b:1d:90:94:7a:99:97:70:22:f9:60:2f: 92:65:f5:6f:bb:53:f8:86:f5:cd:54:37:4a:53:84: 6d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:8B:EA:6A:44:93:C3:BC:A0:E7:9A:93:E2:5F:79:AF:7B:10:F9:58 X509v3 Authority Key Identifier: keyid:43:7F:F3:4E:E7:BC:70:50:C9:C8:48:86:AA:94:CE:8C:F5:0C:24:F9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/Q3_zTue8cFDJyEiGqpTOjPUMJPk.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Q3_zTue8cFDJyEiGqpTOjPUMJPk.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91580A1/92560A6A374D11EAA0A3BE55C4F9AE02/B65A4FACE18C11ECB1697F55C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.137.6.0/23 IPv6: 2001:df0:19c0::/48 Signature Algorithm: sha256WithRSAEncryption 42:dd:7c:64:dd:5a:0f:aa:72:a3:e4:bd:fd:d6:67:ab:aa:a2: 32:29:d8:9c:ae:71:c8:7b:65:8f:8d:ae:17:67:90:6e:80:37: 3b:ce:a3:53:5a:cd:06:d8:6f:7f:47:b7:fc:d3:19:51:d6:a6: 7c:74:25:3c:22:f0:68:3b:1a:5b:12:41:0e:a5:73:39:e8:52: 06:14:bb:e4:06:b6:cc:d1:86:a4:bf:a9:4d:a5:b0:6b:2b:b1: b5:88:97:c0:72:5c:76:90:5b:db:62:5b:60:4e:b1:e2:3c:93: 46:5a:b3:a5:09:78:10:02:fc:be:91:40:c3:86:91:81:02:89: d4:56:94:80:f6:82:a0:f4:84:79:c4:96:e7:c5:41:f7:eb:a2: 77:36:62:32:0f:67:45:4f:5e:2b:d5:15:32:4b:93:70:93:13: 3c:65:1e:29:49:96:82:5d:b5:0e:f9:80:47:9c:5e:60:86:b1: b5:d6:d7:4c:96:7c:21:d3:8c:9e:86:1b:97:57:3e:4a:e5:da: b2:18:c1:0d:95:eb:71:da:b8:22:24:2d:21:51:61:b4:57:50: 3c:a2:79:99:c9:f7:c7:ed:90:2c:a3:b2:08:ee:e3:95:22:08: 67:d0:c0:df:f0:19:d7:e9:47:88:d4:cd:d5:46:80:87:a9:d5: 1a:13:ec:40 -----BEGIN CERTIFICATE----- MIIFgjCCBGqgAwIBAgICBwMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NTgwQTExMTAvBgNVBAUTKDQzN0ZGMzRFRTdCQzcwNTBDOUM4NDg4NkFBOTRDRThD RjUwQzI0RjkwHhcNMjMxMjMwMDUyNDE0WhcNMjQwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NThmYTk3ZS02N2JmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAuoVdzhPN7EQBzZ5BxxO7kyeH1q11rPeWPHozoMBWHm1mhPTHaGWln8RRM7hT nNg7QcDVeFlRLbntKD26sQ3xyXmM26r4c++TMM0+84KfHQtf0zEc1kyPI2uB1X0+ jVATjanmNmLGl0h+RxQL0aG683AnhTN+DWv3ocDyERaTByJLnurw8sm7pYTWIZKx U7xAcQigexWGAgvkFrMCNf51Bn0r0fd1/KH/L5ek3/3dUPv/a8qNZB0rcq8AVD3c GrBXHC117y3SvlsaBaTamQ+qIquuQ1eTztsd49EApWjvYBXvp9IrHZCUepmXcCL5 YC+SZfVvu1P4hvXNVDdKU4RtmwIDAQABo4ICpjCCAqIwHQYDVR0OBBYEFG6L6mpE k8O8oOeak+Jfea97EPlYMB8GA1UdIwQYMBaAFEN/807nvHBQychIhqqUzoz1DCT5 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE1ODBBMS85MjU2MEE2QTM3 NEQxMUVBQTBBM0JFNTVDNEY5QUUwMi9RM196VHVlOGNGREp5RWlHcXBUT2pQVU1K UGsuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1EzX3pUdWU4Y0ZESnlFaUdxcFRPalBVTUpQay5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NTgwQTEvOTI1NjBBNkEzNzREMTFFQUEwQTNCRTU1QzRGOUFFMDIvQjY1QTRGQUNF MThDMTFFQ0IxNjk3RjU1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMAYIKwYBBQUHAQcBAf8E ITAfMAwEAgABMAYDBAFniQYwDwQCAAIwCQMHACABDfAZwDANBgkqhkiG9w0BAQsF AAOCAQEAQt18ZN1aD6pyo+S9/dZnq6qiMinYnK5xyHtlj42uF2eQboA3O86jU1rN Bthvf0e3/NMZUdamfHQlPCLwaDsaWxJBDqVzOehSBhS75Aa2zNGGpL+pTaWwayux tYiXwHJcdpBb22JbYE6x4jyTRlqzpQl4EAL8vpFAw4aRgQKJ1FaUgPaCoPSEecSW 58VB9+uidzZiMg9nRU9eK9UVMkuTcJMTPGUeKUmWgl21DvmAR5xeYIaxtdbXTJZ8 IdOMnoYbl1c+SuXashjBDZXrcdq4IiQtIVFhtFdQPKJ5mcn3x+2QLKOyCO7jlSII Z9DA3/AZ1+lHiNTN1UaAh6nVGhPsQA== -----END CERTIFICATE-----Generated at Thu May 16 21:45:27 2024 by rpki-client on console-fra.rpki-client.org