$ rpki-client -vvf rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/32DDB7DA368B11EA9713E971C4F9AE02.roa File: 32DDB7DA368B11EA9713E971C4F9AE02.roa (raw, json) Hash identifier: 4WLk9HTsQgQSzms8cSy1J3xNrPc13F9kW/ty5qQRR4c= Subject key identifier: 4E:25:19:FD:A8:AF:CC:D1:ED:DA:2C:08:0B:0B:53:B1:37:51:AB:A2 Certificate issuer: /CN=A91735C9/serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB Certificate serial: 0A25 Authority key identifier: 00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/32DDB7DA368B11EA9713E971C4F9AE02.roa Signing time: Tue 24 Oct 2023 20:08:00 +0000 ROA not before: Tue 24 Oct 2023 20:08:00 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 134714 IP address blocks: 103.197.196.0/24 maxlen: 24 103.197.197.0/24 maxlen: 24 103.197.198.0/24 maxlen: 24 103.197.199.0/24 maxlen: 24 2404:1780::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 May 2024 20:05:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2597 (0xa25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91735C9/serialNumber=006323A8DD01DEA95BD1AE44C9FFC453404425CB Validity Not Before: Oct 24 20:08:00 2023 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65382420-46aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d4:ec:6d:1e:a7:29:bb:c6:ed:21:b5:1f:20: b0:72:49:c6:d1:00:74:df:56:d2:93:2d:9b:2c:47: 64:dd:ad:32:5a:57:40:b6:da:84:f9:a4:49:92:07: 55:b7:99:e1:01:5b:75:c2:89:d7:5b:fa:0b:48:83: 6e:52:9e:16:58:a9:ee:f8:cf:5d:d3:ae:5c:41:63: d8:d4:0b:5e:84:15:38:67:12:5a:ca:50:c7:c8:0c: 50:b8:6f:fd:c4:05:b2:2b:8a:11:76:15:f2:ad:30: 8b:16:b3:45:82:70:ae:76:c7:38:c8:4b:1a:6c:70: f9:bb:30:74:8e:a5:43:2d:9d:61:c9:83:22:b2:84: b7:46:df:a1:3b:8b:62:a3:fb:1e:39:d4:2f:93:96: 9a:31:a2:9a:13:ac:f6:eb:68:90:ee:17:eb:8d:b8: b2:15:c9:18:24:8b:8e:87:ed:af:6a:f0:35:b8:e2: 0a:78:c5:8f:d3:81:5e:30:70:69:02:e7:18:84:1f: 29:dc:a1:a7:88:d2:0f:7b:7e:30:20:22:1c:62:29: 46:43:0d:94:e3:43:55:90:49:9f:ea:c1:11:cf:c0: 93:63:f3:ee:4c:eb:c6:4a:52:61:8d:ff:60:81:10: 07:55:a2:5c:76:69:67:0b:4d:07:98:a3:21:b3:7c: 68:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:25:19:FD:A8:AF:CC:D1:ED:DA:2C:08:0B:0B:53:B1:37:51:AB:A2 X509v3 Authority Key Identifier: keyid:00:63:23:A8:DD:01:DE:A9:5B:D1:AE:44:C9:FF:C4:53:40:44:25:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/AGMjqN0B3qlb0a5Eyf_EU0BEJcs.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91735C9/EA96E6D435C911EA8E5A2F16C4F9AE02/32DDB7DA368B11EA9713E971C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.197.196.0/22 IPv6: 2404:1780::/32 Signature Algorithm: sha256WithRSAEncryption 69:10:ce:d8:74:91:18:19:ac:47:0b:9c:80:1c:65:a0:3e:7c: 68:d1:be:2d:a4:68:4b:6a:0c:c4:a1:75:e5:17:79:9d:30:82: 79:e0:2f:09:ce:e5:c7:50:08:0f:50:b2:74:93:09:aa:ce:f7: 9c:c7:cb:4b:31:2c:ef:b9:84:65:a1:44:e4:09:9a:ac:0e:d2: 01:02:34:3c:98:39:19:39:eb:9c:fc:4b:22:ab:f9:8d:4f:a2: da:f4:ff:bf:dc:66:37:9b:ff:5c:10:76:b8:93:5c:ac:e4:be: 31:4a:1a:b0:6e:a3:35:3f:d4:29:80:02:e6:e2:0d:e4:48:b0: 45:4c:4c:ec:29:ae:76:99:a0:ce:44:4a:5c:f8:9b:15:62:1a: 5a:8b:d2:88:58:f3:91:72:7b:bb:10:e7:a4:95:a9:b7:cd:3a: e2:05:55:44:f4:14:dd:3e:30:9e:29:08:d4:a6:a2:7c:6e:fa: 90:b9:09:40:3a:62:c3:e6:73:f4:b5:e5:18:11:dd:ad:4b:6d: 7f:56:4c:59:e3:42:86:13:ca:32:e4:62:0b:4d:a8:f0:c1:dc: 44:8e:ef:5e:e0:fe:cf:c6:6f:28:b0:3e:8f:cf:da:6e:6a:0d: 61:e1:20:ef:b6:fc:d8:d3:ec:63:3c:72:b0:bc:63:e8:74:14: 2b:a1:25:ff -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICCiUwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzM1QzkxMTAvBgNVBAUTKDAwNjMyM0E4REQwMURFQTk1QkQxQUU0NEM5RkZDNDUz NDA0NDI1Q0IwHhcNMjMxMDI0MjAwODAwWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM4MjQyMC00NmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxdTsbR6nKbvG7SG1HyCwcknG0QB031bSky2bLEdk3a0yWldAttqE+aRJkgdV t5nhAVt1wonXW/oLSINuUp4WWKnu+M9d065cQWPY1AtehBU4ZxJaylDHyAxQuG/9 xAWyK4oRdhXyrTCLFrNFgnCudsc4yEsabHD5uzB0jqVDLZ1hyYMisoS3Rt+hO4ti o/seOdQvk5aaMaKaE6z262iQ7hfrjbiyFckYJIuOh+2vavA1uOIKeMWP04FeMHBp AucYhB8p3KGniNIPe34wICIcYilGQw2U40NVkEmf6sERz8CTY/PuTOvGSlJhjf9g gRAHVaJcdmlnC00HmKMhs3xoOQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFE4lGf2o r8zR7dosCAsLU7E3UauiMB8GA1UdIwQYMBaAFABjI6jdAd6pW9GuRMn/xFNARCXL MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3MzVDOS9FQTk2RTZENDM1 QzkxMUVBOEU1QTJGMTZDNEY5QUUwMi9BR01qcU4wQjNxbGIwYTVFeWZfRVUwQkVK Y3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0FHTWpxTjBCM3FsYjBhNUV5Zl9FVTBCRUpjcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzM1QzkvRUE5NkU2RDQzNUM5MTFFQThFNUEyRjE2QzRGOUFFMDIvMzJEREI3REEz NjhCMTFFQTk3MTNFOTcxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAJnxcQwDQQCAAIwBwMFACQEF4AwDQYJKoZIhvcNAQELBQAD ggEBAGkQzth0kRgZrEcLnIAcZaA+fGjRvi2kaEtqDMShdeUXeZ0wgnngLwnO5cdQ CA9QsnSTCarO95zHy0sxLO+5hGWhROQJmqwO0gECNDyYORk565z8SyKr+Y1Potr0 /7/cZjeb/1wQdriTXKzkvjFKGrBuozU/1CmAAubiDeRIsEVMTOwprnaZoM5ESlz4 mxViGlqL0ohY85Fye7sQ56SVqbfNOuIFVUT0FN0+MJ4pCNSmonxu+pC5CUA6YsPm c/S15RgR3a1LbX9WTFnjQoYTyjLkYgtNqPDB3ESO717g/s/GbyiwPo/P2m5qDWHh IO+2/NjT7GM8crC8Y+h0FCuhJf8= -----END CERTIFICATE-----Generated at Thu May 16 21:45:28 2024 by rpki-client on console-fra.rpki-client.org