$ rpki-client -vvf rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/AFF15F20F92E11EC949E0987C4F9AE02.roa File: AFF15F20F92E11EC949E0987C4F9AE02.roa (raw, json) Hash identifier: ikleoxdR/Y3D32FN1WOf9HFdVkp+OK5cMqfRSX/V4Pg= Subject key identifier: 51:39:73:BC:C3:AF:B0:CF:C9:DA:93:F8:F1:2F:2A:7E:98:0F:27:7C Certificate issuer: /CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Certificate serial: 055F Authority key identifier: 83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/AFF15F20F92E11EC949E0987C4F9AE02.roa Signing time: Sat 27 May 2023 02:09:32 +0000 ROA not before: Sat 27 May 2023 02:09:32 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 146956 IP address blocks: 103.165.158.0/24 maxlen: 24 2407:4ac0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:57:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1375 (0x55f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91756B7/serialNumber=83D96F1DEA72A99D234B4456D6F6675DC7E6061E Validity Not Before: May 27 02:09:32 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6471665b-f05e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:22:fb:00:f6:c7:15:ae:ac:68:55:fa:60:52: d1:97:ea:5c:7f:9b:75:84:55:eb:7e:59:db:12:d5: d2:b4:5f:12:09:41:08:1a:90:30:6c:82:6c:48:82: 00:8b:46:c4:50:52:cc:ce:32:bf:0e:e8:5a:06:6d: 02:8a:5e:18:c2:17:87:4e:7d:60:b2:a3:79:91:0e: a1:fe:91:66:e1:d8:42:b8:1a:46:00:21:32:2c:f2: 0a:53:fa:99:f3:0e:8e:dc:ff:fe:6d:82:b2:12:a8: 9a:fb:60:99:96:c2:fc:9f:ca:0b:fe:36:fd:6c:12: a8:3b:19:42:71:8e:2b:f7:64:b0:ae:05:e2:65:f0: 71:97:ac:d2:e0:07:c8:06:1f:e0:19:93:a4:7e:64: 22:aa:41:a1:c2:6c:c7:58:96:0b:6c:dc:6a:e1:5b: ec:7c:3f:a5:97:20:5b:d1:38:38:09:84:3d:a9:dc: 4d:20:f9:46:63:93:c5:3c:31:e6:a5:27:99:7c:f3: 37:92:0e:35:c8:0b:50:ac:d5:48:74:cd:bb:74:e6: 9a:86:85:07:c9:d3:16:a0:1e:13:33:0f:9f:d8:81: 68:62:41:02:56:a0:cd:8d:ee:7e:2b:de:49:5c:ef: a0:3a:d3:68:04:86:7c:a8:36:bc:80:09:13:01:87: ee:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:39:73:BC:C3:AF:B0:CF:C9:DA:93:F8:F1:2F:2A:7E:98:0F:27:7C X509v3 Authority Key Identifier: keyid:83:D9:6F:1D:EA:72:A9:9D:23:4B:44:56:D6:F6:67:5D:C7:E6:06:1E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/g9lvHepyqZ0jS0RW1vZnXcfmBh4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/g9lvHepyqZ0jS0RW1vZnXcfmBh4.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91756B7/95EF7DBA967D11EBADD50D2CC4F9AE02/AFF15F20F92E11EC949E0987C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.165.158.0/24 IPv6: 2407:4ac0::/32 Signature Algorithm: sha256WithRSAEncryption 96:31:76:a7:fa:ed:5e:6b:92:9c:6e:3e:67:9a:02:89:87:af: 7b:c7:ce:60:22:9f:e4:9c:56:6e:de:e1:64:b7:f2:2c:f5:e1: 5e:56:0d:60:b6:03:b0:38:4e:81:cd:9b:59:34:70:a2:3b:5a: 97:ca:9a:8f:b9:c3:4d:80:31:06:8f:68:b9:f8:f1:0d:b2:4f: 26:aa:ba:99:33:25:74:b3:bc:cc:94:d9:e8:37:99:b8:f5:e4: ca:a1:b5:8c:d9:df:e4:30:4a:a2:da:b0:75:13:c5:38:c7:7f: 9c:6b:a8:96:52:49:a0:13:de:36:53:71:a4:e2:55:49:a4:2b: 94:43:2f:e3:3f:10:69:c2:ad:75:c1:7e:dd:4d:82:58:65:76: 78:87:6a:26:7b:40:71:e3:98:ad:f5:65:c5:06:cd:06:7d:6f: 1e:e8:cf:70:91:2d:93:f5:5b:63:66:58:24:7b:06:eb:70:3d: 7a:c6:c4:92:5b:03:e1:ad:79:f0:88:1e:db:c1:9b:5f:6b:cd: 65:cd:f1:35:73:34:b3:46:cb:96:08:55:5c:72:5d:c2:dd:61: 0a:8b:fc:c9:a7:77:4e:12:9a:6f:40:81:05:3c:e8:48:ba:95: db:16:4a:d4:67:ad:66:5e:08:ea:ff:c8:bb:ba:95:06:5e:70: 8f:a6:82:58 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICBV8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NzU2QjcxMTAvBgNVBAUTKDgzRDk2RjFERUE3MkE5OUQyMzRCNDQ1NkQ2RjY2NzVE QzdFNjA2MUUwHhcNMjMwNTI3MDIwOTMyWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDcxNjY1Yi1mMDVlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0CL7APbHFa6saFX6YFLRl+pcf5t1hFXrflnbEtXStF8SCUEIGpAwbIJsSIIA i0bEUFLMzjK/DuhaBm0Cil4YwheHTn1gsqN5kQ6h/pFm4dhCuBpGACEyLPIKU/qZ 8w6O3P/+bYKyEqia+2CZlsL8n8oL/jb9bBKoOxlCcY4r92SwrgXiZfBxl6zS4AfI Bh/gGZOkfmQiqkGhwmzHWJYLbNxq4VvsfD+llyBb0Tg4CYQ9qdxNIPlGY5PFPDHm pSeZfPM3kg41yAtQrNVIdM27dOaahoUHydMWoB4TMw+f2IFoYkECVqDNje5+K95J XO+gOtNoBIZ8qDa8gAkTAYfujQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFFE5c7zD r7DPydqT+PEvKn6YDyd8MB8GA1UdIwQYMBaAFIPZbx3qcqmdI0tEVtb2Z13H5gYe MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE3NTZCNy85NUVGN0RCQTk2 N0QxMUVCQURENTBEMkNDNEY5QUUwMi9nOWx2SGVweXFaMGpTMFJXMXZablhjZm1C aDQuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2c5bHZIZXB5cVowalMwUlcxdlpuWGNmbUJoNC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx NzU2QjcvOTVFRjdEQkE5NjdEMTFFQkFERDUwRDJDQzRGOUFFMDIvQUZGMTVGMjBG OTJFMTFFQzk0OUUwOTg3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBABnpZ4wDQQCAAIwBwMFACQHSsAwDQYJKoZIhvcNAQELBQAD ggEBAJYxdqf67V5rkpxuPmeaAomHr3vHzmAin+ScVm7e4WS38iz14V5WDWC2A7A4 ToHNm1k0cKI7WpfKmo+5w02AMQaPaLn48Q2yTyaqupkzJXSzvMyU2eg3mbj15Mqh tYzZ3+QwSqLasHUTxTjHf5xrqJZSSaAT3jZTcaTiVUmkK5RDL+M/EGnCrXXBft1N glhldniHaiZ7QHHjmK31ZcUGzQZ9bx7oz3CRLZP1W2NmWCR7ButwPXrGxJJbA+Gt efCIHtvBm19rzWXN8TVzNLNGy5YIVVxyXcLdYQqL/Mmnd04Smm9AgQU86Ei6ldsW StRnrWZeCOr/yLu6lQZecI+mglg= -----END CERTIFICATE-----Generated at Wed May 29 02:49:56 2024 by rpki-client on console-fra.rpki-client.org