$ rpki-client -vvf rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/6FF4CA0E006311EAB403274DC4F9AE02.roa File: 6FF4CA0E006311EAB403274DC4F9AE02.roa (raw, json) Hash identifier: r72v/EyKxTF64jY+Sy+xAC5v6NT9NGanOanJ0mr1WQo= Subject key identifier: 91:E3:AA:62:4A:34:D1:AE:5A:E1:27:59:7B:97:19:CA:63:32:25:E1 Certificate issuer: /CN=A91870C2/serialNumber=8C78FEC7455920CBFDE030FE544E57F1EC9FC864 Certificate serial: 0AE9 Authority key identifier: 8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/6FF4CA0E006311EAB403274DC4F9AE02.roa Signing time: Wed 31 May 2023 20:40:23 +0000 ROA not before: Wed 31 May 2023 20:40:23 +0000 ROA not after: Tue 30 Jul 2024 00:00:00 +0000 asID: 133945 IP address blocks: 103.91.52.0/23 maxlen: 23 103.91.52.0/24 maxlen: 24 103.91.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:09:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2793 (0xae9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91870C2/serialNumber=8C78FEC7455920CBFDE030FE544E57F1EC9FC864 Validity Not Before: May 31 20:40:23 2023 GMT Not After : Jul 30 00:00:00 2024 GMT Subject: CN=6477b0b6-9b0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:d6:01:cf:d9:76:ec:7d:3a:26:96:69:63:36: 9a:05:02:fd:10:8b:89:a6:34:37:54:95:30:20:51: 2b:83:0d:85:07:4d:a5:e7:b0:4d:5e:34:ac:a2:d6: ed:43:24:72:eb:23:25:a7:6a:60:ea:fa:82:df:75: 37:f0:48:96:d6:66:47:59:f7:60:1d:62:af:21:67: e4:3d:2f:59:a9:ee:1d:77:26:b4:dc:60:ba:6c:5c: 0f:91:f0:e6:60:73:36:f0:02:7c:f1:cc:b1:ea:a8: 91:bf:da:2d:73:3c:a4:d3:49:92:6a:c4:2c:f9:cf: 1f:cf:f6:22:87:7f:17:fd:6b:9b:76:c6:7a:0c:09: 10:00:0c:03:92:5f:7a:81:9e:10:b3:10:44:53:4a: 80:f9:b3:13:db:d8:cf:20:fd:91:31:de:71:93:b9: 1e:2a:a5:11:3d:74:f2:05:47:67:3b:34:ea:a2:ac: 7f:89:65:7d:ca:27:ce:1f:5d:91:29:3d:e8:71:83: 65:d7:57:1b:59:3d:1f:e3:b7:99:89:30:ae:36:e2: 13:17:a2:3e:77:28:46:47:86:c3:1e:89:13:b5:f7: cd:6e:16:1e:9a:b3:d3:62:e7:d6:39:9b:32:2d:14: 1d:37:a2:e6:cb:da:75:e2:3d:3e:fe:49:2e:bd:48: b3:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:E3:AA:62:4A:34:D1:AE:5A:E1:27:59:7B:97:19:CA:63:32:25:E1 X509v3 Authority Key Identifier: keyid:8C:78:FE:C7:45:59:20:CB:FD:E0:30:FE:54:4E:57:F1:EC:9F:C8:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/jHj-x0VZIMv94DD-VE5X8eyfyGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/jHj-x0VZIMv94DD-VE5X8eyfyGQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91870C2/8D712EA2006211EAABE73F4CC4F9AE02/6FF4CA0E006311EAB403274DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.91.52.0/23 Signature Algorithm: sha256WithRSAEncryption ab:00:d9:69:dd:38:c0:f0:b9:8a:e7:cf:2b:5e:67:f0:93:16: 79:5a:bc:a0:17:5f:51:ac:99:05:87:6c:90:8d:3b:3d:8c:57: 20:f3:a2:14:67:ed:69:ee:97:0f:5c:33:eb:dd:55:4b:80:ac: c8:f6:ab:0f:17:b5:aa:f3:f0:bf:d8:31:7b:ca:ee:ee:73:aa: 25:ac:fe:61:34:16:29:f3:14:4a:dd:fb:c1:7d:68:c4:7d:9e: b5:49:c6:26:bc:a7:20:44:ea:e2:20:06:22:57:65:a1:1d:4d: 0b:56:c0:eb:af:86:07:10:3d:1f:78:57:6e:89:ef:c8:18:c2: 6e:51:44:a4:ad:67:78:9c:62:a6:d6:b9:56:87:15:f4:ca:ff: f1:9e:39:41:63:bf:ca:be:18:22:6e:b7:77:d1:e4:17:36:eb: 0a:81:43:7c:19:00:98:c0:c8:a4:01:49:2d:02:43:09:65:62: 44:19:c5:b0:f8:a7:2c:7d:c3:64:b4:f8:1f:34:16:83:3c:b3: 7d:53:94:76:d0:f9:d3:af:4f:73:2e:17:31:57:32:86:d2:ab: ce:00:c5:8c:9b:81:51:11:0f:d4:72:5a:e6:e7:d2:99:92:0d: 2e:f4:a7:ac:e4:ee:44:0e:60:7a:45:bb:2a:22:8b:71:a5:43: 4a:4a:6e:19 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCukwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODcwQzIxMTAvBgNVBAUTKDhDNzhGRUM3NDU1OTIwQ0JGREUwMzBGRTU0NEU1N0Yx RUM5RkM4NjQwHhcNMjMwNTMxMjA0MDIzWhcNMjQwNzMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NDc3YjBiNi05YjBkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA09YBz9l27H06JpZpYzaaBQL9EIuJpjQ3VJUwIFErgw2FB02l57BNXjSsotbt QyRy6yMlp2pg6vqC33U38EiW1mZHWfdgHWKvIWfkPS9Zqe4ddya03GC6bFwPkfDm YHM28AJ88cyx6qiRv9otczyk00mSasQs+c8fz/Yih38X/WubdsZ6DAkQAAwDkl96 gZ4QsxBEU0qA+bMT29jPIP2RMd5xk7keKqURPXTyBUdnOzTqoqx/iWV9yifOH12R KT3ocYNl11cbWT0f47eZiTCuNuITF6I+dyhGR4bDHokTtffNbhYemrPTYufWOZsy LRQdN6Lmy9p14j0+/kkuvUizuwIDAQABo4IClTCCApEwHQYDVR0OBBYEFJHjqmJK NNGuWuEnWXuXGcpjMiXhMB8GA1UdIwQYMBaAFIx4/sdFWSDL/eAw/lROV/Hsn8hk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4NzBDMi84RDcxMkVBMjAw NjIxMUVBQUJFNzNGNENDNEY5QUUwMi9qSGoteDBWWklNdjk0REQtVkU1WDhleWZ5 R1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2pIai14MFZaSU12OTRERC1WRTVYOGV5ZnlHUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODcwQzIvOEQ3MTJFQTIwMDYyMTFFQUFCRTczRjRDQzRGOUFFMDIvNkZGNENBMEUw MDYzMTFFQUI0MDMyNzREQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnWzQwDQYJKoZIhvcNAQELBQADggEBAKsA2WndOMDwuYrn zyteZ/CTFnlavKAXX1GsmQWHbJCNOz2MVyDzohRn7Wnulw9cM+vdVUuArMj2qw8X tarz8L/YMXvK7u5zqiWs/mE0FinzFErd+8F9aMR9nrVJxia8pyBE6uIgBiJXZaEd TQtWwOuvhgcQPR94V26J78gYwm5RRKStZ3icYqbWuVaHFfTK//GeOUFjv8q+GCJu t3fR5Bc26wqBQ3wZAJjAyKQBSS0CQwllYkQZxbD4pyx9w2S0+B80FoM8s31TlHbQ +dOvT3MuFzFXMobSq84AxYybgVERD9RyWubn0pmSDS70p6zk7kQOYHpFuyoii3Gl Q0pKbhk= -----END CERTIFICATE-----Generated at Tue May 14 19:55:16 2024 by rpki-client on console-fra.rpki-client.org