$ rpki-client -vvf rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/60820A4271AC11EDAA89DE61C4F9AE02.roa File: 60820A4271AC11EDAA89DE61C4F9AE02.roa (raw, json) Hash identifier: mkZebtP/InCv8k9hv/UGEvbr4n/hrgo+6kq5IXv2lVg= Subject key identifier: BC:A7:D8:D5:68:BC:3B:29:0D:52:F6:F5:CB:E1:C4:B5:3C:F3:7E:F2 Certificate issuer: /CN=A91886E3/serialNumber=BBABD3F16E100FD9C95D474884E4DA9CB6FA768D Certificate serial: BA Authority key identifier: BB:AB:D3:F1:6E:10:0F:D9:C9:5D:47:48:84:E4:DA:9C:B6:FA:76:8D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/60820A4271AC11EDAA89DE61C4F9AE02.roa Signing time: Thu 09 Nov 2023 04:55:11 +0000 ROA not before: Thu 09 Nov 2023 04:55:11 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 133752 IP address blocks: 103.21.220.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.crl rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 05:37:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91886E3/serialNumber=BBABD3F16E100FD9C95D474884E4DA9CB6FA768D Validity Not Before: Nov 9 04:55:11 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=654c662e-ad8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b5:cf:60:f6:a5:a0:89:21:e6:3e:85:34:ae: 4c:12:49:30:2e:5e:33:7a:3f:df:81:4e:06:5f:c5: d7:d9:1c:11:e8:89:60:b7:78:7d:25:8d:65:0c:76: 6b:65:cd:6e:73:3d:61:2d:cd:ba:16:e0:d5:77:9b: 2c:44:66:50:d6:93:a1:87:51:19:e4:98:ed:82:c7: e6:84:be:79:ca:8c:12:f2:ff:69:2e:9d:ed:4c:a2: 17:f2:6a:0b:1b:26:b8:06:ca:7f:9c:83:6d:b3:f9: eb:d2:65:5d:5a:3d:94:06:59:2e:1b:b2:f4:94:de: 5e:31:b2:43:ce:09:ce:fc:fd:cd:c2:28:43:b7:7f: 05:6f:2c:2b:f0:fe:d9:48:67:fc:88:8d:5d:01:ed: 00:64:89:00:88:7d:83:0e:1f:b3:4a:b5:cd:95:d1: 8c:ed:a2:d0:22:a8:33:03:47:8a:78:9a:8b:64:0a: 1e:14:01:67:c5:f5:31:83:f1:1c:f7:8a:95:81:1e: fc:2d:3f:2c:51:d9:25:7b:b7:90:2d:72:0b:77:83: 66:36:8d:37:f2:ae:85:af:b3:cd:6c:6b:f0:0e:1b: 8b:ed:60:e8:38:52:c8:b7:53:98:e7:0c:a1:5f:76: cb:c6:b7:fb:04:b1:42:08:ee:9a:12:04:cf:71:6a: a0:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:A7:D8:D5:68:BC:3B:29:0D:52:F6:F5:CB:E1:C4:B5:3C:F3:7E:F2 X509v3 Authority Key Identifier: keyid:BB:AB:D3:F1:6E:10:0F:D9:C9:5D:47:48:84:E4:DA:9C:B6:FA:76:8D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/60820A4271AC11EDAA89DE61C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.21.220.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:32:2e:e8:78:62:1e:a6:ef:27:5d:7c:b4:25:af:24:0a:00: 51:9c:7f:9b:10:34:c7:e2:c9:e4:27:a7:2e:a9:cd:c1:32:7a: 38:85:fc:9d:92:9e:37:8d:9d:de:cb:20:4e:f1:fb:da:a2:fd: 1f:39:37:32:b0:f5:ef:8b:a9:05:02:17:ef:dc:22:66:6c:9a: 89:0f:bb:ca:2e:7e:ec:58:e7:ea:5b:88:bd:51:ad:44:dc:5f: 39:8f:86:47:e2:b0:41:cb:a9:9e:ff:32:ff:f2:ec:69:15:06: 06:50:23:1d:a3:a9:38:97:0d:4a:4c:ac:32:a2:37:32:cd:12: 0a:27:57:f2:ee:46:1c:5d:6b:17:4c:63:1d:02:34:2a:df:87: dd:c9:d1:c1:03:e8:a1:2c:f3:34:a8:6d:41:a8:3c:74:f9:51: 6f:99:5d:05:07:0a:40:9b:f9:44:c0:b0:b2:33:e0:4d:96:23: e2:ee:a3:5e:f5:6c:7d:2a:33:ec:24:75:dc:cc:a1:69:57:84: ee:15:ee:2a:c7:55:86:b1:9d:22:76:84:53:fc:6d:bd:88:2c: 02:c7:1e:6f:a0:c8:4a:1d:1e:76:fe:67:f2:19:18:cc:62:b7: a7:01:05:78:31:b0:61:42:05:9f:d9:11:f3:b9:36:a5:01:47: ff:f2:48:fe -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg2RTMxMTAvBgNVBAUTKEJCQUJEM0YxNkUxMDBGRDlDOTVENDc0ODg0RTREQTlD QjZGQTc2OEQwHhcNMjMxMTA5MDQ1NTExWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTRjNjYyZS1hZDhmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAurXPYPaloIkh5j6FNK5MEkkwLl4zej/fgU4GX8XX2RwR6Ilgt3h9JY1lDHZr Zc1ucz1hLc26FuDVd5ssRGZQ1pOhh1EZ5JjtgsfmhL55yowS8v9pLp3tTKIX8moL Gya4Bsp/nINts/nr0mVdWj2UBlkuG7L0lN5eMbJDzgnO/P3NwihDt38Fbywr8P7Z SGf8iI1dAe0AZIkAiH2DDh+zSrXNldGM7aLQIqgzA0eKeJqLZAoeFAFnxfUxg/Ec 94qVgR78LT8sUdkle7eQLXILd4NmNo038q6Fr7PNbGvwDhuL7WDoOFLIt1OY5wyh X3bLxrf7BLFCCO6aEgTPcWqgUwIDAQABo4IClTCCApEwHQYDVR0OBBYEFLyn2NVo vDspDVL29cvhxLU8837yMB8GA1UdIwQYMBaAFLur0/FuEA/ZyV1HSITk2py2+naN MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODZFMy8xMjQ3Qjg2MDY2 OTIxMUVEODJCRTcxMzNDNEY5QUUwMi91NnZUOFc0UUQ5bkpYVWRJaE9UYW5MYjZk bzAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3U2dlQ4VzRRRDluSlhVZEloT1RhbkxiNmRvMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg2RTMvMTI0N0I4NjA2NjkyMTFFRDgyQkU3MTMzQzRGOUFFMDIvNjA4MjBBNDI3 MUFDMTFFREFBODlERTYxQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnFdwwDQYJKoZIhvcNAQELBQADggEBACoyLuh4Yh6m7ydd fLQlryQKAFGcf5sQNMfiyeQnpy6pzcEyejiF/J2SnjeNnd7LIE7x+9qi/R85NzKw 9e+LqQUCF+/cImZsmokPu8oufuxY5+pbiL1RrUTcXzmPhkfisEHLqZ7/Mv/y7GkV BgZQIx2jqTiXDUpMrDKiNzLNEgonV/LuRhxdaxdMYx0CNCrfh93J0cED6KEs8zSo bUGoPHT5UW+ZXQUHCkCb+UTAsLIz4E2WI+Luo171bH0qM+wkddzMoWlXhO4V7irH VYaxnSJ2hFP8bb2ILALHHm+gyEodHnb+Z/IZGMxit6cBBXgxsGFCBZ/ZEfO5NqUB R//ySP4= -----END CERTIFICATE-----Generated at Wed May 1 07:06:29 2024 by rpki-client on console-fra.rpki-client.org