$ rpki-client -vvf rpki.apnic.net/member_repository/A91886EA/529884E06F6011EDA5FFFF09C4F9AE02/790195326F6411ED83BC230FC4F9AE02.roa File: 790195326F6411ED83BC230FC4F9AE02.roa (raw, json) Hash identifier: mK6RCwJZfbyZAx6xScp844Vd5mfI4Dba90GXQEw5nUY= Subject key identifier: 49:D7:5A:F4:91:02:8E:7F:57:F4:1A:9D:8B:2C:88:50:D3:73:A2:C2 Certificate issuer: /CN=A91886EA/serialNumber=1B25EC59D07F93424B90C22D34ECAB22AD852A97 Certificate serial: B4 Authority key identifier: 1B:25:EC:59:D0:7F:93:42:4B:90:C2:2D:34:EC:AB:22:AD:85:2A:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GyXsWdB_k0JLkMItNOyrIq2FKpc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91886EA/529884E06F6011EDA5FFFF09C4F9AE02/790195326F6411ED83BC230FC4F9AE02.roa Signing time: Tue 07 Nov 2023 05:17:19 +0000 ROA not before: Tue 07 Nov 2023 05:17:19 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 142601 IP address blocks: 103.102.108.0/24 maxlen: 24 103.102.109.0/24 maxlen: 24 103.102.110.0/24 maxlen: 24 103.102.111.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91886EA/529884E06F6011EDA5FFFF09C4F9AE02/GyXsWdB_k0JLkMItNOyrIq2FKpc.crl rsync://rpki.apnic.net/member_repository/A91886EA/529884E06F6011EDA5FFFF09C4F9AE02/GyXsWdB_k0JLkMItNOyrIq2FKpc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GyXsWdB_k0JLkMItNOyrIq2FKpc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 05:18:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 180 (0xb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91886EA/serialNumber=1B25EC59D07F93424B90C22D34ECAB22AD852A97 Validity Not Before: Nov 7 05:17:19 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6549c85f-1d5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:78:4c:97:a7:20:d6:cc:fb:6d:c8:fd:5d:f0: 9d:dd:ce:92:4d:0b:cb:f2:8b:aa:5f:6d:b4:d4:3d: b7:c4:69:3c:25:8b:3e:32:9d:26:c2:bb:6a:4e:1a: 48:96:21:71:e3:d2:eb:ab:0d:f9:9e:f7:b7:9f:03: 2c:b3:01:f5:ea:24:66:b2:da:a5:57:de:d2:4d:7c: ff:53:0b:10:2e:69:5f:a1:19:ab:c6:0d:53:a1:64: 21:37:4c:41:07:84:ed:a7:dd:c2:7b:38:98:43:86: 06:48:b2:94:c9:fc:e5:8e:c6:3a:ec:76:62:e8:48: b2:dd:66:d9:f9:33:7b:d3:79:80:a1:b3:a1:71:fa: 91:f8:eb:ae:d0:45:6f:a8:bc:18:39:f9:ea:cb:e9: 55:ba:43:94:6f:4c:e7:52:28:b0:5e:9a:86:9c:39: ff:25:c4:0e:ad:55:64:39:26:d2:f3:a2:bc:11:b3: 4e:e1:41:4f:12:7f:ab:1a:ab:73:35:91:a6:35:aa: 67:b1:e1:40:21:6f:b7:08:54:43:11:64:88:14:8a: fa:83:77:0f:23:76:2d:16:13:d7:ca:35:b4:c5:ed: 25:9a:34:91:b1:eb:7f:14:6c:df:40:03:d9:33:e2: 41:44:86:30:01:93:61:26:d1:a1:a8:0b:21:f5:3c: 01:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:D7:5A:F4:91:02:8E:7F:57:F4:1A:9D:8B:2C:88:50:D3:73:A2:C2 X509v3 Authority Key Identifier: keyid:1B:25:EC:59:D0:7F:93:42:4B:90:C2:2D:34:EC:AB:22:AD:85:2A:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91886EA/529884E06F6011EDA5FFFF09C4F9AE02/GyXsWdB_k0JLkMItNOyrIq2FKpc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/GyXsWdB_k0JLkMItNOyrIq2FKpc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91886EA/529884E06F6011EDA5FFFF09C4F9AE02/790195326F6411ED83BC230FC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.102.108.0/22 Signature Algorithm: sha256WithRSAEncryption 99:3d:3e:6f:e7:44:2f:8d:5c:be:5b:c6:55:53:46:74:06:ad: 19:b7:9e:61:81:fb:bd:98:5d:6f:37:50:8d:f0:8e:28:e2:17: d6:34:71:06:c1:b5:1a:1a:ac:3d:d3:91:f8:ad:13:23:cb:69: dd:44:9b:31:b2:6c:24:0a:75:ed:6c:24:8f:36:86:3e:ae:6a: 33:e2:bb:03:e6:a5:46:f1:ae:8c:40:da:52:66:b9:a2:92:0e: 7d:4e:13:a8:ed:dc:90:0a:47:42:14:1b:f2:08:2c:c8:99:da: 26:b0:78:88:5b:a2:ce:49:89:ec:6e:5c:33:5a:dd:e5:cd:ad: 1a:f3:a7:5a:33:f6:ca:5e:97:56:55:3b:97:45:ca:22:17:62: c1:3e:e3:49:20:17:38:b2:67:f8:db:69:4a:ce:f0:ce:ab:39: 3b:ae:d8:15:5a:1a:60:37:a4:ec:14:88:ab:35:43:1b:4a:7d: 1c:81:d9:df:d7:80:a2:a8:ef:7c:48:30:8a:de:84:58:2a:33: 50:54:68:0f:e1:87:55:65:a4:84:f4:c2:df:3d:0e:a1:a6:0d: dc:41:4c:32:b6:df:7c:40:f9:34:52:4e:b9:1c:23:2f:a5:cc: 07:e4:ce:ed:4f:ed:c0:90:05:45:6f:05:ca:20:11:2b:73:05: 28:dc:7c:a8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICALQwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx ODg2RUExMTAvBgNVBAUTKDFCMjVFQzU5RDA3RjkzNDI0QjkwQzIyRDM0RUNBQjIy QUQ4NTJBOTcwHhcNMjMxMTA3MDUxNzE5WhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTQ5Yzg1Zi0xZDVjMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAu3hMl6cg1sz7bcj9XfCd3c6STQvL8ouqX2201D23xGk8JYs+Mp0mwrtqThpI liFx49Lrqw35nve3nwMsswH16iRmstqlV97STXz/UwsQLmlfoRmrxg1ToWQhN0xB B4Ttp93CeziYQ4YGSLKUyfzljsY67HZi6Eiy3WbZ+TN703mAobOhcfqR+Ouu0EVv qLwYOfnqy+lVukOUb0znUiiwXpqGnDn/JcQOrVVkOSbS86K8EbNO4UFPEn+rGqtz NZGmNapnseFAIW+3CFRDEWSIFIr6g3cPI3YtFhPXyjW0xe0lmjSRset/FGzfQAPZ M+JBRIYwAZNhJtGhqAsh9TwB9wIDAQABo4IClTCCApEwHQYDVR0OBBYEFEnXWvSR Ao5/V/QanYssiFDTc6LCMB8GA1UdIwQYMBaAFBsl7FnQf5NCS5DCLTTsqyKthSqX MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE4ODZFQS81Mjk4ODRFMDZG NjAxMUVEQTVGRkZGMDlDNEY5QUUwMi9HeVhzV2RCX2swSkxrTUl0Tk95cklxMkZL cGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0d5WHNXZEJfazBKTGtNSXROT3lySXEyRktwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx ODg2RUEvNTI5ODg0RTA2RjYwMTFFREE1RkZGRjA5QzRGOUFFMDIvNzkwMTk1MzI2 RjY0MTFFRDgzQkMyMzBGQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnZmwwDQYJKoZIhvcNAQELBQADggEBAJk9Pm/nRC+NXL5b xlVTRnQGrRm3nmGB+72YXW83UI3wjijiF9Y0cQbBtRoarD3TkfitEyPLad1EmzGy bCQKde1sJI82hj6uajPiuwPmpUbxroxA2lJmuaKSDn1OE6jt3JAKR0IUG/IILMiZ 2iaweIhbos5JiexuXDNa3eXNrRrzp1oz9spel1ZVO5dFyiIXYsE+40kgFziyZ/jb aUrO8M6rOTuu2BVaGmA3pOwUiKs1QxtKfRyB2d/XgKKo73xIMIrehFgqM1BUaA/h h1VlpIT0wt89DqGmDdxBTDK233xA+TRSTrkcIy+lzAfkzu1P7cCQBUVvBcogEStz BSjcfKg= -----END CERTIFICATE-----Generated at Tue May 21 05:59:12 2024 by rpki-client on console-fra.rpki-client.org