$ rpki-client -vvf rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/AE5AD474C41811EDBF6F4D62C4F9AE02.roa File: AE5AD474C41811EDBF6F4D62C4F9AE02.roa (raw, json) Hash identifier: Guh9Y4Mw5n8+nfKQyfUdgtEsoYkSckx7iWuF+EEb4oY= Subject key identifier: 15:3F:74:42:03:55:81:D4:E8:E5:4F:4A:52:E0:0E:E5:AC:66:8C:28 Certificate issuer: /CN=A91975B6/serialNumber=E95FA0EDF1112E320C225E7B8D50418667A30ACF Certificate serial: 6E Authority key identifier: E9:5F:A0:ED:F1:11:2E:32:0C:22:5E:7B:8D:50:41:86:67:A3:0A:CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V-g7fERLjIMIl57jVBBhmejCs8.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/AE5AD474C41811EDBF6F4D62C4F9AE02.roa Signing time: Sat 23 Sep 2023 04:45:00 +0000 ROA not before: Sat 23 Sep 2023 04:45:00 +0000 ROA not after: Sun 01 Dec 2024 00:00:00 +0000 asID: 38193 IP address blocks: 103.236.132.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/6V-g7fERLjIMIl57jVBBhmejCs8.crl rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/6V-g7fERLjIMIl57jVBBhmejCs8.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V-g7fERLjIMIl57jVBBhmejCs8.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 06:06:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 110 (0x6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91975B6/serialNumber=E95FA0EDF1112E320C225E7B8D50418667A30ACF Validity Not Before: Sep 23 04:45:00 2023 GMT Not After : Dec 1 00:00:00 2024 GMT Subject: CN=650e6d4c-e34b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:bf:ec:a8:e8:43:91:0f:47:50:bb:58:db:5e: 3b:0a:35:9a:de:4d:e4:22:23:36:63:b3:e8:02:95: 08:b0:10:1f:8c:39:14:2d:03:95:dd:22:08:3c:57: 4f:a3:82:85:26:41:88:76:37:35:f4:3a:2a:69:b0: 2e:d1:78:e0:44:82:74:05:4d:ec:13:4d:6f:da:12: 27:65:f9:a4:a0:76:1e:54:fb:03:16:b9:eb:0b:89: 9b:17:cf:7d:11:42:c6:30:b6:4f:b8:ab:0a:a6:ba: 6e:df:59:3f:11:39:b3:cd:69:bf:43:73:48:d2:ef: 52:e0:f5:1f:12:13:c6:fa:a7:1b:ad:73:4a:9e:49: 98:51:ba:38:3d:a5:3f:a8:4f:cb:93:93:4f:4b:f7: fc:72:74:ec:9d:45:c2:84:c7:a1:7d:78:eb:5e:f3: 0b:cb:e7:85:57:a7:40:76:45:df:fd:81:2c:8a:09: 94:15:1a:15:27:3a:86:5c:15:33:da:74:37:d2:65: ae:cf:10:3e:e4:5c:f6:78:22:2f:e5:f3:8e:2a:7c: 7d:fe:f3:cb:0f:32:c9:6d:d6:e0:0f:4b:00:d0:15: 39:50:97:47:bc:8c:14:2e:0a:dc:69:e2:ff:71:c5: 2f:a1:e8:38:0e:74:7f:06:bf:3e:7c:55:91:29:7b: 36:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:3F:74:42:03:55:81:D4:E8:E5:4F:4A:52:E0:0E:E5:AC:66:8C:28 X509v3 Authority Key Identifier: keyid:E9:5F:A0:ED:F1:11:2E:32:0C:22:5E:7B:8D:50:41:86:67:A3:0A:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/6V-g7fERLjIMIl57jVBBhmejCs8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/6V-g7fERLjIMIl57jVBBhmejCs8.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91975B6/B5762DD6C27D11ED912B774BC4F9AE02/AE5AD474C41811EDBF6F4D62C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.236.132.0/22 Signature Algorithm: sha256WithRSAEncryption 61:c0:ba:1f:7f:a2:47:5d:ad:a0:05:6d:b7:74:40:d2:02:d9: 1c:50:9e:26:fd:c3:c5:ec:b1:a3:93:c9:20:d0:87:04:09:50: dc:1f:ea:b2:a6:aa:da:2c:a8:57:fb:26:5f:94:64:68:35:30: 3d:7a:6e:86:e7:e6:69:5d:76:be:21:3e:11:77:5a:6b:63:40: d0:b3:b0:cb:d8:7c:6d:a2:ee:6f:72:aa:0d:28:1e:98:91:22: 6d:2f:d8:7e:1f:e8:6d:d4:29:f4:6f:da:5e:4e:d4:63:12:69: 06:a8:af:5a:9d:18:e3:f8:d4:7b:3f:fb:37:56:63:35:46:89: 0a:96:84:1e:50:48:4a:ef:91:9d:58:9b:8f:04:1b:23:83:73: ac:5b:45:03:d0:2e:e8:f0:06:55:94:47:5f:3c:69:76:18:af: 74:4f:8e:7d:98:a4:6c:29:34:f2:b4:77:c6:0c:fe:5f:ea:df: dc:99:a2:ec:63:3e:93:4a:7d:d2:e5:36:ab:6b:ae:11:54:01: ed:bc:4f:02:a0:ac:e5:05:35:44:f2:91:78:70:97:11:33:08: ea:e2:68:c2:a0:ed:ce:9e:5c:f0:05:72:dc:21:43:e0:5d:b2: 9a:92:1e:bd:b7:45:bb:7c:d8:61:93:fa:07:67:12:92:42:f8: 13:74:97:83 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBbjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 NzVCNjExMC8GA1UEBRMoRTk1RkEwRURGMTExMkUzMjBDMjI1RTdCOEQ1MDQxODY2 N0EzMEFDRjAeFw0yMzA5MjMwNDQ1MDBaFw0yNDEyMDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1MGU2ZDRjLWUzNGIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkv+yo6EORD0dQu1jbXjsKNZreTeQiIzZjs+gClQiwEB+MORQtA5XdIgg8V0+j goUmQYh2NzX0OippsC7ReOBEgnQFTewTTW/aEidl+aSgdh5U+wMWuesLiZsXz30R QsYwtk+4qwqmum7fWT8RObPNab9Dc0jS71Lg9R8SE8b6pxutc0qeSZhRujg9pT+o T8uTk09L9/xydOydRcKEx6F9eOte8wvL54VXp0B2Rd/9gSyKCZQVGhUnOoZcFTPa dDfSZa7PED7kXPZ4Ii/l844qfH3+88sPMslt1uAPSwDQFTlQl0e8jBQuCtxp4v9x xS+h6DgOdH8Gvz58VZEpezZ5AgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUFT90QgNV gdTo5U9KUuAO5axmjCgwHwYDVR0jBBgwFoAU6V+g7fERLjIMIl57jVBBhmejCs8w DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk3NUI2L0I1NzYyREQ2QzI3 RDExRUQ5MTJCNzc0QkM0RjlBRTAyLzZWLWc3ZkVSTGpJTUlsNTdqVkJCaG1lakNz OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvNlYtZzdmRVJMaklNSWw1N2pWQkJobWVqQ3M4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 NzVCNi9CNTc2MkRENkMyN0QxMUVEOTEyQjc3NEJDNEY5QUUwMi9BRTVBRDQ3NEM0 MTgxMUVEQkY2RjRENjJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAmfshDANBgkqhkiG9w0BAQsFAAOCAQEAYcC6H3+iR12toAVt t3RA0gLZHFCeJv3Dxeyxo5PJINCHBAlQ3B/qsqaq2iyoV/smX5RkaDUwPXpuhufm aV12viE+EXdaa2NA0LOwy9h8baLub3KqDSgemJEibS/Yfh/obdQp9G/aXk7UYxJp BqivWp0Y4/jUez/7N1ZjNUaJCpaEHlBISu+RnVibjwQbI4NzrFtFA9Au6PAGVZRH XzxpdhivdE+OfZikbCk08rR3xgz+X+rf3Jmi7GM+k0p90uU2q2uuEVQB7bxPAqCs 5QU1RPKReHCXETMI6uJowqDtzp5c8AVy3CFD4F2ympIevbdFu3zYYZP6B2cSkkL4 E3SXgw== -----END CERTIFICATE-----Generated at Fri May 17 08:13:52 2024 by rpki-client on console-fra.rpki-client.org