$ rpki-client -vvf rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/46D954B6F5A811EEA84E8049C4F9AE02.roa File: 46D954B6F5A811EEA84E8049C4F9AE02.roa (raw, json) Hash identifier: A77avpTyGmVCRuyULkNtg/0wtlh1el5KEEO1Ks56YW4= Subject key identifier: F5:53:A8:B8:6D:66:CD:5E:2B:75:F0:05:E0:E4:28:CA:9F:CE:28:92 Certificate issuer: /CN=A91984AC/serialNumber=FBC55B2C0BE0AB234748FBC361547F64BFA75197 Certificate serial: 03 Authority key identifier: FB:C5:5B:2C:0B:E0:AB:23:47:48:FB:C3:61:54:7F:64:BF:A7:51:97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/46D954B6F5A811EEA84E8049C4F9AE02.roa Signing time: Mon 08 Apr 2024 13:02:39 +0000 ROA not before: Mon 08 Apr 2024 13:02:39 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 31898 IP address blocks: 103.159.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.crl rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 09:12:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3 (0x3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91984AC/serialNumber=FBC55B2C0BE0AB234748FBC361547F64BFA75197 Validity Not Before: Apr 8 13:02:39 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6613eaee-b42c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0f:43:f7:31:0f:30:b3:d7:cc:47:ed:8e:35: 25:c1:f7:eb:a4:b5:d4:7d:f3:1b:26:8e:25:3a:e5: 4a:2d:a3:2c:49:c2:0a:ee:04:b7:70:1d:b9:60:47: 07:a5:e8:a7:e1:d3:13:8f:70:33:7f:79:61:7f:ef: c5:f3:9f:98:3e:5a:5a:dd:5f:a6:1f:9a:55:bd:13: dc:78:59:02:98:e4:ef:d5:83:19:3b:33:99:f5:7f: e1:47:fc:b0:38:a2:c9:0f:12:17:21:f1:01:04:2c: 94:2d:3d:b8:1c:6f:b8:96:a0:46:42:a3:33:9c:01: 31:2a:6b:48:1e:be:92:1a:07:dd:dc:e0:e9:78:eb: d3:22:36:9a:60:91:22:4a:0b:ab:89:e5:3c:53:b0: a3:4b:db:68:33:16:ae:e8:f9:c5:78:48:e5:f4:e8: a8:79:8e:64:f6:b4:50:bc:dc:57:7f:2c:95:b4:5a: 54:cc:af:a8:85:ae:44:81:0f:22:ff:d9:92:db:ff: 18:2e:9a:22:81:ff:42:4e:1f:04:59:97:d7:1a:02: 00:2b:ad:4f:cc:04:f3:f8:aa:0c:67:ff:27:94:ac: 13:95:1e:f0:f5:95:d8:d9:ce:d6:e0:81:90:3c:31: 80:13:51:44:c2:a3:f0:61:d6:c6:3a:8d:6e:31:c2: 8f:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:53:A8:B8:6D:66:CD:5E:2B:75:F0:05:E0:E4:28:CA:9F:CE:28:92 X509v3 Authority Key Identifier: keyid:FB:C5:5B:2C:0B:E0:AB:23:47:48:FB:C3:61:54:7F:64:BF:A7:51:97 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-8VbLAvgqyNHSPvDYVR_ZL-nUZc.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91984AC/6D026CECF5A111EE98DBCD11C4F9AE02/46D954B6F5A811EEA84E8049C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.159.76.0/24 Signature Algorithm: sha256WithRSAEncryption 33:99:fd:60:9b:87:de:c5:bc:3c:69:6a:4e:b5:2c:89:ad:5f: 94:c2:5c:34:b0:04:4e:6b:c5:04:b0:0d:fe:c5:70:d9:4a:97: 1c:a1:d4:56:94:9f:13:b5:83:27:4f:4b:4e:35:e5:80:c4:69: 98:0e:1e:c8:d2:8c:03:9a:a6:2e:1b:af:f3:3f:e4:7e:08:f8: 17:d3:5c:74:64:66:c0:77:a1:5a:d3:f9:dc:08:53:14:12:04: d7:8a:63:d8:a5:de:fd:b2:e2:12:e7:58:43:d4:6f:06:c6:1a: f4:01:c1:6f:12:ec:97:e6:34:d4:1c:b8:b1:2d:cc:b5:b5:4f: 9a:bf:9b:71:2c:07:ad:45:2b:b5:7f:89:d3:27:eb:c9:5e:bc: b2:b8:ae:6e:83:fb:d8:02:78:68:72:37:b1:85:fe:29:64:e2: 32:3c:a2:05:49:fd:75:3e:a8:f5:4b:29:14:77:05:1e:c2:6b: d3:53:d3:d0:d8:4c:9b:70:fb:e7:1f:81:1d:b2:de:21:ed:c4: f3:6a:10:53:84:4f:e9:cc:db:f9:4b:70:9f:e3:dc:ec:71:9c: 40:0c:2d:b0:75:d6:6d:45:48:d4:40:9a:33:ba:f9:68:90:b5: d4:a4:ab:b8:65:df:b7:74:6a:ee:05:c6:10:47:2c:72:27:71: 9e:40:e3:f1 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBAzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE5 ODRBQzExMC8GA1UEBRMoRkJDNTVCMkMwQkUwQUIyMzQ3NDhGQkMzNjE1NDdGNjRC RkE3NTE5NzAeFw0yNDA0MDgxMzAyMzlaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY2MTNlYWVlLWI0MmMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCuD0P3MQ8ws9fMR+2ONSXB9+uktdR98xsmjiU65UotoyxJwgruBLdwHblgRwel 6Kfh0xOPcDN/eWF/78Xzn5g+WlrdX6YfmlW9E9x4WQKY5O/Vgxk7M5n1f+FH/LA4 oskPEhch8QEELJQtPbgcb7iWoEZCozOcATEqa0gevpIaB93c4Ol469MiNppgkSJK C6uJ5TxTsKNL22gzFq7o+cV4SOX06Kh5jmT2tFC83Fd/LJW0WlTMr6iFrkSBDyL/ 2ZLb/xgumiKB/0JOHwRZl9caAgArrU/MBPP4qgxn/yeUrBOVHvD1ldjZztbggZA8 MYATUUTCo/Bh1sY6jW4xwo8VAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQU9VOouG1m zV4rdfAF4OQoyp/OKJIwHwYDVR0jBBgwFoAU+8VbLAvgqyNHSPvDYVR/ZL+nUZcw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTk4NEFDLzZEMDI2Q0VDRjVB MTExRUU5OERCQ0QxMUM0RjlBRTAyLy04VmJMQXZncXlOSFNQdkRZVlJfWkwtblVa Yy5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvLThWYkxBdmdxeU5IU1B2RFlWUl9aTC1uVVpjLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE5 ODRBQy82RDAyNkNFQ0Y1QTExMUVFOThEQkNEMTFDNEY5QUUwMi80NkQ5NTRCNkY1 QTgxMUVFQTg0RTgwNDlDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAGefTDANBgkqhkiG9w0BAQsFAAOCAQEAM5n9YJuH3sW8PGlq TrUsia1flMJcNLAETmvFBLAN/sVw2UqXHKHUVpSfE7WDJ09LTjXlgMRpmA4eyNKM A5qmLhuv8z/kfgj4F9NcdGRmwHehWtP53AhTFBIE14pj2KXe/bLiEudYQ9RvBsYa 9AHBbxLsl+Y01By4sS3MtbVPmr+bcSwHrUUrtX+J0yfryV68sriuboP72AJ4aHI3 sYX+KWTiMjyiBUn9dT6o9UspFHcFHsJr01PT0NhMm3D75x+BHbLeIe3E82oQU4RP 6czb+Utwn+Pc7HGcQAwtsHXWbUVI1ECaM7r5aJC11KSruGXft3Rq7gXGEEcscidx nkDj8Q== -----END CERTIFICATE-----Generated at Wed May 1 10:34:17 2024 by rpki-client on console-fra.rpki-client.org