$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/F57B503EB05F11EEB6F38532C4F9AE02.roa File: F57B503EB05F11EEB6F38532C4F9AE02.roa (raw, json) Hash identifier: kjJmASdgXrmJAlRBxTl6SHlsuwolFlHVI2hZf8lqvLA= Subject key identifier: 21:C8:F7:3F:BF:0C:E7:C0:B7:74:D5:65:90:28:4A:5D:3D:48:63:EB Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 0E Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/F57B503EB05F11EEB6F38532C4F9AE02.roa Signing time: Sat 27 Jan 2024 12:59:39 +0000 ROA not before: Sat 27 Jan 2024 12:59:39 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 151630 IP address blocks: 103.141.220.0/23 maxlen: 23 103.141.220.0/24 maxlen: 24 103.141.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14 (0xe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: Jan 27 12:59:39 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65b4fe3b-7d61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:7e:7b:d9:d6:5b:62:ba:e5:0f:fe:fc:c1:7b: 5e:ae:b6:0d:5d:ab:06:58:a7:4b:fc:cc:11:e7:e7: 7f:2e:a8:b9:eb:9c:d9:43:63:f3:90:7c:8c:22:5d: 22:0d:7b:72:6d:e9:b4:cc:09:e4:6a:6e:d0:72:27: 3b:fe:b7:20:22:0e:59:f5:c5:09:c6:c4:5e:27:17: 34:d9:10:fe:48:0e:13:74:f8:be:61:2d:36:3f:2e: 1d:2c:1e:bd:a7:5a:bf:c4:ab:96:dc:f2:dc:45:2c: 22:e5:f7:10:75:b7:7e:43:6d:12:7b:08:54:06:04: e4:d6:06:89:62:23:c1:42:e3:b0:77:ee:ca:4d:f4: 3d:1f:33:20:21:52:f3:69:65:b6:52:ca:3e:e2:a1: 2c:e7:a4:c0:a7:1d:ed:fa:a2:4f:e6:17:a8:a4:fe: 20:c7:c2:60:18:57:32:44:0c:0d:70:50:7d:5c:13: 9c:f4:cc:01:77:0f:d9:53:fd:db:05:a3:61:65:3e: 2b:7f:58:fd:a7:71:e1:e1:60:9d:79:dc:e9:10:1f: a3:70:62:55:8f:25:eb:36:d4:e1:ea:cb:6c:28:a0: c2:43:1f:b4:17:e2:e2:5b:fa:b6:90:17:cb:49:14: 01:bb:cf:71:51:eb:61:c7:1a:ad:06:76:f7:49:5a: 00:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:C8:F7:3F:BF:0C:E7:C0:B7:74:D5:65:90:28:4A:5D:3D:48:63:EB X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/F57B503EB05F11EEB6F38532C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.220.0/23 Signature Algorithm: sha256WithRSAEncryption b2:de:59:09:bb:32:e6:19:ea:8a:cf:51:0a:09:6d:05:28:a6: 70:98:02:0f:48:98:9c:b6:27:48:c3:68:30:93:f7:8f:3e:84: 19:72:62:e1:e2:df:51:4b:eb:69:57:76:d4:bc:44:98:39:98: c1:af:36:18:d0:da:97:36:b3:af:fe:4d:52:88:91:ea:08:b1: 8a:22:1d:c8:d2:f1:9e:a7:5a:33:c2:0c:f5:f5:47:1d:7b:58: 1d:ee:6b:9e:ee:72:21:32:86:f2:0e:a3:f9:16:99:78:e6:99: 73:53:de:7d:c0:71:52:32:bf:33:7d:ee:4a:35:f6:82:f7:c3: 70:db:b7:76:18:f0:4a:9f:1b:47:7f:56:a6:bc:bc:66:3c:ad: 17:ff:18:ee:51:ae:04:e7:f9:91:38:93:01:51:26:ae:68:f5: c1:0e:65:fc:53:6b:aa:5f:f5:a6:d8:23:ad:f8:df:17:7a:73: ed:5f:2f:25:84:e0:64:5f:81:62:75:47:56:f7:ec:f4:ad:fa: d1:7f:cc:bc:e7:b5:04:1c:45:ec:8e:aa:dd:9f:87:0a:13:a4: ac:6d:9c:c2:73:8e:1d:84:60:8e:ed:48:a5:75:a5:9d:12:b2: b1:4d:b2:ec:62:9d:7f:c1:26:1c:1b:40:f0:61:27:a6:e7:39: cd:db:85:d3 -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBDjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTFBMTExMC8GA1UEBRMoN0U3MUQ5RDE0NjEyMTdCMEY4MkMwN0IxNUM0RjAyOUYy NjcyNDk4QTAeFw0yNDAxMjcxMjU5MzlaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjRmZTNiLTdkNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDXfnvZ1ltiuuUP/vzBe16utg1dqwZYp0v8zBHn538uqLnrnNlDY/OQfIwiXSIN e3Jt6bTMCeRqbtByJzv+tyAiDln1xQnGxF4nFzTZEP5IDhN0+L5hLTY/Lh0sHr2n Wr/Eq5bc8txFLCLl9xB1t35DbRJ7CFQGBOTWBoliI8FC47B37spN9D0fMyAhUvNp ZbZSyj7ioSznpMCnHe36ok/mF6ik/iDHwmAYVzJEDA1wUH1cE5z0zAF3D9lT/dsF o2FlPit/WP2nceHhYJ153OkQH6NwYlWPJes21OHqy2wooMJDH7QX4uJb+raQF8tJ FAG7z3FR62HHGq0GdvdJWgChAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUIcj3P78M 58C3dNVlkChKXT1IY+swHwYDVR0jBBgwFoAUfnHZ0UYSF7D4LAexXE8CnyZySYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMUExL0E5QjczQ0E4QjA1 RjExRUU5OUM2NTQ3N0M0RjlBRTAyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZm5IWjBVWVNGN0Q0TEFleFhFOENueVp5U1lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9GNTdCNTAzRUIw NUYxMUVFQjZGMzg1MzJDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeN3DANBgkqhkiG9w0BAQsFAAOCAQEAst5ZCbsy5hnqis9R CgltBSimcJgCD0iYnLYnSMNoMJP3jz6EGXJi4eLfUUvraVd21LxEmDmYwa82GNDa lzazr/5NUoiR6gixiiIdyNLxnqdaM8IM9fVHHXtYHe5rnu5yITKG8g6j+RaZeOaZ c1PefcBxUjK/M33uSjX2gvfDcNu3dhjwSp8bR39Wpry8ZjytF/8Y7lGuBOf5kTiT AVEmrmj1wQ5l/FNrql/1ptgjrfjfF3pz7V8vJYTgZF+BYnVHVvfs9K360X/MvOe1 BBxF7I6q3Z+HChOkrG2cwnOOHYRgju1IpXWlnRKysU2y7GKdf8EmHBtA8GEnpuc5 zduF0w== -----END CERTIFICATE-----Generated at Fri Jun 7 11:02:52 2024 by rpki-client on console-fra.rpki-client.org