$ rpki-client -vvf rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/FA66BA00BD1311EEBC015623C4F9AE02.roa File: FA66BA00BD1311EEBC015623C4F9AE02.roa (raw, json) Hash identifier: Tr07Jkq8xxw+uZG0G+8jBmz6MYSCwDd06M+QKliHJIg= Subject key identifier: 1D:99:6D:88:A5:29:B5:39:BD:54:B6:57:09:DA:1F:4F:D6:4C:16:72 Certificate issuer: /CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Certificate serial: 12 Authority key identifier: 7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/FA66BA00BD1311EEBC015623C4F9AE02.roa Signing time: Sat 27 Jan 2024 13:00:31 +0000 ROA not before: Sat 27 Jan 2024 13:00:31 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 18013 IP address blocks: 103.141.220.0/24 maxlen: 24 103.141.221.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 14 Jun 2024 07:17:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18 (0x12) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A11A1/serialNumber=7E71D9D1461217B0F82C07B15C4F029F2672498A Validity Not Before: Jan 27 13:00:31 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65b4fe6e-fb8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:3d:2e:ca:30:84:26:b6:47:74:84:3c:ee:ac: db:c0:cb:46:df:35:18:a1:1c:bd:a2:d3:d5:78:1c: 7d:2c:fa:67:84:24:45:84:01:1b:ef:5c:de:a5:ab: 9d:65:d0:24:6d:dc:b1:60:05:a6:b4:16:12:56:5f: d9:f8:73:13:1b:a9:34:1a:93:b0:c4:50:0a:39:2d: 83:02:aa:c9:8a:ab:d6:80:1f:cb:61:78:03:c9:4d: a9:c4:42:0e:72:4c:df:37:35:76:f6:14:2a:a9:51: 52:81:09:fa:a9:f9:f3:28:71:a0:f9:fb:cb:a6:71: 0c:49:dc:0f:04:cd:59:06:b5:b9:c1:bb:4e:b0:c3: 80:97:8d:82:c1:07:f0:a1:ed:fb:de:4e:3a:fe:19: 91:d8:ce:d7:20:9a:7c:1a:2d:cf:4d:d9:1a:ed:f4: 49:54:73:77:24:e2:4c:ac:8e:7c:15:c4:1e:2a:f5: a5:35:88:83:6f:26:be:5a:f9:16:66:7b:29:ce:8d: 36:84:ca:ef:d3:44:56:b9:f2:01:c1:c4:34:65:44: fd:69:dd:23:01:c8:f8:96:e1:40:49:a1:d1:40:6f: f9:1b:57:98:2d:6f:62:91:94:00:7d:20:c9:d9:f0: d2:6b:76:bf:85:81:8d:16:8f:ac:6a:61:77:1f:82: f3:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:99:6D:88:A5:29:B5:39:BD:54:B6:57:09:DA:1F:4F:D6:4C:16:72 X509v3 Authority Key Identifier: keyid:7E:71:D9:D1:46:12:17:B0:F8:2C:07:B1:5C:4F:02:9F:26:72:49:8A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/fnHZ0UYSF7D4LAexXE8CnyZySYo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fnHZ0UYSF7D4LAexXE8CnyZySYo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A11A1/A9B73CA8B05F11EE99C65477C4F9AE02/FA66BA00BD1311EEBC015623C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.141.220.0/23 Signature Algorithm: sha256WithRSAEncryption bb:66:2b:d8:63:4a:d7:c7:cf:9a:e0:df:3a:b5:ff:80:e4:b8: a1:c7:9a:c7:85:be:85:4e:4c:e8:74:aa:04:61:31:ee:8f:ad: 42:04:3a:b5:2e:75:e7:a4:6f:4a:ee:db:69:0e:3e:4a:ac:40: fc:cf:bc:ec:ef:1c:e6:9c:d3:06:2d:d1:74:cd:0f:04:40:91: 9c:8c:3f:6d:4b:e2:5f:fa:35:0f:46:cf:9f:51:30:25:66:26: 47:1f:38:b1:d1:fd:ad:6b:5d:28:58:5d:c3:24:62:f7:c1:3b: 39:21:4f:c4:c7:a9:53:33:9e:d9:84:3a:cf:53:10:9f:c3:ec: 56:b4:bb:7a:94:56:df:86:91:ff:3f:68:90:7b:e5:c8:6c:db: ed:39:bf:70:06:06:d8:fc:4b:67:e3:08:db:05:62:62:12:b7: b1:f7:71:62:ad:37:a7:e7:5c:c5:04:ed:86:7b:74:71:e8:2b: bd:03:1e:8b:46:c9:34:07:3b:8a:35:14:c9:96:a5:41:58:8c: 3b:e4:56:b0:0b:e1:15:d5:91:5e:90:8c:e8:3c:b6:99:56:13: aa:e9:23:ff:86:72:30:e7:bd:70:98:f3:5b:79:6a:98:01:96: 39:48:04:21:35:4c:3d:03:a4:34:91:6e:1f:39:7b:63:2b:10: ba:fc:b2:9c -----BEGIN CERTIFICATE----- MIIFcDCCBFigAwIBAgIBEjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFB MTFBMTExMC8GA1UEBRMoN0U3MUQ5RDE0NjEyMTdCMEY4MkMwN0IxNUM0RjAyOUYy NjcyNDk4QTAeFw0yNDAxMjcxMzAwMzFaFw0yNDEwMzEwMDAwMDBaMBgxFjAUBgNV BAMTDTY1YjRmZTZlLWZiOGYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDkPS7KMIQmtkd0hDzurNvAy0bfNRihHL2i09V4HH0s+meEJEWEARvvXN6lq51l 0CRt3LFgBaa0FhJWX9n4cxMbqTQak7DEUAo5LYMCqsmKq9aAH8theAPJTanEQg5y TN83NXb2FCqpUVKBCfqp+fMocaD5+8umcQxJ3A8EzVkGtbnBu06ww4CXjYLBB/Ch 7fveTjr+GZHYztcgmnwaLc9N2Rrt9ElUc3ck4kysjnwVxB4q9aU1iINvJr5a+RZm eynOjTaEyu/TRFa58gHBxDRlRP1p3SMByPiW4UBJodFAb/kbV5gtb2KRlAB9IMnZ 8NJrdr+FgY0Wj6xqYXcfgvNNAgMBAAGjggKVMIICkTAdBgNVHQ4EFgQUHZltiKUp tTm9VLZXCdofT9ZMFnIwHwYDVR0jBBgwFoAUfnHZ0UYSF7D4LAexXE8CnyZySYow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUExMUExL0E5QjczQ0E4QjA1 RjExRUU5OUM2NTQ3N0M0RjlBRTAyL2ZuSFowVVlTRjdENExBZXhYRThDbnlaeVNZ by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvZm5IWjBVWVNGN0Q0TEFleFhFOENueVp5U1lvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcsGCCsGAQUFBwELBIG+MIG7MIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFB MTFBMS9BOUI3M0NBOEIwNUYxMUVFOTlDNjU0NzdDNEY5QUUwMi9GQTY2QkEwMEJE MTMxMUVFQkMwMTU2MjNDNEY5QUUwMi5yb2EwMwYIKwYBBQUHMA2GJ2h0dHBzOi8v cnJkcC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAfBggrBgEFBQcBBwEB/wQQ MA4wDAQCAAEwBgMEAWeN3DANBgkqhkiG9w0BAQsFAAOCAQEAu2Yr2GNK18fPmuDf OrX/gOS4oceax4W+hU5M6HSqBGEx7o+tQgQ6tS5156RvSu7baQ4+SqxA/M+87O8c 5pzTBi3RdM0PBECRnIw/bUviX/o1D0bPn1EwJWYmRx84sdH9rWtdKFhdwyRi98E7 OSFPxMepUzOe2YQ6z1MQn8PsVrS7epRW34aR/z9okHvlyGzb7Tm/cAYG2PxLZ+MI 2wViYhK3sfdxYq03p+dcxQTthnt0cegrvQMei0bJNAc7ijUUyZalQViMO+RWsAvh FdWRXpCM6Dy2mVYTqukj/4ZyMOe9cJjzW3lqmAGWOUgEITVMPQOkNJFuHzl7YysQ uvyynA== -----END CERTIFICATE-----Generated at Fri Jun 7 11:02:52 2024 by rpki-client on console-fra.rpki-client.org