$ rpki-client -vvf rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa File: F23EB988E9A811E9864E3674C4F9AE02.roa (raw, json) Hash identifier: 8eP4hTFPvkA+DZka7Owe6Pw6H4BJETlKYc1wPRQQyeA= Subject key identifier: 54:62:6E:CF:FB:B8:4C:F3:05:B3:B0:AF:9C:3F:D5:E6:67:84:63:B8 Certificate issuer: /CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Certificate serial: 0C5B Authority key identifier: 8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa Signing time: Thu 04 Apr 2024 19:27:38 +0000 ROA not before: Thu 04 Apr 2024 19:27:38 +0000 ROA not after: Thu 01 May 2025 00:00:00 +0000 asID: 135033 IP address blocks: 103.206.192.0/24 maxlen: 24 103.206.193.0/24 maxlen: 24 103.206.194.0/24 maxlen: 24 103.206.195.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 29 Nov 2024 18:03:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3163 (0xc5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A1857/serialNumber=8A9BDA68539F7158CB013720A9936F264B9A537B Validity Not Before: Apr 4 19:27:38 2024 GMT Not After : May 1 00:00:00 2025 GMT Subject: CN=660eff2a-d6aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:40:9a:15:9b:cf:4a:f0:77:83:b3:53:1f:2e: 7f:c0:b8:e1:7f:53:16:01:8e:fc:e4:16:fc:25:4b: 35:00:3b:aa:4c:1f:e1:e6:3d:9e:8b:f4:16:42:f8: 95:a9:a5:65:54:d3:c2:45:9a:57:39:06:08:0a:b1: 5b:cd:b5:b4:98:ce:5d:a3:da:37:1a:d7:6b:34:50: 8e:8f:d4:99:65:4f:50:17:7b:f7:74:af:dd:74:16: 73:e9:a7:a6:59:c0:7a:3d:6b:45:b7:e9:5b:15:8e: 01:7a:58:7b:bb:ba:53:13:3c:d3:73:75:47:b4:35: f3:55:3f:00:62:6c:85:28:78:c1:b7:cf:db:10:60: 01:ae:ac:55:5a:52:43:17:1e:8c:0a:f9:a9:35:8d: ad:e0:c5:21:31:36:a7:ec:d5:1e:17:9a:17:18:54: bc:9f:4a:61:4b:4a:b4:f8:f1:b0:ed:2e:be:d8:2d: 4d:d5:d7:a9:04:75:94:b0:fc:43:21:a4:26:7e:c3: 2f:fd:bc:59:77:1f:d9:5b:f7:03:ee:4b:61:6d:10: e4:55:09:f5:b7:ea:be:22:05:be:df:3f:b7:6d:bc: 9a:30:40:d3:77:e4:0c:ab:b2:e8:e3:f6:d5:b8:4b: 95:46:18:67:6f:87:aa:13:73:7f:7c:8c:3d:f3:14: ec:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:62:6E:CF:FB:B8:4C:F3:05:B3:B0:AF:9C:3F:D5:E6:67:84:63:B8 X509v3 Authority Key Identifier: keyid:8A:9B:DA:68:53:9F:71:58:CB:01:37:20:A9:93:6F:26:4B:9A:53:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/ipvaaFOfcVjLATcgqZNvJkuaU3s.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ipvaaFOfcVjLATcgqZNvJkuaU3s.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A1857/F1307B74DAD711E99F8CAC78C4F9AE02/F23EB988E9A811E9864E3674C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.206.192.0/22 Signature Algorithm: sha256WithRSAEncryption 29:90:85:92:cc:d7:88:56:7d:3b:3b:63:49:5b:9c:be:fd:12: b6:a7:45:43:be:93:04:bf:8f:26:5c:c0:0f:26:de:2f:c6:a9: 51:88:8b:a6:49:ac:63:83:83:2b:90:9b:cb:5a:1c:d3:84:0a: 82:16:f1:2a:b2:1d:50:a0:f5:e7:da:64:8b:71:72:9e:d6:bb: 3c:90:3d:b6:f2:fc:ec:27:f5:f6:5c:5a:c2:f4:24:cd:34:e1: ad:69:b4:12:89:a2:17:d8:c6:22:dc:8f:d6:0e:9b:10:79:b7: 58:fa:68:8f:eb:c4:f4:65:a6:b4:42:2a:55:12:3f:2c:9a:92: af:60:d7:65:32:af:75:7f:22:99:1d:a4:94:01:58:8d:cc:9e: a9:4a:77:84:4e:6a:35:b3:59:e2:d7:ac:ca:ce:fe:f5:3f:b5: a5:a0:83:41:40:ff:d8:67:9b:f6:b9:84:03:eb:c9:de:99:2c: 8c:e9:0e:c4:04:2d:6d:7d:f6:16:1e:b5:a8:65:70:f6:5b:fb: 86:f4:7a:e9:9d:e7:0b:cf:b9:ee:c3:fa:55:d0:30:46:e3:3c: fe:a7:9a:f2:eb:6b:cc:cc:ba:a6:dd:b8:36:e1:d6:f3:ca:7c: 2e:7c:0c:a2:1f:7b:ff:4d:4d:eb:3d:90:02:21:61:eb:de:36: 2c:bc:f8:ed -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICDFswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTE4NTcxMTAvBgNVBAUTKDhBOUJEQTY4NTM5RjcxNThDQjAxMzcyMEE5OTM2RjI2 NEI5QTUzN0IwHhcNMjQwNDA0MTkyNzM4WhcNMjUwNTAxMDAwMDAwWjAYMRYwFAYD VQQDEw02NjBlZmYyYS1kNmFhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA5ECaFZvPSvB3g7NTHy5/wLjhf1MWAY785Bb8JUs1ADuqTB/h5j2ei/QWQviV qaVlVNPCRZpXOQYICrFbzbW0mM5do9o3GtdrNFCOj9SZZU9QF3v3dK/ddBZz6aem WcB6PWtFt+lbFY4Belh7u7pTEzzTc3VHtDXzVT8AYmyFKHjBt8/bEGABrqxVWlJD Fx6MCvmpNY2t4MUhMTan7NUeF5oXGFS8n0phS0q0+PGw7S6+2C1N1depBHWUsPxD IaQmfsMv/bxZdx/ZW/cD7kthbRDkVQn1t+q+IgW+3z+3bbyaMEDTd+QMq7Lo4/bV uEuVRhhnb4eqE3N/fIw98xTs6QIDAQABo4IClTCCApEwHQYDVR0OBBYEFFRibs/7 uEzzBbOwr5w/1eZnhGO4MB8GA1UdIwQYMBaAFIqb2mhTn3FYywE3IKmTbyZLmlN7 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBMTg1Ny9GMTMwN0I3NERB RDcxMUU5OUY4Q0FDNzhDNEY5QUUwMi9pcHZhYUZPZmNWakxBVGNncVpOdkprdWFV M3MuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2lwdmFhRk9mY1ZqTEFUY2dxWk52Smt1YVUzcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTE4NTcvRjEzMDdCNzREQUQ3MTFFOTlGOENBQzc4QzRGOUFFMDIvRjIzRUI5ODhF OUE4MTFFOTg2NEUzNjc0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAJnzsAwDQYJKoZIhvcNAQELBQADggEBACmQhZLM14hWfTs7 Y0lbnL79EranRUO+kwS/jyZcwA8m3i/GqVGIi6ZJrGODgyuQm8taHNOECoIW8Sqy HVCg9efaZItxcp7WuzyQPbby/Own9fZcWsL0JM004a1ptBKJohfYxiLcj9YOmxB5 t1j6aI/rxPRlprRCKlUSPyyakq9g12Uyr3V/IpkdpJQBWI3MnqlKd4ROajWzWeLX rMrO/vU/taWgg0FA/9hnm/a5hAPryd6ZLIzpDsQELW199hYetahlcPZb+4b0eumd 5wvPue7D+lXQMEbjPP6nmvLra8zMuqbduDbh1vPKfC58DKIfe/9NTes9kAIhYeve Niy8+O0= -----END CERTIFICATE-----Generated at Fri Nov 22 19:45:01 2024 by rpki-client on console-fra.rpki-client.org