$ rpki-client -vvf rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa File: 0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa (raw, json) Hash identifier: Y02OBeRBmrNddo1ieP/LeZf+fKUFaCYGzq9Zqc3nanE= Subject key identifier: B9:35:AF:98:51:CA:72:7A:D1:F5:00:AD:9B:61:3F:CF:87:90:75:A6 Certificate issuer: /CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Certificate serial: 05E6 Authority key identifier: 5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa Signing time: Thu 14 Sep 2023 23:00:32 +0000 ROA not before: Thu 14 Sep 2023 23:00:31 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 140732 IP address blocks: 103.12.196.0/24 maxlen: 24 103.12.197.0/24 maxlen: 24 103.12.198.0/24 maxlen: 24 103.12.199.0/24 maxlen: 24 103.73.100.0/24 maxlen: 24 103.73.101.0/24 maxlen: 24 103.73.102.0/24 maxlen: 24 103.73.103.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 31 May 2024 23:50:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1510 (0x5e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A654C/serialNumber=5EA11C8A3A29E06973C1F121611D5A5C2A1B069D Validity Not Before: Sep 14 23:00:31 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6503908f-2ed4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:73:db:4e:9c:16:74:55:70:36:d9:aa:51:01: 11:bb:b4:90:39:94:08:50:f3:1b:ea:c8:72:e8:fa: ee:1c:ab:7f:0a:7e:f8:88:d4:e6:75:98:ea:82:91: 0c:88:fa:bd:d2:63:7a:e1:63:0c:ce:45:59:40:4b: 1b:48:bb:56:59:f8:4e:77:ad:a9:a5:b6:32:06:05: 71:2a:2d:35:18:aa:6c:31:bc:6a:1c:53:ae:97:20: 68:a3:b7:14:0f:1d:3a:09:5b:70:8f:c5:df:6b:69: 3e:32:89:71:f7:d8:60:16:2a:8a:dd:20:ca:b2:7b: 9d:0c:01:f5:05:68:e1:ce:68:38:13:d8:fe:e2:ab: f9:ca:ab:32:6c:b3:c2:47:6c:b1:94:83:df:3f:75: 33:80:20:d8:7a:cb:01:56:66:54:38:2e:12:c8:59: 9d:f2:b9:6f:2a:5c:99:aa:a2:68:7b:e2:f7:78:3e: d8:c9:f4:3b:95:ac:06:04:22:f6:9b:41:1b:b4:83: 44:b0:67:8a:15:fe:2b:52:e9:84:13:ee:43:d9:c8: dd:93:4a:5e:4a:e2:77:c3:aa:99:99:10:c6:b2:34: 35:2e:38:37:92:55:d7:c6:47:9d:df:6a:2c:9b:2e: 24:e8:55:45:5b:0c:c1:46:55:75:c4:30:48:1a:38: 23:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:35:AF:98:51:CA:72:7A:D1:F5:00:AD:9B:61:3F:CF:87:90:75:A6 X509v3 Authority Key Identifier: keyid:5E:A1:1C:8A:3A:29:E0:69:73:C1:F1:21:61:1D:5A:5C:2A:1B:06:9D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/XqEcijop4GlzwfEhYR1aXCobBp0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XqEcijop4GlzwfEhYR1aXCobBp0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A654C/51A9EACC416011EB90874450C4F9AE02/0A37FEFA0E6311EDB98DEA0DC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.12.196.0/22 103.73.100.0/22 Signature Algorithm: sha256WithRSAEncryption 7c:3b:8c:0d:23:2d:dd:b6:e4:df:9e:fc:37:a8:78:92:fe:ff: d4:12:0c:55:55:b1:a3:a9:11:d1:6a:b6:d2:fb:7d:6e:0a:db: 0b:50:cb:ca:d2:5f:b8:da:53:b0:6f:dd:6c:51:02:a4:63:0f: b3:1b:03:fb:7e:5e:dc:be:3c:b7:49:55:17:4d:99:c4:5a:6f: e1:eb:e6:e0:4f:3f:69:e9:c5:b0:7c:d3:16:73:18:39:ea:ab: 12:5d:e4:44:68:e2:24:2d:79:81:50:12:14:e9:3e:f0:db:4a: 2e:0b:26:d9:38:19:b9:9d:7a:89:2b:84:3c:c3:48:a0:a3:15: 75:a5:42:02:3e:47:21:55:df:0d:0b:b4:f6:ec:3e:37:6a:92: a5:0f:50:0d:40:0e:68:0d:1c:cb:65:6a:fa:4c:b6:27:ab:2a: 5a:c1:76:4b:c4:2a:55:07:86:a4:11:e3:7c:ad:90:86:3b:86: 1b:30:b6:fe:d2:35:66:9b:5e:d7:be:4e:a6:85:63:4d:0f:19: 4b:72:10:fe:d3:1e:43:75:1d:1d:26:a9:21:78:26:30:c1:33: 6e:78:38:26:f2:c5:26:4c:c4:02:a8:ee:69:e7:08:99:44:19: 73:f1:c0:0e:8e:0b:66:0f:a3:e1:33:43:89:dd:eb:22:af:75: 61:6c:67:7c -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBeYwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY1NEMxMTAvBgNVBAUTKDVFQTExQzhBM0EyOUUwNjk3M0MxRjEyMTYxMUQ1QTVD MkExQjA2OUQwHhcNMjMwOTE0MjMwMDMxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTAzOTA4Zi0yZWQ0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA1nPbTpwWdFVwNtmqUQERu7SQOZQIUPMb6shy6PruHKt/Cn74iNTmdZjqgpEM iPq90mN64WMMzkVZQEsbSLtWWfhOd62ppbYyBgVxKi01GKpsMbxqHFOulyBoo7cU Dx06CVtwj8Xfa2k+Molx99hgFiqK3SDKsnudDAH1BWjhzmg4E9j+4qv5yqsybLPC R2yxlIPfP3UzgCDYessBVmZUOC4SyFmd8rlvKlyZqqJoe+L3eD7YyfQ7lawGBCL2 m0EbtINEsGeKFf4rUumEE+5D2cjdk0peSuJ3w6qZmRDGsjQ1Ljg3klXXxked32os my4k6FVFWwzBRlV1xDBIGjgjtQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFLk1r5hR ynJ60fUArZthP8+HkHWmMB8GA1UdIwQYMBaAFF6hHIo6KeBpc8HxIWEdWlwqGwad MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjU0Qy81MUE5RUFDQzQx NjAxMUVCOTA4NzQ0NTBDNEY5QUUwMi9YcUVjaWpvcDRHbHp3ZkVoWVIxYVhDb2JC cDAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1hxRWNpam9wNEdsendmRWhZUjFhWENvYkJwMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY1NEMvNTFBOUVBQ0M0MTYwMTFFQjkwODc0NDUwQzRGOUFFMDIvMEEzN0ZFRkEw RTYzMTFFREI5OERFQTBEQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnDMQDBAJnSWQwDQYJKoZIhvcNAQELBQADggEBAHw7jA0j Ld225N+e/DeoeJL+/9QSDFVVsaOpEdFqttL7fW4K2wtQy8rSX7jaU7Bv3WxRAqRj D7MbA/t+Xty+PLdJVRdNmcRab+Hr5uBPP2npxbB80xZzGDnqqxJd5ERo4iQteYFQ EhTpPvDbSi4LJtk4GbmdeokrhDzDSKCjFXWlQgI+RyFV3w0LtPbsPjdqkqUPUA1A DmgNHMtlavpMtierKlrBdkvEKlUHhqQR43ytkIY7hhswtv7SNWabXte+TqaFY00P GUtyEP7THkN1HR0mqSF4JjDBM254OCbyxSZMxAKo7mnnCJlEGXPxwA6OC2YPo+Ez Q4nd6yKvdWFsZ3w= -----END CERTIFICATE-----Generated at Sat May 25 01:24:52 2024 by rpki-client on console-fra.rpki-client.org