$ rpki-client -vvf rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/B7106404ED4711EEBD5DD584C4F9AE02.roa File: B7106404ED4711EEBD5DD584C4F9AE02.roa (raw, json) Hash identifier: uq4/mU6YnOlGTmcbmQoEHpGmVXeSRNgZUS3CsRbJs/Y= Subject key identifier: 02:C9:FA:66:37:F3:C9:82:A2:E3:4F:95:4E:51:C2:14:0F:D5:94:0B Certificate issuer: /CN=A91A6943/serialNumber=0AB99F52C9AD9BE0B9C04470CFB1B6C2360FD0F5 Certificate serial: 08F0 Authority key identifier: 0A:B9:9F:52:C9:AD:9B:E0:B9:C0:44:70:CF:B1:B6:C2:36:0F:D0:F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/B7106404ED4711EEBD5DD584C4F9AE02.roa Signing time: Thu 28 Mar 2024 21:11:17 +0000 ROA not before: Thu 28 Mar 2024 21:11:17 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 133141 IP address blocks: 103.74.20.0/24 maxlen: 24 103.74.21.0/24 maxlen: 24 103.74.22.0/24 maxlen: 24 103.74.23.0/24 maxlen: 24 103.235.77.0/24 maxlen: 24 2407:1ec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.crl rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2288 (0x8f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A6943/serialNumber=0AB99F52C9AD9BE0B9C04470CFB1B6C2360FD0F5 Validity Not Before: Mar 28 21:11:17 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=6605dcf4-94b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:42:13:e8:f2:aa:22:11:32:0a:04:ef:15:10: cd:1f:aa:d3:ec:1c:81:8c:a2:b9:0f:de:f5:0a:db: d1:13:84:2b:cd:ec:f8:7e:47:78:4b:2f:f5:1d:69: 0e:3f:66:2b:19:fe:f5:70:73:da:41:9a:ec:f2:b3: 1d:6b:ce:76:98:ac:97:2a:72:0b:f7:68:c2:87:92: fa:95:15:a9:c1:e4:0f:78:74:87:b6:50:44:3f:fc: b5:59:e4:01:e8:85:5f:41:2d:6b:e3:b0:0c:6b:ed: ba:81:85:c2:c5:21:a7:ec:ae:82:94:4c:57:85:90: 0c:62:e9:31:bd:6f:f3:e9:23:c8:e9:95:03:52:07: 36:a3:15:71:9d:c3:4b:0d:7d:5d:d8:f0:75:3c:68: 5b:22:75:5a:80:6e:d3:b2:d2:e0:bc:cd:fb:e5:55: 94:8b:9b:9f:02:95:5b:fb:1c:fc:11:c8:92:2c:2b: 32:14:83:a5:c3:9e:45:b6:44:dc:5e:50:d0:2d:04: 56:7a:77:7d:c5:cd:22:14:03:9d:43:f6:0a:a6:02: b8:17:22:fd:1f:51:30:18:0d:f1:76:f6:6f:3c:28: 03:9f:41:a9:3b:13:b7:cb:20:22:84:84:0a:0a:ea: f8:d5:24:81:4b:42:0a:16:02:2a:46:8b:47:4e:22: e3:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:C9:FA:66:37:F3:C9:82:A2:E3:4F:95:4E:51:C2:14:0F:D5:94:0B X509v3 Authority Key Identifier: keyid:0A:B9:9F:52:C9:AD:9B:E0:B9:C0:44:70:CF:B1:B6:C2:36:0F:D0:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/CrmfUsmtm-C5wERwz7G2wjYP0PU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CrmfUsmtm-C5wERwz7G2wjYP0PU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A6943/B71811688D5111EAB8B26384C4F9AE02/B7106404ED4711EEBD5DD584C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.74.20.0/22 103.235.77.0/24 IPv6: 2407:1ec0::/32 Signature Algorithm: sha256WithRSAEncryption b7:66:d3:77:03:b5:90:e8:fa:c2:16:4a:fc:63:89:fb:8b:86: d7:b2:f5:d0:05:8b:7e:f1:42:86:ac:64:8a:95:28:69:e5:09: d7:e1:e1:04:fe:c4:fa:34:75:18:e9:63:0a:11:b0:56:ee:6d: 6a:d3:ff:9d:0b:73:79:16:f0:41:be:98:d5:ad:9c:cd:09:66: 88:e0:50:7e:4d:07:e6:52:84:79:b8:92:13:fb:65:64:ca:48: d6:aa:e7:9c:da:61:23:0f:e2:5f:66:e2:00:4d:f8:0b:56:31: 51:c0:b9:37:b8:3d:d8:1f:9c:c1:08:ed:9d:e4:35:07:fa:c1: 33:15:6f:e1:9f:37:0c:4f:5b:c9:46:54:45:f0:d9:6d:f0:89: 32:20:9d:ff:24:8e:60:c7:57:ab:3e:25:88:0d:e3:8d:69:15: 55:5a:f8:d5:08:13:28:d9:c5:1b:f1:89:37:d0:1d:34:ed:27: 8b:b7:32:9f:4d:c1:2e:a9:53:46:e9:74:b0:ed:63:7f:a3:ac: 27:a6:48:6f:18:be:a7:e5:5c:cd:87:74:c1:44:58:c6:28:1b: da:57:4f:b6:14:aa:f7:e1:81:51:b0:6b:aa:37:4e:d4:15:4e: 4e:e7:b9:b5:42:cc:7e:5f:d7:04:7d:40:3d:6f:da:4d:6a:24: 15:3c:7c:de -----BEGIN CERTIFICATE----- MIIFhjCCBG6gAwIBAgICCPAwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTY5NDMxMTAvBgNVBAUTKDBBQjk5RjUyQzlBRDlCRTBCOUMwNDQ3MENGQjFCNkMy MzYwRkQwRjUwHhcNMjQwMzI4MjExMTE3WhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NjA1ZGNmNC05NGIyMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArkIT6PKqIhEyCgTvFRDNH6rT7ByBjKK5D971CtvRE4Qrzez4fkd4Sy/1HWkO P2YrGf71cHPaQZrs8rMda852mKyXKnIL92jCh5L6lRWpweQPeHSHtlBEP/y1WeQB 6IVfQS1r47AMa+26gYXCxSGn7K6ClExXhZAMYukxvW/z6SPI6ZUDUgc2oxVxncNL DX1d2PB1PGhbInVagG7TstLgvM375VWUi5ufApVb+xz8EciSLCsyFIOlw55FtkTc XlDQLQRWend9xc0iFAOdQ/YKpgK4FyL9H1EwGA3xdvZvPCgDn0GpOxO3yyAihIQK Cur41SSBS0IKFgIqRotHTiLj/wIDAQABo4ICqjCCAqYwHQYDVR0OBBYEFALJ+mY3 88mCouNPlU5RwhQP1ZQLMB8GA1UdIwQYMBaAFAq5n1LJrZvgucBEcM+xtsI2D9D1 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBNjk0My9CNzE4MTE2ODhE NTExMUVBQjhCMjYzODRDNEY5QUUwMi9Dcm1mVXNtdG0tQzV3RVJ3ejdHMndqWVAw UFUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0NybWZVc210bS1DNXdFUnd6N0cyd2pZUDBQVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTY5NDMvQjcxODExNjg4RDUxMTFFQUI4QjI2Mzg0QzRGOUFFMDIvQjcxMDY0MDRF RDQ3MTFFRUJENURENTg0QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwNAYIKwYBBQUHAQcBAf8E JTAjMBIEAgABMAwDBAJnShQDBABn600wDQQCAAIwBwMFACQHHsAwDQYJKoZIhvcN AQELBQADggEBALdm03cDtZDo+sIWSvxjifuLhtey9dAFi37xQoasZIqVKGnlCdfh 4QT+xPo0dRjpYwoRsFbubWrT/50Lc3kW8EG+mNWtnM0JZojgUH5NB+ZShHm4khP7 ZWTKSNaq55zaYSMP4l9m4gBN+AtWMVHAuTe4PdgfnMEI7Z3kNQf6wTMVb+GfNwxP W8lGVEXw2W3wiTIgnf8kjmDHV6s+JYgN441pFVVa+NUIEyjZxRvxiTfQHTTtJ4u3 Mp9NwS6pU0bpdLDtY3+jrCemSG8YvqflXM2HdMFEWMYoG9pXT7YUqvfhgVGwa6o3 TtQVTk7nubVCzH5f1wR9QD1v2k1qJBU8fN4= -----END CERTIFICATE-----Generated at Sat May 18 22:27:57 2024 by rpki-client on console-ams.rpki-client.org