$ rpki-client -vvf rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/C31A6BFA717D11EE90B95137C4F9AE02.roa File: C31A6BFA717D11EE90B95137C4F9AE02.roa (raw, json) Hash identifier: O9hKnnT67qfcmU5oSpSnkqTpQTC4e3ri+WCp5NJLws4= Subject key identifier: 4E:85:4B:36:45:60:3B:61:D7:51:29:6B:94:CC:54:80:5B:B6:42:8B Certificate issuer: /CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Certificate serial: FD Authority key identifier: AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/C31A6BFA717D11EE90B95137C4F9AE02.roa Signing time: Mon 23 Oct 2023 08:25:45 +0000 ROA not before: Mon 23 Oct 2023 08:25:45 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 24499 IP address blocks: 103.57.224.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 03:45:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 253 (0xfd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A97D0/serialNumber=AEA6DFB364A2B3B5927F007A4E824F32C408E5C8 Validity Not Before: Oct 23 08:25:45 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65362e09-2000 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:07:00:97:fc:92:2a:60:f1:76:37:6f:42:57: b4:59:fb:a0:50:48:6c:19:f9:9a:e9:7b:9d:6b:d2: e0:f9:93:f7:c2:df:05:5b:15:dc:36:c3:1a:d4:00: d4:22:84:e3:1b:14:30:5c:38:f5:b6:41:f2:56:31: 68:63:a9:9f:e4:08:40:bf:1a:10:19:9f:c4:9b:ac: 56:96:46:50:95:b7:25:c7:38:19:d0:0d:18:04:56: a1:19:34:1e:30:b8:b2:28:21:28:1c:c3:a1:28:8a: a3:8f:19:d4:5f:42:f1:16:c4:10:74:64:ef:dc:60: 54:d4:b9:ed:9b:08:33:4a:f7:0d:96:07:a7:96:55: 2e:99:a6:91:cd:80:ff:78:c4:f6:de:c0:af:ae:c9: d1:c7:ae:60:90:b0:70:02:9d:60:4d:93:bc:ff:4f: 86:7a:aa:00:8e:d8:11:5f:9b:42:bb:52:63:99:32: ae:53:99:a7:1c:91:de:2f:77:a4:bc:36:1b:1e:97: 02:c0:7e:4b:2a:7c:fc:21:5e:5e:bb:f5:60:fa:9b: 64:94:de:7e:de:6b:c3:db:44:7b:a8:53:00:87:e9: 4b:64:5e:43:35:98:87:c9:3b:1a:51:31:22:7c:9b: 94:63:66:63:bc:26:ff:24:46:c8:e6:a5:52:3a:e0: 6b:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:85:4B:36:45:60:3B:61:D7:51:29:6B:94:CC:54:80:5B:B6:42:8B X509v3 Authority Key Identifier: keyid:AE:A6:DF:B3:64:A2:B3:B5:92:7F:00:7A:4E:82:4F:32:C4:08:E5:C8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/rqbfs2Sis7WSfwB6ToJPMsQI5cg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rqbfs2Sis7WSfwB6ToJPMsQI5cg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A97D0/B89FA3C6303211ED9BDC0A83C4F9AE02/C31A6BFA717D11EE90B95137C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.57.224.0/24 Signature Algorithm: sha256WithRSAEncryption 62:71:c0:25:a9:34:7f:da:12:c6:ff:b8:c8:e0:9e:49:d5:69: 62:7c:93:00:34:a2:92:0d:9c:e9:5f:48:db:d8:e0:b0:d5:28: 22:21:e7:b7:5f:b0:c4:fb:1d:e6:6a:5e:ca:5d:ae:6a:56:22: a3:88:a0:43:df:a5:df:87:31:99:b5:45:7e:3d:8f:b9:83:60: f5:fe:79:0a:7b:d8:d5:ad:a4:5b:ff:d7:4e:79:ae:9e:08:71: f7:08:3b:40:ec:23:a9:9a:6d:0c:ce:b1:63:7c:2e:96:95:62: 70:6a:60:bc:0e:aa:73:e4:43:98:a2:fe:3d:45:8e:ca:a6:c8: b2:1d:0d:10:25:54:cb:82:16:a5:f8:41:09:a9:ce:42:5b:f1: 37:f8:46:74:9e:1b:33:a9:d1:b2:d9:f6:5d:6d:07:2f:e3:db: b7:6c:a1:0c:e4:09:85:a1:40:8a:ee:f2:76:7b:fc:73:19:77: 2d:75:28:9b:68:ee:5f:f6:fc:ae:ea:15:25:2b:20:60:6e:3f: ed:5c:c8:e9:dd:63:00:4e:ea:29:89:e4:df:12:4a:89:02:69: 0b:fd:6f:42:47:4c:0f:02:0c:28:e3:90:ff:cd:29:4b:42:bb: e0:d2:35:2f:72:2c:b2:23:e3:f2:8f:71:df:70:09:c3:fb:50: 83:3f:a1:d8 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICAP0wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTk3RDAxMTAvBgNVBAUTKEFFQTZERkIzNjRBMkIzQjU5MjdGMDA3QTRFODI0RjMy QzQwOEU1QzgwHhcNMjMxMDIzMDgyNTQ1WhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTM2MmUwOS0yMDAwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAxQcAl/ySKmDxdjdvQle0WfugUEhsGfma6Xuda9Lg+ZP3wt8FWxXcNsMa1ADU IoTjGxQwXDj1tkHyVjFoY6mf5AhAvxoQGZ/Em6xWlkZQlbclxzgZ0A0YBFahGTQe MLiyKCEoHMOhKIqjjxnUX0LxFsQQdGTv3GBU1LntmwgzSvcNlgenllUumaaRzYD/ eMT23sCvrsnRx65gkLBwAp1gTZO8/0+GeqoAjtgRX5tCu1JjmTKuU5mnHJHeL3ek vDYbHpcCwH5LKnz8IV5eu/Vg+ptklN5+3mvD20R7qFMAh+lLZF5DNZiHyTsaUTEi fJuUY2ZjvCb/JEbI5qVSOuBrIwIDAQABo4IClTCCApEwHQYDVR0OBBYEFE6FSzZF YDth11Epa5TMVIBbtkKLMB8GA1UdIwQYMBaAFK6m37NkorO1kn8Aek6CTzLECOXI MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOTdEMC9CODlGQTNDNjMw MzIxMUVEOUJEQzBBODNDNEY5QUUwMi9ycWJmczJTaXM3V1Nmd0I2VG9KUE1zUUk1 Y2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3JxYmZzMlNpczdXU2Z3QjZUb0pQTXNRSTVjZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTk3RDAvQjg5RkEzQzYzMDMyMTFFRDlCREMwQTgzQzRGOUFFMDIvQzMxQTZCRkE3 MTdEMTFFRTkwQjk1MTM3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnOeAwDQYJKoZIhvcNAQELBQADggEBAGJxwCWpNH/aEsb/ uMjgnknVaWJ8kwA0opINnOlfSNvY4LDVKCIh57dfsMT7HeZqXspdrmpWIqOIoEPf pd+HMZm1RX49j7mDYPX+eQp72NWtpFv/1055rp4IcfcIO0DsI6mabQzOsWN8LpaV YnBqYLwOqnPkQ5ii/j1FjsqmyLIdDRAlVMuCFqX4QQmpzkJb8Tf4RnSeGzOp0bLZ 9l1tBy/j27dsoQzkCYWhQIru8nZ7/HMZdy11KJto7l/2/K7qFSUrIGBuP+1cyOnd YwBO6imJ5N8SSokCaQv9b0JHTA8CDCjjkP/NKUtCu+DSNS9yLLIj4/KPcd9wCcP7 UIM/odg= -----END CERTIFICATE-----Generated at Wed May 1 05:59:09 2024 by rpki-client on console-fra.rpki-client.org