$ rpki-client -vvf rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/B3F935160E0F11ED89E89675C4F9AE02.roa File: B3F935160E0F11ED89E89675C4F9AE02.roa (raw, json) Hash identifier: aihzmTn/zW7hDpXNCW/Xk7hDXJkvmBxtX6q3a04aqGs= Subject key identifier: DB:26:4E:A6:AE:CA:5E:84:4E:94:0D:09:8A:A7:84:76:6B:85:7F:30 Certificate issuer: /CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Certificate serial: 013F Authority key identifier: 4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/B3F935160E0F11ED89E89675C4F9AE02.roa Signing time: Wed 27 Sep 2023 03:24:20 +0000 ROA not before: Wed 27 Sep 2023 03:24:20 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 14618 IP address blocks: 103.23.68.0/23 maxlen: 23 2400:9920::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Apr 2024 04:30:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 319 (0x13f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91A9B1B/serialNumber=4B4414AE685E488F42B1B647EEA01DEBB0C4F3A0 Validity Not Before: Sep 27 03:24:20 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=6513a064-ad0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:3b:25:83:9e:ac:07:5e:f5:b0:c7:95:56:3c: c6:67:67:60:09:96:9f:5f:70:85:e9:27:3b:a5:91: b1:9d:39:88:1b:9d:a3:73:de:79:af:6c:e1:82:3f: 99:7c:bc:e4:4a:c7:8a:3d:3f:b0:1e:08:ec:10:d1: 47:12:2e:5b:68:30:43:31:c6:e5:8d:cc:7b:61:dc: 60:52:27:9b:e2:2b:fd:43:18:4d:d3:7b:f1:ff:8f: 59:b1:9b:f3:d6:73:4f:75:d0:8f:e6:94:e8:02:03: c8:b3:6b:f5:55:8a:d4:1e:bd:31:04:ef:3c:ab:e9: 31:f4:1e:bb:5f:49:d3:03:37:8c:80:8f:b9:5c:47: 2e:9b:9b:52:c9:c9:38:82:e8:bf:81:35:b9:a4:f7: 89:9c:f2:6e:3e:9a:fa:6e:46:fd:99:b5:f1:95:d3: 4c:97:39:61:d0:51:71:8c:9c:75:b1:68:1d:ce:39: 74:95:db:67:88:fb:f1:c2:9a:5f:60:c6:37:ab:a7: a2:e9:74:63:d5:aa:04:c2:38:db:82:62:5d:8e:0f: 55:b1:bb:47:27:18:2f:a0:0a:c6:ce:8d:cb:10:f6: b4:b2:02:b1:dd:1d:17:33:db:09:eb:6f:b7:79:72: 3e:60:8a:f4:9e:1e:8a:46:22:7f:d3:9e:f2:f5:72: 2e:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:26:4E:A6:AE:CA:5E:84:4E:94:0D:09:8A:A7:84:76:6B:85:7F:30 X509v3 Authority Key Identifier: keyid:4B:44:14:AE:68:5E:48:8F:42:B1:B6:47:EE:A0:1D:EB:B0:C4:F3:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/S0QUrmheSI9CsbZH7qAd67DE86A.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/S0QUrmheSI9CsbZH7qAd67DE86A.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91A9B1B/4B3864D80E0B11EDA8D12E58C4F9AE02/B3F935160E0F11ED89E89675C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.23.68.0/23 IPv6: 2400:9920::/32 Signature Algorithm: sha256WithRSAEncryption 39:db:52:eb:ae:f4:70:fe:dc:7f:20:6e:66:e0:d5:9c:60:2b: 7c:cd:e6:4f:08:8d:af:ac:51:33:71:63:d2:bb:3e:46:df:9f: 14:0f:93:2c:02:b0:98:13:cd:dc:fa:d8:2f:8c:7c:73:c0:6a: 59:d0:d8:fb:a5:76:20:23:57:16:c4:2c:c3:89:25:8b:be:35: b6:f9:c5:c3:8f:79:56:04:6a:7e:a0:88:8e:0b:05:d8:9c:96: 53:2f:ba:8e:6a:66:54:f7:ab:fc:ca:b2:d7:0e:6e:f8:b9:ee: 47:21:11:af:dd:db:c2:84:e2:5a:18:5c:a9:5b:98:2a:50:d9: 8e:1f:f5:64:43:4e:60:ab:83:70:09:a7:cb:bb:40:80:ab:62: a3:18:75:d0:5e:dd:a2:6a:ac:62:4e:b6:fa:2f:99:78:b8:c5: 5d:1b:4d:9d:32:ba:ba:0e:24:47:7d:0a:91:0a:81:cc:56:f3: 4f:42:84:84:c9:a7:31:a8:0e:04:ff:49:3a:80:bf:56:54:a1: 3f:00:13:13:73:5b:99:6b:59:4a:16:7e:d4:4b:08:9f:4b:d8: 39:52:ad:59:fd:a5:74:e6:6c:3f:94:db:e9:7c:88:8e:2f:53: 09:52:ef:40:25:2c:63:93:eb:8c:e8:b9:8e:48:d6:d8:10:41: c4:78:86:8c -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICAT8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QTlCMUIxMTAvBgNVBAUTKDRCNDQxNEFFNjg1RTQ4OEY0MkIxQjY0N0VFQTAxREVC QjBDNEYzQTAwHhcNMjMwOTI3MDMyNDIwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTEzYTA2NC1hZDBlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAlTslg56sB171sMeVVjzGZ2dgCZafX3CF6Sc7pZGxnTmIG52jc955r2zhgj+Z fLzkSseKPT+wHgjsENFHEi5baDBDMcbljcx7YdxgUieb4iv9QxhN03vx/49ZsZvz 1nNPddCP5pToAgPIs2v1VYrUHr0xBO88q+kx9B67X0nTAzeMgI+5XEcum5tSyck4 gui/gTW5pPeJnPJuPpr6bkb9mbXxldNMlzlh0FFxjJx1sWgdzjl0ldtniPvxwppf YMY3q6ei6XRj1aoEwjjbgmJdjg9VsbtHJxgvoArGzo3LEPa0sgKx3R0XM9sJ62+3 eXI+YIr0nh6KRiJ/057y9XIuNQIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFNsmTqau yl6ETpQNCYqnhHZrhX8wMB8GA1UdIwQYMBaAFEtEFK5oXkiPQrG2R+6gHeuwxPOg MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBOUIxQi80QjM4NjREODBF MEIxMUVEQThEMTJFNThDNEY5QUUwMi9TMFFVcm1oZVNJOUNzYlpIN3FBZDY3REU4 NkEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1MwUVVybWhlU0k5Q3NiWkg3cUFkNjdERTg2QS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QTlCMUIvNEIzODY0RDgwRTBCMTFFREE4RDEyRTU4QzRGOUFFMDIvQjNGOTM1MTYw RTBGMTFFRDg5RTg5Njc1QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnF0QwDQQCAAIwBwMFACQAmSAwDQYJKoZIhvcNAQELBQAD ggEBADnbUuuu9HD+3H8gbmbg1ZxgK3zN5k8Ija+sUTNxY9K7PkbfnxQPkywCsJgT zdz62C+MfHPAalnQ2PuldiAjVxbELMOJJYu+Nbb5xcOPeVYEan6giI4LBdicllMv uo5qZlT3q/zKstcObvi57kchEa/d28KE4loYXKlbmCpQ2Y4f9WRDTmCrg3AJp8u7 QICrYqMYddBe3aJqrGJOtvovmXi4xV0bTZ0yuroOJEd9CpEKgcxW809ChITJpzGo DgT/STqAv1ZUoT8AExNzW5lrWUoWftRLCJ9L2DlSrVn9pXTmbD+U2+l8iI4vUwlS 70AlLGOT64zouY5I1tgQQcR4how= -----END CERTIFICATE-----Generated at Wed Apr 17 06:39:09 2024 by rpki-client on console-fra.rpki-client.org