$ rpki-client -vvf rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D6692528CAC311EC910B8C20C4F9AE02.roa File: D6692528CAC311EC910B8C20C4F9AE02.roa (raw, json) Hash identifier: 0smMMd57ya1+D2ELvTAbVnL7Xs2Zr6nql8mJb1/OO18= Subject key identifier: F6:3D:A6:B2:B8:22:7E:DE:F6:DC:3D:D6:F1:41:72:33:B8:D4:76:D0 Certificate issuer: /CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Certificate serial: 04EA Authority key identifier: D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D6692528CAC311EC910B8C20C4F9AE02.roa Signing time: Sat 05 Aug 2023 00:00:50 +0000 ROA not before: Sat 05 Aug 2023 00:00:50 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 136778 IP address blocks: 103.106.202.0/23 maxlen: 23 103.106.202.0/24 maxlen: 24 103.106.203.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 00:42:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1258 (0x4ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AA897/serialNumber=D68D411AD03E7314F1492D062DB0D9194E9F5095 Validity Not Before: Aug 5 00:00:50 2023 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=64cd9132-60df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a4:8d:9d:e9:79:51:b6:b9:ca:2f:bd:02:eb: 5d:b9:89:b6:5f:5b:4f:b6:9d:e0:55:38:ca:aa:91: 7e:6b:82:03:79:24:f2:25:ca:be:2a:47:45:22:94: 5e:81:8b:c2:ed:40:f9:76:6e:b1:fe:5e:60:21:5d: 7b:78:4f:8b:fc:5c:16:8b:f6:ed:1c:5a:e1:b2:f9: 14:51:7d:6e:73:74:b3:ee:b4:c7:5f:b5:bc:2b:23: 93:1a:9e:32:29:14:76:80:dc:c7:bb:86:74:14:76: 68:88:db:43:52:71:0a:82:33:96:1d:a5:9f:c9:6f: 5f:87:27:b1:7d:1a:cf:0a:d3:21:13:c3:46:24:af: d4:46:11:0b:8a:9a:8c:11:e5:79:8d:4e:95:b8:dc: e8:f7:f4:fa:72:83:25:6a:36:de:6f:c6:8e:ab:73: 1c:19:39:77:66:d9:34:c3:d3:44:80:0f:dc:6e:82: de:53:76:04:24:41:c7:e3:f5:d1:42:16:37:b7:b3: 7a:d8:01:e3:16:d5:ad:f1:c7:c4:df:f4:24:e7:53: ba:86:8b:80:7d:fb:aa:7c:ef:e1:1a:bb:a9:ee:42: 3b:6f:1b:56:03:d0:a9:85:ac:de:80:60:a9:7a:33: 9d:f8:be:4f:19:70:97:65:e1:b9:77:1d:b3:d8:4a: 28:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:3D:A6:B2:B8:22:7E:DE:F6:DC:3D:D6:F1:41:72:33:B8:D4:76:D0 X509v3 Authority Key Identifier: keyid:D6:8D:41:1A:D0:3E:73:14:F1:49:2D:06:2D:B0:D9:19:4E:9F:50:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/1o1BGtA-cxTxSS0GLbDZGU6fUJU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1o1BGtA-cxTxSS0GLbDZGU6fUJU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AA897/E1D1177095BA11EBB2812371C4F9AE02/D6692528CAC311EC910B8C20C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.106.202.0/23 Signature Algorithm: sha256WithRSAEncryption 79:28:42:57:29:9c:da:63:f1:66:ef:aa:e4:67:c3:78:35:4b: d0:29:9c:71:c0:53:7b:5e:7c:be:72:4d:bf:93:c9:c4:f2:4f: 43:c2:ce:8e:c1:d7:07:8a:9e:9e:2f:cc:ec:47:cc:10:18:24: a5:e3:8e:f5:c9:4c:fd:40:92:c7:9b:27:4c:31:ee:bd:24:73: 15:31:9f:32:4e:af:be:e6:b0:1e:c1:d0:93:49:62:f4:a9:9f: b1:f7:87:5a:02:90:ce:13:3d:fd:30:f8:a5:21:0a:aa:db:15: 83:04:73:1d:b7:70:44:79:8d:31:93:8b:b3:59:b3:66:05:c6: c7:62:41:4a:ad:96:ae:51:e7:b2:64:e1:e0:99:49:78:89:62: c7:c7:72:97:00:dc:11:03:8a:a8:6c:e2:27:91:ed:8d:b8:c6: 0d:d7:11:cb:b5:c8:e4:21:7f:c5:17:0a:3d:34:3e:77:70:35: 70:37:30:31:df:5b:18:63:90:9b:c8:10:a1:f4:2b:d8:09:0d: fe:f0:ed:42:fe:4b:e5:39:cc:c4:19:f2:30:23:3b:d7:f8:23: 76:14:ef:96:69:8d:b0:44:ce:62:c0:ce:cb:85:2d:31:b9:9f: 31:31:53:7d:07:29:3d:c7:6e:1a:fc:0f:ca:c6:75:69:19:d8: d4:85:88:01 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICBOowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUE4OTcxMTAvBgNVBAUTKEQ2OEQ0MTFBRDAzRTczMTRGMTQ5MkQwNjJEQjBEOTE5 NEU5RjUwOTUwHhcNMjMwODA1MDAwMDUwWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NGNkOTEzMi02MGRmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3KSNnel5Uba5yi+9AutduYm2X1tPtp3gVTjKqpF+a4IDeSTyJcq+KkdFIpRe gYvC7UD5dm6x/l5gIV17eE+L/FwWi/btHFrhsvkUUX1uc3Sz7rTHX7W8KyOTGp4y KRR2gNzHu4Z0FHZoiNtDUnEKgjOWHaWfyW9fhyexfRrPCtMhE8NGJK/URhELipqM EeV5jU6VuNzo9/T6coMlajbeb8aOq3McGTl3Ztk0w9NEgA/cboLeU3YEJEHH4/XR QhY3t7N62AHjFtWt8cfE3/Qk51O6houAffuqfO/hGrup7kI7bxtWA9CphazegGCp ejOd+L5PGXCXZeG5dx2z2EooVwIDAQABo4IClTCCApEwHQYDVR0OBBYEFPY9prK4 In7e9tw91vFBcjO41HbQMB8GA1UdIwQYMBaAFNaNQRrQPnMU8UktBi2w2RlOn1CV MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBQTg5Ny9FMUQxMTc3MDk1 QkExMUVCQjI4MTIzNzFDNEY5QUUwMi8xbzFCR3RBLWN4VHhTUzBHTGJEWkdVNmZV SlUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzFvMUJHdEEtY3hUeFNTMEdMYkRaR1U2ZlVKVS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUE4OTcvRTFEMTE3NzA5NUJBMTFFQkIyODEyMzcxQzRGOUFFMDIvRDY2OTI1MjhD QUMzMTFFQzkxMEI4QzIwQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnasowDQYJKoZIhvcNAQELBQADggEBAHkoQlcpnNpj8Wbv quRnw3g1S9ApnHHAU3tefL5yTb+TycTyT0PCzo7B1weKnp4vzOxHzBAYJKXjjvXJ TP1AksebJ0wx7r0kcxUxnzJOr77msB7B0JNJYvSpn7H3h1oCkM4TPf0w+KUhCqrb FYMEcx23cER5jTGTi7NZs2YFxsdiQUqtlq5R57Jk4eCZSXiJYsfHcpcA3BEDiqhs 4ieR7Y24xg3XEcu1yOQhf8UXCj00PndwNXA3MDHfWxhjkJvIEKH0K9gJDf7w7UL+ S+U5zMQZ8jAjO9f4I3YU75ZpjbBEzmLAzsuFLTG5nzExU30HKT3Hbhr8D8rGdWkZ 2NSFiAE= -----END CERTIFICATE-----Generated at Tue May 21 01:47:03 2024 by rpki-client on console-fra.rpki-client.org