$ rpki-client -vvf rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/6E038820BF6211EA94C2957CC4F9AE02.roa File: 6E038820BF6211EA94C2957CC4F9AE02.roa (raw, json) Hash identifier: 4ZJ4bpIZAyoZQWXKXEaFncTtQ6o2taA3kIC/oIBts/4= Subject key identifier: 8B:7B:B5:C9:9B:4C:6A:B2:D3:38:20:C3:E9:EC:5C:86:4B:5B:23:A8 Certificate issuer: /CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Certificate serial: 0737 Authority key identifier: D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/6E038820BF6211EA94C2957CC4F9AE02.roa Signing time: Thu 20 Jul 2023 21:38:06 +0000 ROA not before: Thu 20 Jul 2023 21:38:06 +0000 ROA not after: Mon 30 Sep 2024 00:00:00 +0000 asID: 18351 IP address blocks: 103.69.64.0/22 maxlen: 24 203.201.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 21:20:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1847 (0x737) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AE08E/serialNumber=D290DD167222C39B134F81E527F022D85EDF23F4 Validity Not Before: Jul 20 21:38:06 2023 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=64b9a93e-e2a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f2:6f:d6:ae:ff:fa:bd:0a:2a:66:22:6d:c8: 18:b9:e1:3f:b8:8a:2b:a6:99:d3:a3:c3:39:02:62: 35:10:c5:d0:86:e0:b9:fa:14:88:cb:79:bf:ae:db: 8c:74:88:f3:23:52:1e:b5:97:22:bc:1f:62:d1:22: 5c:98:a9:fa:79:97:b5:25:08:40:f6:0d:c4:58:d6: 8d:e7:42:6c:63:86:6a:ea:56:0a:87:8f:c9:a6:fc: 5e:cf:96:53:e4:ba:1f:28:9b:37:aa:4e:67:cc:74: fd:79:b3:5e:fa:d8:a7:91:73:d3:83:0b:de:d9:2f: c9:f3:d0:69:6e:35:5c:cf:10:a8:88:6a:c6:1f:47: 95:46:92:b9:a8:da:1d:9b:fe:7d:cc:9a:db:b9:6d: 7e:44:42:68:ce:e6:0b:22:03:16:e1:53:31:2d:d8: 43:8b:cc:cf:da:bf:9d:89:b7:9f:e3:89:c2:be:a6: 1a:7f:ad:c1:d6:65:8c:ae:3f:ee:b3:7a:f1:64:5b: 7c:85:d3:7c:e1:49:6e:d7:1d:54:46:00:cc:c0:79: e6:2a:98:07:65:fa:67:c4:03:98:99:ef:a4:15:e8: b9:02:e5:be:94:97:52:bf:66:6a:d9:73:8d:74:0c: bf:85:0c:19:2c:e1:09:09:08:0c:78:13:c1:6d:07: 35:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:7B:B5:C9:9B:4C:6A:B2:D3:38:20:C3:E9:EC:5C:86:4B:5B:23:A8 X509v3 Authority Key Identifier: keyid:D2:90:DD:16:72:22:C3:9B:13:4F:81:E5:27:F0:22:D8:5E:DF:23:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/0pDdFnIiw5sTT4HlJ_Ai2F7fI_Q.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AE08E/B2A3C23CBF4A11EA8C315D31C4F9AE02/6E038820BF6211EA94C2957CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.69.64.0/22 203.201.176.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:aa:1b:6e:d2:cf:4d:09:bd:5d:c9:1b:1b:37:83:08:0c:ff: 18:ca:89:ca:c1:e5:f5:5d:6d:14:29:a7:c2:53:f0:11:7b:49: a6:a5:6a:56:e0:3c:26:8d:5f:6b:a0:4f:b1:fc:21:86:97:fb: 44:7f:1b:36:08:d2:60:e2:d7:02:3f:ef:96:27:1f:ac:ca:1c: 0c:86:14:bb:5b:67:95:dd:21:cc:a6:c0:98:b3:be:5d:1b:ab: 8a:f7:f9:8a:35:c3:79:02:a1:67:ea:02:ef:1f:89:79:e1:0b: 31:4a:38:fe:7b:f7:6b:2e:17:fe:eb:2c:7d:9e:93:f9:95:66: bc:98:73:d8:14:1e:af:52:39:4f:81:c9:2a:fe:c1:0d:5f:92: f2:9d:c3:9b:10:9b:51:1c:00:a6:ea:a3:8b:d6:a3:2b:ea:9a: 78:9a:81:83:34:82:a7:7c:2f:a6:d7:5a:05:53:c0:94:b7:c2: 1f:f7:ca:21:4b:3d:c8:3d:66:e3:1d:8b:3c:df:b4:69:a6:9a: 3b:ab:4a:3d:81:e7:3c:89:36:96:31:df:56:21:37:72:06:c5: 0f:0f:e9:9d:49:6f:43:ce:3e:95:0c:e4:d4:2c:7e:9f:94:85: ca:2c:fb:89:ba:97:bb:a0:ae:0e:23:43:49:c5:eb:4e:9f:35: f8:bd:6d:8f -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICBzcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUUwOEUxMTAvBgNVBAUTKEQyOTBERDE2NzIyMkMzOUIxMzRGODFFNTI3RjAyMkQ4 NUVERjIzRjQwHhcNMjMwNzIwMjEzODA2WhcNMjQwOTMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NGI5YTkzZS1lMmE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEApvJv1q7/+r0KKmYibcgYueE/uIorppnTo8M5AmI1EMXQhuC5+hSIy3m/rtuM dIjzI1IetZcivB9i0SJcmKn6eZe1JQhA9g3EWNaN50JsY4Zq6lYKh4/Jpvxez5ZT 5LofKJs3qk5nzHT9ebNe+tinkXPTgwve2S/J89BpbjVczxCoiGrGH0eVRpK5qNod m/59zJrbuW1+REJozuYLIgMW4VMxLdhDi8zP2r+dibef44nCvqYaf63B1mWMrj/u s3rxZFt8hdN84Ulu1x1URgDMwHnmKpgHZfpnxAOYme+kFei5AuW+lJdSv2Zq2XON dAy/hQwZLOEJCQgMeBPBbQc1TQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFIt7tcmb TGqy0zggw+nsXIZLWyOoMB8GA1UdIwQYMBaAFNKQ3RZyIsObE0+B5SfwIthe3yP0 MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRTA4RS9CMkEzQzIzQ0JG NEExMUVBOEMzMTVEMzFDNEY5QUUwMi8wcERkRm5JaXc1c1RUNEhsSl9BaTJGN2ZJ X1EuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzBwRGRGbklpdzVzVFQ0SGxKX0FpMkY3ZklfUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUUwOEUvQjJBM0MyM0NCRjRBMTFFQThDMzE1RDMxQzRGOUFFMDIvNkUwMzg4MjBC RjYyMTFFQTk0QzI5NTdDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAJnRUADBALLybAwDQYJKoZIhvcNAQELBQADggEBAB2qG27S z00JvV3JGxs3gwgM/xjKicrB5fVdbRQpp8JT8BF7SaalalbgPCaNX2ugT7H8IYaX +0R/GzYI0mDi1wI/75YnH6zKHAyGFLtbZ5XdIcymwJizvl0bq4r3+Yo1w3kCoWfq Au8fiXnhCzFKOP5792suF/7rLH2ek/mVZryYc9gUHq9SOU+BySr+wQ1fkvKdw5sQ m1EcAKbqo4vWoyvqmniagYM0gqd8L6bXWgVTwJS3wh/3yiFLPcg9ZuMdizzftGmm mjurSj2B5zyJNpYx31YhN3IGxQ8P6Z1Jb0POPpUM5NQsfp+Uhcos+4m6l7ugrg4j Q0nF606fNfi9bY8= -----END CERTIFICATE-----Generated at Sun May 5 00:12:28 2024 by rpki-client on console-fra.rpki-client.org