$ rpki-client -vvf rpki.apnic.net/member_repository/A91AEBFF/E3DC29E650DC11EC9BF90E31C4F9AE02/FEE1AED6C77311EEB751AE2CC4F9AE02.roa File: FEE1AED6C77311EEB751AE2CC4F9AE02.roa (raw, json) Hash identifier: 5uzkHfFFMLToyMXonIWoqmfqNCeTdigSyRXgd7owJCk= Subject key identifier: 4F:6B:81:60:E4:99:A8:1A:8E:39:3A:3C:39:29:82:CE:63:7B:BC:A9 Certificate issuer: /CN=A91AEBFF/serialNumber=54411FE7332D2EF4FF275E59D5DEFED1CCE96014 Certificate serial: 036A Authority key identifier: 54:41:1F:E7:33:2D:2E:F4:FF:27:5E:59:D5:DE:FE:D1:CC:E9:60:14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VEEf5zMtLvT_J15Z1d7-0czpYBQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91AEBFF/E3DC29E650DC11EC9BF90E31C4F9AE02/FEE1AED6C77311EEB751AE2CC4F9AE02.roa Signing time: Fri 09 Feb 2024 17:52:31 +0000 ROA not before: Fri 09 Feb 2024 17:52:31 +0000 ROA not after: Thu 31 Oct 2024 00:00:00 +0000 asID: 141987 IP address blocks: 103.170.206.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91AEBFF/E3DC29E650DC11EC9BF90E31C4F9AE02/VEEf5zMtLvT_J15Z1d7-0czpYBQ.crl rsync://rpki.apnic.net/member_repository/A91AEBFF/E3DC29E650DC11EC9BF90E31C4F9AE02/VEEf5zMtLvT_J15Z1d7-0czpYBQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VEEf5zMtLvT_J15Z1d7-0czpYBQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 02:41:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 874 (0x36a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91AEBFF/serialNumber=54411FE7332D2EF4FF275E59D5DEFED1CCE96014 Validity Not Before: Feb 9 17:52:31 2024 GMT Not After : Oct 31 00:00:00 2024 GMT Subject: CN=65c6665e-dba5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:ef:1b:ec:82:2f:76:d1:8d:48:7f:87:5d:42: 40:ce:f0:e7:94:ff:21:cc:42:fb:f9:c8:0b:17:1e: 88:db:9e:9d:db:85:3d:de:9c:94:5e:68:99:2b:69: d3:7a:3b:0b:f4:8a:e1:76:4b:ca:33:3c:27:c4:c3: 35:d0:10:63:fe:bc:9e:59:17:ba:70:ee:b7:8b:5f: a7:0d:2b:1d:63:ea:7c:4a:c0:1f:72:30:7b:79:bb: fa:e9:eb:65:6a:7b:a2:ec:af:24:56:ed:ec:f3:93: 57:be:86:69:da:a1:81:ca:17:13:3f:4d:35:18:6d: dd:ad:ca:38:32:47:1a:17:1e:69:8e:f4:ad:96:6b: ac:bc:98:d0:90:78:a2:05:53:f0:40:1a:d5:af:83: bc:fc:c8:77:6e:bb:fd:6f:c6:10:76:b2:45:48:18: db:9a:b9:4e:93:05:e3:67:5e:fe:ba:f3:f2:3e:74: 64:f5:84:71:75:4c:73:3a:cc:f0:0c:19:c9:4c:55: ed:9e:23:c7:cb:fb:03:6c:51:2b:04:82:df:20:b1: 58:e5:b6:92:7a:10:a1:ad:35:17:52:1f:3e:9d:33: 11:17:04:e6:35:9b:4d:90:07:85:74:8a:6b:b5:0e: 97:dc:59:bf:1b:46:58:7c:9f:00:71:87:9e:4e:6c: 9c:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6B:81:60:E4:99:A8:1A:8E:39:3A:3C:39:29:82:CE:63:7B:BC:A9 X509v3 Authority Key Identifier: keyid:54:41:1F:E7:33:2D:2E:F4:FF:27:5E:59:D5:DE:FE:D1:CC:E9:60:14 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91AEBFF/E3DC29E650DC11EC9BF90E31C4F9AE02/VEEf5zMtLvT_J15Z1d7-0czpYBQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VEEf5zMtLvT_J15Z1d7-0czpYBQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91AEBFF/E3DC29E650DC11EC9BF90E31C4F9AE02/FEE1AED6C77311EEB751AE2CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.170.206.0/23 Signature Algorithm: sha256WithRSAEncryption 99:5c:3f:b4:bd:68:c1:d3:5a:37:1d:5c:d7:cf:8c:df:33:69: 61:85:ab:b0:dd:10:4d:b3:3a:e0:6e:02:71:23:d1:8a:3b:7c: 29:87:0e:62:f9:db:30:cb:c8:73:f2:47:f8:f8:31:8b:da:c7: 21:13:97:35:d5:40:ca:bf:4c:c1:79:fa:cf:c2:c1:98:10:66: a6:27:3f:c0:02:8b:69:da:fc:06:be:dd:da:59:75:c9:ea:7c: f5:86:01:59:36:b1:1b:1f:ef:2a:f7:38:a4:07:28:a2:b0:49: 71:72:51:fb:40:45:e3:8e:a9:0e:0d:07:76:2b:cc:51:da:2b: 19:08:63:bb:d8:d2:31:40:0b:7c:ab:02:fc:2b:05:79:5f:d7: fa:4f:30:9c:83:28:b3:ee:55:cd:51:85:83:08:4f:ef:60:2c: 17:22:6c:55:a8:a3:9b:6c:ad:d5:eb:ef:a5:a0:7a:b7:a2:14: e8:91:bd:e7:8f:de:f4:79:7b:7f:45:0e:92:be:8d:af:04:73: 3e:3d:26:ff:25:48:5c:57:59:f3:fb:a5:ae:0a:0a:b1:d3:94: 94:fe:98:bd:d2:b2:37:84:ac:83:bf:b9:66:b4:18:fd:76:a1: 7e:54:83:54:a3:43:86:23:09:8d:cd:f9:10:f3:f8:c8:a1:c7: 9a:81:1d:6d -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICA2owDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QUVCRkYxMTAvBgNVBAUTKDU0NDExRkU3MzMyRDJFRjRGRjI3NUU1OUQ1REVGRUQx Q0NFOTYwMTQwHhcNMjQwMjA5MTc1MjMxWhcNMjQxMDMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NWM2NjY1ZS1kYmE1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAme8b7IIvdtGNSH+HXUJAzvDnlP8hzEL7+cgLFx6I256d24U93pyUXmiZK2nT ejsL9IrhdkvKMzwnxMM10BBj/ryeWRe6cO63i1+nDSsdY+p8SsAfcjB7ebv66etl anui7K8kVu3s85NXvoZp2qGByhcTP001GG3drco4MkcaFx5pjvStlmusvJjQkHii BVPwQBrVr4O8/Mh3brv9b8YQdrJFSBjbmrlOkwXjZ17+uvPyPnRk9YRxdUxzOszw DBnJTFXtniPHy/sDbFErBILfILFY5baSehChrTUXUh8+nTMRFwTmNZtNkAeFdIpr tQ6X3Fm/G0ZYfJ8AcYeeTmyc7QIDAQABo4IClTCCApEwHQYDVR0OBBYEFE9rgWDk magajjk6PDkpgs5je7ypMB8GA1UdIwQYMBaAFFRBH+czLS70/ydeWdXe/tHM6WAU MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFBRUJGRi9FM0RDMjlFNjUw REMxMUVDOUJGOTBFMzFDNEY5QUUwMi9WRUVmNXpNdEx2VF9KMTVaMWQ3LTBjenBZ QlEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1ZFRWY1ek10THZUX0oxNVoxZDctMGN6cFlCUS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QUVCRkYvRTNEQzI5RTY1MERDMTFFQzlCRjkwRTMxQzRGOUFFMDIvRkVFMUFFRDZD NzczMTFFRUI3NTFBRTJDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnqs4wDQYJKoZIhvcNAQELBQADggEBAJlcP7S9aMHTWjcd XNfPjN8zaWGFq7DdEE2zOuBuAnEj0Yo7fCmHDmL52zDLyHPyR/j4MYvaxyETlzXV QMq/TMF5+s/CwZgQZqYnP8ACi2na/Aa+3dpZdcnqfPWGAVk2sRsf7yr3OKQHKKKw SXFyUftAReOOqQ4NB3YrzFHaKxkIY7vY0jFAC3yrAvwrBXlf1/pPMJyDKLPuVc1R hYMIT+9gLBcibFWoo5tsrdXr76WgereiFOiRveeP3vR5e39FDpK+ja8Ecz49Jv8l SFxXWfP7pa4KCrHTlJT+mL3SsjeErIO/uWa0GP12oX5Ug1SjQ4YjCY3N+RDz+Mih x5qBHW0= -----END CERTIFICATE-----Generated at Mon May 27 04:53:42 2024 by rpki-client on console-fra.rpki-client.org